JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.50.45.212

34.50.45.212 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 80%: ?

80%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	212.45.50.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.50.45.212

Whois 34.50.45.212

IP Abuse Reports for 34.50.45.212:

This IP address has been reported a total of 14 times from 13 distinct sources. 34.50.45.212 was first reported on June 14th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 rubixstudios	2026-06-15 09:02:02 (1 hour ago)	Excessive HTTP requests consistent with automated attack behaviour detected by Imunify360	DDoS Attack Brute-Force Web App Attack
🇨🇭 zynex	2026-06-15 08:39:09 (1 hour ago)	URL Probing: /tmp/.env	Web App Attack
🇩🇪 rh24	2026-06-15 07:53:26 (2 hours ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 34.50.45.212 (KR/Sou ... show more (apache-useragents) Failed apache-useragents trigger with match [redacted] from 34.50.45.212 (KR/South Korea/212.45.50.34.bc.googleusercontent.com): (CF_ENABLE) show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-15 04:06:15 (6 hours ago)	(mod_security) mod_security (id:210730) triggered by 34.50.45.212 (212.45.50.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210730) triggered by 34.50.45.212 (212.45.50.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 00:06:08.191898 2026] [security2:error] [pid 9632:tid 9632] [client 34.50.45.212:53142] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|collectivedzgn.com\|F\|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "collectivedzgn.com"] [uri "/env.bak"] [unique_id "ai96MEyOmpstr7RZrwV_pwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 bokumin.org	2026-06-15 03:23:24 (6 hours ago)	[id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 10)"] [uri "/backend/.env.old"] [id ... show more [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 10)"] [uri "/backend/.env.old"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] show less	Web App Attack
🇳🇱 wlt-blocker	2026-06-15 01:11:20 (9 hours ago)	Unauthorized access to webpage admin	Web App Attack
Anonymous	2026-06-14 21:14:41 (13 hours ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇩🇪 4server	2026-06-14 05:59:50 (1 day ago)	[SunJun1407:59:45.1137382026][security2:error][pid2255560:tid2255677][client34.50.45.212:0]ModSecuri ... show more [SunJun1407:59:45.1137382026][security2:error][pid2255560:tid2255677][client34.50.45.212:0]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"204\"][id\"390709\"][rev\"30\"][msg\"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely\"][data\"/.env\"][severity\"CRITICAL\"][hostname\"specialfood.ch.136-243-54-122.cpanel.site\"][uri\"/prod/.env\"][unique_id\"ai5DUXkL1Vg7hoL-i4kqkgAAAM8\"] show less	Port Scan Brute-Force Web App Attack
🇩🇪 big-cloud.nl	2026-06-14 05:42:29 (1 day ago)	Try to access /.env	Web App Attack
🇩🇪 gadix	2026-06-14 05:31:04 (1 day ago)	[14/Jun/2026:07:31:02.013317 +0200] ai48luY7EgQVPTa7XVrDXgAAABA 34.50.45.212 44942 127.0.0.1 7081 [1 ... show more [14/Jun/2026:07:31:02.013317 +0200] ai48luY7EgQVPTa7XVrDXgAAABA 34.50.45.212 44942 127.0.0.1 7081 [14/Jun/2026:07:31:02.018672 +0200] ai48luY7EgQVPTa7XVrDXwAAAA8 34.50.45.212 44952 127.0.0.1 7081 [14/Jun/2026:07:31:02.032812 +0200] ai48luY7EgQVPTa7XVrDYAAAAAw 34.50.45.212 44958 127.0.0.1 7081 ... show less	Web App Attack
🇫🇷 Octopuce	2026-06-14 05:30:35 (1 day ago)	Aggressive web search of vulnerable pages: /api/.env.local /api/v1/.env /wordpress/.env /api/v3/.env ... show more Aggressive web search of vulnerable pages: /api/.env.local /api/v1/.env /wordpress/.env /api/v3/.env /api/v2/.env ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 04:08:41 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 34.50.45.212 (212.45.50.34.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 34.50.45.212 (212.45.50.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 00:08:33.204977 2026] [security2:error] [pid 19739:tid 19739] [client 34.50.45.212:42968] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.angelsofrhodeisland.com"] [uri "/.env.sample"] [unique_id "ai4pQUxTdGSKyJlpBJpItgAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-06-14 03:05:03 (1 day ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-06-14 01:56:24 (1 day ago)	Excessive 404/403 errors	Brute-Force

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇿 158.173.167.14

🇺🇸 104.23.245.96

🇻🇳 103.176.24.57

🇳🇱 185.242.226.91

🇺🇸 135.237.122.43

🇰🇿 109.235.118.157

🇿🇦 105.247.89.210

🇺🇸 104.22.24.183

🇺🇸 100.29.192.36

🇩🇪 69.5.169.10

🇧🇷 45.164.251.67

🇮🇩 36.94.60.218

🇳🇱 185.93.89.95

🇨🇳 183.251.233.69

🇺🇸 172.71.31.213

🇯🇵 52.103.43.54

🇱🇹 45.227.254.170

🇳🇱 45.153.34.149

🇳🇱 45.148.10.147

🇺🇸 43.173.77.215