JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.44.199.104

34.44.199.104 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 75%: ?

75%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	104.199.44.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Council Bluffs, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.44.199.104

Whois 34.44.199.104

IP Abuse Reports for 34.44.199.104:

This IP address has been reported a total of 23 times from 12 distinct sources. 34.44.199.104 was first reported on June 8th 2026, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-10 08:37:07 (7 hours ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after suspicious activity. Vegas Security	DDoS Attack Hacking Exploited Host
🇳🇱 homeshowdomain.nl	2026-06-09 21:59:22 (17 hours ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇳🇱 homeshowdomain.nl	2026-06-08 22:00:21 (1 day ago)	Auto-ban: >3000 req/min op 2026-06-08	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-08 20:07:50 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.44.199.104 (104.199.44.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.44.199.104 (104.199.44.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 16:07:44.211078 2026] [security2:error] [pid 23739:tid 23739] [client 34.44.199.104:60258] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "knowledgepreservationalliance.com"] [uri "/.git/config"] [unique_id "aichEAAbrznZMbpbh1HzhQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 18:07:29 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.44.199.104 (104.199.44.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.44.199.104 (104.199.44.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 14:07:24.121537 2026] [security2:error] [pid 7302:tid 7313] [client 34.44.199.104:56724] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.riverwatchranch.rbarw.com"] [uri "/.git/config"] [unique_id "aicE3OEUDot_8pf-SRvyjwAAAIk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 17:28:10 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.44.199.104 (104.199.44.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.44.199.104 (104.199.44.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 13:28:04.164662 2026] [security2:error] [pid 16069:tid 16069] [client 34.44.199.104:47138] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sailyourkayak.com"] [uri "/.git/config"] [unique_id "aib7pAospxMFDCTAlwVTxwAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 16:59:15 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.44.199.104 (104.199.44.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.44.199.104 (104.199.44.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 12:59:10.131492 2026] [security2:error] [pid 2176:tid 2176] [client 34.44.199.104:41416] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "k2medianetworks.com"] [uri "/.git/config"] [unique_id "aib03ilEaS5ZX8c92ZPGeQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-08 16:20:04 (1 day ago)	suspicious request in access.log	Web App Attack
Anonymous	2026-06-08 15:23:38 (2 days ago)	34.44.199.104 - - [08/Jun/2026:15:23:38 +0000] "GET /.git/config HTTP/1.1" 404 10161 "-" "BlackBerry ... show more 34.44.199.104 - - [08/Jun/2026:15:23:38 +0000] "GET /.git/config HTTP/1.1" 404 10161 "-" "BlackBerry8300/4.2.2 Profile/MIDP-2.0 Configuration/CLDC-1.1 VendorID/107 UP.Link/6.2.3.15.0" ... show less	Brute-Force Web App Attack
Anonymous	2026-06-08 12:16:58 (2 days ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇹🇷 Threat.live	2026-06-08 09:50:04 (2 days ago)	Suspicious Connection Attempts	Brute-Force
🇺🇸 TPI-Abuse	2026-06-08 09:01:23 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.44.199.104 (104.199.44.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.44.199.104 (104.199.44.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 05:01:16.462295 2026] [security2:error] [pid 22688:tid 22688] [client 34.44.199.104:36350] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.uniquetreasuresshops.com.uniquetreasuresshoppes.com"] [uri "/.git/config"] [unique_id "aiaE3AguCrGMSc7lBHPXawAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-08 08:08:34 (2 days ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.44.199.104 (US/United States/104.1 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.44.199.104 (US/United States/104.199.44.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-08 08:00:56 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.44.199.104 (104.199.44.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.44.199.104 (104.199.44.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 04:00:51.457579 2026] [security2:error] [pid 4510:tid 4510] [client 34.44.199.104:34676] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.copierswilmington.computersraleigh.com"] [uri "/.git/config"] [unique_id "aiZ2s5XYYa43yyxcnrVJMwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-08 06:07:11 (2 days ago)	[MonJun0808:07:08.8823942026][security2:error][pid760373:tid760459][client34.44.199.104:0]ModSecurit ... show more [MonJun0808:07:08.8823942026][security2:error][pid760373:tid760459][client34.44.199.104:0]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\$mozilla\^\\|mozilla/[45]\\\\\\\\.[1-9]\\|\^mozilla/4\\\\\\\\.0\$$\"atREQUEST_HEADERS:user-agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"361\"][id\"330131\"][rev\"3\"][msg\"Atomicorp.comWAFRules:MaliciousBotBlocked$FakeMozillaUserAgentStringDetected$\"][severity\"CRITICAL\"][hostname\"ipv6.gmint.ch\"][uri\"/.git/config\"][unique_id\"aiZcDHyj2JAtsYjBWM-8LgAAAIY\"] show less	Port Scan Brute-Force Web App Attack

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.109.252.217

🇵🇱 178.183.125.51

🇺🇸 157.230.239.248

🇨🇳 118.212.121.117

🇷🇺 109.173.39.103

🇷🇺 95.84.137.185

🇺🇸 47.251.88.238

🇩🇪 46.224.239.112

🇳🇱 34.91.1.177

🇹🇼 211.23.244.250

🇹🇷 195.142.108.235

🇨🇳 180.100.198.68

🇺🇸 172.253.210.86

🇷🇺 78.24.219.71

🇺🇸 23.129.64.132

🇮🇳 20.219.39.254

🇺🇸 216.185.214.209

🇩🇪 185.246.222.24

🇺🇸 185.191.171.3

🇨🇭 179.43.168.58