JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.179.238.21

34.179.238.21 was found in our database!

This IP was reported 46 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	21.238.179.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.179.238.21

Whois 34.179.238.21

IP Abuse Reports for 34.179.238.21:

This IP address has been reported a total of 46 times from 37 distinct sources. 34.179.238.21 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-06-12 23:39:15 (1 week ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-06-12 09:03:17 (1 week ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: DE, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: DE, Attack patterns: WordPress scanning, Backup file probing, Cloud secrets probing show less	Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-12 02:55:54 (2 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 4server	2026-06-12 01:44:34 (2 weeks ago)	[FriJun1203:44:31.4784612026][security2:error][pid2923515:tid2923624][client34.179.238.21:0]ModSecur ... show more [FriJun1203:44:31.4784612026][security2:error][pid2923515:tid2923624][client34.179.238.21:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.viaggi.maxay.ch\"][uri\"/actuator/threaddump\"][unique_id\"aitkf_8WH99PL6Aots3tuAAAAQE\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 mccsoft.io	2026-06-12 01:40:32 (2 weeks ago)	Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). So ... show more Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). Source matched a blocked-path security rule (jail nginx-444); server returned HTTP 444 (connection closed without response). TCP three-way handshake completed (full HTTP request received). show less	Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-06-11 21:29:22 (2 weeks ago)	34.179.238.21 - - [12/Jun/2026:00:29:19 +0300] "GET /config.env HTTP/1.1" 404 3292 "-" "Mozilla/5.0 ... show more 34.179.238.21 - - [12/Jun/2026:00:29:19 +0300] "GET /config.env HTTP/1.1" 404 3292 "-" "Mozilla/5.0 (Linux; Android 9; LM-G710VM) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" 34.179.238.21 - - [12/Jun/2026:00:29:19 +0300] "GET /secrets.env HTTP/1.1" 404 3290 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6; rv:57.0) Gecko/20100101 Firefox/57.0" ... show less	Web App Attack
Anonymous	2026-06-11 18:48:24 (2 weeks ago)	Scenarios: http-admin-interface-probing, http-bad-user-agent, http-crawl-non_statics, http-probing, ... show more Scenarios: http-admin-interface-probing, http-bad-user-agent, http-crawl-non_statics, http-probing, http-sensitive-files, http-technology-probing Total requests: 382 [11/Jun/2026:18:48:23 +0000] [Client: 34.179.238.21] GET [404] "/actuator/httptrace" User-Agent: "Mozilla/5.0 (Linux; Android 7.0; Redmi Note 4 Build/NRD90M) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Mobile Safari/537.36" [11/Jun/2026:18:48:23 +0000] [Client: 34.179.238.21] GET [404] "/actuator/sessions" User-Agent: "Mozilla/5.0 (Linux; Android 6.0.1; MI 4W) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" [11/Jun/2026:18:48:23 +0000] [Client: 34.179.238.21] GET [404] "/actuator/threaddump" User-Agent: "Mozilla/5.0 (Linux; Android 9; G8341) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" show less	Brute-Force Web App Attack
🇪🇸 Francisco Vallejo	2026-06-11 18:31:53 (2 weeks ago)	[Thu Jun 11 20:31:52.498323 2026] [authz_core:error] [pid 3333068:tid 130565990770368] [client 34.17 ... show more [Thu Jun 11 20:31:52.498323 2026] [authz_core:error] [pid 3333068:tid 130565990770368] [client 34.179.238.21:34484] AH01630: client denied by server configuration: proxy:https://localhost:9090/actuator/auditevents [Thu Jun 11 20:31:52.501766 2026] [authz_core:error] [pid 3245925:tid 130567427307200] [client 34.179.238.21:34496] AH01630: client denied by server configuration: proxy:https://localhost:9090/app/actuator/env [Thu Jun 11 20:31:52.507149 2026] [authz_core:error] [pid 3245925:tid 130567039334080] [client 34.179.238.21:34510] AH01630: client denied by server configuration: proxy:https://localhost:9090/app/actuator/configprops [Thu Jun 11 20:31:52.515212 2026] [authz_core:error] [pid 3333068:tid 130567452485312] [client 34.179.238.21:34524] AH01630: client denied by server configuration: proxy:https://localhost:9090/app/actuator/logfile [Thu Jun 11 20:31:52.519991 2026] [authz_core:error] [pid 3245925:tid 130567022548672] [client 34.179.238.21:34530] AH01630: client denied by se ... show less	Brute-Force SSH
Anonymous	2026-06-11 13:48:32 (2 weeks ago)	Malicious activity detected	Hacking Web App Attack
🇩🇪 updown.io	2026-06-11 13:41:21 (2 weeks ago)	{"level":"info","ts":1781185280.8622577,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781185280.8622577,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.179.238.21","remote_port":"40482","client_ip":"34.179.238.21","proto":"HTTP/1.1","method":"GET","host":"baupdate.update.rqponqponmlkjihgbwwwc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/actuator/heapdump","headers":{"User-Agent":["Mozilla/5.0 (Linux; Android 8.0.0; F5321) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 Mobile Safari/537.36"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]}},"bytes_read":0,"user_id":"","duration":0.000110703,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://baupdate.update.rqponqponmlkjihgbwwwc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/actuator/heapdump"],"Content-Type":[]}} {"level":"info","ts":1781185280.874227,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.17 ... show less	DDoS Attack Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-11 13:26:03 (2 weeks ago)	categories: DDoS Attack	DDoS Attack
Anonymous	2026-06-11 09:02:49 (2 weeks ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: DE, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: DE, Attack patterns: WordPress scanning, Backup file probing, Cloud secrets probing show less	Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-06-11 07:21:58 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇧🇪 cmbplf	2026-06-11 01:34:21 (2 weeks ago)	187 requests with url.path config.json 131 requests with url.path secrets.json 123 requests wit ... show more 187 requests with url.path config.json 131 requests with url.path secrets.json 123 requests with url.path config.yml 102 requests with url.path database.yml show less	Brute-Force Bad Web Bot
🇹🇷 hostopya.com	2026-06-11 00:02:21 (2 weeks ago)	Failed login attempt detected by Fail2Ban in plesk-apache-badbot jail	Web App Attack

Showing 1 to 15 of 46 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2001:470:2cc:1::12f

🇹🇭 180.183.244.82

🇮🇳 167.71.228.234

🇪🇸 94.46.206.213

🇲🇾 60.53.34.93

🇺🇸 34.233.114.237

🇯🇵 20.89.240.185

🇺🇸 195.184.76.128

🇳🇱 195.133.77.168

🇺🇸 195.62.47.220

🇺🇸 172.232.3.17

🇺🇸 172.56.96.83

🇨🇩 169.159.220.130

🇮🇳 103.102.72.250

🇫🇷 91.231.89.13

🇨🇳 58.57.154.146

🇹🇼 39.12.33.250

🇧🇪 35.195.17.104

🇧🇪 34.156.80.23

🇮🇳 20.235.243.154