JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.16.182.21

34.16.182.21 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	21.182.16.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Las Vegas, Nevada

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.16.182.21

Whois 34.16.182.21

IP Abuse Reports for 34.16.182.21:

This IP address has been reported a total of 34 times from 25 distinct sources. 34.16.182.21 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-06-12 03:28:52 (1 week ago)	766 requests with url.path *.env	Brute-Force Bad Web Bot
🇺🇸 jormaster3k	2026-06-12 03:20:14 (1 week ago)	Attack against Apache (too many 404s)	Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-11 19:00:09 (1 week ago)	categories: DDoS Attack	DDoS Attack
🇫🇷 masterguru	2026-06-11 10:49:04 (1 week ago)	BAD BOT - Detected and Blocked.. Matched phrase "YaBrowser" at REQUEST_HEADERS:User-Agent. (1100000- ... show more BAD BOT - Detected and Blocked.. Matched phrase "YaBrowser" at REQUEST_HEADERS:User-Agent. (1100000-193) show less	Bad Web Bot
🇩🇪 XICTRON	2026-06-11 06:05:03 (1 week ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
🇷🇺 DZBOT	2026-06-11 04:37:10 (1 week ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇳🇱 Site.eu	2026-06-11 03:18:53 (1 week ago)	Excessive multi-domain requests	Brute-Force
🇫🇷 masterguru	2026-06-11 00:54:48 (1 week ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-201)	Hacking Web App Attack
🇩🇪 enjoyably	2026-06-10 18:16:56 (1 week ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇩🇪 updown.io	2026-06-10 01:34:49 (1 week ago)	{"level":"info","ts":1781055286.627241,"logger":"http.log.access.log1","msg":"handled request","requ ... show more {"level":"info","ts":1781055286.627241,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.16.182.21","remote_port":"47090","client_ip":"34.16.182.21","proto":"HTTP/1.1","method":"GET","host":"wvupdate.rmlsrqponmlkjihgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/.env.prod","headers":{"User-Agent":["Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2859.0 Safari/537.36"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]}},"bytes_read":0,"user_id":"","duration":0.000201805,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://wvupdate.rmlsrqponmlkjihgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/.env.prod"],"Content-Type":[]}} {"level":"info","ts":1781055286.6308718,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.16.182.21","remote_port":"47078","client_ip" ... show less	DDoS Attack Web App Attack
🇳🇴 jad-abuse	2026-06-09 22:55:58 (1 week ago)	ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: env_probe. O ... show more ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: env_probe. Observed by 1 sensor(s); 151 hits. show less	Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-09 22:04:22 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇩🇪 FeG Deutschland	2026-06-09 21:32:54 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
Anonymous	2026-06-09 16:44:48 (1 week ago)	Aggressive web scan	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 16:33:19 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.16.182.21 (21.182.16.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.16.182.21 (21.182.16.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 12:33:13.987835 2026] [security2:error] [pid 27052:tid 27052] [client 34.16.182.21:58612] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chicagowca.com"] [uri "/.env"] [unique_id "aihASVYFDNnMy_ThvT5Q9wAAABk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.90.32.158

🇨🇳 221.224.133.98

🇰🇷 218.158.147.96

🇸🇪 178.20.215.62

🇺🇸 165.154.255.26

🇭🇰 160.202.47.241

🇰🇷 112.164.234.246

🇮🇹 4.232.80.255

🇺🇸 2607:f8b0:400c:c0a::128

🇺🇸 207.90.244.25

🇬🇧 193.32.209.244

🇩🇰 185.129.62.63

🇮🇹 172.253.12.149

🇨🇳 117.34.85.168

🇬🇧 81.19.219.254

🇷🇴 80.94.92.169

🇧🇬 78.128.113.74

🇬🇧 31.14.254.68

🇺🇸 2604:a880:400:d1:0:4:9e90:e001

🇺🇸 205.210.31.79