JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.132.59.153

34.132.59.153 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	153.59.132.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Council Bluffs, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.132.59.153

Whois 34.132.59.153

IP Abuse Reports for 34.132.59.153:

This IP address has been reported a total of 43 times from 19 distinct sources. 34.132.59.153 was first reported on June 22nd 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-24 12:23:22 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 11:03:01 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.132.59.153 (153.59.132.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.132.59.153 (153.59.132.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 07:02:57.659008 2026] [security2:error] [pid 28498:tid 28498] [client 34.132.59.153:63467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "theastoria.com"] [uri "/.env"] [unique_id "aju5YeWrbDXFofQOK64MPwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 10:03:25 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.132.59.153 (153.59.132.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.132.59.153 (153.59.132.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 06:03:19.526268 2026] [security2:error] [pid 29675:tid 29675] [client 34.132.59.153:61461] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stickittomebuttons.com"] [uri "/.env"] [unique_id "ajurZ9iw_6hziG_2dUqxNgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 kumiko	2026-06-24 09:36:20 (1 day ago)	[2026-06-24 12:36:20] Probing for dotfiles "GET /.env HTTP/1.1" 301	Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-24 09:09:01 (1 day ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,mx01,mx03,wa01,wa ... show more Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,mx01,mx03,wa01,wa02] show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 07:43:37 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.132.59.153 (153.59.132.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.132.59.153 (153.59.132.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 03:43:33.596570 2026] [security2:error] [pid 14530:tid 14530] [client 34.132.59.153:59175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rosawallas.com"] [uri "/.env"] [unique_id "ajuKpWSjzCmN4JQuZc0f3AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 07:14:07 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.132.59.153 (153.59.132.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.132.59.153 (153.59.132.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 03:14:02.022374 2026] [security2:error] [pid 27009:tid 27009] [client 34.132.59.153:63297] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "recorplast.com"] [uri "/.env"] [unique_id "ajuDui9q_wk8PnEthabzlwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 06:49:31 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.132.59.153 (153.59.132.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.132.59.153 (153.59.132.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 02:49:27.318734 2026] [security2:error] [pid 18269:tid 18269] [client 34.132.59.153:63646] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "qovintheloop.org"] [uri "/.env"] [unique_id "ajt993nlyy4PrZTAxe-kXgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-06-24 05:01:09 (1 day ago)	Accessed trap at '/.env'	Web App Attack
🇮🇩 Burayot	2026-06-24 01:18:42 (2 days ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 34.132.59.153 (US/United States/153 ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 34.132.59.153 (US/United States/153.59.132.34.bc.googleusercontent.com): 1 in the last 3600 secs show less	Web App Attack
Anonymous	2026-06-24 00:15:02 (2 days ago)	Bot / scanning and/or hacking attempts: GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP ... show more Bot / scanning and/or hacking attempts: GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1., POST / HTTP/1.1, GET /Phpinfo/profiler HTTP/1.1, GET /.env HTTP/1.1 show less	Hacking Web App Attack
🇱🇻 garmtech.com	2026-06-23 23:10:44 (2 days ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.env	Web App Attack
🇨🇭 SOC [GOLINE SA]	2026-06-23 23:03:49 (2 days ago)	FortiGate detected IPS attack from IPv4 address 34.132.59.153	Hacking
🇳🇱 homeshowdomain.nl	2026-06-23 22:02:43 (2 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-22. show less	Web App Attack SSH Hacking
🇳🇴 jad-abuse	2026-06-23 21:28:30 (2 days ago)	ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: env_probe ... show more ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: env_probe, phpunit_rce. Observed by 1 sensor(s); 2 hits. show less	Hacking Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 118.194.250.22

🇭🇰 45.116.78.92

🇳🇱 192.42.116.144

🇧🇷 186.193.203.52

🇳🇱 176.65.139.114

🇸🇬 167.99.72.73

🇨🇳 125.94.107.91

🇨🇳 114.106.172.209

🇳🇱 91.92.40.24

🇲🇦 81.192.46.36

🇨🇳 61.160.241.140

🇨🇳 58.216.29.63

🇸🇬 47.245.127.117

🇮🇳 45.195.83.7

🇺🇸 43.153.19.110

🇸🇬 43.128.88.144

🇬🇧 31.14.254.108

🇺🇸 20.65.193.152

🇨🇳 223.8.80.215

🇺🇸 170.106.140.41