JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.79.154.21

34.79.154.21 was found in our database!

This IP was reported 154 times. Confidence of Abuse is 51%: ?

51%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	21.154.79.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.79.154.21

Whois 34.79.154.21

IP Abuse Reports for 34.79.154.21:

This IP address has been reported a total of 154 times from 59 distinct sources. 34.79.154.21 was first reported on July 2nd 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Cloud86 B.V.	2026-06-20 15:39:07 (1 hour ago)	categories: DDoS Attack	DDoS Attack
🇬🇷 setupgr	2026-06-20 10:59:42 (5 hours ago)	(mod_security) mod_security (id:11000011) triggered by 34.79.154.21 (BE/Belgium/Brussels Capital/Bru ... show more (mod_security) mod_security (id:11000011) triggered by 34.79.154.21 (BE/Belgium/Brussels Capital/Brussels/-/[AS396982 GOOGLE-CLOUD-PLATFORM]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 20 13:59:41.120383 2026] [security2:error] [pid 202885:tid 202915] [client 34.79.154.21:1024] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 21.154.79.34.bc.googleusercontent.com"] [severity "CRITICAL"] [hostname "ftiaxtomonosou.gr"] [uri "/%CE%BA%CE%B1%CF%84%CE%B7%CE%B3%CE%BF%CF%81%CE%B9%CE%B5%CF%82-%CF%80%CF%81%CE%BF%CE%B9%CE%BF%CE%BD%CF%84%CF%89%CE%BD-%CE%B4%CF%89%CE%BC%CE%B1%CF%84%CE%B9%CE%BF%CF%85/%CE%B2%CE%B9%CE%B2%CE%BB%CE%B9%CE%BF%CE%B8%CE%AE%CE%BA%CE%B7"] [unique_id "ajZynErlp52aw72Tw8e9WAAAAQM"] show less	Port Scan
🇫🇷 Version Net	2026-06-19 00:34:10 (1 day ago)	IPS Detection: MS.IIS.ShortName.Vulnerability.Scanner	Hacking
🇬🇷 setupgr	2026-06-18 18:06:42 (1 day ago)	(mod_security) mod_security (id:11000011) triggered by 34.79.154.21 (BE/Belgium/Brussels Capital/Bru ... show more (mod_security) mod_security (id:11000011) triggered by 34.79.154.21 (BE/Belgium/Brussels Capital/Brussels/-/[AS396982 GOOGLE-CLOUD-PLATFORM]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 18 21:06:39.220575 2026] [security2:error] [pid 3299840:tid 3299973] [client 34.79.154.21:1024] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 21.154.79.34.bc.googleusercontent.com"] [severity "CRITICAL"] [hostname "ftiaxtomonosou.gr"] [uri "/"] [unique_id "ajQzrs_FiMTLiRjcoVqREwAAAVM"] show less	Port Scan
🇬🇷 setupgr	2026-06-18 08:10:43 (2 days ago)	(mod_security) mod_security (id:11000011) triggered by 34.79.154.21 (BE/Belgium/Brussels Capital/Bru ... show more (mod_security) mod_security (id:11000011) triggered by 34.79.154.21 (BE/Belgium/Brussels Capital/Brussels/-/[AS396982 GOOGLE-CLOUD-PLATFORM]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 18 11:10:39.352668 2026] [security2:error] [pid 2280080:tid 2280127] [client 34.79.154.21:37888] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 21.154.79.34.bc.googleusercontent.com"] [severity "CRITICAL"] [hostname "ftiaxtomonosou.gr"] [uri "/"] [unique_id "ajOn_8sskNLCXd8cDXTupwAAABQ"] show less	Port Scan
🇬🇷 setupgr	2026-06-17 10:29:04 (3 days ago)	(mod_security) mod_security (id:11000011) triggered by 34.79.154.21 (BE/Belgium/Brussels Capital/Bru ... show more (mod_security) mod_security (id:11000011) triggered by 34.79.154.21 (BE/Belgium/Brussels Capital/Brussels/-/[AS396982 GOOGLE-CLOUD-PLATFORM]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 17 13:28:58.647294 2026] [security2:error] [pid 2210293:tid 2210399] [client 34.79.154.21:2048] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 21.154.79.34.bc.googleusercontent.com"] [severity "CRITICAL"] [hostname "asteriassantorini.com"] [uri "/"] [unique_id "ajJ26tMtn8QwdXQy9m7jfQAAAU4"] show less	Port Scan
