JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.130.17.141

34.130.17.141 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 37%: ?

37%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	141.17.130.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.130.17.141

Whois 34.130.17.141

IP Abuse Reports for 34.130.17.141:

This IP address has been reported a total of 13 times from 11 distinct sources. 34.130.17.141 was first reported on May 17th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Savvii	2026-06-05 01:16:59 (2 weeks ago)	20 attempts against mh-misbehave-ban on heat	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-04 21:34:50 (2 weeks ago)	Aggressive web scan	Web App Attack
Anonymous	2026-06-04 20:34:01 (2 weeks ago)	34.130.17.141 - - [04/Jun/2026:22:33:59 +0200] "GET /.env.backup HTTP/1.1" 404 124 "-" "Mozilla/5.0 ... show more 34.130.17.141 - - [04/Jun/2026:22:33:59 +0200] "GET /.env.backup HTTP/1.1" 404 124 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11) AppleWebKit/601.1.56 (KHTML, like Gecko) Version/9.0 Safari/601.1.56" 34.130.17.141 - - [04/Jun/2026:22:33:59 +0200] "GET /.env.prod HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.79 Safari/537.36 Maxthon/5.2.7.5000" 34.130.17.141 - - [04/Jun/2026:22:33:59 +0200] "GET /.env.production HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3792.0 Safari/537.36" 34.130.17.141 - - [04/Jun/2026:22:33:59 +0200] "GET /.env.save HTTP/1.1" 404 124 "-" "Mozilla/5.0 (X11; OpenBSD amd64; rv:30.0) Gecko/20100101 Firefox/30.0" 34.130.17.141 - - [04/Jun/2026:22:33:59 +0200] "GET /.env.local HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36 OPR/62. ... show less	Bad Web Bot Web App Attack
🇨🇭 DasBiberlein	2026-06-04 16:30:04 (2 weeks ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
Anonymous	2026-06-04 12:48:09 (2 weeks ago)	Blocked by ModSec and CSF	Port Scan
🇳🇱 homeshowdomain.nl	2026-05-17 22:05:54 (1 month ago)	Auto-ban: >3000 req/min op 2026-05-17	Web App Attack SSH Hacking
🇳🇱 GabrielJST	2026-05-17 08:47:58 (1 month ago)	(mod_security) mod_security triggered on hostname [redacted] 34.130.17.141 (CA/Canada/141.17.130.34. ... show more (mod_security) mod_security triggered on hostname [redacted] 34.130.17.141 (CA/Canada/141.17.130.34.bc.googleusercontent.com): (CF_ENABLE) show less	SQL Injection
🇺🇸 TPI-Abuse	2026-05-17 08:35:31 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 34.130.17.141 (141.17.130.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.130.17.141 (141.17.130.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 04:35:26.391791 2026] [security2:error] [pid 20578:tid 20596] [client 34.130.17.141:39488] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dulemba.com"] [uri "/.git/config"] [unique_id "agl9zpq8wfHhf5YRD56kPwAAAM8"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Savvii	2026-05-17 08:19:08 (1 month ago)	20 attempts against mh-misbehave-ban on redirect	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-17 07:10:24 (1 month ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇫🇷 masterguru	2026-05-17 07:03:04 (1 month ago)	Remote Command Execution: Unix Command Injection (command without evasion). Pattern match "(?i)(?:b ... show more Remote Command Execution: Unix Command Injection (command without evasion). Pattern match "(?i)(?:b (932235-201) show less	Hacking
🇺🇸 TPI-Abuse	2026-05-17 06:12:20 (1 month ago)	(mod_security) mod_security (id:949110) triggered by 34.130.17.141 (141.17.130.34.bc.googleuserconte ... show more (mod_security) mod_security (id:949110) triggered by 34.130.17.141 (141.17.130.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 02:12:14.323786 2026] [security2:error] [pid 14513:tid 14513] [client 34.130.17.141:41084] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "dulcebebe.net"] [uri "/.git/config"] [unique_id "aglcPuuKLzuRKGyHGhjjdQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-17 05:35:06 (1 month ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.182

🇷🇺 193.233.48.169

🇮🇳 182.72.102.106

🇺🇸 23.95.137.106

🇨🇳 14.146.240.122

🇺🇸 216.180.246.18

🇧🇷 205.210.31.177

🇧🇷 205.210.31.176

🇧🇷 205.210.31.172

🇷🇺 188.170.86.97

🇺🇸 172.253.1.18

🇵🇰 153.117.15.213

🇨🇳 139.227.59.214

🇮🇳 103.187.159.21

🇺🇸 71.6.242.116

🇩🇪 69.5.169.236

🇲🇩 45.86.86.242

🇬🇧 217.146.80.112

🇺🇸 216.25.89.131

🇧🇷 205.210.31.169