JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.126.115.130

34.126.115.130 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 71%: ?

71%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	130.115.126.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.126.115.130

Whois 34.126.115.130

IP Abuse Reports for 34.126.115.130:

This IP address has been reported a total of 14 times from 11 distinct sources. 34.126.115.130 was first reported on June 14th 2026, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 03:06:37 (7 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.126.115.130 (130.115.126.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.126.115.130 (130.115.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:06:34.328848 2026] [security2:error] [pid 4532:tid 4532] [client 34.126.115.130:44148] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "servecon.net.herston.net"] [uri "/.env.txt"] [unique_id "ai9sOqsZsXoGk0NziO_3TwAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 wlt-blocker	2026-06-15 02:05:44 (8 hours ago)	Unauthorized access to webpage admin	Web App Attack
🇩🇪 FeG Deutschland	2026-06-15 02:00:32 (8 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 mnsf	2026-06-15 00:08:45 (10 hours ago)	Abuse Detected (23)	Brute-Force Web App Attack
🇸🇪 vaia.cloud	2026-06-14 23:57:01 (10 hours ago)	trying wp-login.php/xmlrpc.php 151 times in 1 minutes	Brute-Force Web App Attack
🇫🇷 Lacrimosa99	2026-06-14 14:50:26 (19 hours ago)	34.126.115.130 - - [14/Jun/2026:16:50:24 +0200] "GET /admin/.env HTTP/1.1" 404 6275 "-" "nook browse ... show more 34.126.115.130 - - [14/Jun/2026:16:50:24 +0200] "GET /admin/.env HTTP/1.1" 404 6275 "-" "nook browser/1.0" 34.126.115.130 - - [14/Jun/2026:16:50:24 +0200] "GET /admin/.env.backup HTTP/1.1" 404 6275 "-" "Mozilla/5.0 (hp-tablet; Linux; hpwOS/3.0.2; U; de-DE) AppleWebKit/534.6 (KHTML, like Gecko) wOSBrowser/234.40.1 Safari/534.6 TouchPad/1.0" 34.126.115.130 - - [14/Jun/2026:16:50:25 +0200] "GET /admin/api/.env HTTP/1.1" 404 6275 "-" "Mozilla/5.0 (Linux; Android 9; RMX1851) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" ... show less	Web Spam
🇫🇷 dynamix	2026-06-14 12:35:32 (22 hours ago)	Multiple WAF Violations	Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-14 10:15:54 (1 day ago)	URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .b ... show more URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .backup/ .bak/ .bck/ .bk/ .bkp/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .cnf/ .com/ .compositefont/ .config/ .conf/ .copy/ .crt/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dist/ .dll/ .dos/ .dpkg-dist/ .drv/ .gadget/ .hta/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .inf/ .ini/ .jks/ .jse/ .key/ .licx/ .lnk/ .log/ .mdb/ .msc/ .ocx/ .old/ .pass/ .pdb/ .pfx/ .pif/ .pem/ .pol/ .prf/ .printer/ .pwd/ .rdb/ .rdp/ .reg/ .resources/ .resx/ .sav/ .save/ .scr/ .sct/ .sh/ .shs/ .sql/ .sqlite/ .sqlite3/ .swap/ .swo/ .swp/ .sys/ .temp/ .tfstate/ .tlb/ .tmp/ .vb/ .vbe/ .vbs/ .vbproj/ .vsdisco/ .vxd/ .webinfo/ .ws/ .wsc/ .wsf/ .wsh/ .xsd/ .xsx/" at TX:extension. (920440-stl2-13) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-14 10:09:52 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.126.115.130 (130.115.126.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.126.115.130 (130.115.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 06:09:48.150653 2026] [security2:error] [pid 19077:tid 19077] [client 34.126.115.130:47926] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.videos.mathewyoung.com"] [uri "/stage/.env"] [unique_id "ai597C_cFyP-I8QBUEqC_QAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-14 07:59:48 (1 day ago)	Aggressive web scan	Web App Attack
🇳🇱 ConsulHosting	2026-06-14 06:49:21 (1 day ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 06:30:42 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.126.115.130 (130.115.126.34.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 34.126.115.130 (130.115.126.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 02:30:34.627984 2026] [security2:error] [pid 27881:tid 27881] [client 34.126.115.130:39880] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arklatexds.wisk.org"] [uri "/admin/.env.local"] [unique_id "ai5KihK-G1v7uCFGbvhq0AAAAIE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-14 05:09:12 (1 day ago)	Scanning/Probing (12)	Brute-Force Web App Attack
🇮🇹 VHosting	2026-06-14 02:20:03 (1 day ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇹 194.79.211.61

🇴🇲 185.232.15.210

🇩🇪 181.214.173.94

🇯🇵 160.251.185.39

🇲🇦 160.176.80.91

🇨🇳 119.29.80.240

🇨🇳 112.66.14.55

🇵🇰 103.189.68.64

🇺🇦 93.170.64.25

🇺🇸 47.196.175.193

🇧🇷 45.205.1.241

🇵🇪 38.250.152.148

🇺🇸 20.106.49.209

🇫🇷 5.189.157.28

🇩🇴 200.88.254.65

🇩🇪 185.220.100.243

🇧🇷 179.43.23.68

🇺🇸 165.154.206.250

🇹🇭 125.25.231.15

🇻🇳 118.70.182.193