AbuseIPDB » 85.121.127.114
85.121.127.114
This IP was reported 39 times. Confidence of
Abuse
is 100% : ?
ISP
Urban Network Solutions SRL
Usage Type
Data Center/Web Hosting/Transit
ASN
AS9009
Domain Name
urbannetworksolutions.nl
Country
π³π±
Netherlands
City
The Hague, South Holland
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 85.121.127.114 :
This IP address has been reported a total of
39
times from
22 distinct
sources.
85.121.127.114 was first reported on
June 1st 2026 , and the most recent report was
18 hours ago
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
πΊπΈ
octageeks.com
2026-06-02 04:06:33
(2 days ago)
Wordpress malicious attack:[octablocked]
Web App Attack
π§πͺ
cmbplf
2026-06-01 14:44:32
(2 days ago)
108 requests with url.path *.env
Brute-Force
Bad Web Bot
π«π·
ELYAZ
2026-06-01 13:34:59
(2 days ago)
(y3) Failed access -byebye- from 85.121.127.114 (-): (CF_ENABLE)
Hacking
πΊπΈ
TPI-Abuse
2026-06-01 13:25:41
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 85.121.127.114 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 85.121.127.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 09:25:33.982530 2026] [security2:error] [pid 8499:tid 8499] [client 85.121.127.114:46852] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ic1.global"] [uri "/.git/config"] [unique_id "ah2ITWagesncZMnt1QQ1GQAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-01 12:49:13
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 85.121.127.114 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 85.121.127.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 08:49:06.486727 2026] [security2:error] [pid 7587:tid 7587] [client 85.121.127.114:33850] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "worldchat.global"] [uri "/.git/config"] [unique_id "ah1_ws9xN-JyNlzqAvTeaQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-01 12:00:11
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 85.121.127.114 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 85.121.127.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 08:00:06.453941 2026] [security2:error] [pid 21252:tid 21252] [client 85.121.127.114:53664] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "general.graphics"] [uri "/.git/config"] [unique_id "ah10RjqYeNJU8tc0bqy5bAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¬π§
consul.to
2026-06-01 11:37:13
(2 days ago)
Web attack/malicious scanning detected
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-01 09:52:21
(2 days ago)
(mod_security) mod_security (id:210730) triggered by 85.121.127.114 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 85.121.127.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 05:52:17.622654 2026] [security2:error] [pid 11111:tid 11111] [client 85.121.127.114:60866] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||virgen.click|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "virgen.click"] [uri "/storage/logs/laravel.log"] [unique_id "ah1WUVMgNS8i5J3nmhUC9QAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-01 09:15:13
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 85.121.127.114 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 85.121.127.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 05:15:03.000652 2026] [security2:error] [pid 12744:tid 12744] [client 85.121.127.114:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "split.cloudex.click"] [uri "/.git/config"] [unique_id "ah1NlrhF98ShluDu-3_88gAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 31 to
39
of 39 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: