JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 136.109.20.81

136.109.20.81 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 52%: ?

52%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	81.20.109.136.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	The Dalles, Oregon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 136.109.20.81

Whois 136.109.20.81

IP Abuse Reports for 136.109.20.81:

This IP address has been reported a total of 21 times from 10 distinct sources. 136.109.20.81 was first reported on June 10th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 rt	2026-06-15 15:52:59 (4 days ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
🇬🇷 setupgr	2026-06-15 11:06:35 (4 days ago)	(PERMBLOCK) 136.109.20.81 has had more than 4 temp blocks in the last 86400 secs; Ports: ; Directio ... show more (PERMBLOCK) 136.109.20.81 has had more than 4 temp blocks in the last 86400 secs; Ports: ; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: N/A show less	Port Scan
Anonymous	2026-06-15 09:19:19 (4 days ago)	FortiWeb WAF: 784 attacks detected. Threat Score: 115800. Types: Client Management(392), Block IP Li ... show more FortiWeb WAF: 784 attacks detected. Threat Score: 115800. Types: Client Management(392), Block IP List(392). Origin: United States. show less	Web App Attack
🇮🇩 David Koswari	2026-06-15 06:02:00 (4 days ago)	REQ_BLOCKED_ACL	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇬🇷 setupgr	2026-06-15 05:32:08 (4 days ago)	(mod_security) mod_security (id:11000011) triggered by 136.109.20.81: 1 in the last 86400 secs; Port ... show more (mod_security) mod_security (id:11000011) triggered by 136.109.20.81: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 15 08:32:06.330570 2026] [security2:error] [pid 948989:tid 949033] [client 136.109.20.81:34804] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 81.20.109.136.bc.googleusercontent.com"] [hostname "babis.photo"] [uri "/wp-content/plugins/justified-image-grid/timthumb.php"] [unique_id "ai-OVtXD3_cY7WcDuxq_rgAAAJE"] show less	Port Scan
🇬🇷 setupgr	2026-06-15 04:22:08 (4 days ago)	(mod_security) mod_security (id:11000011) triggered by 136.109.20.81: 1 in the last 86400 secs; Port ... show more (mod_security) mod_security (id:11000011) triggered by 136.109.20.81: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 15 07:22:04.273894 2026] [security2:error] [pid 922089:tid 922125] [client 136.109.20.81:57086] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 81.20.109.136.bc.googleusercontent.com"] [hostname "babis.photo"] [uri "/wp-content/plugins/justified-image-grid/timthumb.php"] [unique_id "ai997I2186Wa_UvIHKhO_wAAAYk"] show less	Port Scan
🇬🇷 setupgr	2026-06-14 22:45:20 (4 days ago)	(mod_security) mod_security (id:11000011) triggered by 136.109.20.81: 1 in the last 86400 secs; Port ... show more (mod_security) mod_security (id:11000011) triggered by 136.109.20.81: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 15 01:45:17.538164 2026] [security2:error] [pid 921889:tid 922063] [client 136.109.20.81:36590] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 81.20.109.136.bc.googleusercontent.com"] [hostname "ftiaxtomonosou.gr"] [uri "/wp-content/uploads/2021/09/cardano-coin.png"] [unique_id "ai8u_SykT1eM1OfD7bs6IQAAAUg"] show less	Port Scan
