JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.16.148.164

34.16.148.164 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 69%: ?

69%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	164.148.16.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Las Vegas, Nevada

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.16.148.164

Whois 34.16.148.164

IP Abuse Reports for 34.16.148.164:

This IP address has been reported a total of 13 times from 11 distinct sources. 34.16.148.164 was first reported on June 13th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-14 22:03:58 (2 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-13. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-13 16:15:53 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.16.148.164 (164.148.16.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.16.148.164 (164.148.16.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 12:15:47.597723 2026] [security2:error] [pid 17216:tid 17216] [client 34.16.148.164:46562] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "joegrand.com"] [uri "/.env.prod.bak"] [unique_id "ai2CM-r9NBi2Ts_04k8BiwAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-06-13 15:42:01 (3 days ago)	block ruleset WAF detection and high score on abuseIPDB 149EB1B42C242111FADBBC2EF8F90219570691E1	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-13 14:45:56 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.16.148.164 (164.148.16.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.16.148.164 (164.148.16.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 10:45:50.314487 2026] [security2:error] [pid 9945:tid 9945] [client 34.16.148.164:41602] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.flicra140.org"] [uri "/.env.demo"] [unique_id "ai1tHpckiJ3zpCpIDuAe2wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-13 14:35:31 (3 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "YaBrowser" at REQUEST_HEADERS:User-Agent. (1100000- ... show more BAD BOT - Detected and Blocked.. Matched phrase "YaBrowser" at REQUEST_HEADERS:User-Agent. (1100000-201) show less	Bad Web Bot
🇳🇱 ConsulHosting	2026-06-13 13:28:26 (3 days ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇺🇸 mnsf	2026-06-13 12:06:10 (3 days ago)	Abuse Detected (80)	Brute-Force Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-13 11:00:34 (3 days ago)	Blocked by CSF 13 firewall - Rule: US/United States/164.148.16.34.bc.googleusercontent.com	Web App Attack
🇩🇪 updown.io	2026-06-13 09:09:55 (3 days ago)	{"level":"info","ts":1781341791.8593044,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781341791.8593044,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.16.148.164","remote_port":"59776","client_ip":"34.16.148.164","proto":"HTTP/1.1","method":"GET","host":"aupdate.yxwvuupdate.mlkjihgfehgfedgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/src/.env.production","headers":{"User-Agent":["Mozilla/5.0 (Linux; Android 9; Pixel 3a) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]}},"bytes_read":0,"user_id":"","duration":0.000085013,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://aupdate.yxwvuupdate.mlkjihgfehgfedgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/src/.env.production"],"Content-Type":[]}} {"level":"info","ts":1781341791.8608594,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34 ... show less	DDoS Attack Web App Attack
🇩🇪 4server	2026-06-13 06:18:43 (3 days ago)	[SatJun1308:18:41.4965872026][security2:error][pid684912:tid685046][client34.16.148.164:0]ModSecurit ... show more [SatJun1308:18:41.4965872026][security2:error][pid684912:tid685046][client34.16.148.164:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.ponzellini.ch.136-243-54-122.cpanel.site\"][uri\"/.env.uat\"][unique_id\"aiz2Qb1EytuDZdoNil3MTQAAARc\"] show less	Port Scan Brute-Force Web App Attack
🇮🇹 VHosting	2026-06-13 04:45:04 (3 days ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 04:41:30 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.16.148.164 (164.148.16.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.16.148.164 (164.148.16.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 00:41:23.002332 2026] [security2:error] [pid 3593:tid 3593] [client 34.16.148.164:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.abdulhameeds.art"] [uri "/server/.env.local"] [unique_id "aizfc1jOgKWY3evgnzRnPAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 todix	2026-06-13 03:15:23 (3 days ago)	Web App Attack Exploid from 34.16.148.164	Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 183.179.215.17

🇨🇦 216.157.41.71

🇧🇷 205.210.31.205

🇻🇪 201.249.89.102

🇨🇳 120.210.34.15

🇨🇳 112.0.141.92

🇵🇱 83.168.89.221

🇭🇷 82.21.209.42

🇳🇱 77.83.39.77

🇺🇸 52.188.185.84

🇸🇬 47.82.55.225

🇸🇬 47.82.14.121

🇷🇺 46.39.239.86

🇸🇬 43.153.206.40

🇺🇸 20.161.60.20

🇬🇧 2a06:4880:c000::f4

🇻🇳 180.93.32.181

🇨🇳 180.76.61.232

🇺🇸 170.9.17.20

🇩🇪 167.94.146.67