JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.72.13.42

34.72.13.42 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 87%: ?

87%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	42.13.72.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Council Bluffs, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.72.13.42

Whois 34.72.13.42

IP Abuse Reports for 34.72.13.42:

This IP address has been reported a total of 20 times from 19 distinct sources. 34.72.13.42 was first reported on August 22nd 2021, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 JCB	2026-06-16 16:56:00 (3 days ago)	/wp-includes/wlwmanifest.xml	Brute-Force Web App Attack
🇺🇸 OceanTreasure	2026-06-16 13:15:09 (3 days ago)	tcp/443; WordPress XML-RPC brute force attempt: "GET //xmlrpc.php?rsd" @ 2026-06-16T13:07:35Z [proxy ... show more tcp/443; WordPress XML-RPC brute force attempt: "GET //xmlrpc.php?rsd" @ 2026-06-16T13:07:35Z [proxy] show less	Brute-Force
🇩🇪 Lino Project	2026-06-16 13:11:08 (3 days ago)	34.72.13.42 - - [16/Jun/2026:15:11:05 +0200] "GET //xmlrpc.php?rsd HTTP/1.1" 403 428 "-" "Mozilla/5. ... show more 34.72.13.42 - - [16/Jun/2026:15:11:05 +0200] "GET //xmlrpc.php?rsd HTTP/1.1" 403 428 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Antinson	2026-06-16 13:10:40 (3 days ago)	Scraping with a high error ratio and request rate High error rate and elevated request volume target ... show more Scraping with a high error ratio and request rate High error rate and elevated request volume targeting cPanel servers show less	Bad Web Bot
🇵🇱 strefapi_com	2026-06-16 13:04:19 (3 days ago)	Brute-force, web ...	Hacking Brute-Force Web App Attack
🇺🇸 infra-monitor	2026-06-16 13:00:04 (3 days ago)	Automated ban via infra-monitor: wp-sensitive-paths, wordpress-probe, crowdsecurity/http-probing	Port Scan Web App Attack
🇩🇪 BlueWire Hosting	2026-06-16 12:57:25 (3 days ago)	Probing websites for vulnerabilities	Web App Attack SQL Injection
Anonymous	2026-06-16 12:47:44 (3 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
🇩🇪 abdubhai	2026-06-16 12:42:17 (3 days ago)	34.72.13.42 - - [16/Jun/2026:17: ...	Brute-Force
🇬🇷 setupgr	2026-06-16 12:39:41 (3 days ago)	(mod_security) mod_security (id:11000011) triggered by 34.72.13.42: 1 in the last 86400 secs; Ports: ... show more (mod_security) mod_security (id:11000011) triggered by 34.72.13.42: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Tue Jun 16 15:39:38.200605 2026] [security2:error] [pid 2210295:tid 2210414] [client 34.72.13.42:57365] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 42.13.72.34.bc.googleusercontent.com"] [severity "CRITICAL"] [hostname "mail.host.setworldup365.com"] [uri "/"] [unique_id "ajFECoHi3fYqxwKQHNaPTgAAAcU"] show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-16 12:32:11 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 34.72.13.42 (42.13.72.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:225170) triggered by 34.72.13.42 (42.13.72.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 08:32:04.642574 2026] [security2:error] [pid 32288:tid 32288] [client 34.72.13.42:58859] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mail.funnyaaron.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mail.funnyaaron.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ajFCRIUHd51mTLxnQEmKxgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 DZBOT	2026-06-16 12:23:10 (3 days ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇩🇪 Blexyel	2026-06-16 12:07:06 (4 days ago)	34.72.13.42 - - [16/Jun/2026:14:07:05 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 54 ... show more 34.72.13.42 - - [16/Jun/2026:14:07:05 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" ... show less	Brute-Force Web App Attack
🇮🇹 VHosting	2026-06-16 12:05:03 (4 days ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇩🇪 iNetWorker	2026-06-16 12:04:25 (4 days ago)	trolling for resource vulnerabilities	Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇪 200.71.154.142

🇺🇸 147.185.132.130

🇩🇪 128.1.121.126

🇺🇸 104.234.53.63

🇺🇸 64.62.156.96

🇺🇸 20.65.153.128

🇺🇸 207.90.244.14

🇳🇱 205.237.109.244

🇳🇱 176.65.139.56

🇺🇸 147.185.132.131

🇨🇦 67.71.55.209

🇳🇱 45.156.128.76

🇨🇳 14.103.117.116

🇨🇴 209.14.116.92

🇧🇷 190.89.136.214

🇫🇮 147.185.133.228

🇨🇳 140.206.195.127

🇺🇸 128.1.180.128

🇧🇩 103.179.198.19

🇳🇱 93.123.72.183