JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.176.42.3

34.176.42.3 was found in our database!

This IP was reported 47 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	3.42.176.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇨🇱 Chile
City	Santiago, Santiago Metropolitan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.176.42.3

Whois 34.176.42.3

IP Abuse Reports for 34.176.42.3:

This IP address has been reported a total of 47 times from 34 distinct sources. 34.176.42.3 was first reported on June 8th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 03:47:55 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 34.176.42.3 (3.42.176.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210730) triggered by 34.176.42.3 (3.42.176.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:47:47.564338 2026] [security2:error] [pid 5047:tid 5047] [client 34.176.42.3:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|haywardcarpentry.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "haywardcarpentry.com"] [uri "/sql/backup.sql"] [unique_id "ai914_9gC8jE0BA841Y-dQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇹 Evag Touf	2026-06-14 19:38:13 (1 day ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 34.176.42.3 (CL/Chil ... show more (apache-useragents) Failed apache-useragents trigger with match [redacted] from 34.176.42.3 (CL/Chile/-) show less	Bad Web Bot
🇳🇱 Cloud86 B.V.	2026-06-14 06:52:02 (2 days ago)	categories: DDoS Attack	DDoS Attack
🇺🇦 URAN Publishing Service	2026-06-13 20:11:52 (2 days ago)	34.176.42.3 - - [13/Jun/2026:23:11:50 +0300] "GET /.env HTTP/1.1" 404 3295 "-" "Mozilla/5.0 (OS/2; U ... show more 34.176.42.3 - - [13/Jun/2026:23:11:50 +0300] "GET /.env HTTP/1.1" 404 3295 "-" "Mozilla/5.0 (OS/2; U; OS/2; en-US) AppleWebKit/533.3 (KHTML, like Gecko) Arora/0.11.0 Safari/533.3" 34.176.42.3 - - [13/Jun/2026:23:11:50 +0300] "GET /dev/.env HTTP/1.1" 404 3294 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36 OPR/62.0.3331.116" ... show less	Web App Attack
🇩🇪 LRob.fr	2026-06-12 01:45:06 (4 days ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇩🇪 [email protected]	2026-06-12 00:22:55 (4 days ago)	34.176.42.3 - - [12/Jun/2026:00:22:54 +0000] "GET /.env.bak HTTP/1.1" 404 324 "-" "Links (2.1pre15; ... show more 34.176.42.3 - - [12/Jun/2026:00:22:54 +0000] "GET /.env.bak HTTP/1.1" 404 324 "-" "Links (2.1pre15; Linux 2.4.26 i686; 158x61)" 34.176.42.3 - - [12/Jun/2026:00:22:54 +0000] "GET /.env.production.bak HTTP/1.1" 404 324 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.181 Safari/537.36" 34.176.42.3 - - [12/Jun/2026:00:22:54 +0000] "GET /.env.production HTTP/1.1" 404 324 "-" "Gaisbot/3.0 ([email protected]; http://gais.cs.ccu.edu.tw/robot.php)" ... show less	Web App Attack
Anonymous	2026-06-11 22:50:38 (4 days ago)	34.176.42.3 - - [12/Jun/2026:06:50:37 +0800] "GET /.env.backup.txt HTTP/1.1" 403 199 "-" "Wget/1.12 ... show more 34.176.42.3 - - [12/Jun/2026:06:50:37 +0800] "GET /.env.backup.txt HTTP/1.1" 403 199 "-" "Wget/1.12 (freebsd8.1)" ... show less	Bad Web Bot Web App Attack
🇳🇱 ReyhZhao	2026-06-11 22:39:28 (4 days ago)	Bunkerweb ModSecurity alert: Access denied (403) due to an inbound anomaly score exceeding the allow ... show more Bunkerweb ModSecurity alert: Access denied (403) due to an inbound anomaly score exceeding the allowed threshold, triggering the OWASP Core Rule Set blocking evaluation. show less	Brute-Force
🇳🇱 homeshowdomain.nl	2026-06-11 21:59:14 (4 days ago)	Auto-ban: >3000 req/min op 2026-06-11	Web App Attack SSH Hacking
🇱🇻 garmtech.com	2026-06-11 21:52:42 (4 days ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.env	Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-11 21:00:06 (4 days ago)	categories: DDoS Attack	DDoS Attack
🇪🇸 elcruzado.es	2026-06-11 18:09:36 (4 days ago)	(mod_security) mod_security triggered on hostname [redacted] 34.176.42.3 (CL/Chile/3.42.176.34.bc.go ... show more (mod_security) mod_security triggered on hostname [redacted] 34.176.42.3 (CL/Chile/3.42.176.34.bc.googleusercontent.com) show less	SQL Injection
🇧🇷 Sabrina Soto	2026-06-11 03:41:29 (5 days ago)	Probe for vulnerabilities. Path attempted: /.env.default	Web App Attack
🇬🇧 consul.to	2026-06-11 02:01:15 (5 days ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 4server	2026-06-10 21:25:01 (5 days ago)	[WedJun1023:24:58.4316922026][security2:error][pid975258:tid975381][client34.176.42.3:0]ModSecurity: ... show more [WedJun1023:24:58.4316922026][security2:error][pid975258:tid975381][client34.176.42.3:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"$\?i$$\?:/\(\?:\^\\|/$\\\\\\\\.$env\\|git\\|svn\\|hg\\|DS_Store$\\|/$\?:wp-config\\|\\\\\\\\.htaccess\\|\\\\\\\\.htpasswd$\\|\\\\\\\\.$\?:sql\\|bak\\|old\\|log$\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"www.bozza.avcolor.ch\"][uri\"/.env.production.bak\"][unique_id\"ainWKkm2BehENsEzhLSURQAAANc\"] show less	Port Scan Brute-Force Web App Attack

Showing 1 to 15 of 47 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c6a::120

🇰🇷 222.104.76.94

🇳🇱 86.54.31.36

🇦🇹 85.124.207.102

🇺🇸 34.11.111.55

🇬🇧 195.96.139.66

🇧🇷 187.50.194.182

🇨🇳 183.184.55.102

🇩🇪 167.94.146.51

🇫🇮 147.185.133.150

🇨🇳 117.50.55.121

🇧🇩 103.48.161.42

🇫🇷 91.196.152.24

🇳🇱 81.19.216.79

🇺🇸 67.43.243.158

🇵🇭 61.28.144.154

🇺🇦 46.219.229.4

🇨🇳 42.48.151.39

🇬🇧 35.203.211.27

🇨🇭 209.99.190.200