JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.47.87.5

34.47.87.5 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 85%: ?

85%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	5.87.47.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.47.87.5

Whois 34.47.87.5

IP Abuse Reports for 34.47.87.5:

This IP address has been reported a total of 33 times from 24 distinct sources. 34.47.87.5 was first reported on July 13th 2025, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇿 Antinson	2026-06-26 02:07:21 (22 hours ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇳🇱 Mangelot Hosting	2026-06-26 01:40:34 (23 hours ago)	(modsecurity) srv104 ModSecurity 34.47.87.5 (KR/South Korea/5.87.47.34.bc.googleusercontent.com): 10 ... show more (modsecurity) srv104 ModSecurity 34.47.87.5 (KR/South Korea/5.87.47.34.bc.googleusercontent.com): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 01:36:54 (23 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.47.87.5 (5.87.47.34.bc.googleusercontent.com ... show more (mod_security) mod_security (id:210492) triggered by 34.47.87.5 (5.87.47.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 21:36:48.059231 2026] [security2:error] [pid 23447:tid 23447] [client 34.47.87.5:37994] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cassandramari.com"] [uri "/src/.git/config"] [unique_id "aj3XsPvGoRi7-FbZHqFiPQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Dominik Lysiak	2026-06-26 00:53:21 (23 hours ago)	34.47.87.5 - - [26/Jun/2026:02:53:20 +0200] "GET /.git/config HTTP/1.1" 401 172 "-" "Mozilla/5.0 (Wi ... show more 34.47.87.5 - - [26/Jun/2026:02:53:20 +0200] "GET /.git/config HTTP/1.1" 401 172 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; tr; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8 ( .NET CLR 3.5.30729; .NET4.0E)" 34.47.87.5 - - [26/Jun/2026:02:53:20 +0200] "GET /wp-content/.git/config HTTP/1.1" 401 574 "-" "Mozilla/5.0 (Linux; Android 9; MHA-AL00 Build/HUAWEIMHA-AL00; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/71.0.3578.99 Mobile Safari/537.36 MMWEBID/9772 MicroMessenger/7.0.6.1460(0x27000634) Process/tools NetType/WIFI Language/zh_CN" 34.47.87.5 - - [26/Jun/2026:02:53:20 +0200] "GET /symfony/.git/config HTTP/1.1" 401 574 "-" "Mozilla/5.0 (Linux; Android 9; SM-A705GM) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.143 Mobile Safari/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 00:47:21 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.47.87.5 (5.87.47.34.bc.googleusercontent.com ... show more (mod_security) mod_security (id:210492) triggered by 34.47.87.5 (5.87.47.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 20:47:15.393184 2026] [security2:error] [pid 29886:tid 29910] [client 34.47.87.5:42560] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adetnw.com"] [uri "/.git/config"] [unique_id "aj3ME3PdMUY7xIq3OsPNqQAAAVE"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-06-26 00:45:53 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 convos	2026-06-26 00:44:54 (1 day ago)	HONEYPOT TRIGGERED [HP-MQU7LGK6-G35ZAR]: GET /v1/.git/config on hq.it-solutionsusa.com \| UA: Mozilla ... show more HONEYPOT TRIGGERED [HP-MQU7LGK6-G35ZAR]: GET /v1/.git/config on hq.it-solutionsusa.com \| UA: Mozilla/5.0 (Linux; Android 4.1.2; SHV-E250S Build/JZO54K) AppleWebKit/537.36 (K \| TS: 2026-06-26T00:44:54.678Z show less	Port Scan Web App Attack
🇩🇪 Bedios GmbH	2026-06-26 00:23:41 (1 day ago)	Login credentials theft attempt	Hacking
🇫🇷 dynamix	2026-06-26 00:20:29 (1 day ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 00:18:31 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.47.87.5 (5.87.47.34.bc.googleusercontent.com ... show more (mod_security) mod_security (id:210492) triggered by 34.47.87.5 (5.87.47.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 20:18:23.105808 2026] [security2:error] [pid 6489:tid 6489] [client 34.47.87.5:39124] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.luckydawgs.com"] [uri "/html/.git/config"] [unique_id "aj3FT-6SBsGWMgV2lZIXMQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Antinson	2026-06-25 23:32:13 (1 day ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇮🇪 AutosOnShow	2026-06-25 23:13:06 (1 day ago)	blocked for webapp attack \| path requested: /.git/config \| seen at 2026-06-25 23:12:10.109 \|	Web App Attack
🇩🇪 FeG Deutschland	2026-06-25 23:12:33 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 18:03:40 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.47.87.5 (5.87.47.34.bc.googleusercontent.com ... show more (mod_security) mod_security (id:210492) triggered by 34.47.87.5 (5.87.47.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 14:03:36.106195 2026] [security2:error] [pid 28864:tid 28864] [client 34.47.87.5:42664] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "integratic.com.co"] [uri "/v3/.git/config"] [unique_id "aj1teD8g39Cro1T7ElVT0wAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Savvii	2026-06-25 17:47:12 (1 day ago)	20 attempts against mh-misbehave-ban on storm	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇷 201.202.14.118

🇮🇶 169.224.4.12

🇦🇴 102.218.85.219

🇫🇷 91.231.89.77

🇺🇸 82.39.234.17

🇺🇸 65.49.1.24

🇨🇳 47.93.81.231

🇨🇳 43.254.106.204

🇰🇷 220.118.173.234

🇷🇺 178.155.30.4

🇨🇳 175.170.144.17

🇳🇱 102.129.200.117

🇬🇧 82.20.7.110

🇳🇱 45.148.10.141

🇨🇳 43.248.108.155

🇨🇳 14.103.184.200

🇺🇸 216.226.77.10

🇹🇼 212.115.54.84

🇸🇬 194.164.107.4

🇮🇹 158.47.247.187