AbuseIPDB » 136.107.40.120
136.107.40.120
This IP was reported 7 times. Confidence of
Abuse
is 34% : ?
ISP
Google LLC
Usage Type
Data Center/Web Hosting/Transit
ASN
AS396982
Hostname(s)
120.40.107.136.bc.googleusercontent.com
Domain Name
google.com
Country
๐บ๐ธ
United States of America
City
Washington, District of Columbia
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 136.107.40.120 :
This IP address has been reported a total of
7
times from
7 distinct
sources.
136.107.40.120 was first reported on
May 28th 2026 , and the most recent report was
2 weeks ago
Old Reports:
The most recent abuse report for this IP address is from
2 weeks ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
TPI-Abuse
2026-05-30 03:38:04
(2 weeks ago)
(mod_security) mod_security (id:210730) triggered by 136.107.40.120 (120.40.107.136.bc.googleusercon ...
show more
(mod_security) mod_security (id:210730) triggered by 136.107.40.120 (120.40.107.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 23:37:58.910135 2026] [security2:error] [pid 25847:tid 25847] [client 136.107.40.120:46938] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||192.64.150.196|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "192.64.150.196"] [uri "/.config/gcloud/credentials.db"] [unique_id "ahpblgvt26LQhUDgomKhUAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
Moby
2026-05-30 00:09:53
(2 weeks ago)
136.107.40.120 - - [29/May/2026:19:09:51 -0500] "GET /actuator/heapdump HTTP/1.1" 404 984 "-" "SonyE ...
show more
136.107.40.120 - - [29/May/2026:19:09:51 -0500] "GET /actuator/heapdump HTTP/1.1" 404 984 "-" "SonyEricssonT610/R201 Profile/MIDP-1.0 Configuration/CLDC-1.0" "75.88.18.220" "75.88.18.220"
136.107.40.120 - - [29/May/2026:19:09:51 -0500] "GET /actuator/env HTTP/1.1" 404 984 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 11_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1" "75.88.18.220" "75.88.18.220"
136.107.40.120 - - [29/May/2026:19:09:51 -0500] "GET /actuator/configprops HTTP/1.1" 404 984 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.9 Safari/536.5" "75.88.18.220" "75.88.18.220"
...
show less
Web App Attack
๐ณ๐ฑ
Savvii
2026-05-29 03:42:36
(2 weeks ago)
73 attempts against mh-misbehave-ban on sky
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
gnom4ik
2026-05-29 03:01:37
(2 weeks ago)
ban-reviewer auto report; ip=136.107.40.120; scenario=crowdsecurity/http-bad-user-agent; verdict=val ...
show more
ban-reviewer auto report; ip=136.107.40.120; scenario=crowdsecurity/http-bad-user-agent; verdict=valid_ban; confidence=0.92; categories=14,15,18,22; active_decisions=3; lookback_decisions=3; nginx_requests=383; appsec_matches=0; auth_events=0; kernel_events=0; signals=nginx_requests_high; ip_decision_count_high; ip_active_decision_count_high
show less
Port Scan
Hacking
Brute-Force
SSH
๐ณ๐ฑ
lns.bz
2026-05-29 02:54:48
(2 weeks ago)
.env scanning [DOPP]
Web App Attack
๐บ๐ธ
HCF
2026-05-29 00:16:00
(2 weeks ago)
Spring.Boot.Actuator.Unauthorized.Access
Web App Attack
Hacking
๐ฉ๐ช
grassau.com
2026-05-28 21:09:27
(2 weeks ago)
*Port Scan* detected from 136.107.40.120 (US/United States/District of Columbia/Washington/120.40.10 ...
show more
*Port Scan* detected from 136.107.40.120 (US/United States/District of Columbia/Washington/120.40.107.136.bc.googleusercontent.com).
show less
Port Scan
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: