AbuseIPDB » 136.113.125.42
136.113.125.42 was found in our database!
This IP was reported 7 times. Confidence of
Abuse
is 29%: ?
| ISP |
Google LLC
|
| Usage Type |
Data Center/Web Hosting/Transit
|
| ASN |
AS396982
|
| Hostname(s) |
42.125.113.136.bc.googleusercontent.com
|
| Domain Name |
google.com
|
| Country |
πΊπΈ
United States of America
|
| City |
Council Bluffs, Iowa
|
IP info including ISP, Usage Type, and Location provided
by IPInfo. Updated weekly.
IP Abuse Reports for 136.113.125.42:
This IP address has been reported a total of
7
times from
5 distinct
sources.
136.113.125.42 was first reported on
, and the most recent report was
.
Old Reports:
The most recent abuse report for this IP address is from
. It is possible that this IP is no longer involved in abusive activities.
| Reporter |
IoA Timestamp (UTC)
|
Comment |
Categories |
|
|
π¨π¦
polycoda
|
|
π Probes for tons of inexistent directory listings
|
Hacking
Web App Attack
|
|
|
π³πΏ
Antinson
|
|
High error rate and elevated request volume targeting cPanel servers
|
Bad Web Bot
|
|
|
π¬π·
setupgr
|
|
(mod_security) mod_security (id:11000011) triggered by 136.113.125.42 (US/United States/Iowa/Council ...
show more
(mod_security) mod_security (id:11000011) triggered by 136.113.125.42 (US/United States/Iowa/Council Bluffs/-/[AS396982 GOOGLE-CLOUD-PLATFORM]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 22 22:24:18.374870 2026] [security2:error] [pid 1934756:tid 1934880] [client 136.113.125.42:42580] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 42.125.113.136.bc.googleusercontent.com"] [severity "CRITICAL"] [hostname "mail.doityourself.gr"] [uri "/"] [unique_id "ajmL4i7wGrlvgFoRVzbt1wAAAUE"]
show less
|
Port Scan
|
|
|
π¦πΊ
aranguren.org
|
|
136.113.125.42 - - [23/Jun/2026:04:57:36 +1000] "HEAD /wordpress/ HTTP/1.1" 403 - "-" "Mozilla/5.0 ( ...
show more
136.113.125.42 - - [23/Jun/2026:04:57:36 +1000] "HEAD /wordpress/ HTTP/1.1" 403 - "-" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/128.0.6540.18 Safari/537.36"
136.113.125.42 - - [23/Jun/2026:04:57:37 +1000] "HEAD /blog/ HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.70 Safari/537.36 Vivaldi/6.7.3200.25"
136.113.125.42 - - [23/Jun/2026:04:57:37 +1000] "HEAD /backup/ HTTP/1.1" 404 - "-" "Mozilla/5.0 (Linux; U; Android 10; en-US; CPH2015) AppleWebKit/537.36 (KHTML, like Gecko) UCBrowser/13.5.8.1311 Mobile Safari/537.36"
136.113.125.42 - - [23/Jun/2026:04:57:37 +1000] "HEAD /wp/ HTTP/1.1" 404 - "-" "Mozilla/5.0 (Linux; Android 13; Infinix X688B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.48 Mobile Safari/537.36"
136.113.125.42 - - [23/Jun/2026:04:57:37 +1000] "HEAD /new/ HTTP/1.1" 404 - "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_0) AppleWebKit/537.36 (KHTM
...
show less
|
Bad Web Bot
|
|
|
π«π·
conseilgouz
|
|
mae-7 : Trying access unauthorized files/dir=>/wordpress/
|
Hacking
|
|
|
π¨π¦
polycoda
|
|
AutoBlock: π― Vulnerability Scanner (Non Decay-Based) - π Directory Listings (Decay-Based)
|
Hacking
Bad Web Bot
Web App Attack
|
|
|
π¬π·
setupgr
|
|
(mod_security) mod_security (id:11000011) triggered by 136.113.125.42 (US/United States/Iowa/Council ...
show more
(mod_security) mod_security (id:11000011) triggered by 136.113.125.42 (US/United States/Iowa/Council Bluffs/-/[AS396982 GOOGLE-CLOUD-PLATFORM]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 22 20:54:01.737555 2026] [security2:error] [pid 1934718:tid 1934912] [client 136.113.125.42:39820] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "googleusercontent.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 42.125.113.136.bc.googleusercontent.com"] [severity "CRITICAL"] [hostname "mail.davids.gr"] [uri "/"] [unique_id "ajl2uZ59dcPKThU2ezCu2QAAANc"]
show less
|
Port Scan
|
|
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: