JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.121.127.140

85.121.127.140 was found in our database!

This IP was reported 46 times. Confidence of Abuse is 100%: ?

100%

ISP	Urban Network Solutions SRL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Domain Name	urbannetworksolutions.nl
Country	🇳🇱 Netherlands
City	The Hague, South Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.121.127.140

Whois 85.121.127.140

IP Abuse Reports for 85.121.127.140:

This IP address has been reported a total of 46 times from 27 distinct sources. 85.121.127.140 was first reported on June 5th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 andypiper	2026-06-07 01:01:37 (1 day ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇫🇮 pixiekat	2026-06-06 22:56:08 (1 day ago)	[Sat Jun 06 23:56:05.697046 2026] [authz_core:error] [pid 375050:tid 375075] [remote 85.121.127.140: ... show more [Sat Jun 06 23:56:05.697046 2026] [authz_core:error] [pid 375050:tid 375075] [remote 85.121.127.140:41450] AH01630: client denied by server configuration: /mnt/HC_Volume_105148208/vhosts/spacecadetgrrl-me/web/.ssh [Sat Jun 06 23:56:05.721947 2026] [authz_core:error] [pid 375050:tid 375066] [remote 85.121.127.140:41450] AH01630: client denied by server configuration: /mnt/HC_Volume_105148208/vhosts/spacecadetgrrl-me/web/.ssh [Sat Jun 06 23:56:05.721949 2026] [authz_core:error] [pid 375050:tid 375062] [remote 85.121.127.140:41450] AH01630: client denied by server configuration: /mnt/HC_Volume_105148208/vhosts/spacecadetgrrl-me/web/.docker [Sat Jun 06 23:56:07.099997 2026] [authz_core:error] [pid 375050:tid 375063] [remote 85.121.127.140:41450] AH01630: client denied by server configuration: /mnt/HC_Volume_105148208/vhosts/spacecadetgrrl-me/web/.ssh [Sat Jun 06 23:56:07.247123 2026] [authz_core:error] [pid 375050:tid 375060] [remote 85.121.127.140:41450] AH01630: client denied by server c ... show less	Brute-Force
🇩🇪 FeG Deutschland	2026-06-06 21:56:25 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247	Exploited Host Web App Attack
🇺🇸 SketchyDude	2026-06-06 21:18:03 (1 day ago)	Banned by Fail2Ban jail: apache-auth	Brute-Force Web App Attack
🇩🇪 mondor.ro	2026-06-06 21:08:30 (1 day ago)	Cluster member 148.251.176.225 (DE/Germany/antares.webyouridea.ro) said, DENY 85.121.127.140, Reason ... show more Cluster member 148.251.176.225 (DE/Germany/antares.webyouridea.ro) said, DENY 85.121.127.140, Reason:[(mod_security) mod_security (id:210832) triggered by 85.121.127.140 (-): 3 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER; Logs: show less	Port Scan
Anonymous	2026-06-06 20:48:02 (1 day ago)	Bot / scanning and/or hacking attempts: GET /.env.example HTTP/2.0, GET /config/application.properti ... show more Bot / scanning and/or hacking attempts: GET /.env.example HTTP/2.0, GET /config/application.properties HTTP/2.0, GET /application.yml HTTP/2.0, GET /wp-config.php~ HTTP/2.0, GET /storage/logs/laravel.log HTTP/2.0 show less	Hacking Web App Attack
🇬🇧 NotCool	2026-06-06 19:36:29 (1 day ago)	[7200] (GITPROBE,CRAWLDELAY,DOTENVPROBE) Login failure/trigger from 85.121.127.140 (NL/The Netherlan ... show more [7200] (GITPROBE,CRAWLDELAY,DOTENVPROBE) Login failure/trigger from 85.121.127.140 (NL/The Netherlands/-): 50 in the last 3600 secs show less	Brute-Force
🇳🇱 i-turnradio.nl	2026-06-06 18:21:11 (1 day ago)	2026-06-06 @ 20:21:10 (CET) ~ Blocked for trying to access: /.aws/credentials	Web App Attack
