JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.241.88.42

35.241.88.42 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 89%: ?

89%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	42.88.241.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.241.88.42

Whois 35.241.88.42

IP Abuse Reports for 35.241.88.42:

This IP address has been reported a total of 34 times from 19 distinct sources. 35.241.88.42 was first reported on June 8th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇴 jad-abuse	2026-06-15 00:52:06 (3 days ago)	ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: actuator, aw ... show more ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: actuator, aws_creds, env_probe, config_backup, ssh_keys. Observed by 1 sensor(s); 734 hits. show less	Hacking Web App Attack
🇳🇱 Site.eu	2026-06-14 23:55:01 (3 days ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 ardexter	2026-06-14 20:48:12 (3 days ago)	Wordpress attack and DDOS	DDoS Attack Web App Attack
🇫🇮 pixiekat	2026-06-14 11:23:03 (3 days ago)	[Sun Jun 14 12:23:02.874886 2026] [authz_core:error] [pid 2058002:tid 2058048] [client 35.241.88.42: ... show more [Sun Jun 14 12:23:02.874886 2026] [authz_core:error] [pid 2058002:tid 2058048] [client 35.241.88.42:47546] AH01630: client denied by server configuration: /var/www/html/internal [Sun Jun 14 12:23:02.876196 2026] [authz_core:error] [pid 2058002:tid 2058056] [client 35.241.88.42:47572] AH01630: client denied by server configuration: /var/www/html/configprops [Sun Jun 14 12:23:02.879483 2026] [authz_core:error] [pid 2134726:tid 2134771] [client 35.241.88.42:47552] AH01630: client denied by server configuration: /var/www/html/v2 [Sun Jun 14 12:23:02.883537 2026] [authz_core:error] [pid 2058002:tid 2058065] [client 35.241.88.42:47566] AH01630: client denied by server configuration: /var/www/html/.gcloud [Sun Jun 14 12:23:02.889981 2026] [authz_core:error] [pid 2134726:tid 2134777] [client 35.241.88.42:47592] AH01630: client denied by server configuration: /var/www/html/.config ... show less	Brute-Force
🇩🇪 todix	2026-06-14 04:13:46 (4 days ago)	Web App Attack Exploid from 35.241.88.42	Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-13 19:39:08 (4 days ago)	categories: DDoS Attack	DDoS Attack
🇳🇱 homeshowdomain.nl	2026-06-09 22:01:47 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-06-09 15:13:30 (1 week ago)	(mod_security) mod_security (id:949110) triggered by 35.241.88.42 (42.88.241.35.bc.googleusercontent ... show more (mod_security) mod_security (id:949110) triggered by 35.241.88.42 (42.88.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 11:13:26.087968 2026] [security2:error] [pid 17434:tid 17434] [client 35.241.88.42:59878] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "jrwoodsrentals.com"] [uri "/.git/config"] [unique_id "aigtluQyTWy2-1VhC02ynwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 13:09:22 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.241.88.42 (42.88.241.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.241.88.42 (42.88.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:09:18.674404 2026] [security2:error] [pid 28635:tid 28635] [client 35.241.88.42:46984] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lisalehmann.com"] [uri "/.git/config"] [unique_id "aigQfo_xJTovuuC4eisZWAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 TechnoSolutions CL	2026-06-09 12:38:08 (1 week ago)	35.241.88.42 - - [09/Jun/2026:12:38:04 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (iP ... show more 35.241.88.42 - - [09/Jun/2026:12:38:04 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 12_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) GSA/80.0.262003652 Mobile/16G77 Safari/604.1" 35.241.88.42 - - [09/Jun/2026:12:38:07 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Linux; U; Android 2.0.1; de-de; Milestone Build/SHOLS_U2_01.14.0) AppleWebKit/530.17 (KHTML, like Gecko) Version/4.0 Mobile Safari/530.17" ... show less	Hacking Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-09 11:56:10 (1 week ago)	[TueJun0913:56:04.6985252026][security2:error][pid2865632:tid2865664][client35.241.88.42:0]ModSecuri ... show more [TueJun0913:56:04.6985252026][security2:error][pid2865632:tid2865664][client35.241.88.42:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"miotrentino.it\"][uri\"/.git/config\"][unique_id\"aif_VD6tNqKaAzSaYIjlpQAAABA\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 11:08:52 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.241.88.42 (42.88.241.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.241.88.42 (42.88.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:08:46.218867 2026] [security2:error] [pid 11473:tid 11473] [client 35.241.88.42:54160] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jrpiano.com"] [uri "/.git/config"] [unique_id "aif0PgWkW4gbsZP7q4BrGwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 10:28:47 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.241.88.42 (42.88.241.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.241.88.42 (42.88.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:28:40.622183 2026] [security2:error] [pid 32390:tid 32390] [client 35.241.88.42:56480] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dance4ovations.com"] [uri "/.git/config"] [unique_id "aifq2AyyOr5yY5YuyaX1sgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 07:07:28 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 35.241.88.42 (42.88.241.35.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 35.241.88.42 (42.88.241.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 03:07:23.682468 2026] [security2:error] [pid 21665:tid 21665] [client 35.241.88.42:41584] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.test.flightclaimservices.com"] [uri "/.git/config"] [unique_id "aie7q566WNP_wQSVqv_ryAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-09 07:03:44 (1 week ago)	[TueJun0909:03:38.6400152026][security2:error][pid4130450:tid4130867][client35.241.88.42:0]ModSecuri ... show more [TueJun0909:03:38.6400152026][security2:error][pid4130450:tid4130867][client35.241.88.42:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"www.eleglatz.ch.81-17-25-250.cpanel.site\"][uri\"/.git/config\"][unique_id\"aie6ynlzmRgi1C80VGRfZgAAAQw\"] show less	Hacking Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 212.32.76.52

🇯🇵 203.25.124.156

🇯🇵 203.25.124.145

🇻🇪 156.247.207.73

🇪🇸 91.146.102.43

🇺🇸 66.116.237.163

🇩🇪 43.228.157.8

🇧🇷 205.210.31.182

🇯🇵 203.25.124.173

🇯🇵 203.25.124.165

🇯🇵 203.25.124.159

🇯🇵 203.25.124.149

🇯🇵 203.25.124.147

🇸🇦 176.45.164.112

🇰🇷 106.247.94.102

🇭🇰 66.95.216.18

🇸🇬 47.84.142.92

🇬🇧 35.203.210.125

🇺🇸 23.177.184.40

🇧🇷 20.226.116.19