JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.79.160.248

34.79.160.248 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 81%: ?

81%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	248.160.79.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.79.160.248

Whois 34.79.160.248

IP Abuse Reports for 34.79.160.248:

This IP address has been reported a total of 18 times from 15 distinct sources. 34.79.160.248 was first reported on June 8th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 wlt-blocker	2026-06-08 16:42:33 (1 week ago)	Unauthorized access to webpage admin	Web App Attack
🇬🇧 consul.to	2026-06-08 15:22:28 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 masterguru	2026-06-08 15:05:51 (1 week ago)	Restricted File Access Attempt. Matched phrase ".azure/" at REQUEST_FILENAME. (930130-196)	Hacking Web App Attack
🇺🇸 masterguru	2026-06-08 11:52:12 (1 week ago)	BAD BOT - Detected and Blocked.. Matched phrase "facebookexternalhit" at REQUEST_HEADERS:User-Agent. ... show more BAD BOT - Detected and Blocked.. Matched phrase "facebookexternalhit" at REQUEST_HEADERS:User-Agent. (1100000-169) show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-08 11:17:48 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 34.79.160.248 (248.160.79.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210730) triggered by 34.79.160.248 (248.160.79.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 07:17:41.754002 2026] [security2:error] [pid 31057:tid 31057] [client 34.79.160.248:35982] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.home.agingworkforcenews.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.home.agingworkforcenews.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "aiak1SILHv2E-NGHda4pBAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-08 10:07:51 (1 week ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 updown.io	2026-06-08 08:40:17 (1 week ago)	{"level":"info","ts":1780907999.4763656,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1780907999.4763656,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.79.160.248","remote_port":"34940","client_ip":"34.79.160.248","proto":"HTTP/1.1","method":"GET","host":"status.danavero.com","uri":"/app/actuator/logfile","headers":{"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"],"User-Agent":["Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3882.0 Safari/537.36"]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"","server_name":"status.danavero.com","ech":false}},"bytes_read":0,"user_id":"","duration":0.002959219,"size":0,"status":429,"resp_headers":{"Server":["Caddy"],"Alt-Svc":["h3=\":443\"; ma=2592000"],"Retry-After":["1"]}} {"level":"info","ts":1780907999.4838629,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.79.160.248","remote_port":"34932","client_ip":"34.79.160.248","proto":"HTTP/1.1","metho ... show less	DDoS Attack Web App Attack
🇪🇸 elcruzado.es	2026-06-08 08:09:42 (1 week ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 34.79.160.248 (BE/Belgiu ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 34.79.160.248 (BE/Belgium/248.160.79.34.bc.googleusercontent.com) show less	Port Scan
Anonymous	2026-06-08 06:25:40 (1 week ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇺🇸 mnsf	2026-06-08 05:09:20 (1 week ago)	Abuse Detected (14)	Brute-Force Web App Attack
Anonymous	2026-06-08 04:48:30 (1 week ago)	(caddyscan) Scanner path probe from 34.79.160.248 (BE/Belgium/248.160.79.34.bc.googleusercontent.com ... show more (caddyscan) Scanner path probe from 34.79.160.248 (BE/Belgium/248.160.79.34.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.79.160.248 - - [08/Jun/2026:04:48:25 +0000] "GET /actuator/logfile HTTP/1.1" [REDACTED] 200 2627 34.79.160.248 - - [08/Jun/2026:04:48:25 +0000] "GET /v2/actuator/heapdump HTTP/1.1" [REDACTED] 200 2627 34.79.160.248 - - [08/Jun/2026:04:48:25 +0000] "GET /v1/actuator/heapdump HTTP/1.1" [REDACTED] 200 2627 34.79.160.248 - - [08/Jun/2026:04:48:25 +0000] "GET /v1/actuator/env HTTP/1.1" [REDACTED] 200 2627 34.79.160.248 - - [08/Jun/2026:04:48:25 +0000] "GET /v1/actuator/configprops HTTP/1.1" show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-08 04:47:29 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 34.79.160.248 (248.160.79.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210730) triggered by 34.79.160.248 (248.160.79.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 00:47:22.365663 2026] [security2:error] [pid 5622:tid 5622] [client 34.79.160.248:35688] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.es.laboquimia.es\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.es.laboquimia.es"] [uri "/.config/gcloud/credentials.db"] [unique_id "aiZJWmYKg9TskHJrFhBpfAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-06-08 01:35:03 (1 week ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-08 01:27:52 (1 week ago)	Restricted File Access Attempt. Matched phrase ".aws/" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack
🇩🇪 vmd56152.contaboserver.net	2026-06-08 01:18:59 (1 week ago)	[Mon Jun 08 03:18:54.720378 2026] [access_compat:error] [pid 1965304:tid 140527236282112] [client 34 ... show more [Mon Jun 08 03:18:54.720378 2026] [access_compat:error] [pid 1965304:tid 140527236282112] [client 34.79.160.248:39292] AH01797: client denied by server configuration: /var/www/html/nextcloud/config/service-account.json [Mon Jun 08 03:18:54.768697 2026] [access_compat:error] [pid 1918313:tid 140526833628928] [client 34.79.160.248:39286] AH01797: client denied by server configuration: /var/www/html/nextcloud/config/.aws [Mon Jun 08 03:18:54.829954 2026] [access_compat:error] [pid 1918313:tid 140527102064384] [client 34.79.160.248:39288] AH01797: client denied by server configuration: /var/www/html/nextcloud/config/aws.json [Mon Jun 08 03:18:55.156162 2026] [access_compat:error] [pid 1918313:tid 140527060100864] [client 34.79.160.248:39728] AH01797: client denied by server configuration: /var/www/html/nextcloud/config/docker-compose.yml [Mon Jun 08 03:18:56.985911 2026] [access_compat:error] [pid 1909297:tid 140527135405824] [client 34.79.160.248:41086] AH01797: client denied by server co ... show less	Brute-Force

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.196

🇨🇳 223.167.169.26

🇨🇳 220.167.233.252

🇺🇸 162.216.150.84

🇺🇸 147.185.132.236

🇦🇴 105.168.55.35

🇺🇸 104.131.182.114

🇺🇸 96.244.139.42

🇺🇸 44.247.219.101

🇨🇳 42.55.169.142

🇬🇪 2.57.217.229

🇫🇮 2a01:4f9:c012:911d::1

🇧🇷 205.210.31.182

🇧🇷 205.210.31.173

🇺🇸 193.3.53.7

🇸🇮 102.220.160.154

🇮🇳 69.57.172.207

🇸🇬 45.82.78.100

🇨🇦 20.104.244.165

🇻🇳 14.244.102.146