JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 34.78.2.122

34.78.2.122 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 55%: ?

55%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	122.2.78.34.bc.googleusercontent.com
Domain Name	google.com
Country	🇧🇪 Belgium
City	Brussels, Brussels Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 34.78.2.122

Whois 34.78.2.122

IP Abuse Reports for 34.78.2.122:

This IP address has been reported a total of 9 times from 8 distinct sources. 34.78.2.122 was first reported on June 13th 2026, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 pm33	2026-06-13 15:40:44 (9 hours ago)	Excessive crawling HTTP 404	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 14:39:41 (10 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.78.2.122 (122.2.78.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.78.2.122 (122.2.78.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 10:39:34.068382 2026] [security2:error] [pid 1766:tid 1778] [client 34.78.2.122:54778] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "providencetheological.com"] [uri "/.env.staging"] [unique_id "ai1rpuV514EO4NLS50iV5gAAAMc"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-13 14:39:31 (10 hours ago)	[SatJun1316:39:23.6833812026][security2:error][pid1581299:tid1581498][client34.78.2.122:0]ModSecurit ... show more [SatJun1316:39:23.6833812026][security2:error][pid1581299:tid1581498][client34.78.2.122:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"autodiscover.hosting-dominio.ch\"][uri\"/.env.dist\"][unique_id\"ai1rm-bohihMo7yuFcqPTgAAAFg\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 13:10:14 (11 hours ago)	(mod_security) mod_security (id:210492) triggered by 34.78.2.122 (122.2.78.34.bc.googleusercontent.c ... show more (mod_security) mod_security (id:210492) triggered by 34.78.2.122 (122.2.78.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 09:10:10.996435 2026] [security2:error] [pid 1284:tid 1284] [client 34.78.2.122:37412] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jamworldmovements.com"] [uri "/.env.prod"] [unique_id "ai1WslgXHzqV4YRrBTH50AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-13 12:59:15 (12 hours ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇩🇪 updown.io	2026-06-13 12:02:22 (12 hours ago)	{"level":"info","ts":1781352138.106775,"logger":"http.log.access.log1","msg":"handled request","requ ... show more {"level":"info","ts":1781352138.106775,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.78.2.122","remote_port":"54270","client_ip":"34.78.2.122","proto":"HTTP/1.1","method":"GET","host":"update.update.yxwzyxwvutsrqpsrqponmlkjihgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/.env.production.bak","headers":{"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3850.0 Iron Safari/537.36"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]}},"bytes_read":0,"user_id":"","duration":0.000079372,"size":0,"status":308,"resp_headers":{"Connection":["close"],"Location":["https://update.update.yxwzyxwvutsrqpsrqponmlkjihgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/.env.production.bak"],"Content-Type":[],"Server":["Caddy"]}} {"level":"info","ts":1781352138.1715531,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip" ... show less	DDoS Attack Web App Attack
🇳🇱 Site.eu	2026-06-13 10:02:42 (14 hours ago)	Excessive 404/403 errors	Brute-Force
🇫🇷 Octopuce	2026-06-13 09:50:38 (15 hours ago)	Aggressive web search of vulnerable pages: /backend/.env.local /api/v1/.env /api/v2/.env /backend/.e ... show more Aggressive web search of vulnerable pages: /backend/.env.local /api/v1/.env /api/v2/.env /backend/.env /wp/.env ... show less	Web App Attack
🇦🇺 2000cn.com.au	2026-06-13 04:49:58 (20 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 220.80.248.211

🇩🇪 213.209.159.56

🇳🇱 209.38.44.76

🇺🇸 147.185.132.90

🇩🇪 104.248.34.255

🇳🇱 91.92.40.4

🇮🇩 43.173.1.57

🇧🇷 43.164.192.40

🇨🇳 222.179.105.58

🇰🇷 222.120.49.224

🇯🇵 203.25.124.71

🇬🇧 193.163.125.100

🇲🇽 187.191.48.5

🇵🇭 119.94.10.121

🇸🇬 103.250.11.63

🇳🇱 91.92.40.31

🇷🇴 80.94.92.130

🇨🇳 218.8.44.26

🇧🇷 205.210.31.133

🇺🇸 162.216.150.172