JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.159.60.167

34.159.60.167 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 85%: ?

85%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	167.60.159.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.159.60.167

Whois 34.159.60.167

IP Abuse Reports for 34.159.60.167:

This IP address has been reported a total of 14 times from 14 distinct sources. 34.159.60.167 was first reported on June 13th 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 Inartis	2026-06-15 04:03:02 (6 hours ago)	34.159.60.167 - - [15/Jun/2026:06:03:01 +0200] "GET /server/actuator/heapdump HTTP/1.1" 302 452 "-" ... show more 34.159.60.167 - - [15/Jun/2026:06:03:01 +0200] "GET /server/actuator/heapdump HTTP/1.1" 302 452 "-" "Mozilla/5.0 (Linux; Android 9; LM-G820) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-15 02:30:01 (8 hours ago)	125 requests with url.path config.yml 116 requests with url.path config.json	Brute-Force Bad Web Bot
🇩🇪 grassau.com	2026-06-15 01:05:57 (9 hours ago)	Port Scan detected from 34.159.60.167 (DE/Germany/Hesse/Frankfurt am Main/167.60.159.34.bc.googleu ... show more Port Scan detected from 34.159.60.167 (DE/Germany/Hesse/Frankfurt am Main/167.60.159.34.bc.googleusercontent.com). show less	Port Scan
🇪🇸 gnom4ik	2026-06-14 23:15:32 (11 hours ago)	ban-reviewer auto report; ip=34.159.60.167; scenario=crowdsecurity/http-bad-user-agent; verdict=vali ... show more ban-reviewer auto report; ip=34.159.60.167; scenario=crowdsecurity/http-bad-user-agent; verdict=valid_ban; confidence=0.92; categories=19; active_decisions=4; lookback_decisions=4; nginx_requests=0; appsec_matches=0; auth_events=0; kernel_events=0; signals=ip_decision_count_high; ip_active_decision_count_high show less	Bad Web Bot
Anonymous	2026-06-14 20:56:51 (13 hours ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇪🇸 robotstxt	2026-06-14 18:09:37 (16 hours ago)	34.159.60.167 - - [14/Jun/2026:18:09:33 +0000] "GET /mailer.zip HTTP/1.1" 404 178 "-" "Mozilla/4.0 ( ... show more 34.159.60.167 - - [14/Jun/2026:18:09:33 +0000] "GET /mailer.zip HTTP/1.1" 404 178 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows 98; PalmSource/hspr-H102; Blazer/4.0) 16;320x320" "-" 34.159.60.167 - - [14/Jun/2026:18:09:33 +0000] "GET /mail.zip HTTP/1.1" 404 178 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/33.0.1750.154 Safari/537.36 OPR/20.0.1387.91" "-" 34.159.60.167 - - [14/Jun/2026:18:09:36 +0000] "GET /mailer/sendgrid.js HTTP/1.1" 404 178 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.80 Safari/537.36" "-" 34.159.60.167 - - [14/Jun/2026:18:09:36 +0000] "GET /mailer/sendgrid.py HTTP/1.1" 404 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.80 Safari/537.36" "-" 34.159.60.167 - - [14/Jun/2026:18:09:36 +0000] "GET /mail/sendgrid.py HTTP/1.1" 404 178 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, lik ... show less	Bad Web Bot
🇫🇷 ISPLtd	2026-06-14 06:59:08 (1 day ago)	Jun 14 03:59:07 34.159.60.167 TCP SPT=53486 DPT=443 SYN Jun 14 03:59:07 34.159.60.167 TCP SPT=53492 ... show more Jun 14 03:59:07 34.159.60.167 TCP SPT=53486 DPT=443 SYN Jun 14 03:59:07 34.159.60.167 TCP SPT=53492 DPT=443 SYN Jun 14 03:59:07 34.159.60.167 TCP SPT=53498 DPT=443 ... show less	DDoS Attack
🇫🇷 Octopuce	2026-06-14 05:46:51 (1 day ago)	Aggressive web search of vulnerable pages: /secrets/aws.json /docker-compose.yml /docker-compose.pro ... show more Aggressive web search of vulnerable pages: /secrets/aws.json /docker-compose.yml /docker-compose.prod.yml /docker-compose.production.yml /docke ... show less	Web App Attack
🇺🇸 mnsf	2026-06-14 04:08:36 (1 day ago)	Too many Status 40X (22) Scanning/Probing (61) Request Overload (437)	Brute-Force Web App Attack
🇮🇹 VHosting	2026-06-14 03:10:03 (1 day ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 kosada.com	2026-06-14 02:44:48 (1 day ago)	Web vulnerability probing: /actuator/threaddump	Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 02:36:02 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 34.159.60.167 (167.60.159.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210730) triggered by 34.159.60.167 (167.60.159.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 22:35:54.316430 2026] [security2:error] [pid 28781:tid 28787] [client 34.159.60.167:55584] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vnonnonprofit.org\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vnonnonprofit.org"] [uri "/.config/gcloud/credentials.db"] [unique_id "ai4TinALHeXtR-d6lxcf7wAAAEM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 WeCloudit-Anti-Abuse	2026-06-14 02:30:02 (1 day ago)	SPAM - Bruteforce Attack - DDOS 2	Email Spam Brute-Force
🇩🇪 getdk	2026-06-13 22:25:35 (1 day ago)	[Sat Jun 13 22:25:35.051576 2026] [security2:error] [pid 3630970] [client 34.159.60.167:42900] [clie ... show more [Sat Jun 13 22:25:35.051576 2026] [security2:error] [pid 3630970] [client 34.159.60.167:42900] [client 34.159.60.167] ModSecurity: Access denied with code 403 (ph ... show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 103.241.51.126

🇭🇰 199.45.154.191

🇨🇴 185.28.217.123

🇹🇭 182.232.183.187

🇺🇬 102.218.89.110

🇪🇬 102.190.131.126

🇳🇱 91.92.40.36

🇯🇴 87.238.130.203

🇷🇴 80.94.92.187

🇿🇦 20.87.219.67

🇹🇷 2.27.78.111

🇫🇮 185.202.108.108

🇺🇸 184.105.247.211

🇺🇸 157.230.94.153

🇸🇦 128.234.14.16

🇮🇳 122.168.123.73

🇧🇬 91.92.40.217

🇺🇸 52.20.198.190

🇬🇧 45.82.76.131

🇺🇸 34.145.168.159