JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.38.237.159

34.38.237.159 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 76%: ?

76%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	159.237.38.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.38.237.159

Whois 34.38.237.159

IP Abuse Reports for 34.38.237.159:

This IP address has been reported a total of 34 times from 18 distinct sources. 34.38.237.159 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 rakkor	2026-06-10 19:43:13 (1 week ago)	2026/06/10 20:43:11 [error] 30872#30872: 23726818 open() "/usr/syno/synoman/scripts/noise/noise-c.j ... show more 2026/06/10 20:43:11 [error] 30872#30872: 23726818 open() "/usr/syno/synoman/scripts/noise/noise-c.js.map" failed (2: No such file or directory), client: 34.38.237.159, server: rakkor.synology.me, request: "GET /scripts/noise/noise-c.js.map HTTP/2.0", host: "rakkor.synology.me" 2026/06/10 20:43:11 [error] 30872#30872: *23726818 open() "/usr/syno/synoman/webman/unsupported-browsers/dist/bundle.js.map" failed (2: No such file or directory), client: 34.38.237.159, server: rakkor.synology.me, request: "GET /webman/unsupported-browsers/dist/bundle.js.map HTTP/2.0", host: "rakkor.synology.me" ... show less	Brute-Force Hacking Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-09 21:59:07 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇫🇷 masterguru	2026-06-09 14:39:59 (1 week ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 34.38.237.159 (BE/Belgium/159.237.38.34.bc.goo ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 34.38.237.159 (BE/Belgium/159.237.38.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 masterguru	2026-06-09 07:26:41 (1 week ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 34.38.237.159 (BE/Belgium/159.237.38.34.bc.goo ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 34.38.237.159 (BE/Belgium/159.237.38.34.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇷🇺 DZBOT	2026-06-09 01:10:56 (1 week ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇧🇪 taivas.nl	2026-06-09 01:02:12 (1 week ago)	Site scraper	Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-08 22:05:19 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-08	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-08 20:53:56 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.38.237.159 (159.237.38.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.38.237.159 (159.237.38.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 16:53:50.014286 2026] [security2:error] [pid 22857:tid 22857] [client 34.38.237.159:56286] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "demo.semisysteme.com"] [uri "/.git/config"] [unique_id "aicr3gjdPGq4wQ59C3fo7wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-08 19:42:14 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 4server	2026-06-08 18:35:43 (1 week ago)	[MonJun0820:35:36.9579982026][security2:error][pid1648182:tid1648235][client34.38.237.159:0]ModSecur ... show more [MonJun0820:35:36.9579982026][security2:error][pid1648182:tid1648235][client34.38.237.159:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.schneider-tools.ch.136-243-54-122.cpanel.site\"][uri\"/.git/config\"][unique_id\"aicLePzY7FHHcYmFNEKJvgAAAEk\"] show less	Port Scan Brute-Force Web App Attack
🇧🇪 voormedia	2026-06-08 16:48:52 (1 week ago)	Accessed trap at '/.git/config'	Web App Attack
🇨🇦 TechnoSolutions CL	2026-06-08 16:35:50 (1 week ago)	34.38.237.159 - - [08/Jun/2026:16:35:46 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (L ... show more 34.38.237.159 - - [08/Jun/2026:16:35:46 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Linux; Android 9; H8314) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" 34.38.237.159 - - [08/Jun/2026:16:35:49 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 12_1_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Mobile/16C104 MicroMessenger/7.0.5(0x17000523) NetType/4G Language/zh_CN" ... show less	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 16:04:13 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.38.237.159 (159.237.38.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.38.237.159 (159.237.38.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 12:04:08.115522 2026] [security2:error] [pid 1145:tid 1168] [client 34.38.237.159:56420] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gitlab.transitionalcareservices.com"] [uri "/.git/config"] [unique_id "aibn-CcI-bKD8V9XlKc-gwAAAFM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 15:25:48 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 34.38.237.159 (159.237.38.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.38.237.159 (159.237.38.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 11:25:43.225183 2026] [security2:error] [pid 12995:tid 12995] [client 34.38.237.159:37344] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.longchuan.com.hk"] [uri "/.git/config"] [unique_id "aibe98uk7pVO6_gLPx6QewAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 pinguin	2026-06-08 14:32:23 (2 weeks ago)	Triggered Cloudflare WAF (firewallManaged) from BE. Action taken: LOG Protocol: HTTP/1.1 (GET method ... show more Triggered Cloudflare WAF (firewallManaged) from BE. Action taken: LOG Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config UA: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇪 38.43.134.172

🇧🇪 34.53.194.251

🇩🇪 193.124.20.247

🇧🇷 177.221.231.178

🇳🇱 176.65.139.181

🇩🇪 165.154.138.3

🇮🇳 152.59.118.0

🇻🇳 116.99.252.156

🇮🇩 103.157.79.1

🇦🇺 74.91.200.217

🇳🇱 45.148.10.141

🇧🇪 34.140.93.247

🇧🇪 34.62.66.167

🇧🇪 34.62.44.2

🇺🇸 13.218.243.82

🇮🇳 223.233.85.193

🇪🇬 197.49.225.9

🇧🇷 177.200.32.42

🇩🇪 167.94.146.33

🇺🇸 165.154.134.19