JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.162.42.2

34.162.42.2 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 94%: ?

94%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	2.42.162.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.162.42.2

Whois 34.162.42.2

IP Abuse Reports for 34.162.42.2:

This IP address has been reported a total of 18 times from 16 distinct sources. 34.162.42.2 was first reported on June 13th 2026, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-13 22:07:07 (9 hours ago)	Auto-ban: >3000 req/min op 2026-06-13	Web App Attack SSH Hacking
🇳🇱 debestelapp	2026-06-13 17:20:07 (14 hours ago)		Web App Attack
🇳🇿 Antinson	2026-06-13 16:51:01 (15 hours ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot
Anonymous	2026-06-13 16:04:37 (15 hours ago)	Aggressive web scan	Web App Attack
🇩🇪 grassau.com	2026-06-13 14:13:54 (17 hours ago)	Port Scan detected from 34.162.42.2 (US/United States/Ohio/Columbus/2.42.162.34.bc.googleuserconte ... show more Port Scan detected from 34.162.42.2 (US/United States/Ohio/Columbus/2.42.162.34.bc.googleusercontent.com). show less	Port Scan
🇵🇱 dcnet	2026-06-13 14:00:29 (17 hours ago)	FortiGate detected DOS attack from IPv4 address 34.162.42.2	DDoS Attack
🇳🇱 Site.eu	2026-06-13 09:43:55 (22 hours ago)	Excessive multi-domain requests	Brute-Force
🇫🇷 masterguru	2026-06-13 08:29:42 (23 hours ago)	URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .b ... show more URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .backup/ .bak/ .bck/ .bk/ .bkp/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .cnf/ .com/ .compositefont/ .config/ .conf/ .copy/ .crt/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dist/ .dll/ .dos/ .dpkg-dist/ .drv/ .gadget/ .hta/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .inf/ .ini/ .jks/ .jse/ .key/ .licx/ .lnk/ .log/ .mdb/ .msc/ .ocx/ .old/ .pass/ .pdb/ .pfx/ .pif/ .pem/ .pol/ .prf/ .printer/ .pwd/ .rdb/ .rdp/ .reg/ .resources/ .resx/ .sav/ .save/ .scr/ .sct/ .sh/ .shs/ .sql/ .sqlite/ .sqlite3/ .swap/ .swo/ .swp/ .sys/ .temp/ .tfstate/ .tlb/ .tmp/ .vb/ .vbe/ .vbs/ .vbproj/ .vsdisco/ .vxd/ .webinfo/ .ws/ .wsc/ .wsf/ .wsh/ .xsd/ .xsx/" at TX:extension. (920440-193) show less	Hacking
🇺🇸 mnsf	2026-06-13 08:08:49 (23 hours ago)	Too many Status 40X (11) Scanning/Probing (52) Request Overload (200)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 07:26:23 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 34.162.42.2 (2.42.162.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210730) triggered by 34.162.42.2 (2.42.162.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 03:26:17.069055 2026] [security2:error] [pid 23960:tid 24095] [client 34.162.42.2:51074] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|nextlevelpsych.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "nextlevelpsych.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "ai0GGRsgCiAxSokYqj287gAAAQ8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-13 06:28:34 (1 day ago)	[SatJun1308:28:28.0378052026][security2:error][pid702483:tid702578][client34.162.42.2:0]ModSecurity: ... show more [SatJun1308:28:28.0378052026][security2:error][pid702483:tid702578][client34.162.42.2:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"fondazionepetronillapontirone.ch\"][uri\"/api/actuator/heapdump\"][unique_id\"aiz4jH_R_t9SPC_Sn2kR_gAAAMc\"] show less	Port Scan Brute-Force Web App Attack
🇦🇹 penguin-solutions.at	2026-06-13 06:12:32 (1 day ago)	Excessive 403/404 errors ...	Brute-Force Web App Attack
🇳🇱 WeCloudit-Anti-Abuse	2026-06-13 05:00:03 (1 day ago)	SPAM - Bruteforce Attack - DDOS 5	Email Spam Brute-Force
🇮🇹 VHosting	2026-06-13 04:55:03 (1 day ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 04:44:33 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 34.162.42.2 (2.42.162.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210730) triggered by 34.162.42.2 (2.42.162.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 00:44:29.706709 2026] [security2:error] [pid 722:tid 722] [client 34.162.42.2:38060] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.openid.rimbey.us\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.openid.rimbey.us"] [uri "/.config/gcloud/credentials.db"] [unique_id "aizgLbD4p9UsHSEiod1s3AAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 171.111.196.251

🇮🇳 152.52.15.213

🇮🇳 146.196.37.127

🇺🇸 136.144.43.166

🇮🇹 93.145.152.138

🇨🇦 85.217.149.9

🇳🇱 45.142.193.8

🇩🇪 213.209.159.227

🇩🇪 213.209.159.56

🇦🇷 200.229.253.225

🇭🇰 199.45.155.100

🇩🇪 194.88.98.106

🇯🇵 160.251.185.39

🇮🇳 49.36.233.11

🇨🇳 171.213.136.126

🇻🇳 103.161.170.12

🇳🇱 91.92.40.5

🇺🇸 65.49.20.117

🇺🇸 34.230.221.101

🇸🇬 8.222.239.48