JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.31.218.104

34.31.218.104 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 37%: ?

37%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	104.218.31.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Council Bluffs, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.31.218.104

Whois 34.31.218.104

IP Abuse Reports for 34.31.218.104:

This IP address has been reported a total of 24 times from 14 distinct sources. 34.31.218.104 was first reported on May 9th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-05-10 22:01:30 (1 month ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-09. show less	Web App Attack SSH Hacking
Anonymous	2026-05-10 04:31:50 (1 month ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 octageeks.com	2026-05-10 04:07:42 (1 month ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇺🇸 TPI-Abuse	2026-05-09 22:30:26 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.31.218.104 (104.218.31.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.31.218.104 (104.218.31.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 18:30:19.326969 2026] [security2:error] [pid 9644:tid 9644] [client 34.31.218.104:59302] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hrmroofing.wholesalelivelobsters.com"] [uri "/.git/config"] [unique_id "af-1e4_RnXATn-4MrzcRagAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 poundawebsiteltd	2026-05-09 22:20:48 (1 month ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 34.31.218.104 - - [09/May/2026:2 ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 34.31.218.104 - - [09/May/2026:23:20:46 +0100] GET /.git/config HTTP/1.1 403 3035 - - show less	Web App Attack
🇺🇸 mnsf	2026-05-09 22:05:32 (1 month ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-09 22:02:45 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.31.218.104 (104.218.31.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.31.218.104 (104.218.31.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 18:02:39.225500 2026] [security2:error] [pid 16839:tid 16839] [client 34.31.218.104:38662] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hpepaper.com"] [uri "/.git/config"] [unique_id "af-u_0zEIHrTU6BX9Twm4gAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-09 21:59:46 (1 month ago)	Auto-ban: >3000 req/min op 2026-05-09	Web App Attack SSH Hacking
🇺🇸 Bruce5051	2026-05-09 21:59:43 (1 month ago)	34.31.218.104 - - [09/May/2026:14:59:41 -0700] "GET /.git/config HTTP/1.1" 401 172 "-" "-" ...	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-09 21:46:11 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.31.218.104 (104.218.31.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.31.218.104 (104.218.31.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 17:46:05.920874 2026] [security2:error] [pid 15146:tid 15146] [client 34.31.218.104:56042] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "howietaylor.com"] [uri "/.git/config"] [unique_id "af-rHfRqAx9UzwEpST1r1QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-05-09 21:38:34 (1 month ago)	Try to access /.git/config	Web App Attack
Anonymous	2026-05-09 21:30:02 (1 month ago)	File repository snooping: 34.31.218.104 - - [09/May/2026:22:26:46 +0100] "GET /.git/config HTTP/1.1 ... show more File repository snooping: 34.31.218.104 - - [09/May/2026:22:26:46 +0100] "GET /.git/config HTTP/1.1" 404 248 "-" "-" show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-09 21:23:57 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.31.218.104 (104.218.31.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.31.218.104 (104.218.31.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 17:23:54.072867 2026] [security2:error] [pid 25506:tid 25506] [client 34.31.218.104:57122] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "houseofbates.net"] [uri "/.git/config"] [unique_id "af-l6q9wRKvaKzs3KbZVFQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Aetherweb Ark	2026-05-09 21:17:26 (1 month ago)	(mod_security) mod_security (id:949110) triggered by 34.31.218.104 (US/United States/104.218.31.34.b ... show more (mod_security) mod_security (id:949110) triggered by 34.31.218.104 (US/United States/104.218.31.34.bc.googleusercontent.com): N in the last X secs show less	Web App Attack
🇩🇪 Admins@FBN	2026-05-09 21:09:50 (1 month ago)	FW-PortScan: Traffic Blocked srcport=46064 dstport=443	Port Scan

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 200.175.61.207

🇧🇷 177.43.105.11

🇨🇳 58.210.138.5

🇳🇱 45.148.10.183

🇮🇹 45.143.182.238

🇺🇸 38.133.93.97

🇸🇬 34.143.215.62

🇸🇬 34.142.148.207

🇰🇷 34.22.93.239

🇭🇰 2a09:bac1:3180:8::3d0:4f

🇳🇱 195.178.110.30

🇬🇧 185.216.145.185

🇭🇰 165.154.43.179

🇺🇸 162.216.150.162

🇺🇸 162.216.150.13

🇸🇦 151.255.84.137

🇰🇷 110.14.190.221

🇳🇱 45.148.10.157

🇩🇪 43.165.62.10

🇺🇸 34.63.236.207