JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.154.42.170

34.154.42.170 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 53%: ?

53%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	170.42.154.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇮🇹 Italy
City	Milan, Lombardy

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.154.42.170

Whois 34.154.42.170

IP Abuse Reports for 34.154.42.170:

This IP address has been reported a total of 44 times from 28 distinct sources. 34.154.42.170 was first reported on May 10th 2026, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 SFa	2026-05-19 05:49:30 (4 weeks ago)	Portscan	Port Scan
🇹🇷 Threat.live	2026-05-19 00:45:10 (4 weeks ago)	Suspicious Connection Attempts	Brute-Force
🇺🇸 dmsec	2026-05-19 00:21:02 (4 weeks ago)	The IP 34.154.42.170 is scanning a server on port 8080. Attack at: 2026-05-18 21:21 (yyyy/MM/dd HH:m ... show more The IP 34.154.42.170 is scanning a server on port 8080. Attack at: 2026-05-18 21:21 (yyyy/MM/dd HH:mm) UTC -3. show less	Port Scan
🇦🇹 Pingger Shikkoken	2026-05-19 00:18:59 (4 weeks ago)	2026-05-19T00:18:59+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6 ... show more 2026-05-19T00:18:59+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=34.154.42.170 DST=152.53.50.28 LEN=40 TOS=0x00 PREC=0x60 TTL=249 ID=48090 PROTO=TCP SPT=49939 DPT=7001 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-19T00:19:00+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=34.154.42.170 DST=152.53.50.28 LEN=40 TOS=0x00 PREC=0x60 TTL=249 ID=29503 PROTO=TCP SPT=49939 DPT=3000 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-19T00:19:00+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=34.154.42.170 DST=152.53.50.28 LEN=40 TOS=0x00 PREC=0x60 TTL=249 ID=15097 PROTO=TCP SPT=49939 DPT=8000 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Hacking Bad Web Bot Port Scan
🇧🇷 Peregrine	2026-05-17 03:14:45 (1 month ago)	Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 34.154.42.170 172.70.216.50 - - [14/May/2026:20:12: ... show more Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 34.154.42.170 172.70.216.50 - - [14/May/2026:20:12:21 -0300] "GET /admin/.env HTTP/1.1" 404 18193 show less	Bad Web Bot
🇧🇷 Peregrine	2026-05-16 03:14:05 (1 month ago)	Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 34.154.42.170 172.70.216.50 - - [14/May/2026:20:12: ... show more Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: 34.154.42.170 172.70.216.50 - - [14/May/2026:20:12:21 -0300] "GET /admin/.env HTTP/1.1" 404 18193 show less	Bad Web Bot
🇨🇭 4server	2026-05-15 11:09:19 (1 month ago)	[FriMay1513:09:15.2520272026][security2:error][pid750466:tid750532][client34.154.42.170:0]ModSecurit ... show more [FriMay1513:09:15.2520272026][security2:error][pid750466:tid750532][client34.154.42.170:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"www.endlesspoolsticino.ch.81-17-25-250.cpanel.site\"][uri\"/.env.local\"][unique_id\"agb-24XPf84FIGepF-YslgAAAIY\"] show less	Hacking Web App Attack
🇬🇧 consul.to	2026-05-15 09:29:38 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 e.fierstra	2026-05-15 07:45:15 (1 month ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇬🇧 Axel	2026-05-15 04:50:01 (1 month ago)	Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /admin/.env S ... show more Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /admin/.env Server: UK-01 show less	Web App Attack Hacking SQL Injection
Anonymous	2026-05-15 01:53:46 (1 month ago)	(caddyscan) Scanner path probe from 34.154.42.170 (IT/Italy/170.42.154.34.bc.googleusercontent.com): ... show more (caddyscan) Scanner path probe from 34.154.42.170 (IT/Italy/170.42.154.34.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:01:53:43 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:01:53:43 +0000] "GET /.env.development.local HTTP/1.1" [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:01:53:43 +0000] "GET /app/.env.local HTTP/1.1" [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:01:53:43 +0000] "GET /.env.dev HTTP/1.1" [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:01:53:43 +0000] "GET /api/.env HTTP/1.1" show less	Port Scan
Anonymous	2026-05-15 01:05:23 (1 month ago)	(caddyscan) Scanner path probe from 34.154.42.170 (IT/Italy/170.42.154.34.bc.googleusercontent.com): ... show more (caddyscan) Scanner path probe from 34.154.42.170 (IT/Italy/170.42.154.34.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:01:05:21 +0000] "GET /admin/.env HTTP/1.1" [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:01:05:21 +0000] "GET /app/.env HTTP/1.1" [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:01:05:21 +0000] "GET /.env.development.local HTTP/1.1" [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:01:05:21 +0000] "GET /.env.local HTTP/1.1" [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:01:05:21 +0000] "GET /.env.dev HTTP/1.1" show less	Port Scan
🇩🇪 Philister11	2026-05-15 00:54:48 (1 month ago)	CrowdSec: crowdsecurity/http-sensitive-files (IT/AS396982)	Web App Attack Hacking
Anonymous	2026-05-15 00:45:23 (1 month ago)	(caddyscan) Scanner path probe from 34.154.42.170 (IT/Italy/170.42.154.34.bc.googleusercontent.com): ... show more (caddyscan) Scanner path probe from 34.154.42.170 (IT/Italy/170.42.154.34.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:00:45:18 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:00:45:19 +0000] "GET /admin/.env HTTP/1.1" [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:00:45:19 +0000] "GET /.env.docker HTTP/1.1" [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:00:45:19 +0000] "GET /app/.env.local HTTP/1.1" [REDACTED] 200 2627 34.154.42.170 - - [15/May/2026:00:45:19 +0000] "GET /.env.dev.local HTTP/1.1" show less	Port Scan
🇧🇷 dominioz	2026-05-15 00:36:35 (1 month ago)	2026-05-15 00:35:52 GET /app/.env - - 34.154.42.170 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+App ... show more 2026-05-15 00:35:52 GET /app/.env - - 34.154.42.170 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/75.0.3770.80+Safari/537.36 - 301 607 2026-05-15 00:35:52 GET /admin/.env - - 34.154.42.170 HTTP/1.1 Mozilla/5.0+(Linux;+Android+9;+MI+8+Lite)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/76.0.3809.111+Mobile+Safari/537.36 - 301 611 2026-05-15 00:35:53 GET /.env - - 34.154.42.170 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_14_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/76.0.3809.110+Safari/537.36+Vivaldi/2.7.1628.28 - 301 599 2026-05-15 00:35:53 GET /api/.env - - 34.154.42.170 HTTP/1.1 Mozilla/5.0+(Linux;+Android+6.0.1;+SM-G900H+Build/MMB29K)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2743.98+Mobile+Safari/537.36 - 301 607 ... show less	Web App Attack

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.49

🇮🇳 103.91.72.241

🇺🇸 69.74.29.21

🇬🇧 193.163.125.146

🇮🇹 172.253.228.158

🇻🇳 171.243.149.218

🇩🇪 167.233.22.224

🇬🇧 165.227.230.63

🇧🇷 128.201.9.152

🇦🇱 109.69.6.125

🇺🇸 95.173.217.161

🇺🇸 69.171.249.139

🇳🇱 31.56.209.80

🇨🇳 14.116.189.74

🇰🇷 14.37.206.136

🇨🇳 8.138.230.159

🇷🇴 2.57.122.177

🇺🇸 172.96.161.212

🇧🇼 168.167.72.132

🇯🇵 118.194.228.101