JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.81.92.47

34.81.92.47 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 67%: ?

67%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	47.92.81.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇹🇼 Taiwan
City	Taipei, Taiwan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.81.92.47

Whois 34.81.92.47

IP Abuse Reports for 34.81.92.47:

This IP address has been reported a total of 15 times from 12 distinct sources. 34.81.92.47 was first reported on June 25th 2026, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 KiekerJan	2026-06-26 01:49:24 (23 hours ago)	34.81.92.47 - - [26/Jun/2026:03:49:23 +0200] "GET /v1/.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 ... show more 34.81.92.47 - - [26/Jun/2026:03:49:23 +0200] "GET /v1/.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.142 Safari/537.36" 34.81.92.47 - - [26/Jun/2026:03:49:23 +0200] "GET /v3/.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.2) AppleWebKit/536.3 (KHTML, like Gecko) Chrome/19.0.1061.1 Safari/536.3" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 01:49:21 (23 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.81.92.47 (47.92.81.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.81.92.47 (47.92.81.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 21:49:14.739969 2026] [security2:error] [pid 16973:tid 16973] [client 34.81.92.47:40374] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.auracb.marcosmelero.com"] [uri "/v2/.git/config"] [unique_id "aj3ampQ3S_RVX9gSfIGvfQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 vaddilyin	2026-06-26 01:39:35 (23 hours ago)	{"ClientAddr":"34.81.92.47:41162","ClientHost":"34.81.92.47","ClientPort":"41162","ClientUsername":" ... show more {"ClientAddr":"34.81.92.47:41162","ClientHost":"34.81.92.47","ClientPort":"41162","ClientUsername":"-","DownstreamContentSize":158,"DownstreamStatus":404,"Duration":4646234,"OriginContentSize":158,"OriginDuration":4582994,"OriginStatus":404,"Overhead":63240,"RequestAddr":"io.vdkln.com","RequestContentSize":0,"RequestCount":258171,"RequestHost":"io.vdkln.com","RequestMethod":"GET","RequestPath":"/backend/.git/config","RequestPort":"-","RequestProtocol":"HTTP/1.1","RequestScheme":"https","RetryAttempts":0,"RouterName":"n8n@docker","ServiceAddr":"172.18.0.6:5678","ServiceName":"n8n@docker","ServiceURL":"http://172.18.0.6:5678","StartLocal":"2026-06-26T01:39:34.824498252Z","StartUTC":"2026-06-26T01:39:34.824498252Z","TLSCipher":"TLS_AES_128_GCM_SHA256","TLSVersion":"1.3","entryPointName":"websecure","level":"info","msg":"","time":"2026-06-26T01:39:34Z"} {"ClientAddr":"34.81.92.47:41192","ClientHost":"34.81.92.47","ClientPort":"41192","ClientUsername":"-","DownstreamContentSize":154,"Downst ... show less	Web App Attack
🇩🇪 Bedios GmbH	2026-06-26 01:36:39 (23 hours ago)	Login credentials theft attempt	Hacking
🇺🇸 NXTwoThou	2026-06-26 01:11:46 (23 hours ago)	/html/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 01:10:02 (23 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.81.92.47 (47.92.81.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.81.92.47 (47.92.81.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 21:09:57.609510 2026] [security2:error] [pid 9986:tid 9986] [client 34.81.92.47:38694] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barreda.org"] [uri "/app/.git/config"] [unique_id "aj3RZU-0XkJ7w1gqOx6T2gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-26 00:07:15 (1 day ago)	Automated web scanner. Requested suspicious paths: /build/.git/config \| /v2/.git/config \| /web/.git/ ... show more Automated web scanner. Requested suspicious paths: /build/.git/config \| /v2/.git/config \| /web/.git/config \| /htdocs/.git/config \| /portal/.git/config \| /html/.git/config \| /assets/.git/config \| /shop/.git/config \| /admin/.git/config \| /src/.git/config \| /project/.git/config \| /wp-content/.git/config \| /symfony/.git/config \| /v1/.git/config \| /v3/.git/config \| /public/.git/config \| /code/.git/config \| /laravel/.git/config \| /frontend/.git/config \| /wordpress/.git/config \| /api/.git/config \| /dist/.git/config \| /dashboard/.git/config \| /blog/.git. UTC: 2026-06-25 23:48:03. show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 23:17:26 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.81.92.47 (47.92.81.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.81.92.47 (47.92.81.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 19:17:22.924670 2026] [security2:error] [pid 25346:tid 25346] [client 34.81.92.47:44180] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.n3fjp.com"] [uri "/wp-content/.git/config"] [unique_id "aj23AuQrLFAVVuMpXdeUmgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Savvii	2026-06-25 16:58:15 (1 day ago)	15 attempts against mh-modsecurity-ban on mars	Brute-Force Web App Attack
🇳🇿 Antinson	2026-06-25 16:21:32 (1 day ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
🇹🇷 Threat.live	2026-06-25 16:00:04 (1 day ago)	Suspicious Connection Attempts	Brute-Force
🇧🇾 lns.bz	2026-06-25 15:15:24 (1 day ago)	Too many 404 requests [BY]	Web App Attack
🇳🇱 Savvii	2026-06-25 13:52:00 (1 day ago)	20 attempts against mh-misbehave-ban on basil	Brute-Force Bad Web Bot Web App Attack
🇨🇭 ca	2026-06-25 13:39:12 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
🇳🇴 jad-abuse	2026-06-25 12:56:33 (1 day ago)	ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_expos ... show more ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: git_exposure. Observed by 1 sensor(s); 53 hits. show less	Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 152.32.135.135

🇨🇳 112.86.225.83

🇺🇸 37.123.192.41

🇺🇸 2602:feda:f395:c47a:bc54:1761:3728:7571

🇺🇸 216.25.89.134

🇺🇸 205.210.31.45

🇬🇧 193.163.125.158

🇬🇹 181.209.150.40

🇧🇷 177.190.89.163

🇧🇷 177.44.71.134

🇸🇬 140.245.43.171

🇩🇿 105.235.139.202

🇫🇷 85.217.140.28

🇸🇬 68.183.190.62

🇯🇲 63.143.99.143

🇨🇴 45.167.250.45

🇺🇸 45.146.55.131

🇬🇧 35.203.211.129

🇭🇰 8.218.44.42

🇮🇳 223.185.56.9