JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.104.247.27

34.104.247.27 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 75%: ?

75%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	27.247.104.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.104.247.27

Whois 34.104.247.27

IP Abuse Reports for 34.104.247.27:

This IP address has been reported a total of 16 times from 13 distinct sources. 34.104.247.27 was first reported on June 14th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-15 22:06:15 (4 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-14. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-15 02:43:20 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 34.104.247.27 (27.247.104.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.104.247.27 (27.247.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 22:43:13.882428 2026] [security2:error] [pid 10497:tid 10507] [client 34.104.247.27:59776] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gardenclub.ramona.town"] [uri "/.env.sample"] [unique_id "ai9mwdMGYCRLuXoEYccDlgAAAEc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Octopuce	2026-06-15 01:44:24 (4 days ago)	Aggressive web search of vulnerable pages: /conf/.env /admin/api/.env /app/api/.env /config/.env /pr ... show more Aggressive web search of vulnerable pages: /conf/.env /admin/api/.env /app/api/.env /config/.env /private/.env ... show less	Web App Attack
🇨🇭 backslash	2026-06-15 00:21:03 (4 days ago)	block ruleset WAF detection and high score on abuseIPDB 149EB1B42C242111FADBBC2EF8F90219570691E1	Bad Web Bot
🇺🇸 mnsf	2026-06-15 00:07:37 (4 days ago)	Abuse Detected (21)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 00:01:54 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 34.104.247.27 (27.247.104.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.104.247.27 (27.247.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 20:01:46.257444 2026] [security2:error] [pid 7028:tid 7028] [client 34.104.247.27:49132] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.hacemostuvideoia.com.verdadesreales.com"] [uri "/.env.production"] [unique_id "ai9A6obYe_KJtFSd6VzYMAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-14 22:12:24 (5 days ago)	Blocked by CSF 13 firewall - Rule: US/United States/27.247.104.34.bc.googleusercontent.com	Web App Attack
Anonymous	2026-06-14 22:12:23 (5 days ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇺🇸 kosada.com	2026-06-14 22:06:35 (5 days ago)	Web vulnerability probing: /prod/.env	Web App Attack
🇺🇸 jormaster3k	2026-06-14 18:38:30 (5 days ago)	Attack against Apache (too many 404s)	Web App Attack
Anonymous	2026-06-14 15:02:40 (5 days ago)	34.104.247.27 - - [14/Jun/2026:17:02:39 +0200] "GET /.env HTTP/1.1" 404 124 "-" "Mozilla/5.0 (Window ... show more 34.104.247.27 - - [14/Jun/2026:17:02:39 +0200] "GET /.env HTTP/1.1" 404 124 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; BOLT/2.800) AppleWebKit/534.6 (KHTML, like Gecko) Version/5.0 Safari/534.6.3" 34.104.247.27 - - [14/Jun/2026:17:02:39 +0200] "GET /.env.local HTTP/1.1" 404 124 "-" "Nokia6100/1.0 (04.01) Profile/MIDP-1.0 Configuration/CLDC-1.0" 34.104.247.27 - - [14/Jun/2026:17:02:39 +0200] "GET /.env.backup.txt HTTP/1.1" 404 124 "-" "Mozilla/5.0 (iPad; CPU OS 6_0 like Mac OS X) AppleWebKit/536.26 (KHTML, like Gecko) Version/6.0 Mobile/10A5355d Safari/8536.25" 34.104.247.27 - - [14/Jun/2026:17:02:39 +0200] "GET /.env.production HTTP/1.1" 404 184 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.113 Safari/537.36 Vivaldi/2.1.1337.51" 34.104.247.27 - - [14/Jun/2026:17:02:39 +0200] "GET /.env.prod.bak HTTP/1.1" 404 124 "-" "Mozilla/5.0 (compatible; Konqueror/3.3; Linux 2.6.8-gentoo-r3; X11;" 34.104.247.27 - - [14/Jun/2026:17:02:39 +0200 ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 03:25:30 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 34.104.247.27 (27.247.104.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.104.247.27 (27.247.104.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 23:25:27.126930 2026] [security2:error] [pid 19784:tid 19784] [client 34.104.247.27:59594] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "midnightscribe.com"] [uri "/.env.backup"] [unique_id "ai4fJzzCxxmur9XwbB9j4AAAAGE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-14 02:45:22 (5 days ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-06-14 02:30:04 (5 days ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇳🇱 Savvii	2026-06-14 02:14:53 (5 days ago)	84 attempts against mh-misbehave-ban on plum	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 175.43.184.195

🇨🇳 121.29.84.103

🇨🇳 117.81.212.152

🇨🇦 85.217.149.14

🇺🇦 46.149.191.249

🇺🇸 13.219.249.125

🇨🇳 182.43.242.192

🇳🇱 172.211.56.214

🇺🇸 66.132.186.164

🇳🇱 62.164.177.224

🇳🇱 45.148.10.240

🇺🇸 44.7.27.104

🇨🇳 42.236.210.96

🇺🇸 206.189.205.85

🇨🇳 171.211.85.223

🇩🇪 45.135.193.11

🇺🇸 44.91.241.40

🇮🇩 36.65.85.86

🇬🇧 198.244.168.36

🇺🇸 173.239.240.136