JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 136.116.245.252

136.116.245.252 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 96%: ?

96%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	252.245.116.136.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Council Bluffs, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 136.116.245.252

Whois 136.116.245.252

IP Abuse Reports for 136.116.245.252:

This IP address has been reported a total of 23 times from 18 distinct sources. 136.116.245.252 was first reported on June 13th 2026, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Hostynet	2026-06-17 20:00:42 (19 hours ago)	Port scan detected by MikroTik PSD matcher (21 distinct destination ports in 3 seconds from single s ... show more Port scan detected by MikroTik PSD matcher (21 distinct destination ports in 3 seconds from single source). Source automatically blacklisted for 1 week. show less	Port Scan
🇫🇷 Hostynet	2026-06-16 19:53:12 (1 day ago)	Port scan detected by MikroTik PSD matcher (21 distinct destination ports in 3 seconds from single s ... show more Port scan detected by MikroTik PSD matcher (21 distinct destination ports in 3 seconds from single source). Source automatically blacklisted for 1 week. show less	Port Scan
🇳🇱 homeshowdomain.nl	2026-06-15 21:59:37 (2 days ago)	Auto-ban: >3000 req/min op 2026-06-15	Web App Attack SSH Hacking
🇫🇷 Hostynet	2026-06-15 19:44:42 (2 days ago)	Port scan detected by MikroTik PSD matcher (21 distinct destination ports in 3 seconds from single s ... show more Port scan detected by MikroTik PSD matcher (21 distinct destination ports in 3 seconds from single source). Source automatically blacklisted for 1 week. show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-15 18:16:51 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 136.116.245.252 (252.245.116.136.bc.googleuserc ... show more (mod_security) mod_security (id:210730) triggered by 136.116.245.252 (252.245.116.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 14:16:48.608205 2026] [security2:error] [pid 31018:tid 31018] [client 136.116.245.252:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kryptonome.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kryptonome.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "ajBBkC4rPSrz2Ji2lKwlUQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 18:01:41 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 136.116.245.252 (252.245.116.136.bc.googleuserc ... show more (mod_security) mod_security (id:210730) triggered by 136.116.245.252 (252.245.116.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 14:01:33.264023 2026] [security2:error] [pid 9699:tid 9699] [client 136.116.245.252:40262] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|j3pr.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "j3pr.com"] [uri "/.config/gcloud/credentials.db"] [unique_id "ajA9_cnt_A6VsJ3A_LkXWwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-15 17:13:05 (2 days ago)	categories: DDoS Attack	DDoS Attack
🇳🇿 Antinson	2026-06-15 14:52:13 (3 days ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇺🇸 jormaster3k	2026-06-15 13:49:08 (3 days ago)	Attack against Apache (too many 404s)	Web App Attack
🇬🇧 consul.to	2026-06-15 09:16:53 (3 days ago)	Web attack/malicious scanning detected	Web App Attack
🇨🇭 Origon	2026-06-15 08:57:56 (3 days ago)	http-sensitive-files - IP: 136.116.245.252 - time="2026-06-15T10:57:55+02:00" level=info msg="(555f ... show more http-sensitive-files - IP: 136.116.245.252 - time="2026-06-15T10:57:55+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 136.116.245.252 (US/396982) : 4h ban on Ip 136.116.245.252" module=db show less	Web App Attack
🇺🇸 kosada.com	2026-06-15 07:02:55 (3 days ago)	Web vulnerability probing: /html/.env	Web App Attack
🇫🇷 Octopuce	2026-06-15 03:17:14 (3 days ago)	Aggressive web search of vulnerable pages: /.env.local /.env /uat/.env /prod/.env /api/.env.local . ... show more Aggressive web search of vulnerable pages: /.env.local /.env /uat/.env /prod/.env /api/.env.local ... show less	Web App Attack
🇫🇷 rellik	2026-06-15 00:20:00 (3 days ago)	Scanning Critical Directory	Hacking Web App Attack
🇳🇱 oisecnet	2026-06-14 21:03:20 (3 days ago)	Automated report: Unauthorized vulnerability scanning detected on 2026-06-14. 2254 requests from thi ... show more Automated report: Unauthorized vulnerability scanning detected on 2026-06-14. 2254 requests from this IP. show less	Brute-Force Web App Attack SSH

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.46.13.126

🇧🇷 205.210.31.133

🇳🇱 204.76.203.219

🇧🇷 186.236.240.56

🇨🇳 171.37.190.40

🇲🇦 160.176.197.53

🇧🇩 160.25.42.218

🇰🇷 125.138.175.113

🇳🇱 104.23.170.162

🇳🇱 85.11.167.118

🇭🇰 45.249.247.86

🇸🇦 37.106.98.236

🇨🇦 24.137.45.53

🇦🇴 2c0f:f888:a180:d77:951f:9ea9:8154:4880

🇧🇷 2400:cb00:1058:1000:6c2f:bb3a:5037:320e

🇹🇼 198.235.24.90

🇹🇼 198.235.24.89

🇪🇹 196.189.155.89

🇧🇴 181.188.172.6

🇵🇱 74.248.112.30