JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 8.231.39.221

8.231.39.221 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 99%: ?

99%

ISP	Google LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	221.39.231.8.bc.googleusercontent.com
Domain Name	google.com
Country	🇺🇸 United States of America
City	Columbus, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 8.231.39.221

Whois 8.231.39.221

IP Abuse Reports for 8.231.39.221:

This IP address has been reported a total of 29 times from 23 distinct sources. 8.231.39.221 was first reported on June 14th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-15 22:00:58 (1 week ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-14. show less	Web App Attack SSH Hacking
Anonymous	2026-06-15 16:14:13 (1 week ago)	Bot / seems abusive / Apache connections: 46	DDoS Attack Web Spam Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 05:27:29 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 8.231.39.221 (221.39.231.8.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 8.231.39.221 (221.39.231.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 01:27:25.889224 2026] [security2:error] [pid 15299:tid 15299] [client 8.231.39.221:36150] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "orlando-windsor-villa.com"] [uri "/.git/config"] [unique_id "ai-NPcikPXA9apo1N11elQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 openstrike.co.uk	2026-06-15 05:13:46 (1 week ago)	30 attacks on VC URLs: GET /code/.git/config HTTP/1.1	Hacking
🇺🇸 ruusvuu	2026-06-15 04:47:29 (1 week ago)	Automated abuse report: 25 attack/probe requests from Google LLC / US. Targeted paths: /htdocs/.git/ ... show more Automated abuse report: 25 attack/probe requests from Google LLC / US. Targeted paths: /htdocs/.git/config, /frontend/.git/config, /.git/config, /api/.git/config, /public/.git/config. Sample log lines: [nafco] 2026-06-15T04:47:27.728Z 8.231.39.221 - GET /laravel/.git/config 404 679 - 1.233 ms ref="-" [nafco] 2026-06-15T04:47:27.738Z 8.231.39.221 - GET /symfony/.git/config 404 679 - 0.981 ms ref="-" [nafco] 2026-06-15T04:47:27.745Z 8.231.39.221 - GET /project/.git/config 404 679 - 1.090 ms ref="-" Detected by an automated web-server log monitor. show less	Web App Attack
🇩🇪 4server	2026-06-15 04:30:57 (1 week ago)	[MonJun1506:30:51.3507562026][security2:error][pid3650296:tid3650322][client8.231.39.221:0]ModSecuri ... show more [MonJun1506:30:51.3507562026][security2:error][pid3650296:tid3650322][client8.231.39.221:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.albertiarnaldoluigi.ch.136-243-54-122.cpanel.site\"][uri\"/frontend/.git/config\"][unique_id\"ai9_-4Z-XF-x1qSNvze1_QAAAJc\"] show less	Port Scan Brute-Force Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-15 03:36:20 (1 week ago)	Blocked by CSF 13 firewall - Rule: US/United States/221.39.231.8.bc.googleusercontent.com	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 03:10:49 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 8.231.39.221 (221.39.231.8.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 8.231.39.221 (221.39.231.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:10:45.273797 2026] [security2:error] [pid 24641:tid 24641] [client 8.231.39.221:60608] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "yoshiyukiya.com"] [uri "/.git/config"] [unique_id "ai9tNYilpv7JN5C59UxUYAAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-15 02:57:19 (1 week ago)	[ns3.backorder.gr] httpd-suspicious-path: sites=global; logs=/var/log/httpd/access_log; samples=/api ... show more [ns3.backorder.gr] httpd-suspicious-path: sites=global; logs=/var/log/httpd/access_log; samples=/api/.git/config \| /site/.git/config \| /blog/.git/config show less	Hacking Web App Attack
🇫🇷 masterguru	2026-06-15 02:52:39 (1 week ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-196)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 02:14:42 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 8.231.39.221 (221.39.231.8.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 8.231.39.221 (221.39.231.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 22:14:38.245432 2026] [security2:error] [pid 6078:tid 6078] [client 8.231.39.221:41324] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.jti-group.com"] [uri "/v1/.git/config"] [unique_id "ai9gDquaq31sDWErL46Y_QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 01:40:13 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 8.231.39.221 (221.39.231.8.bc.googleusercontent ... show more (mod_security) mod_security (id:210492) triggered by 8.231.39.221 (221.39.231.8.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:40:06.461100 2026] [security2:error] [pid 19155:tid 19155] [client 8.231.39.221:43886] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "willowcreekretreathouse.com"] [uri "/.git/config"] [unique_id "ai9X9rF1mlgn0C7vzrM--AAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Philister11	2026-06-15 00:22:39 (1 week ago)	CrowdSec: crowdsecurity/http-probing (US/AS396982)	Web App Attack Hacking
🇺🇸 mnsf	2026-06-15 00:17:37 (1 week ago)	Too many Status 40X (12) Scanning/Probing (30)	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-15 00:02:56 (1 week ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇹 91.224.92.78

🇧🇪 34.140.124.10

🇺🇸 207.90.244.26

🇦🇷 190.220.172.154

🇺🇸 162.216.150.28

🇭🇰 103.14.33.174

🇩🇪 95.90.13.168

🇩🇪 92.205.195.173

🇫🇷 92.204.55.148

🇫🇷 91.231.89.230

🇩🇪 47.245.139.222

🇺🇸 34.230.221.101

🇨🇳 222.176.201.193

🇨🇳 220.167.232.235

🇫🇷 103.110.160.32

🇳🇱 91.92.40.4

🇱🇻 81.30.98.158

🇺🇸 66.132.195.44

🇳🇱 45.148.10.152

🇧🇪 35.241.188.203