JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.198.16.212

104.198.16.212 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	212.16.198.104.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Council Bluffs, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.198.16.212

Whois 104.198.16.212

IP Abuse Reports for 104.198.16.212:

This IP address has been reported a total of 24 times from 24 distinct sources. 104.198.16.212 was first reported on June 24th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-25 05:01:46 (2 hours ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇧🇪 cmbplf	2026-06-24 12:09:18 (19 hours ago)	48.805 requests in 1 hour (3mos1w5d)	Brute-Force Bad Web Bot
🇺🇸 Lezetho	2026-06-24 12:00:07 (19 hours ago)	DDoS, WebSpam, Web Attack, and Brute-force blocked by Cloudflare	DDoS Attack Email Spam Hacking Brute-Force
🇺🇸 Lee Daniel	2026-06-24 11:55:25 (20 hours ago)	104.198.16.212 - - [24/Jun/2026:07:55:23 -0400] "GET /wp-includes/id3/license.txt/web/wp-includes/wl ... show more 104.198.16.212 - - [24/Jun/2026:07:55:23 -0400] "GET /wp-includes/id3/license.txt/web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 21181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 104.198.16.212 - - [24/Jun/2026:07:55:24 -0400] "GET /wp-includes/id3/license.txt/wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 21187 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 104.198.16.212 - - [24/Jun/2026:07:55:24 -0400] "GET /wp-includes/id3/license.txt/wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 21175 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 104.198.16.212 - - [24/Jun/2026:07:55:24 -0400] "GET /wp-includes/id3/license.txt/2020/wp-includes/wlwmanifest.xml HTTP/1.1" 404 21182 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95 ... show less	DDoS Attack Web Spam Email Spam Port Scan Brute-Force Bad Web Bot Web App Attack
🇩🇪 Lino Project	2026-06-24 11:46:33 (20 hours ago)	CrowdSec abuse IP report (host SRV-2) Scenario: crowdsecurity/http-probing	Hacking
🇩🇪 updown.io	2026-06-24 11:42:39 (20 hours ago)	{"level":"info","ts":1782301339.101147,"logger":"http.log.access.log1","msg":"handled request","requ ... show more {"level":"info","ts":1782301339.101147,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"104.198.16.212","remote_port":"65311","client_ip":"104.198.16.212","proto":"HTTP/1.1","method":"GET","host":"status-c0209-9f6b56f8-3836-41ee-a960-5cf457663d16.provacy.com","uri":"/","headers":{"Keep-Alive":["300"],"Connection":["keep-alive"],"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36"],"Accept-Language":["en-US,en;q=0.5"],"Accept":["text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8"]}},"bytes_read":0,"user_id":"","duration":0.000106292,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://status-c0209-9f6b56f8-3836-41ee-a960-5cf457663d16.provacy.com/"],"Content-Type":[]}} {"level":"info","ts":1782301339.3435094,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"104.198.16.212","remote_port":"563 ... show less	DDoS Attack Web App Attack
🇳🇿 Tripwire	2026-06-24 11:40:46 (20 hours ago)	Scanning for exploits - //wp-includes/ID3/license.txt	Web App Attack
🇵🇱 webadmin	2026-06-24 11:38:28 (20 hours ago)	Fail2Ban Cluster BAN	Brute-Force Web App Attack
🇮🇹 mgarofano80	2026-06-24 11:32:38 (20 hours ago)		Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-06-24 11:31:31 (20 hours ago)	104.198.16.212 - - [24/Jun/2026:13:31:23 +0200] "POST //xmlrpc.php HTTP/1.1" 200 7969 "-" "Mozilla/5 ... show more 104.198.16.212 - - [24/Jun/2026:13:31:23 +0200] "POST //xmlrpc.php HTTP/1.1" 200 7969 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 104.198.16.212 - - [24/Jun/2026:13:31:25 +0200] "POST //xmlrpc.php HTTP/1.1" 200 7969 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 104.198.16.212 - - [24/Jun/2026:13:31:28 +0200] "POST //xmlrpc.php HTTP/1.1" 200 7969 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" show less	Hacking Web App Attack
🇩🇪 pltcldvlpr	2026-06-24 11:29:29 (20 hours ago)	CMS/framework probe: 104.198.16.212 - - [24/Jun/2026:13:29:28 +0200] "GET //wp-includes/ID3/license. ... show more CMS/framework probe: 104.198.16.212 - - [24/Jun/2026:13:29:28 +0200] "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" asn=396982 org="Google LLC" country=US ... show less	Web App Attack
🇨🇭 backslash	2026-06-24 11:27:00 (20 hours ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇳🇴 jad-abuse	2026-06-24 11:21:24 (20 hours ago)	ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: xmlrpc. O ... show more ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: xmlrpc. Observed by 1 sensor(s); 14 hits. show less	Brute-Force Web App Attack
🇦🇹 mindrider	2026-06-24 11:16:44 (20 hours ago)	104.198.16.212 - - [24/Jun/2026:13:16:42 +0200] "GET //xmlrpc.php?rsd HTTP/1.1" 404 2968 "-" "Mozill ... show more 104.198.16.212 - - [24/Jun/2026:13:16:42 +0200] "GET //xmlrpc.php?rsd HTTP/1.1" 404 2968 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "-" 104.198.16.212 - - [24/Jun/2026:13:16:42 +0200] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 2968 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" "-" ... show less	Brute-Force Web App Attack
Anonymous	2026-06-24 11:10:05 (20 hours ago)	IP banned by Fail2Ban in jail wordpress	Web App Attack Brute-Force Bad Web Bot

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 103.61.44.43

🇱🇹 91.224.92.17

🇬🇧 35.203.211.142

🇨🇦 2607:f8b0:4023:1801::12a

🇧🇴 190.129.122.185

🇩🇪 185.254.75.40

🇬🇧 185.247.137.70

🇺🇸 159.203.116.195

🇮🇳 154.221.35.72

🇨🇳 121.227.31.13

🇨🇳 121.224.78.164

🇧🇩 103.183.62.2

🇫🇮 2.26.23.207

🇳🇱 204.76.203.49

🇬🇧 195.96.139.237

🇬🇧 195.96.139.99

🇬🇧 185.247.137.250

🇫🇷 185.177.72.24

🇺🇸 143.42.164.97

🇨🇳 111.40.181.23