JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.130.113.4

34.130.113.4 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 61%: ?

61%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	4.113.130.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.130.113.4

Whois 34.130.113.4

IP Abuse Reports for 34.130.113.4:

This IP address has been reported a total of 13 times from 10 distinct sources. 34.130.113.4 was first reported on June 13th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 robotstxt	2026-06-14 17:35:22 (3 hours ago)	34.130.113.4 - - [14/Jun/2026:17:35:18 +0000] "GET /mailer.zip HTTP/1.1" 404 146 "-" "Mozilla/5.0 (M ... show more 34.130.113.4 - - [14/Jun/2026:17:35:18 +0000] "GET /mailer.zip HTTP/1.1" 404 146 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/603.3.8 (KHTML, like Gecko) Version/10.1.2 Safari/603.3.8" "-" 34.130.113.4 - - [14/Jun/2026:17:35:18 +0000] "GET /mail.zip HTTP/1.1" 404 180 "-" "Mozilla/5.0 (Linux; Android 9; REVVLRY) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" "-" 34.130.113.4 - - [14/Jun/2026:17:35:22 +0000] "GET /mailer/sendgrid.js HTTP/1.1" 404 180 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.86 Safari/537.36" "-" 34.130.113.4 - - [14/Jun/2026:17:35:22 +0000] "GET /mailer/sendgrid.py HTTP/1.1" 404 146 "-" "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.7) Gecko/20060909 Firefox/1.5.0.7 MG(Novarra-Vision/6.9)" "-" 34.130.113.4 - - [14/Jun/2026:17:35:22 +0000] "GET /mail/sendgrid.py HTTP/1.1" 404 146 "-" "Mozilla/5.0 (iPad; CPU OS 12_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like ... show less	Bad Web Bot
🇷🇴 gtheo99	2026-06-14 14:45:19 (6 hours ago)	(CT) IP 34.130.113.4 (CA/Canada/4.113.130.34.bc.googleusercontent.com) found to have 851 connections	Port Scan
🇨🇦 SSH-Admin	2026-06-14 14:00:05 (6 hours ago)	Probing for Exploits on ns200	Exploited Host Web App Attack
Anonymous	2026-06-14 12:37:05 (8 hours ago)	2026-06-14 14:37:04,574 fail2ban.actions [633]: NOTICE [apache-custom] Ban 34.130.113.4 2026 ... show more 2026-06-14 14:37:04,574 fail2ban.actions [633]: NOTICE [apache-custom] Ban 34.130.113.4 2026-06-14 14:37:04,581 fail2ban.actions [633]: NOTICE [apache-noscript] Ban 34.130.113.4 2026-06-14 14:37:04,582 fail2ban.actions [633]: NOTICE [apache-php-scans] Ban 34.130.113.4 ... show less	Brute-Force Web App Attack
🇺🇸 SSH-Admin	2026-06-14 10:12:02 (10 hours ago)	Probing for Exploits on ns007	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 07:29:36 (13 hours ago)	(mod_security) mod_security (id:210730) triggered by 34.130.113.4 (4.113.130.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210730) triggered by 34.130.113.4 (4.113.130.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 03:29:29.858077 2026] [security2:error] [pid 13301:tid 13301] [client 34.130.113.4:50148] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|chaseallgoodhtmlclasswork.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "chaseallgoodhtmlclasswork.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "ai5YWbzb92co6looEsJOjgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-14 06:07:19 (14 hours ago)	Too many Status 40X (28) Scanning/Probing (61) Request Overload (427)	Brute-Force Web App Attack
🇫🇷 Octopuce	2026-06-14 04:24:51 (16 hours ago)	Aggressive web search of vulnerable pages: /secrets/aws.json /secrets/gcp.json /secrets/azure.json / ... show more Aggressive web search of vulnerable pages: /secrets/aws.json /secrets/gcp.json /secrets/azure.json /secrets/credentials.json /docker-compose.ym ... show less	Web App Attack
🇳🇱 Site.eu	2026-06-14 02:45:57 (17 hours ago)	Excessive 404/403 errors	Brute-Force
Anonymous	2026-06-14 02:00:53 (18 hours ago)	Multiple web server 400 error codes from same source ip	Web App Attack
Anonymous	2026-06-14 01:51:28 (18 hours ago)	CrowdSec ban: crowdsecurity/http-probing	Port Scan
🇺🇸 TPI-Abuse	2026-06-13 23:30:09 (21 hours ago)	(mod_security) mod_security (id:210730) triggered by 34.130.113.4 (4.113.130.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210730) triggered by 34.130.113.4 (4.113.130.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 19:30:01.493720 2026] [security2:error] [pid 26565:tid 26565] [client 34.130.113.4:41370] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|dodgersboosterclub.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "dodgersboosterclub.com"] [uri "/dump.sql"] [unique_id "ai3n-VNmyJyB6YkRPRVTJQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 20:13:19 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.130.113.4 (4.113.130.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.130.113.4 (4.113.130.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 16:13:15.150776 2026] [security2:error] [pid 9961:tid 9961] [client 34.130.113.4:54700] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "susansambou.org"] [uri "/.env.backup"] [unique_id "ai2527RD1uujD-4hlfXahAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 172.253.6.147

🇺🇸 143.110.230.22

🇸🇬 47.82.9.7

🇧🇷 45.205.1.242

🇳🇱 45.148.10.147

🇧🇷 179.42.141.83

🇩🇪 167.71.51.2

🇮🇳 125.21.53.232

🇨🇳 118.145.242.91

🇨🇳 112.47.133.54

🇹🇼 110.24.36.46

🇸🇬 47.82.9.69

🇸🇬 47.82.9.68

🇸🇬 47.82.9.67

🇭🇰 43.129.253.2

🇮🇪 13.70.196.114

🇺🇸 216.25.89.122

🇬🇧 195.96.139.88

🇨🇳 180.76.174.141

🇺🇸 132.147.206.40