🇬🇷 setupgr	2026-06-16 06:19:32 (4 days ago)	(mod_security) mod_security (id:11000011) triggered by 34.79.154.21: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:11000011) triggered by 34.79.154.21: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Tue Jun 16 09:19:28.205191 2026] [security2:error] [pid 2210176:tid 2210244] [client 34.79.154.21:1024] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 21.154.79.34.bc.googleusercontent.com"] [severity "CRITICAL"] [hostname "fashionfragonard.gr"] [uri "/"] [unique_id "ajDq8I0pb6dkgQfaMdBahgAAAQA"] show less	Port Scan
🇩🇪 grassau.com	2026-06-11 12:26:39 (1 week ago)	Port Scan detected from 34.79.154.21 (BE/Belgium/Brussels Capital/Brussels/21.154.79.34.bc.googleu ... show more Port Scan detected from 34.79.154.21 (BE/Belgium/Brussels Capital/Brussels/21.154.79.34.bc.googleusercontent.com). show less	Port Scan
🇵🇱 sefinek.net	2026-06-08 22:20:35 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from BE. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoi ... show more Triggered Cloudflare WAF (firewallCustom) from BE. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoint: / \| UA: Windows Microsoft Windows 11 Pro ZTunnel/1.0 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇷🇺 genokrad	2026-06-02 13:18:56 (2 weeks ago)	Website scan TCP 80/443 "/login" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KH"	Port Scan Web App Attack
🇬🇧 Oakley	2026-06-01 06:19:29 (2 weeks ago)	(antiscrape_rule) Web application abuse detected 34.79.154.21 (BE/Belgium/21.154.79.34.bc.googleuser ... show more (antiscrape_rule) Web application abuse detected 34.79.154.21 (BE/Belgium/21.154.79.34.bc.googleusercontent.com): 5 in the last 900 secs show less	Hacking
🇩🇪 EGP Abuse Dept	2026-05-29 15:05:16 (3 weeks ago)	Scanning for web/db/file exploits on brederaad-010.nl	SQL Injection Bad Web Bot Web App Attack
🇭🇺 kranem	2026-05-27 12:00:07 (3 weeks ago)	Triggered Cloudflare WAF from BE. Action taken: LINK_MAZE_INJECTED ASN: 396982 (Google LLC) Protocol ... show more Triggered Cloudflare WAF from BE. Action taken: LINK_MAZE_INJECTED ASN: 396982 (Google LLC) Protocol: HTTP/1.1 (GET method) Endpoint: / Timestamp: 2026-05-27T11:21:00Z User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.197 Safari/537.36 show less	Bad Web Bot
🇵🇱 sefinek.net	2026-05-21 13:45:15 (4 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from BE. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoi ... show more Triggered Cloudflare WAF (firewallCustom) from BE. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoint: / \| UA: Windows Microsoft Windows 11 Pro ZTunnel/1.0 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇷🇺 genokrad	2026-05-20 07:46:31 (1 month ago)	Website scan TCP 80/443 "/login" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KH"	Port Scan Web App Attack

Showing 1 to 15 of 154 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 212.32.76.48

🇮🇶 169.224.59.118

🇳🇱 92.112.126.183

🇲🇦 41.141.84.223

🇺🇸 23.23.214.190

🇧🇷 172.71.163.149

🇻🇳 160.191.165.249

🇨🇳 116.179.33.201

🇮🇳 103.99.199.63

🇹🇭 49.231.31.226

🇻🇳 203.171.29.193

🇨🇳 183.6.187.229

🇵🇰 182.189.61.120

🇺🇸 172.234.192.12

🇷🇴 92.118.39.213

🇵🇱 91.226.70.218

🇺🇸 47.251.111.228

🇺🇸 45.79.109.193

🇭🇰 152.32.215.224

🇺🇸 100.29.192.13