JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 136.109.104.213

136.109.104.213 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 86%: ?

86%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	213.104.109.136.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	The Dalles, Oregon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 136.109.104.213

Whois 136.109.104.213

IP Abuse Reports for 136.109.104.213:

This IP address has been reported a total of 37 times from 20 distinct sources. 136.109.104.213 was first reported on June 2nd 2026, and the most recent report was 22 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-23 12:07:14 (22 minutes ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning show less	Bad Web Bot Web App Attack
🇬🇷 setupgr	2026-06-23 11:39:45 (50 minutes ago)	(mod_security) mod_security (id:11000011) triggered by 136.109.104.213 (US/United States/Oregon/The ... show more (mod_security) mod_security (id:11000011) triggered by 136.109.104.213 (US/United States/Oregon/The Dalles/-/[AS396982 GOOGLE-CLOUD-PLATFORM]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Tue Jun 23 14:39:42.140353 2026] [security2:error] [pid 1934813:tid 1934921] [client 136.109.104.213:36082] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 213.104.109.136.bc.googleusercontent.com"] [severity "CRITICAL"] [hostname "ftiaxtomonosou.gr"] [uri "/wp-content/uploads/2019/03/%CE%88%CF%80%CE%B9%CF%80%CE%BB%CE%BF-%CE%9C%CF%80%CE%AC%CE%BD%CE%B9%CE%BF%CF%85022-300x212.jpg"] [unique_id "ajpwfvVHAYoCTqtXWiUsZgAAAIE"] show less	Port Scan
🇧🇪 cmbplf	2026-06-23 11:21:56 (1 hour ago)	7.765 requests to many distinct domains in 1 hour (4w1d9h)	Brute-Force Bad Web Bot
🇵🇱 lns.bz	2026-06-23 11:18:14 (1 hour ago)	Web app attack [PL.Lu]	Exploited Host Web App Attack
Anonymous	2026-06-23 10:44:35 (1 hour ago)	Scraper not respecting robots.txt or not identifying itself properly ...	Bad Web Bot
🇬🇧 Yosi	2026-06-23 10:18:43 (2 hours ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇺🇸 nodepile	2026-06-23 10:10:36 (2 hours ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/media/catalog/product/cache ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/media/catalog/product/cache/1/image/270x/f4b5615c55446ca4acf532638b23ad11/2/_/2_637_7.jpg ua='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Safari/537.36') show less	Web App Attack Exploited Host
🇦🇺 MAGIC	2026-06-23 10:02:38 (2 hours ago)	VM5 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 Skyrider	2026-06-23 09:45:00 (2 hours ago)	Nginx: HTTP 4xx probe/scan attempts. Automated fail2ban report.	Bad Web Bot Web App Attack
🇬🇷 setupgr	2026-06-23 09:19:13 (3 hours ago)	(mod_security) mod_security (id:11000011) triggered by 136.109.104.213 (US/United States/Oregon/The ... show more (mod_security) mod_security (id:11000011) triggered by 136.109.104.213 (US/United States/Oregon/The Dalles/-/[AS396982 GOOGLE-CLOUD-PLATFORM]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Tue Jun 23 12:19:11.163180 2026] [security2:error] [pid 1934693:tid 1934785] [client 136.109.104.213:59218] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 213.104.109.136.bc.googleusercontent.com"] [severity "CRITICAL"] [hostname "adoro.gr"] [uri "/wp-content/plugins/justified-image-grid/timthumb.php"] [unique_id "ajpPjmyIwtP6yf56A0raoQAAAEI"] show less	Port Scan
Anonymous	2026-06-16 09:18:07 (1 week ago)	FortiWeb WAF: 326 attacks detected. Threat Score: 166400. Types: Client Management(163), Block IP Li ... show more FortiWeb WAF: 326 attacks detected. Threat Score: 166400. Types: Client Management(163), Block IP List(163). Origin: United States. show less	Web App Attack
🇨🇭 rt	2026-06-15 09:48:53 (1 week ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
🇬🇷 setupgr	2026-06-15 06:16:37 (1 week ago)	(mod_security) mod_security (id:11000011) triggered by 136.109.104.213: 1 in the last 86400 secs; Po ... show more (mod_security) mod_security (id:11000011) triggered by 136.109.104.213: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 15 09:16:33.968639 2026] [security2:error] [pid 921871:tid 921980] [client 136.109.104.213:43734] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 213.104.109.136.bc.googleusercontent.com"] [hostname "asteriassantorini.com"] [uri "/wp-content/uploads/2023/05/Grilled-salmon-fillet-300x200.jpg"] [unique_id "ai-Ywe2clReoPvlJKliG-QAAAMA"] show less	Port Scan
🇬🇷 setupgr	2026-06-14 22:29:49 (1 week ago)	(mod_security) mod_security (id:11000011) triggered by 136.109.104.213: 1 in the last 86400 secs; Po ... show more (mod_security) mod_security (id:11000011) triggered by 136.109.104.213: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 15 01:29:45.023783 2026] [security2:error] [pid 948989:tid 949032] [client 136.109.104.213:33736] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 213.104.109.136.bc.googleusercontent.com"] [hostname "ftiaxtomonosou.gr"] [uri "/wp-content/plugins/justified-image-grid/timthumb.php"] [unique_id "ai8rWNXD3_cY7WcDuxq39QAAAJA"] show less	Port Scan
🇺🇸 nodepile	2026-06-14 13:50:19 (1 week ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/media/catalog/product/cache ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/media/catalog/product/cache/5e4c54b56bd9841aefad18a78cbb6958/1/e/1esf-2801.jpg ua='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Safari/537.36') show less	Web App Attack Exploited Host

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.88.98.88

🇬🇧 185.247.137.237

🇳🇱 34.141.139.171

🇺🇸 20.169.107.142

🇰🇷 14.63.217.28

🇨🇳 14.18.118.226

🇵🇦 2620:171:c6:f003:9999::242

🇲🇦 196.75.87.161

🇺🇸 104.28.48.153

🇺🇸 162.158.155.188

🇳🇱 45.148.10.141

🇺🇸 3.134.216.108

🇬🇧 198.244.240.142

🇬🇧 193.32.209.226

🇧🇷 177.104.185.182

🇮🇳 103.227.62.72

🇫🇷 92.222.104.214

🇦🇹 84.115.228.185

🇺🇸 47.251.162.137

🇺🇸 34.68.118.219