JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.32.85.42

34.32.85.42 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	42.85.32.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.32.85.42

Whois 34.32.85.42

IP Abuse Reports for 34.32.85.42:

This IP address has been reported a total of 39 times from 32 distinct sources. 34.32.85.42 was first reported on June 9th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-12 21:59:06 (1 day ago)	Auto-ban: >3000 req/min op 2026-06-12	Web App Attack SSH Hacking
🇺🇸 rsa	2026-06-12 17:47:00 (1 day ago)	GET /api/v1/config.json HTTP/1.1	DDoS Attack Web App Attack
🇩🇪 Lino Project	2026-06-12 01:16:59 (2 days ago)	CrowdSec abuse IP report (host SRV-2) Scenario: crowdsecurity/http-dos-swithcing-ua	Hacking
🇳🇱 homeshowdomain.nl	2026-06-11 21:59:46 (2 days ago)	Auto-ban: 305 malicious requests on 2026-06-10 (e.g., env/backup probes, brute-force, or error burst ... show more Auto-ban: 305 malicious requests on 2026-06-10 (e.g., env/backup probes, brute-force, or error bursts). show less	Web App Attack SSH Hacking
🇧🇪 cmbplf	2026-06-11 18:32:35 (2 days ago)	179 requests with url.path credentials.json 173 requests with url.path config.json 125 requests ... show more 179 requests with url.path credentials.json 173 requests with url.path config.json 125 requests with url.path secrets.json 118 requests with url.path compose.yml 103 requests with url.path *config.yml show less	Brute-Force Bad Web Bot
🇳🇱 Site.eu	2026-06-11 18:31:17 (2 days ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 updown.io	2026-06-11 10:55:53 (3 days ago)	{"level":"info","ts":1781175352.3987823,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781175352.3987823,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.32.85.42","remote_port":"47522","client_ip":"34.32.85.42","proto":"HTTP/1.1","method":"GET","host":"status.zegsu.com","uri":"/dump","headers":{"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36 OPR/62.0.3331.116"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"","server_name":"status.zegsu.com","ech":false}},"bytes_read":0,"user_id":"","duration":0.000146829,"size":0,"status":429,"resp_headers":{"Server":["Caddy"],"Alt-Svc":["h3=\":443\"; ma=2592000"],"Retry-After":["1"]}} {"level":"info","ts":1781175352.402689,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.32.85.42","remote_port":"47514","client_ip":"34.32.85.42","proto":"HTTP/1.1","method":"GET","host":" ... show less	DDoS Attack Web App Attack
Anonymous	2026-06-11 10:52:15 (3 days ago)	Bot / seems abusive / Apache connections: 71	DDoS Attack Web Spam Bad Web Bot Web App Attack
🇫🇷 Lacrimosa99	2026-06-11 09:36:52 (3 days ago)	34.32.85.42 - - [11/Jun/2026:11:36:52 +0200] "GET /.config/gcloud/credentials.db HTTP/1.1" 404 6272 ... show more 34.32.85.42 - - [11/Jun/2026:11:36:52 +0200] "GET /.config/gcloud/credentials.db HTTP/1.1" 404 6272 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 34.32.85.42 - - [11/Jun/2026:11:36:52 +0200] "GET /firebase-adminsdk.json HTTP/1.1" 404 6272 "-" "Mozilla/5.0 (Linux; Android 8.0.0; SAMSUNG-SM-G891A) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36" 34.32.85.42 - - [11/Jun/2026:11:36:52 +0200] "GET /admin/phpinfo.php HTTP/1.1" 404 6202 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.1.2 Safari/605.1.15" ... show less	Web Spam
🇩🇪 4server	2026-06-11 08:49:38 (3 days ago)	[ThuJun1110:49:34.6095352026][security2:error][pid1752396:tid1752522][client34.32.85.42:0]ModSecurit ... show more [ThuJun1110:49:34.6095352026][security2:error][pid1752396:tid1752522][client34.32.85.42:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.artisteer-italia.org.136-243-54-122.cpanel.site\"][uri\"/actuator/threaddump\"][unique_id\"aip2notD8cTIQz2s9xt7nAAAAJc\"] show less	Port Scan Brute-Force Web App Attack
🇸🇮 valryx	2026-06-11 05:13:19 (3 days ago)	🛡️ Fail2ban - Jail: nginx-cms-exploits Log entries: 34.32.85.42 - - [11/Jun/2026:05:13:19 +0000] "GE ... show more 🛡️ Fail2ban - Jail: nginx-cms-exploits Log entries: 34.32.85.42 - - [11/Jun/2026:05:13:19 +0000] "GET /admin/phpinfo.php HTTP/1.1" 404 117 "-" "Mozilla/5.0 (Mobile; Windows Phone 8.1; Android 4.0; ARM; Trident/7.0; Touch; rv:11.0; IEMobile/11.0; NOKIA; Lumia 929) like iPhone OS 7_0_3 Mac OS X AppleWebKit/537 (KHTML, like Gecko) Mobile Safari/537" show less	Web App Attack
🇩🇪 akasolutions.de	2026-06-11 03:58:07 (3 days ago)	(mod_security) mod_security triggered on hostname [redacted] 34.32.85.42 (DE/Germany/42.85.32.34.bc. ... show more (mod_security) mod_security triggered on hostname [redacted] 34.32.85.42 (DE/Germany/42.85.32.34.bc.googleusercontent.com) show less	SQL Injection
🇺🇸 its101	2026-06-10 18:55:06 (3 days ago)	Automated detection by LockdownAccess security system. Attack type(s): framework_probe, config_probe ... show more Automated detection by LockdownAccess security system. Attack type(s): framework_probe, config_probe, git_exposure, data_exposure. Reason: Nginx: git_exposure attack. Path targeted: unknown. Blocked in Cloudflare. show less	Web App Attack
🇳🇱 Webhoster	2026-06-10 17:52:31 (3 days ago)	CrowdSec scenario: crowdsecurity/http-crawl-non_statics	Hacking
🇳🇱 debestelapp	2026-06-10 15:45:07 (3 days ago)		Web App Attack

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 200.189.27.76

🇲🇽 187.141.71.166

🇺🇸 168.156.171.11

🇮🇳 103.251.56.169

🇱🇹 81.30.98.62

🇺🇸 2600:1900:4120:e3fb:0:79::

🇬🇧 193.163.125.45

🇺🇸 192.3.206.66

🇺🇸 144.126.129.217

🇺🇸 136.49.53.226

🇺🇸 108.188.64.122

🇷🇴 92.118.39.62

🇩🇪 69.5.169.224

🇺🇸 44.209.182.81

🇫🇮 35.228.22.191

🇺🇸 2604:a880:400:d1:0:4:963d:8001

🇻🇪 190.120.255.31

🇩🇪 185.36.120.34

🇳🇱 91.92.40.4

🇷🇴 80.94.95.173