JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 136.118.201.253

136.118.201.253 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	253.201.118.136.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	The Dalles, Oregon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 136.118.201.253

Whois 136.118.201.253

IP Abuse Reports for 136.118.201.253:

This IP address has been reported a total of 32 times from 27 distinct sources. 136.118.201.253 was first reported on June 8th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-11 21:59:30 (3 hours ago)	Auto-ban: >3000 req/min op 2026-06-11	Web App Attack SSH Hacking
🇵🇱 itsvic.dev	2026-06-11 14:53:30 (10 hours ago)	136.118.201.253 - - [11/Jun/2026:14:53:30 +0000] "GET /.env.staging HTTP/1.1" 404 180 "-" "Mozilla/5 ... show more 136.118.201.253 - - [11/Jun/2026:14:53:30 +0000] "GET /.env.staging HTTP/1.1" 404 180 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3835.0 Safari/537.36" 136.118.201.253 - - [11/Jun/2026:14:53:30 +0000] "GET /.env.demo HTTP/1.1" 404 146 "-" "Mozilla/5.0 (compatible; archive.org_bot; Wayback Machine Live Record; +http://archive.org/details/archive.org_bot)" 136.118.201.253 - - [11/Jun/2026:14:53:30 +0000] "GET /.env.pre-production HTTP/1.1" 404 146 "-" "Mozilla/5.0 (Linux; U; Android 1.5; en-us; SPH-M900 Build/CUPCAKE) AppleWebKit/528.5 (KHTML, like Gecko) Version/3.1.2 Mobile Safari/525.20.1" ... show less	Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-10 21:59:15 (1 day ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-09. show less	Web App Attack SSH Hacking
🇱🇻 garmtech.com	2026-06-10 21:28:35 (1 day ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/app/.env.old	Web App Attack
🇳🇱 Site.eu	2026-06-10 18:00:05 (1 day ago)	Excessive multi-domain requests	Brute-Force
🇺🇸 Starburst SysOp Team	2026-06-10 16:04:22 (1 day ago)	(mod_security-custom) mod_security (id:210492) triggered by 136.118.201.253 (US/United States/Oregon ... show more (mod_security-custom) mod_security (id:210492) triggered by 136.118.201.253 (US/United States/Oregon/The Dalles/253.201.118.136.bc.googleusercontent.com/[AS396982 GOOGLE-CLOUD-PLATFORM]): 1 in the last 3600 secs (0-srv1) show less	Hacking
🇫🇷 ELYAZ	2026-06-10 14:46:57 (1 day ago)	(y3) Failed access -byebye- from 136.118.201.253 (US/United States/253.201.118.136.bc.googleusercont ... show more (y3) Failed access -byebye- from 136.118.201.253 (US/United States/253.201.118.136.bc.googleusercontent.com): (CF_ENABLE) show less	Hacking
🇩🇪 FeG Deutschland	2026-06-10 12:48:03 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇵🇱 sigurg	2026-06-10 08:05:57 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇩🇪 updown.io	2026-06-10 06:15:58 (1 day ago)	{"level":"info","ts":1781072157.0326843,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1781072157.0326843,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"136.118.201.253","remote_port":"38058","client_ip":"136.118.201.253","proto":"HTTP/1.1","method":"GET","host":"wupdate.srqponmlkjilkjihgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/.env.copy","headers":{"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"],"User-Agent":["Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36"]}},"bytes_read":0,"user_id":"","duration":0.000129086,"size":0,"status":308,"resp_headers":{"Content-Type":[],"Server":["Caddy"],"Connection":["close"],"Location":["https://wupdate.srqponmlkjilkjihgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/.env.copy"]}} {"level":"info","ts":1781072157.0341027,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"136.118.201.253","remote_port":"38042","client_ip":"13 ... show less	DDoS Attack Web App Attack
Anonymous	2026-06-10 05:04:59 (1 day ago)	136.118.201.253 - - [10/Jun/2026:07:04:59 +0200] "GET /. HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Windows ... show more 136.118.201.253 - - [10/Jun/2026:07:04:59 +0200] "GET /. HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.2b) Gecko/20021001 Phoenix/0.2" show less	Web App Attack
🇩🇪 paissangroup	2026-06-10 04:27:50 (1 day ago)	Multiple WAF Violations	Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-10 04:26:03 (1 day ago)	categories: DDoS Attack	DDoS Attack
🇫🇷 masterguru	2026-06-10 01:46:33 (1 day ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-197)	Hacking Web App Attack
Anonymous	2026-06-09 21:42:19 (2 days ago)	Multiple web server 400 error codes from same source ip	Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.244

🇰🇷 121.131.220.137

🇮🇩 103.182.188.14

🇺🇸 64.225.57.251

🇺🇸 216.218.206.115

🇩🇪 213.209.159.158

🇨🇴 206.62.136.109

🇺🇸 205.210.31.38

🇮🇳 152.32.156.50

🇺🇸 145.132.100.69

🇮🇶 91.106.55.62

🇪🇸 79.117.227.175

🇩🇪 69.5.169.104

🇩🇪 69.5.169.84

🇩🇪 69.5.169.81

🇩🇪 69.5.169.74

🇬🇧 35.203.210.162

🇺🇸 24.184.27.221

🇺🇸 18.97.14.88

🇰🇷 203.252.10.3