JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.88.34.241

34.88.34.241 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 32%: ?

32%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	241.34.88.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇫🇮 Finland
City	Lappeenranta, South Karelia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.88.34.241

Whois 34.88.34.241

IP Abuse Reports for 34.88.34.241:

This IP address has been reported a total of 10 times from 7 distinct sources. 34.88.34.241 was first reported on May 28th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 kkeyser	2026-05-30 02:55:10 (2 weeks ago)	GET /backend/actuator/heapdump HTTP/1.1	Web App Attack
🇺🇸 TPI-Abuse	2026-05-30 00:03:37 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 34.88.34.241 (241.34.88.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210730) triggered by 34.88.34.241 (241.34.88.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 20:03:33.427708 2026] [security2:error] [pid 13965:tid 13965] [client 34.88.34.241:33180] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|192.64.150.249\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "192.64.150.249"] [uri "/.config/gcloud/credentials.db"] [unique_id "ahopVeSQK0thPhd5lALjBAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇷 muratkaya665	2026-05-29 22:14:41 (2 weeks ago)	IPS Attack Blocked by server.mura****.com.tr Fortigate-80E. Attack Name: Spring.Boot.Actuator.Unau ... show more IPS Attack Blocked by server.mura****.com.tr Fortigate-80E. Attack Name: Spring.Boot.Actuator.Unauthorized.Access. Dest Port: 80. Service: HTTP. Message: applications3: Spring.Boot.Actuator.Unauthorized.Access. show less	Hacking
🇺🇸 Starburst SysOp Team	2026-05-29 03:04:23 (2 weeks ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-stl2-13)	Hacking Bad Web Bot
Anonymous	2026-05-29 02:55:14 (2 weeks ago)	[Thu May 28 19:55:14.424058 2026] [authz_core:error] [pid 1437771] [client 34.88.34.241:37236] AH016 ... show more [Thu May 28 19:55:14.424058 2026] [authz_core:error] [pid 1437771] [client 34.88.34.241:37236] AH01630: client denied by server configuration: /home/appowner/www/sec/actuator [Thu May 28 19:55:14.425075 2026] [authz_core:error] [pid 1443759] [client 34.88.34.241:37244] AH01630: client denied by server configuration: /home/appowner/www/sec/actuator [Thu May 28 19:55:14.428667 2026] [authz_core:error] [pid 1443760] [client 34.88.34.241:37256] AH01630: client denied by server configuration: /home/appowner/www/sec/actuator [Thu May 28 19:55:14.513463 2026] [authz_core:error] [pid 1436795] [client 34.88.34.241:37260] AH01630: client denied by server configuration: /home/appowner/www/sec/actuator [Thu May 28 19:55:14.514512 2026] [authz_core:error] [pid 1443755] [client 34.88.34.241:37276] AH01630: client denied by server configuration: /home/appowner/www/sec/actuator ... show less	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-05-29 02:52:09 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 34.88.34.241 (241.34.88.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210730) triggered by 34.88.34.241 (241.34.88.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 22:52:02.103298 2026] [security2:error] [pid 3386:tid 3386] [client 34.88.34.241:57678] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|192.64.150.203\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "192.64.150.203"] [uri "/pg_dump.sql"] [unique_id "ahj_UrKAkPrk6OFoxGKzSQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-28 23:05:08 (2 weeks ago)	(mod_security) mod_security (id:210831) triggered by 34.88.34.241 (241.34.88.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210831) triggered by 34.88.34.241 (241.34.88.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 19:05:01.578176 2026] [security2:error] [pid 22027:tid 22027] [client 34.88.34.241:59346] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|192.64.150.36\|F\|4"] [data "Microsoft URL"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "192.64.150.36"] [uri "/v1/actuator/configprops"] [unique_id "ahjKHRNPCvRiF-gg-KbXMAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Antinson	2026-05-28 22:45:14 (2 weeks ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-28 21:27:57 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 34.88.34.241 (241.34.88.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210730) triggered by 34.88.34.241 (241.34.88.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 17:27:51.178903 2026] [security2:error] [pid 27665:tid 27665] [client 34.88.34.241:32870] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|192.64.150.209\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "192.64.150.209"] [uri "/.config/gcloud/credentials.db"] [unique_id "ahizVwnTCzzKXMoSVaRA8AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 AzurHOSTS	2026-05-28 21:11:47 (2 weeks ago)	[AZURHOSTS] DDoS Attack Report - This IP has been flagged by our system.	DDoS Attack Brute-Force

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.59.206.2

🇱🇾 154.127.68.67

🇹🇼 114.34.106.146

🇧🇬 45.137.79.2

🇺🇸 15.204.223.158

🇧🇷 190.115.84.25

🇺🇸 156.232.13.161

🇿🇦 102.33.129.86

🇨🇳 101.126.22.12

🇳🇱 45.148.10.121

🇸🇬 136.110.13.158

🇳🇱 91.92.40.8

🇰🇷 1.238.106.229

🇰🇷 221.155.237.108

🇩🇪 167.94.146.34

🇩🇿 154.241.120.114

🇧🇬 79.124.59.78

🇺🇸 2607:f8b0:4001:c0f::123

🇧🇷 200.108.174.4

🇪🇬 197.199.224.52