JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.104.237.236

34.104.237.236 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 48%: ?

48%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	236.237.104.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.104.237.236

Whois 34.104.237.236

IP Abuse Reports for 34.104.237.236:

This IP address has been reported a total of 18 times from 10 distinct sources. 34.104.237.236 was first reported on May 26th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇭🇰 i553041	2026-05-28 10:14:14 (1 week ago)	34.104.237.236 - - [28/May/2026:18:14:12 +0800] "GET /.env.local HTTP/1.1" 404 125 "-" "Mozilla/5.0 ... show more 34.104.237.236 - - [28/May/2026:18:14:12 +0800] "GET /.env.local HTTP/1.1" 404 125 "-" "Mozilla/5.0 (compatible; Crusader/1.0)" 34.104.237.236 - - [28/May/2026:18:14:12 +0800] "GET / HTTP/1.1" 200 396 "-" "Mozilla/5.0 (compatible; Crusader/1.0)" 34.104.237.236 - - [28/May/2026:18:14:12 +0800] "GET /.env HTTP/1.1" 404 125 "-" "Mozilla/5.0 (compatible; Crusader/1.0)" 34.104.237.236 - - [28/May/2026:18:14:12 +0800] "GET /.env.production HTTP/1.1" 404 125 "-" "Mozilla/5.0 (compatible; Crusader/1.0)" 34.104.237.236 - - [28/May/2026:18:14:12 +0800] "GET /.env.backup HTTP/1.1" 404 125 "-" "Mozilla/5.0 (compatible; Crusader/1.0)" 34.104.237.236 - - [28/May/2026:18:14:12 +0800] "GET /.env.bak HTTP/1.1" 404 125 "-" "Mozilla/5.0 (compatible; Crusader/1.0)" 34.104.237.236 - - [28/May/2026:18:14:12 +0800] "GET /.env.old HTTP/1.1" 404 125 "-" "Mozilla/5.0 (compatible; Crusader/1.0)" 34.104.237.236 - - [28/May/2026:18:14:12 +0800] "GET /.env.prod HTTP/1.1" 404 125 "-" "Mozilla/5.0 (compatible; Crusad ... show less	Brute-Force SSH
🇫🇷 omartin	2026-05-28 08:54:44 (1 week ago)	Critical Vulnerability Scan detected	Hacking Brute-Force Exploited Host Web App Attack
🇹🇷 Threat.live	2026-05-28 07:25:02 (1 week ago)	Threat.live: Web Scan	Web App Attack
🇬🇧 Apache	2026-05-28 02:58:12 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.237.236 (JP/Japan/236.237.104.34.bc.goog ... show more (mod_security) mod_security (id:210492) triggered by 34.104.237.236 (JP/Japan/236.237.104.34.bc.googleusercontent.com): 5 in the last 300 secs (CF_ENABLE) show less	Brute-Force Web App Attack
🇦🇹 Hosemacht	2026-05-28 02:51:16 (1 week ago)	Multiple Web-Attacks	Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 07:24:17 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.237.236 (236.237.104.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.104.237.236 (236.237.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 03:24:13.389447 2026] [security2:error] [pid 21721:tid 21721] [client 34.104.237.236:39058] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.aufflammen.com"] [uri "/.git/config"] [unique_id "ahacHQzTz_QpJYSp2vtRDwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 06:45:44 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.237.236 (236.237.104.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.104.237.236 (236.237.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 02:45:38.295995 2026] [security2:error] [pid 12125:tid 12125] [client 34.104.237.236:42342] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.bradjohnsonqh.com"] [uri "/.git/config"] [unique_id "ahaTEsagvbrGWvuOxkJ1CAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 06:06:03 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.237.236 (236.237.104.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.104.237.236 (236.237.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 02:05:57.844572 2026] [security2:error] [pid 27447:tid 27447] [client 34.104.237.236:37230] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.drlaurengardner.com"] [uri "/.git/config"] [unique_id "ahaJxT1atTyLICmMFF4bwgAAADU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 05:27:02 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.237.236 (236.237.104.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.104.237.236 (236.237.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 01:26:55.808451 2026] [security2:error] [pid 26679:tid 26679] [client 34.104.237.236:57860] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.stewhist.org"] [uri "/.git/config"] [unique_id "ahaAnzAqgp2KjJrZRVSrDgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 04:39:05 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.237.236 (236.237.104.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.104.237.236 (236.237.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 00:39:01.386661 2026] [security2:error] [pid 23357:tid 23357] [client 34.104.237.236:42902] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.jhbookdesign.com"] [uri "/.git/config"] [unique_id "ahZ1ZcLVehRmmSqsQxAOhgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 Roper123	2026-05-27 04:12:58 (1 week ago)	Web app attack	Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 04:00:16 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.104.237.236 (236.237.104.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.104.237.236 (236.237.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 00:00:09.689371 2026] [security2:error] [pid 26785:tid 26785] [client 34.104.237.236:45684] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.shelbysmoak.com"] [uri "/.git/config"] [unique_id "ahZsSdwNHKKLE-quWMBI1QAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-27 02:05:37 (1 week ago)	WAF repeated trigger detected by Fail2Ban	Web App Attack
🇩🇪 Bedios GmbH	2026-05-27 01:49:22 (1 week ago)	Login credentials theft attempt	Hacking
🇨🇭 4server	2026-05-27 00:21:05 (1 week ago)	[WedMay2702:20:59.1594012026][security2:error][pid240493:tid240719][client34.104.237.236:0]ModSecuri ... show more [WedMay2702:20:59.1594012026][security2:error][pid240493:tid240719][client34.104.237.236:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"ftp.distributori-automatici-ticino.ch\"][uri\"/.git/config\"][unique_id\"ahY461ZWvdSbiSwtlkbMbAAAARI\"] show less	Hacking Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 2a02:4780:6:2083:0:c85:59df:1

🇺🇸 212.46.142.168

🇨🇴 181.51.91.63

🇮🇳 163.223.190.221

🇧🇩 161.248.50.213

🇵🇰 119.154.238.148

🇫🇷 92.103.134.183

🇴🇲 85.154.5.253

🇳🇱 45.148.10.152

🇮🇳 14.194.125.58

🇬🇧 195.96.139.91

🇧🇷 191.249.45.24

🇸🇮 176.65.134.3

🇩🇪 165.227.170.113

🇻🇳 103.63.108.25

🇺🇸 35.237.110.89

🇳🇱 34.147.38.136

🇺🇸 34.138.42.139

🇧🇷 34.95.203.156

🇻🇳 2405:4802:2237:af80:ce0:10ff:fe03:fbf4