JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.159.238.16

34.159.238.16 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 57%: ?

57%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	16.238.159.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.159.238.16

Whois 34.159.238.16

IP Abuse Reports for 34.159.238.16:

This IP address has been reported a total of 28 times from 12 distinct sources. 34.159.238.16 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-13 08:07:06 (1 week ago)	Trying to access config files	Web App Attack
🇨🇦 electronico	2026-06-11 23:59:18 (1 week ago)	34.159.238.16 - - [12/Jun/2026:10:52:58 +1100] "GET /program/js/jstz.min.js.map HTTP/1.1" 404 2049 " ... show more 34.159.238.16 - - [12/Jun/2026:10:52:58 +1100] "GET /program/js/jstz.min.js.map HTTP/1.1" 404 2049 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36" 34.159.238.16 - - [12/Jun/2026:10:53:11 +1100] "GET /program/js/jquery.min.js.map HTTP/1.1" 404 2388 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36" 34.159.238.16 - - [12/Jun/2026:10:53:59 +1100] "GET /plugins/jqueryui/js/jquery-ui.min.js.map HTTP/1.1" 404 2388 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36" 34.159.238.16 - - [12/Jun/2026:10:59:17 +1100] "GET /plugins/jqueryui/js/ui/version.js HTTP/1.1" 404 2388 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36" 34.159.238.16 - - [12/Jun/2026:10:59:17 +1100] "GET /plugins/jqueryui/js/ui/effects/effect-blind.js HTTP/1.1" 404 2388 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebK ... show less	Brute-Force Web App Attack
Anonymous	2026-06-11 13:07:00 (1 week ago)	Trying to access config files	Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-09 21:59:40 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇧🇪 boxed-it	2026-06-09 21:20:53 (1 week ago)	GET /.git/config (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
Anonymous	2026-06-09 16:06:51 (1 week ago)	Trying to access config files	Web App Attack
🇫🇷 masterguru	2026-06-09 00:42:27 (1 week ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 34.159.238.16 (16.238.159.34.bc.googleusercont ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 34.159.238.16 (16.238.159.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-196) show less	Hacking
🇳🇱 homeshowdomain.nl	2026-06-08 21:59:07 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-08	Web App Attack SSH Hacking
🇨🇭 TheCoon	2026-06-08 21:30:01 (1 week ago)	Automated: Credential theft attempt - JSON bomb served	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-06-08 21:13:52 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.159.238.16 (16.238.159.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.159.238.16 (16.238.159.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 17:13:45.670381 2026] [security2:error] [pid 30442:tid 30442] [client 34.159.238.16:47386] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mms-boss.net"] [uri "/.git/config"] [unique_id "aicwifRn93CNeHbcBcfbWwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇹 im	2026-06-08 20:13:05 (1 week ago)	tcp/10443	Port Scan
🇺🇸 TPI-Abuse	2026-06-08 19:36:55 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.159.238.16 (16.238.159.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.159.238.16 (16.238.159.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:36:50.631253 2026] [security2:error] [pid 13957:tid 13957] [client 34.159.238.16:57366] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mail.zmgmt.com"] [uri "/.git/config"] [unique_id "aicZ0g3Vc-sGJXxzb53ytAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-08 18:16:33 (1 week ago)	34.159.238.16 - - [09/Jun/2026:02:16:32 +0800] "GET /.git/config HTTP/1.1" 404 30445 "-" "Mozilla/5. ... show more 34.159.238.16 - - [09/Jun/2026:02:16:32 +0800] "GET /.git/config HTTP/1.1" 404 30445 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/5.0.4.3000 Chrome/47.0.2526.73 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 17:18:17 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.159.238.16 (16.238.159.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.159.238.16 (16.238.159.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 13:18:10.939391 2026] [security2:error] [pid 14936:tid 14936] [client 34.159.238.16:45876] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "uklanor.com"] [uri "/.git/config"] [unique_id "aib5UvVNbFRwYRAW_TZCNgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 16:16:31 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.159.238.16 (16.238.159.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.159.238.16 (16.238.159.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 12:16:26.596209 2026] [security2:error] [pid 16574:tid 16574] [client 34.159.238.16:36330] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.jiggaboojones.indie100.com"] [uri "/.git/config"] [unique_id "aibq2jj0v_mOBVmxCYA7dQAAAEc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇦 2620:171:2d:f003:9999::178

🇬🇧 193.163.125.19

🇮🇳 122.168.127.153

🇹🇷 93.114.98.136

🇧🇩 165.101.222.21

🇺🇸 162.216.149.31

🇱🇾 102.203.197.6

🇺🇸 66.132.224.238

🇹🇼 211.75.210.109

🇳🇱 91.92.40.4

🇳🇱 80.82.77.33

🇩🇪 69.5.169.158

🇺🇸 23.80.153.115

🇨🇳 183.56.216.153

🇮🇳 182.95.217.182

🇮🇳 103.204.187.18

🇱🇹 81.30.98.158

🇭🇰 58.152.42.174

🇺🇸 20.64.105.155

🇺🇸 2a09:bac1:7680:1048::16b:135