JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.60.143.66

34.60.143.66 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	66.143.60.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Council Bluffs, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.60.143.66

Whois 34.60.143.66

IP Abuse Reports for 34.60.143.66:

This IP address has been reported a total of 35 times from 25 distinct sources. 34.60.143.66 was first reported on June 8th 2026, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 Peter-Johann Sarbach	2026-06-12 03:58:47 (20 hours ago)	Hacking website	Hacking
🇨🇭 🇨🇭 Hosting	2026-06-11 05:10:25 (1 day ago)	Automated WAF report: 100-125 blocked requests from this IP detected by our WAF.	Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-10 22:00:10 (2 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-09. show less	Web App Attack SSH Hacking
🇳🇱 wlt-blocker	2026-06-10 18:30:09 (2 days ago)	Unauthorized access to webpage admin	Web App Attack
Anonymous	2026-06-10 15:38:42 (2 days ago)	34.60.143.66 - - [10/Jun/2026:17:38:42 +0200] "GET /.env HTTP/1.1" 403 153 "-" "Mozilla/5.0 (Unknown ... show more 34.60.143.66 - - [10/Jun/2026:17:38:42 +0200] "GET /.env HTTP/1.1" 403 153 "-" "Mozilla/5.0 (Unknown; U; UNIX BSD/SYSV system; C -) AppleWebKit/527 (KHTML, like Gecko, Safari/419.3) Arora/0.10.2" show less	Web App Attack
🇩🇪 updown.io	2026-06-10 13:15:19 (2 days ago)	{"level":"info","ts":1781097318.6362998,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781097318.6362998,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.60.143.66","remote_port":"57826","client_ip":"34.60.143.66","proto":"HTTP/1.1","method":"GET","host":"update.vutsrqpojihgfedcbwwwc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/.env.txt","headers":{"User-Agent":["Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0)"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]}},"bytes_read":0,"user_id":"","duration":0.00018333,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://update.vutsrqpojihgfedcbwwwc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/.env.txt"],"Content-Type":[]}} {"level":"info","ts":1781097318.6395195,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.60.143.66","remote_port":"57814","client_ip":"34.60.143.66","proto":"HTTP/1.1","method":"GET","hos ... show less	DDoS Attack Web App Attack
🇨🇭 4server	2026-06-10 12:09:53 (2 days ago)	[WedJun1014:09:49.1352492026][security2:error][pid2016139:tid2016833][client34.60.143.66:0]ModSecuri ... show more [WedJun1014:09:49.1352492026][security2:error][pid2016139:tid2016833][client34.60.143.66:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"webmail.fondazionemontgrand.ch\"][uri\"/.env.local\"][unique_id\"ailUDQUhOoMhlQrpsme4pgAAABY\"] show less	Hacking Web App Attack
Anonymous	2026-06-10 10:50:35 (2 days ago)	Aggressive web scan	Web App Attack
🇫🇷 sthoyer.de	2026-06-10 08:44:12 (2 days ago)	34.60.143.66 - - [10/Jun/2026:10:44:10 +0200] "GET /.env.development HTTP/1.1" 302 495 "-" "Mozilla/ ... show more 34.60.143.66 - - [10/Jun/2026:10:44:10 +0200] "GET /.env.development HTTP/1.1" 302 495 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.100 Safari/537.36" 34.60.143.66 - - [10/Jun/2026:10:44:10 +0200] "GET /.env.save HTTP/1.1" 302 495 "-" "Mozilla/5.0 (Linux; Android 7.0; Redmi Note 4 Build/NRD90M) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.137 Mobile Safari/537.36" 34.60.143.66 - - [10/Jun/2026:10:44:10 +0200] "GET /.env.production.bak HTTP/1.1" 302 495 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:49.0) Gecko/20100101 Firefox/49.0" ... show less	Web App Attack
🇫🇷 masterguru	2026-06-10 05:08:38 (2 days ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack
🇫🇷 ✨	2026-06-10 01:39:16 (2 days ago)	Domain : bioterapie.it Rule : env 2026-06-10 01:36:26 *hidden-privacy* GET /.env.copy - 443 - 34 ... show more Domain : bioterapie.it Rule : env 2026-06-10 01:36:26 *hidden-privacy* GET /.env.copy - 443 - 34.60.143.66 HTTP/1.1 Mozilla/5.0 (Linux; Android 9; moto x4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36 - bioterapie.it 301 0 0 438 247 150 - - show less	Hacking SQL Injection
Anonymous	2026-06-10 00:18:12 (3 days ago)	Bot / seems abusive / Apache connections: 40	DDoS Attack Web Spam Bad Web Bot Web App Attack
🇫🇷 Hostynet	2026-06-09 23:59:47 (3 days ago)	TCP SYN flood detected by MikroTik RouterOS filter (sustained half-open connection rate from single ... show more TCP SYN flood detected by MikroTik RouterOS filter (sustained half-open connection rate from single source). Source automatically blacklisted. show less	DDoS Attack
🇺🇸 TPI-Abuse	2026-06-09 18:48:48 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 34.60.143.66 (66.143.60.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.60.143.66 (66.143.60.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 14:48:43.986903 2026] [security2:error] [pid 29467:tid 29470] [client 34.60.143.66:43732] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.plasticsurgeryjournal.aafm.us"] [uri "/.env.backup.txt"] [unique_id "aihgC4Owx6ll2dYeE7cyMgAAAQA"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-09 17:39:52 (3 days ago)	745 requests with url.path *.env	Brute-Force Bad Web Bot

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇬 197.199.224.52

🇺🇸 172.237.156.206

🇺🇸 170.106.108.33

🇪🇬 156.217.48.216

🇵🇹 149.90.0.54

🇨🇳 115.190.181.18

🇬🇧 35.203.211.8

🇭🇰 223.197.178.95

🇰🇷 211.62.111.247

🇦🇷 200.112.129.62

🇫🇷 194.163.175.227

🇳🇴 194.127.199.44

🇬🇧 193.32.209.237

🇧🇷 170.231.180.207

🇺🇸 164.92.82.91

🇺🇸 147.185.132.16

🇵🇭 143.44.192.46

🇵🇾 132.255.164.117

🇷🇺 109.173.38.135

🇨🇳 101.201.53.239