🇩🇪 Nightreaver	2026-06-06 18:20:25 (1 day ago)	85.121.127.140 - - [06/Jun/2026:20:20:21 0200] "GET /secrets.yml HTTP/1.1" 404 435 "-" "Mozilla/5.0 ... show more 85.121.127.140 - - [06/Jun/2026:20:20:21 0200] "GET /secrets.yml HTTP/1.1" 404 435 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ClaudeBot/1.0; mailto:[email protected]" 85.121.127.140 - - [06/Jun/2026:20:20:22 0200] "GET /.git/config HTTP/1.1" 404 435 "-" "Mozilla/5.0 (compatible; cohere-ai/1.0; https://cohere.com)" 85.121.127.140 - - [06/Jun/2026:20:20:22 0200] "GET /application.yml HTTP/1.1" 404 435 "-" "CCBot/2.0 (https://commoncrawl.org/faq/)" 85.121.127.140 - - [06/Jun/2026:20:20:23 0200] "GET /storage/logs/laravel.log HTTP/1.1" 404 435 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; GPTBot/1.2; https://openai.com/gptbot" 85.121.127.140 - - [06/Jun/2026:20:20:25 0200] "GET /config/secrets.yml HTTP/1.1" 404 435 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; ChatGPT-User/1.0; https://openai.com/bot"[...] show less	Bad Web Bot Web App Attack
🇨🇭 zynex	2026-06-06 18:12:15 (1 day ago)	URL Probing: /.env	Web App Attack
🇵🇱 dzpk	2026-06-06 17:27:31 (1 day ago)	[06/Jun/2026:19:27:29 +0200] 178076684994.229839 85.121.127.140 59016 HOST 80 [06/Jun/2026:19:27:31 ... show more [06/Jun/2026:19:27:29 +0200] 178076684994.229839 85.121.127.140 59016 HOST 80 [06/Jun/2026:19:27:31 +0200] 178076685186.299662 85.121.127.140 60896 HOST 80 [06/Jun/2026:19:27:31 +0200] 178076685184.640260 85.121.127.140 60912 HOST 80 show less	Web App Attack
🇳🇱 ConsulHosting	2026-06-06 16:51:20 (1 day ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇳🇱 Site.eu	2026-06-06 16:38:32 (1 day ago)	Excessive multi-domain requests	Brute-Force
🇱🇹 NotACaptcha	2026-06-06 16:31:54 (1 day ago)	webserver:80 [06/Jun/2026] "GET /sitemap.xml HTTP/1.1" 302 417 "-" "Mozilla/5.0 (Macintosh; Intel M ... show more webserver:80 [06/Jun/2026] "GET /sitemap.xml HTTP/1.1" 302 417 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15" webserver:80 [06/Jun/2026] "GET /.git/config HTTP/1.1" 302 417 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot" webserver:80 [06/Jun/2026] "GET /application.yml HTTP/1.1" 302 425 "-" "Mozilla/5.0 (compatible; Amazonbot/0.1; +https://developer.amazon.com/support/amazonbot)" webserver:80 [06/Jun/2026] "GET /.aws/credentials HTTP/1.1" 302 427 "-" "Mozilla/5.0 (compatible; Applebot/0.1; +http://www.apple.com/go/applebot)" webserver:80 [06/Jun/2026] "GET /robots.txt HTTP/1.1" 302 415 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36" webserver:80 [06/Jun/2026] "GET /debug/pprof/cmdline HTTP/1.1" 302 433 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.... show less	Web App Attack
🇫🇷 masterguru	2026-06-06 16:23:03 (1 day ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 85.121.127.140 (NL/The Netherlands/-) ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 85.121.127.140 (NL/The Netherlands/-): 1 in the last 3600 secs (0-195) show less	Hacking

Showing 1 to 15 of 46 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.99.99.95

🇮🇩 182.10.129.248

🇺🇸 147.182.183.153

🇺🇸 44.206.209.136

🇨🇳 124.117.195.213

🇺🇸 64.62.156.83

🇨🇳 47.99.240.101

🇺🇸 44.180.116.55

🇮🇳 43.230.106.180

🇩🇪 13.140.128.125

🇨🇦 2607:5300:60:5e90::1

🇩🇪 209.50.183.233

🇸🇦 130.164.154.124

🇮🇳 98.70.3.41

🇹🇷 85.106.146.184

🇨🇳 49.64.207.128

🇺🇸 44.247.25.96

🇮🇩 39.194.5.96

🇮🇩 182.253.156.184

🇸🇬 139.180.209.223