🇬🇷 setupgr	2026-06-14 15:16:00 (5 days ago)	(mod_security) mod_security (id:11000011) triggered by 136.109.20.81: 1 in the last 86400 secs; Port ... show more (mod_security) mod_security (id:11000011) triggered by 136.109.20.81: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jun 14 18:15:58.458628 2026] [security2:error] [pid 922089:tid 922138] [client 136.109.20.81:50236] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 81.20.109.136.bc.googleusercontent.com"] [hostname "ftiaxtomonosou.gr"] [uri "/wp-content/plugins/justified-image-grid/timthumb.php"] [unique_id "ai7Fro2186Wa_UvIHKjSPQAAAZY"] show less	Port Scan
🇮🇹 sssrit	2026-06-14 07:05:04 (5 days ago)	136.109.20.81 - - [14/Jun/2026:09:05:03 +0200] "GET /tag/bonus-vacanze/ HTTP/1.1" 404 10440 "-" "Moz ... show more 136.109.20.81 - - [14/Jun/2026:09:05:03 +0200] "GET /tag/bonus-vacanze/ HTTP/1.1" 404 10440 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.114 Safari/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 19:23:12 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 136.109.20.81 (81.20.109.136.bc.googleuserconte ... show more (mod_security) mod_security (id:210730) triggered by 136.109.20.81 (81.20.109.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 15:23:08.081363 2026] [security2:error] [pid 13095:tid 13095] [client 136.109.20.81:52214] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.civilwarzone.com\|F\|2"] [data ".dll"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.civilwarzone.com"] [uri "/~site/Scripts_ExternalRedirect/ExternalRedirect.dll"] [unique_id "ai2uHO2G9In1NOpeT5Y5bgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-13 19:07:39 (5 days ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning show less	Bad Web Bot Web App Attack
🇬🇷 setupgr	2026-06-13 05:40:06 (6 days ago)	(mod_security) mod_security (id:11000011) triggered by 136.109.20.81: 1 in the last 86400 secs; Port ... show more (mod_security) mod_security (id:11000011) triggered by 136.109.20.81: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 13 08:40:03.152815 2026] [security2:error] [pid 568633:tid 568694] [client 136.109.20.81:35688] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 81.20.109.136.bc.googleusercontent.com"] [hostname "babis.photo"] [uri "/wp-content/plugins/justified-image-grid/timthumb.php"] [unique_id "aiztMwwee1nHdDysdvf8JAAAAQg"] show less	Port Scan
🇬🇷 setupgr	2026-06-13 04:21:49 (6 days ago)	(mod_security) mod_security (id:11000011) triggered by 136.109.20.81: 1 in the last 86400 secs; Port ... show more (mod_security) mod_security (id:11000011) triggered by 136.109.20.81: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 13 07:21:46.323740 2026] [security2:error] [pid 568634:tid 568718] [client 136.109.20.81:53302] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 81.20.109.136.bc.googleusercontent.com"] [hostname "babis.photo"] [uri "/wp-content/plugins/justified-image-grid/timthumb.php"] [unique_id "aiza2mhA1AVliy02kiGXnwAAAcw"] show less	Port Scan
🇫🇷 ELYAZ	2026-06-13 04:08:42 (6 days ago)	(y4) Failed scan -byebye- from 136.109.20.81 (US/United States/81.20.109.136.bc.googleusercontent.co ... show more (y4) Failed scan -byebye- from 136.109.20.81 (US/United States/81.20.109.136.bc.googleusercontent.com): (CF_ENABLE) show less	Hacking
🇧🇪 cmbplf	2026-06-13 03:59:37 (6 days ago)	7.875 requests to many distinct domains in 1 hour (3w2d1h)	Brute-Force Bad Web Bot

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 185.100.212.141

🇺🇸 147.185.132.203

🇭🇰 199.45.155.99

🇸🇬 193.37.32.12

🇺🇸 132.226.105.224

🇧🇩 103.120.201.18

🇻🇳 103.118.28.15

🇸🇪 85.195.9.20

🇩🇪 69.5.169.43

🇳🇱 46.151.178.13

🇺🇸 20.64.104.114

🇮🇱 2.55.84.20

🇺🇸 178.156.229.41

🇵🇰 110.36.72.162

🇮🇩 103.70.123.205

🇺🇸 74.7.227.175

🇳🇱 45.141.19.8

🇬🇧 35.203.210.32

🇨🇳 182.126.122.157

🇳🇱 154.86.119.173