JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.88.131.42

34.88.131.42 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 72%: ?

72%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	42.131.88.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇫🇮 Finland
City	Lappeenranta, South Karelia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.88.131.42

Whois 34.88.131.42

IP Abuse Reports for 34.88.131.42:

This IP address has been reported a total of 17 times from 11 distinct sources. 34.88.131.42 was first reported on June 14th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 05:54:53 (5 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.88.131.42 (42.131.88.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.88.131.42 (42.131.88.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 01:54:49.526605 2026] [security2:error] [pid 11016:tid 11016] [client 34.88.131.42:60698] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.wedemandabetterplan.empoweruohio.org"] [uri "/.env.backup.txt"] [unique_id "ai-TqUFgWydSnzY6q9_6UgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 04:55:27 (6 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.88.131.42 (42.131.88.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.88.131.42 (42.131.88.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 00:55:20.423813 2026] [security2:error] [pid 8176:tid 8187] [client 34.88.131.42:59926] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "layoverlocations.com"] [uri "/.env.local"] [unique_id "ai-FuLYVxKUs1KJAWrYz_AAAAIc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 grassau.com	2026-06-15 04:45:23 (6 hours ago)	Port Scan detected from 34.88.131.42 (FI/Finland/South Karelia Region/Lappeenranta/42.131.88.34.bc ... show more Port Scan detected from 34.88.131.42 (FI/Finland/South Karelia Region/Lappeenranta/42.131.88.34.bc.googleusercontent.com). show less	Port Scan
🇨🇦 SSH-Admin	2026-06-15 04:00:04 (7 hours ago)	Probing for Exploits on ns200	Exploited Host Web App Attack
🇬🇧 consul.to	2026-06-15 03:50:45 (7 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇨🇦 SSH-Admin	2026-06-15 03:02:02 (7 hours ago)	Probing for Exploits on ns74	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 01:11:35 (9 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.88.131.42 (42.131.88.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.88.131.42 (42.131.88.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:11:31.854396 2026] [security2:error] [pid 12366:tid 12366] [client 34.88.131.42:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.mail-pmg.com"] [uri "/.env.qa"] [unique_id "ai9RQ-KQeAj_S0gnKQT2-wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-15 00:19:50 (10 hours ago)	Scanning/Probing (64)	Brute-Force Web App Attack
Anonymous	2026-06-14 23:28:49 (11 hours ago)	Blocked by ModSec and CSF	Port Scan
Anonymous	2026-06-14 22:33:53 (12 hours ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇳🇱 Savvii	2026-06-14 20:11:13 (14 hours ago)	15 attempts against mh-modsecurity-ban on pf102957	Brute-Force Web App Attack
🇮🇩 Burayot	2026-06-14 15:14:51 (19 hours ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 34.88.131.42 (FI/Finland/42.131.88.3 ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 34.88.131.42 (FI/Finland/42.131.88.34.bc.googleusercontent.com): 2 in the last 3600 secs show less	Web App Attack
🇳🇱 Savvii	2026-06-14 05:21:33 (1 day ago)	20 attempts against mh_ha-misbehave-ban on sedna	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-06-14 04:00:05 (1 day ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 03:36:58 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.88.131.42 (42.131.88.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.88.131.42 (42.131.88.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 23:36:52.487802 2026] [security2:error] [pid 4228:tid 4254] [client 34.88.131.42:52004] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fightingforallergyfreefood.com"] [uri "/.env.demo"] [unique_id "ai4h1GJDFBvTVDJYGRSRbQAAAZg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 186.219.184.142

🇺🇸 20.169.106.77

🇺🇸 173.239.214.134

🇰🇿 93.95.241.150

🇳🇱 80.79.5.134

🇮🇳 74.125.178.152

🇺🇸 45.8.19.59

🇺🇸 35.212.204.23

🇳🇱 45.148.10.141

🇮🇳 38.183.45.208

🇩🇪 34.40.70.139

🇩🇪 217.154.144.111

🇨🇭 209.99.189.174

🇺🇸 172.96.182.111

🇹🇷 91.151.88.168

🇫🇷 82.102.18.190

🇺🇸 37.19.221.146

🇺🇸 2607:f8b0:400e:c0c::120

🇮🇩 203.175.125.130

🇧🇩 118.179.100.38