JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 8.230.21.207

8.230.21.207 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 65%: ?

65%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	207.21.230.8.bc.googleusercontent.com
Domain Name	google.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 8.230.21.207

Whois 8.230.21.207

IP Abuse Reports for 8.230.21.207:

This IP address has been reported a total of 14 times from 14 distinct sources. 8.230.21.207 was first reported on June 13th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-13 22:00:56 (1 week ago)	Auto-ban: >3000 req/min op 2026-06-13	Web App Attack SSH Hacking
Anonymous	2026-06-13 17:27:06 (1 week ago)	[Sat Jun 13 19:27:04.923629 2026] [access_compat:error] [pid 211788:tid 211909] [client 8.230.21.207 ... show more [Sat Jun 13 19:27:04.923629 2026] [access_compat:error] [pid 211788:tid 211909] [client 8.230.21.207:35122] AH01797: client denied by server configuration: /var/www/nextcloud/config/.env [Sat Jun 13 19:27:04.925505 2026] [access_compat:error] [pid 211788:tid 211922] [client 8.230.21.207:35168] AH01797: client denied by server configuration: /var/www/nextcloud/config/.env.production [Sat Jun 13 19:27:04.933196 2026] [access_compat:error] [pid 211788:tid 211897] [client 8.230.21.207:35154] AH01797: client denied by server configuration: /var/www/nextcloud/config/.env.local [Sat Jun 13 19:27:05.121425 2026] [access_compat:error] [pid 211789:tid 211933] [client 8.230.21.207:35406] AH01797: client denied by server configuration: /var/www/nextcloud/data/.env ... show less	Brute-Force Web App Attack
🇨🇭 zynex	2026-06-13 16:53:11 (1 week ago)	URL Probing: /symfony/.env	Web App Attack
🇳🇱 Site.eu	2026-06-13 16:04:51 (1 week ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-06-13 15:09:35 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted] 8.230.21.207 (KR/South Korea/207.21.230 ... show more (mod_security) mod_security triggered on hostname [redacted] 8.230.21.207 (KR/South Korea/207.21.230.8.bc.googleusercontent.com) show less	SQL Injection
Anonymous	2026-06-13 13:29:02 (1 week ago)	Bot / scanning and/or hacking attempts: GET /services/api/.env HTTP/1.1, GET /server/.env.backup HTT ... show more Bot / scanning and/or hacking attempts: GET /services/api/.env HTTP/1.1, GET /server/.env.backup HTTP/1.1, GET /src/.env.backup HTTP/1.1, GET /admin/.env.backup HTTP/1.1, GET /services/.env.production HTTP/1.1, GET /conf/.env HTTP/1.1, GET /app/.env.bak HTTP/1.1, GET /v1/.env HTTP/1.1, GET /tmp/.env HTTP/1.1, GET /dist/.env HTTP/1.1, GET /private/.env HTTP/1.1, GET /private/.env.production HTTP/1.1, GET /service/.env HTTP/1.1, GET /.env.demo HTTP/1.1 show less	Hacking Web App Attack
🇨🇭 4server	2026-06-13 13:28:18 (1 week ago)	[SatJun1315:28:14.3455432026][security2:error][pid1377244:tid1377919][client8.230.21.207:0]ModSecuri ... show more [SatJun1315:28:14.3455432026][security2:error][pid1377244:tid1377919][client8.230.21.207:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"www.lemox.ch.81-17-25-250.cpanel.site\"][uri\"/api/.env.production\"][unique_id\"ai1a7qNwLHss98HNSM8kMAAAAJc\"] show less	Hacking Web App Attack
🇺🇸 mnsf	2026-06-13 09:09:12 (1 week ago)	Scanning/Probing (29)	Brute-Force Web App Attack
🇺🇦 URAN Publishing Service	2026-06-13 06:54:20 (1 week ago)	8.230.21.207 - - [13/Jun/2026:09:54:18 +0300] "GET /.env HTTP/1.1" 404 3321 "-" "Mozilla/5.0 (X11; L ... show more 8.230.21.207 - - [13/Jun/2026:09:54:18 +0300] "GET /.env HTTP/1.1" 404 3321 "-" "Mozilla/5.0 (X11; Linux i686; rv:43.0) Gecko/20100101 Firefox/43.0" 8.230.21.207 - - [13/Jun/2026:09:54:19 +0300] "GET /api/v2/.env HTTP/1.1" 404 3372 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/33.0.1750.152 Chrome/33.0.1750.152 Safari/537.36" ... show less	Web App Attack
🇷🇴 iulianh	2026-06-13 06:27:05 (1 week ago)	*	Brute-Force SSH
🇫🇷 masterguru	2026-06-13 05:38:38 (1 week ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 8.230.21.207 (KR/South Korea/207.21.2 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 8.230.21.207 (KR/South Korea/207.21.230.8.bc.googleusercontent.com): 1 in the last 3600 secs (0-195) show less	Hacking
🇮🇹 VHosting	2026-06-13 05:20:03 (1 week ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇧🇪 cmbplf	2026-06-13 04:33:21 (1 week ago)	404 requests with url.path *.env	Brute-Force Bad Web Bot
Anonymous	2026-06-13 04:10:42 (1 week ago)	(caddyscan) Scanner path probe from 8.230.21.207 (KR/South Korea/207.21.230.8.bc.googleusercontent.c ... show more (caddyscan) Scanner path probe from 8.230.21.207 (KR/South Korea/207.21.230.8.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 8.230.21.207 - - [13/Jun/2026:04:10:39 +0000] "GET /.env.staging HTTP/1.1" [REDACTED] 200 2627 8.230.21.207 - - [13/Jun/2026:04:10:39 +0000] "GET /.env.preprod HTTP/1.1" [REDACTED] 200 2627 8.230.21.207 - - [13/Jun/2026:04:10:39 +0000] "GET /.env.local HTTP/1.1" [REDACTED] 200 2627 8.230.21.207 - - [13/Jun/2026:04:10:39 +0000] "GET /.env.save HTTP/1.1" [REDACTED] 200 2627 8.230.21.207 - - [13/Jun/2026:04:10:39 +0000] "GET /.env.live HTTP/1.1" show less	Port Scan

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇺 213.16.88.111

🇺🇸 198.11.181.143

🇬🇧 195.96.139.12

🇫🇮 147.185.133.196

🇰🇼 62.150.237.107

🇸🇪 20.240.254.144

🇮🇳 223.191.64.223

🇮🇳 203.200.74.18

🇬🇧 185.247.137.243

🇸🇬 114.119.133.204

🇻🇳 103.61.123.132

🇵🇹 80.172.227.22

🇺🇸 65.111.4.60

🇳🇱 45.148.10.121

🇺🇸 209.85.222.170

🇧🇷 205.210.31.174

🇻🇳 202.143.111.152

🇩🇪 104.207.63.34

🇺🇸 104.207.36.235

🇺🇸 104.207.33.45