JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.159.103.92

34.159.103.92 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 48%: ?

48%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	92.103.159.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.159.103.92

Whois 34.159.103.92

IP Abuse Reports for 34.159.103.92:

This IP address has been reported a total of 12 times from 10 distinct sources. 34.159.103.92 was first reported on June 13th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Hostynet	2026-06-13 16:25:42 (2 weeks ago)	TCP SYN flood detected by MikroTik RouterOS filter (sustained half-open connection rate from single ... show more TCP SYN flood detected by MikroTik RouterOS filter (sustained half-open connection rate from single source). Source automatically blacklisted. show less	DDoS Attack
🇺🇸 mnsf	2026-06-13 12:05:15 (2 weeks ago)	Abuse Detected (14)	Brute-Force Web App Attack
🇫🇷 COMAITE	2026-06-13 11:40:14 (2 weeks ago)	Suspicious URL access.	Web App Attack
🇫🇷 masterguru	2026-06-13 11:17:05 (2 weeks ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-193)	Hacking
🇺🇸 TPI-Abuse	2026-06-13 09:36:32 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 34.159.103.92 (92.103.159.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210730) triggered by 34.159.103.92 (92.103.159.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 05:36:24.456541 2026] [security2:error] [pid 25728:tid 25728] [client 34.159.103.92:34804] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|xtrl.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "xtrl.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "ai0kmJaUdbm_kY3995XTPgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 07:25:40 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 34.159.103.92 (92.103.159.34.bc.googleuserconte ... show more (mod_security) mod_security (id:210730) triggered by 34.159.103.92 (92.103.159.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 03:25:34.102132 2026] [security2:error] [pid 1815:tid 1815] [client 34.159.103.92:59984] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kerrywood.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kerrywood.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "ai0F7vW5ID4oJ1R7M6dJeAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 ConsulHosting	2026-06-13 07:15:18 (2 weeks ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇨🇭 m_vlasov	2026-06-13 07:11:42 (2 weeks ago)	SSH/Telnet honeypot: 0 login attempts, 0 sessions, 0 shell commands.	Hacking
🇫🇷 Octopuce	2026-06-13 06:00:40 (2 weeks ago)	Aggressive web search of vulnerable pages: /secrets/aws.json /secrets/azure.json /secrets/gcp.json / ... show more Aggressive web search of vulnerable pages: /secrets/aws.json /secrets/azure.json /secrets/gcp.json /secrets/credentials.json /docker-compose.ym ... show less	Web App Attack
🇮🇹 VHosting	2026-06-13 05:25:04 (2 weeks ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 mnsf	2026-06-13 04:06:00 (2 weeks ago)	Scanning/Probing (53) Request Overload (263)	Brute-Force Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-13 03:13:07 (2 weeks ago)	categories: DDoS Attack	DDoS Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 216.238.101.123

🇺🇦 212.90.169.79

🇺🇸 162.158.90.63

🇩🇪 85.215.202.39

🇺🇸 47.251.27.189

🇯🇵 47.74.19.210

🇺🇸 4.246.117.137

🇳🇱 204.76.203.219

🇮🇳 202.53.94.246

🇧🇷 187.7.165.25

🇩🇪 172.252.8.49

🇮🇱 172.69.128.151

🇺🇸 172.64.217.44

🇺🇸 166.77.36.7

🇸🇪 82.209.191.11

🇺🇸 65.49.1.49

🇺🇸 50.116.72.11

🇲🇾 47.250.178.80

🇲🇾 47.250.90.214

🇩🇪 47.245.139.137