JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.130.52.199

34.130.52.199 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	199.52.130.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.130.52.199

Whois 34.130.52.199

IP Abuse Reports for 34.130.52.199:

This IP address has been reported a total of 23 times from 20 distinct sources. 34.130.52.199 was first reported on June 14th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-15 22:01:19 (3 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-14. show less	Web App Attack SSH Hacking
🇳🇱 e.fierstra	2026-06-15 04:59:18 (3 days ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-15 04:35:52 (3 days ago)	1.252 requests with url.path */.git/config	Brute-Force Bad Web Bot
Anonymous	2026-06-15 04:15:01 (3 days ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 02:33:25 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.130.52.199 (199.52.130.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.130.52.199 (199.52.130.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 22:33:21.666350 2026] [security2:error] [pid 2210:tid 2210] [client 34.130.52.199:34142] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.brandov.fatcavestudios.com"] [uri "/.git/config"] [unique_id "ai9kcT1U-MDTUjXH9Lr4pAAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 02:02:57 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 34.130.52.199 (199.52.130.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.130.52.199 (199.52.130.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 22:02:52.822831 2026] [security2:error] [pid 11663:tid 11671] [client 34.130.52.199:57484] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lsmk.bestofthis.com"] [uri "/.git/config"] [unique_id "ai9dTB7sgw36GlceXvDAwAAAAQY"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 Origon	2026-06-15 01:58:54 (4 days ago)	http-sensitive-files - IP: 34.130.52.199 - time="2026-06-15T03:58:53+02:00" level=info msg="(555f66 ... show more http-sensitive-files - IP: 34.130.52.199 - time="2026-06-15T03:58:53+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 34.130.52.199 (CA/396982) : 4h ban on Ip 34.130.52.199" module=db show less	Web App Attack
🇳🇱 wlt-blocker	2026-06-15 01:45:45 (4 days ago)	Unauthorized access to webpage admin	Web App Attack
🇩🇪 webanyone	2026-06-14 22:30:32 (4 days ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇳🇱 Mangelot Hosting	2026-06-14 21:29:45 (4 days ago)	(modsecurity) srv103 ModSecurity 34.130.52.199 (CA/Canada/199.52.130.34.bc.googleusercontent.com): 1 ... show more (modsecurity) srv103 ModSecurity 34.130.52.199 (CA/Canada/199.52.130.34.bc.googleusercontent.com): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇪🇸 pipeline.es	2026-06-14 21:27:18 (4 days ago)	Web scanning / probing for vulnerable paths \| URL: /project/.git/config \| Evidence: onlinetours.es 3 ... show more Web scanning / probing for vulnerable paths \| URL: /project/.git/config \| Evidence: onlinetours.es 34.130.52.199 - - [14/Jun/2026:23:25:41 +0200] \"GET /project/.git/config HTTP/1.1\" 404 51120 \"-\" \"Mozilla/5.0 (Linux; Android 9; SM-G965U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36\" GEOIP_COUNTRY_CODE=CA \| ASN: GOOGLE-CLOUD-PLATFORM \| Country: CA show less	Port Scan Web App Attack
🇺🇸 CBJ	2026-06-14 21:10:30 (4 days ago)	fail2ban: apache-filepath-recon ...	Web App Attack
🇩🇪 BlueWire Hosting	2026-06-14 07:13:47 (4 days ago)	Probing websites for vulnerabilities	Web App Attack SQL Injection
🇬🇧 consul.to	2026-06-14 06:45:37 (4 days ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 big-cloud.nl	2026-06-14 06:18:39 (4 days ago)	Try to access /.git/config	Web App Attack

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 1.212.225.99

🇹🇷 188.119.17.159

🇺🇸 173.252.127.114

🇩🇪 167.94.146.73

🇳🇱 157.245.64.234

🇫🇮 147.185.133.120

🇺🇸 136.144.35.51

🇫🇮 65.109.78.84

🇳🇱 45.148.10.183

🇳🇱 45.148.10.121

🇮🇳 27.123.114.190

🇺🇸 216.25.89.98

🇩🇪 213.209.159.56

🇬🇧 193.32.209.247

🇻🇳 171.236.83.131

🇸🇬 152.32.218.149

🇰🇷 118.37.214.187

🇱🇧 109.233.21.109

🇲🇲 103.121.229.207

🇺🇸 74.125.80.155