JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.89.168.109

34.89.168.109 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 85%: ?

85%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	109.168.89.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.89.168.109

Whois 34.89.168.109

IP Abuse Reports for 34.89.168.109:

This IP address has been reported a total of 28 times from 15 distinct sources. 34.89.168.109 was first reported on June 25th 2024, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 YF	2026-06-10 05:10:11 (12 hours ago)	WordPress content enumeration	Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-09 22:00:24 (19 hours ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇷🇺 DZBOT	2026-06-09 12:44:45 (1 day ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 19:39:57 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.89.168.109 (109.168.89.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.89.168.109 (109.168.89.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:39:53.552030 2026] [security2:error] [pid 12997:tid 12997] [client 34.89.168.109:58650] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.appleconsultant.micahgartman.com"] [uri "/.git/config"] [unique_id "aicaiUNwohPWdLoeW35hFwAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-08 18:09:38 (1 day ago)	[MonJun0820:09:31.1444572026][security2:error][pid1211262:tid1211504][client34.89.168.109:0]ModSecur ... show more [MonJun0820:09:31.1444572026][security2:error][pid1211262:tid1211504][client34.89.168.109:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"reddragonrecords.ch.81-17-25-250.cpanel.site\"][uri\"/.git/config\"][unique_id\"aicFWzsDvGq9M6G1YxIQ-QAAAE8\"] show less	Hacking Web App Attack
🇩🇪 big-cloud.nl	2026-06-08 16:57:38 (2 days ago)	Try to access /.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 16:55:48 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.89.168.109 (109.168.89.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.89.168.109 (109.168.89.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 12:55:45.166812 2026] [security2:error] [pid 7304:tid 7326] [client 34.89.168.109:35952] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.bakmail.net"] [uri "/.git/config"] [unique_id "aib0EU48yf7KyJw7-rRmEAAAAE8"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇴 INTEQ	2026-06-08 14:52:41 (2 days ago)	Web attack from 34.89.168.109	Web App Attack
🇫🇷 masterguru	2026-06-08 14:49:15 (2 days ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.89.168.109 (DE/Germany/109.168.89. ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 34.89.168.109 (DE/Germany/109.168.89.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-08 13:51:13 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.89.168.109 (109.168.89.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.89.168.109 (109.168.89.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 09:51:09.340483 2026] [security2:error] [pid 14473:tid 14473] [client 34.89.168.109:59612] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "belgium-boat-registration.com"] [uri "/.git/config"] [unique_id "aibIzdFO1eCbbe3YfqGQOwAAAHk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 12:42:43 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.89.168.109 (109.168.89.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.89.168.109 (109.168.89.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 08:42:37.519687 2026] [security2:error] [pid 4820:tid 4820] [client 34.89.168.109:53654] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brychta.net"] [uri "/.git/config"] [unique_id "aia4vYNTTEVCVmstYOrL8gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 as211431.net	2026-06-08 12:33:50 (2 days ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config UA: Wget/1.9 cvs-stable (Red Hat modified) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 jfz-abuse	2026-06-08 10:55:36 (2 days ago)	fail2ban: apache-filepath-recon ...	Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 10:48:43 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.89.168.109 (109.168.89.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.89.168.109 (109.168.89.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 06:48:39.098989 2026] [security2:error] [pid 1723:tid 1723] [client 34.89.168.109:51074] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "twogocamping.com"] [uri "/.git/config"] [unique_id "aiaeBzOeh1UPJiALbXav3wAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 10:00:51 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 34.89.168.109 (109.168.89.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.89.168.109 (109.168.89.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 06:00:44.398691 2026] [security2:error] [pid 13362:tid 13362] [client 34.89.168.109:53766] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "californiacbcdelegation.com"] [uri "/.git/config"] [unique_id "aiaSzCzF34hQcE8Vzt0NggAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.116.107.222

🇧🇷 201.33.41.70

🇺🇸 66.132.186.218

🇷🇴 37.35.32.138

🇻🇳 210.211.97.224

🇬🇧 193.163.125.100

🇺🇸 193.37.33.130

🇨🇳 180.213.44.242

🇧🇷 170.80.65.140

🇺🇸 162.216.149.249

🇨🇳 115.53.242.110

🇱🇺 46.151.182.45

🇰🇷 43.164.190.161

🇵🇰 39.34.145.250

🇨🇦 20.151.134.71

🇺🇸 20.83.34.14

🇭🇷 161.53.251.21

🇨🇳 106.117.111.121

🇧🇪 34.53.247.80

🇩🇪 34.32.85.42