JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 136.118.94.193

136.118.94.193 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 100%: ?

100%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	193.94.118.136.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	The Dalles, Oregon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 136.118.94.193

Whois 136.118.94.193

IP Abuse Reports for 136.118.94.193:

This IP address has been reported a total of 37 times from 26 distinct sources. 136.118.94.193 was first reported on June 8th 2026, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-12 04:18:28 (15 hours ago)	(mod_security) mod_security (id:210492) triggered by 136.118.94.193 (193.94.118.136.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 136.118.94.193 (193.94.118.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 00:18:21.674403 2026] [security2:error] [pid 31568:tid 31568] [client 136.118.94.193:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cdn-3.socialstudiesforkids.com"] [uri "/.env.save"] [unique_id "aiuIjdcz4ynqgBmuXtkVRQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-12 03:03:55 (16 hours ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 updown.io	2026-06-11 19:44:49 (23 hours ago)	{"level":"info","ts":1781207086.130844,"logger":"http.log.access.log1","msg":"handled request","requ ... show more {"level":"info","ts":1781207086.130844,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"136.118.94.193","remote_port":"49160","client_ip":"136.118.94.193","proto":"HTTP/1.1","method":"GET","host":"nmponihgfedcbwwwc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/.env.pre-production","headers":{"User-Agent":["Mozilla/5.0 (X11; Linux i686; rv:20.0) Gecko/20100101 Firefox/20.0"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]}},"bytes_read":0,"user_id":"","duration":0.000240018,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://nmponihgfedcbwwwc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/.env.pre-production"],"Content-Type":[]}} {"level":"info","ts":1781207086.1330366,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"136.118.94.193","remote_port":"49148","client_ip":"136.118.94.193","proto":"HTTP/1.1","method" ... show less	DDoS Attack Web App Attack
🇫🇷 masterguru	2026-06-11 09:12:48 (1 day ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 136.118.94.193 (US/United States/193. ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 136.118.94.193 (US/United States/193.94.118.136.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇷🇺 DZBOT	2026-06-11 07:51:15 (1 day ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇳🇱 Site.eu	2026-06-11 01:07:35 (1 day ago)	Excessive multi-domain requests	Brute-Force
🇳🇱 homeshowdomain.nl	2026-06-10 21:59:19 (1 day ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-09. show less	Web App Attack SSH Hacking
🇨🇭 4server	2026-06-10 17:24:29 (2 days ago)	[WedJun1019:24:27.0049602026][security2:error][pid3198548:tid3198850][client136.118.94.193:0]ModSecu ... show more [WedJun1019:24:27.0049602026][security2:error][pid3198548:tid3198850][client136.118.94.193:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"leonitraslochi.ch.81-17-25-250.cpanel.site\"][uri\"/frontend/.env.prod\"][unique_id\"aimdy7T4ZpDegwFiISpofAAAAQA\"] show less	Hacking Web App Attack
Anonymous	2026-06-10 14:47:57 (2 days ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇳🇱 wlt-blocker	2026-06-10 11:46:04 (2 days ago)	Unauthorized access to webpage admin	Web App Attack
🇺🇸 mashamal	2026-06-10 11:27:15 (2 days ago)	unauthorized access request ...	Port Scan
🇺🇸 mnsf	2026-06-10 08:06:56 (2 days ago)	Scanning/Probing (76)	Brute-Force Web App Attack
🇺🇦 URAN Publishing Service	2026-06-10 07:22:25 (2 days ago)	136.118.94.193 - - [10/Jun/2026:10:22:25 +0300] "GET /v1/.env HTTP/1.1" 404 3306 "-" "Mozilla/5.0 (S ... show more 136.118.94.193 - - [10/Jun/2026:10:22:25 +0300] "GET /v1/.env HTTP/1.1" 404 3306 "-" "Mozilla/5.0 (SymbianOS/9.1; U; de) AppleWebKit/413 (KHTML, like Gecko) Safari/413" 136.118.94.193 - - [10/Jun/2026:10:22:25 +0300] "GET /backend/.env HTTP/1.1" 404 3307 "-" "Mozilla/5.0 (Linux; Android 9; Redmi Note 7 Build/PKQ1.180904.001) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/9.4 Chrome/67.0.3396.87 Mobile Safari/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 01:34:27 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 136.118.94.193 (193.94.118.136.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 136.118.94.193 (193.94.118.136.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 21:34:22.923999 2026] [security2:error] [pid 20898:tid 20898] [client 136.118.94.193:59228] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "xtremeautodetailing.com"] [uri "/.env.testing"] [unique_id "aii_HplRNaOwyuOk29_KyAAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-10 00:44:01 (2 days ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.221

🇨🇳 124.226.212.169

🇬🇧 77.68.83.86

🇫🇷 54.37.10.124

🇨🇳 39.162.245.200

🇮🇳 210.212.136.3

🇻🇪 190.153.117.253

🇲🇽 189.203.190.153

🇫🇷 141.94.237.134

🇸🇪 138.124.29.146

🇩🇪 128.0.64.26

🇯🇵 74.226.208.52

🇩🇪 69.5.169.254

🇩🇪 69.5.169.37

🇮🇶 65.20.134.97

🇨🇳 61.183.86.2

🇧🇷 45.205.1.240

🇧🇷 20.226.64.72

🇺🇸 20.38.37.110

🇧🇬 5.188.206.34