JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 35.240.136.253

35.240.136.253 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 36%: ?

36%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	253.136.240.35.bc.googleusercontent.com
Domain Name	google.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 35.240.136.253

Whois 35.240.136.253

IP Abuse Reports for 35.240.136.253:

This IP address has been reported a total of 15 times from 9 distinct sources. 35.240.136.253 was first reported on May 20th 2026, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-05-23 21:59:59 (3 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-22. show less	Web App Attack SSH Hacking
🇳🇱 homeshowdomain.nl	2026-05-22 22:01:19 (3 weeks ago)	Auto-ban: >3000 req/min op 2026-05-22	Web App Attack SSH Hacking
🇧🇪 cmbplf	2026-05-22 19:38:56 (3 weeks ago)	2.311 requests with url.path .git/	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-22 17:44:13 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 35.240.136.253 (253.136.240.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.240.136.253 (253.136.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 13:44:09.384974 2026] [security2:error] [pid 5973:tid 5973] [client 35.240.136.253:48068] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "grandpont-house.org"] [uri "/.git/config"] [unique_id "ahCV6eScE1J-AGCnLVWEoQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-05-22 13:36:48 (3 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 Grizzly	2026-05-22 13:03:00 (3 weeks ago)	GIT file searches and recon activity on honey pot	Hacking
🇺🇸 TPI-Abuse	2026-05-22 12:38:39 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 35.240.136.253 (253.136.240.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.240.136.253 (253.136.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 08:38:34.410221 2026] [security2:error] [pid 7266:tid 7266] [client 35.240.136.253:49482] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "crucialpins.com"] [uri "/.git/config"] [unique_id "ahBOSp7E71rNnaN3J_4MsAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 11:04:20 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 35.240.136.253 (253.136.240.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.240.136.253 (253.136.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 07:04:16.431167 2026] [security2:error] [pid 21282:tid 21282] [client 35.240.136.253:55056] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.treadbox.net"] [uri "/.git/config"] [unique_id "ahA4MKV863hhEf-6WIQyjAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 08:30:07 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 35.240.136.253 (253.136.240.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.240.136.253 (253.136.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 04:29:58.234680 2026] [security2:error] [pid 1336:tid 1336] [client 35.240.136.253:45252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.judithchallender.com"] [uri "/.git/config"] [unique_id "ahAUBicv2mG2dQkMXdFengAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-22 08:10:01 (3 weeks ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 08:07:01 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 35.240.136.253 (253.136.240.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.240.136.253 (253.136.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 04:06:58.040934 2026] [security2:error] [pid 7933:tid 7933] [client 35.240.136.253:37844] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.goglobex.com"] [uri "/.git/config"] [unique_id "ahAOot7fE19kbuF6ojkWPAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 07:51:38 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 35.240.136.253 (253.136.240.35.bc.googleusercon ... show more (mod_security) mod_security (id:210492) triggered by 35.240.136.253 (253.136.240.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 03:51:32.627056 2026] [security2:error] [pid 405:tid 405] [client 35.240.136.253:33316] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.southsideaccountingservices.com"] [uri "/.git/config"] [unique_id "ahALBL1LsXALdvej0eYQfwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Cloud86 B.V.	2026-05-22 05:42:29 (3 weeks ago)	categories: DDoS Attack	DDoS Attack
🇺🇸 n2nguyenn2nguyen	2026-05-20 09:00:30 (3 weeks ago)	Blocked by YFC Security on https://1904.brixzly.com — type: rapid_scan_attempts	Web App Attack
🇬🇧 PeravixGroup	2026-05-20 08:54:13 (3 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 193.32.162.16

🇻🇳 118.71.58.199

🇸🇬 118.26.111.107

🇺🇸 91.230.168.143

🇹🇷 89.252.131.17

🇺🇸 71.6.167.142

🇺🇸 208.109.38.143

🇧🇷 205.210.31.222

🇷🇺 193.17.92.5

🇧🇴 190.129.122.185

🇮🇳 103.219.219.249

🇮🇩 103.154.77.48

🇱🇹 81.30.98.49

🇸🇬 47.84.12.247

🇵🇱 2.26.5.94

🇺🇸 207.90.244.13

🇨🇳 182.43.235.75

🇩🇪 172.69.109.238

🇫🇮 147.185.133.113

🇮🇩 103.3.222.102