JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.59.130.161

34.59.130.161 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 82%: ?

82%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	161.130.59.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Council Bluffs, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.59.130.161

Whois 34.59.130.161

IP Abuse Reports for 34.59.130.161:

This IP address has been reported a total of 19 times from 14 distinct sources. 34.59.130.161 was first reported on June 13th 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Savvii	2026-06-15 14:46:43 (6 hours ago)	28 attempts against mh-misbehave-ban on wheat	Brute-Force Bad Web Bot Web App Attack
🇳🇴 jad-abuse	2026-06-15 13:46:19 (7 hours ago)	ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure ... show more ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure. Observed by 1 sensor(s); 30 hits. show less	Web App Attack
🇬🇧 consul.to	2026-06-15 10:12:35 (10 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 09:54:32 (11 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.59.130.161 (161.130.59.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.59.130.161 (161.130.59.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 05:54:28.620474 2026] [security2:error] [pid 13878:tid 13878] [client 34.59.130.161:33920] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.jabbosjingles.danged.com"] [uri "/.env.backup"] [unique_id "ai_L1PfmtjciZRS5lYwZbwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Savvii	2026-06-15 08:44:00 (12 hours ago)	20 attempts against mh_ha-misbehave-ban on eris	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-15 05:03:37 (15 hours ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning, Backup file probing, Cloud secrets probing show less	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-15 02:50:34 (18 hours ago)	URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .b ... show more URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .backup/ .bak/ .bck/ .bk/ .bkp/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .cnf/ .com/ .compositefont/ .config/ .conf/ .copy/ .crt/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dist/ .dll/ .dos/ .dpkg-dist/ .drv/ .gadget/ .hta/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .inf/ .ini/ .jks/ .jse/ .key/ .licx/ .lnk/ .log/ .mdb/ .msc/ .ocx/ .old/ .pass/ .pdb/ .pfx/ .pif/ .pem/ .pol/ .prf/ .printer/ .pwd/ .rdb/ .rdp/ .reg/ .resources/ .resx/ .sav/ .save/ .scr/ .sct/ .sh/ .shs/ .sql/ .sqlite/ .sqlite3/ .swap/ .swo/ .swp/ .sys/ .temp/ .tfstate/ .tlb/ .tmp/ .vb/ .vbe/ .vbs/ .vbproj/ .vsdisco/ .vxd/ .webinfo/ .ws/ .wsc/ .wsf/ .wsh/ .xsd/ .xsx/" at TX:extension. (920440-197) show less	Hacking
🇳🇱 Site.eu	2026-06-14 21:53:26 (23 hours ago)	Excessive multi-domain requests	Brute-Force
🇧🇾 lns.bz	2026-06-14 13:18:21 (1 day ago)	Too many 404 requests [BY]	Web App Attack
🇺🇸 decisionconcepts	2026-06-14 11:30:33 (1 day ago)	34.59.130.161 - - [14/Jun/2026:04:30:31 -0700] "GET /.env.backup.txt HTTP/1.1" 403 199 "-" "Mozilla/ ... show more 34.59.130.161 - - [14/Jun/2026:04:30:31 -0700] "GET /.env.backup.txt HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3844.0 Safari/537.36" 34.59.130.161 - - [14/Jun/2026:04:30:31 -0700] "GET /.env.backup HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Linux; Android 6.0; ALE-L21 Build/HuaweiALE-L21) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.89 Mobile Safari/537.36" show less	Brute-Force SSH
🇩🇪 paissangroup	2026-06-14 07:11:05 (1 day ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 06:39:06 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.59.130.161 (161.130.59.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210492) triggered by 34.59.130.161 (161.130.59.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 02:39:00.046602 2026] [security2:error] [pid 4685:tid 4685] [client 34.59.130.161:59036] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chaseallgoodhtmlclasswork.com"] [uri "/.env.preprod"] [unique_id "ai5MhIPD2xsydL5Z7JjWngAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-14 05:03:11 (1 day ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning, Backup file probing, Cloud secrets probing show less	Bad Web Bot Web App Attack
🇫🇷 Octopuce	2026-06-14 04:44:29 (1 day ago)	Aggressive web search of vulnerable pages: /.env /.env.local /v1/.env /api/.env.local /api/.env ...	Web App Attack
🇮🇹 VHosting	2026-06-14 04:05:03 (1 day ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇺 2404:6800:4006:1002::12b

🇺🇸 2604:a880:400:d1:0:4:9636:a001

🇺🇸 208.84.102.38

🇳🇱 195.178.110.30

🇨🇳 59.82.135.7

🇬🇧 35.203.211.185

🇺🇸 35.169.240.53

🇺🇸 34.152.113.101

🇦🇱 213.207.49.189

🇺🇸 147.185.132.168

🇺🇸 49.51.199.112

🇲🇾 47.250.146.216

🇳🇱 45.148.10.121

🇺🇸 45.79.114.248

🇨🇳 223.74.126.14

🇰🇭 202.62.48.93

🇩🇪 202.61.194.85

🇦🇷 186.57.3.137

🇳🇱 176.65.132.24

🇮🇳 122.176.20.134