JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.133.103.85

5.133.103.85 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 72%: ?

72%

ISP	CE2 BILGI TEKNOLOJILERI TICARET LIMITED SIRKETI
Usage Type	Data Center/Web Hosting/Transit
ASN	AS210529
Hostname(s)	demo.egegen.org
Domain Name	ce2.com.tr
Country	🇹🇷 Turkey
City	Bursa, Bursa Province

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.133.103.85

Whois 5.133.103.85

IP Abuse Reports for 5.133.103.85:

This IP address has been reported a total of 23 times from 18 distinct sources. 5.133.103.85 was first reported on March 4th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 drewf.ink	2026-05-27 21:47:07 (1 week ago)	[21:47] Port scanning. Port(s) scanned: TCP/2087	Port Scan
🇩🇪 Mr-Money	2026-05-27 21:41:37 (1 week ago)	5.133.103.85 - - [27/May/2026:23:41:37 +0200] "GET /.git/HEAD HTTP/1.1" 404 400 "-" "Mozilla/5.0 (Li ... show more 5.133.103.85 - - [27/May/2026:23:41:37 +0200] "GET /.git/HEAD HTTP/1.1" 404 400 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" ... show less	Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
🇸🇬 drewf.ink	2026-05-27 21:08:06 (1 week ago)	[21:08] Port scanning. Port(s) scanned: TCP/2086, TCP/2087	Port Scan
🇩🇪 Lunix	2026-05-27 20:52:33 (1 week ago)		Brute-Force Web App Attack
🇳🇱 tpjg	2026-05-27 20:52:09 (1 week ago)	Automated: 15 requests with error status in 120s window from 5.133.103.85. Evidence: /.DS_Store:301, ... show more Automated: 15 requests with error status in 120s window from 5.133.103.85. Evidence: /.DS_Store:301,/actuator/env:301,/server-status:301,/phpinfo.php:301,/config/database.yml:301,/.aws/credentials:301,/wp-config.php.bak:301,/wp-config.php:301,/.env.save:301,/.env.backup:301,/.env.production:301,/.env.local:301,/.env:301,/.git/config:301,/.git/HEAD:301 show less	Web App Attack
🇩🇪 maxpower	2026-05-27 20:52:01 (1 week ago)	(exploit_critical) REGOLA 2 - Critical File Exploit Attempt 5.133.103.85 (TR/TÃ¼rkiye/demo.egegen.or ... show more (exploit_critical) REGOLA 2 - Critical File Exploit Attempt 5.133.103.85 (TR/TÃ¼rkiye/demo.egegen.org): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 5.133.103.85 - - [27/May/2026:22:51:55 +0200] "GET /wp-config.php.bak HTTP/1.1" 403 548 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" "-" host=51.89.2.98 5.133.103.85 - - [27/May/2026:22:51:55 +0200] "GET /wp-config.php.bak HTTP/1.1" 301 284 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" "-" host=51.89.2.96 show less	Port Scan
🇺🇸 antlac1	2026-05-27 20:23:22 (1 week ago)	crowdsecurity/http-sensitive-files	Brute-Force Web App Attack
🇩🇪 Roper123	2026-05-27 11:45:01 (1 week ago)	Web exploits	Web App Attack
Anonymous	2026-05-27 11:30:42 (1 week ago)		DNS Compromise DDoS Attack
🇩🇪 Lino Project	2026-05-27 09:22:19 (1 week ago)	5.133.103.85 - - [27/May/2026:11:22:16 +0200] "GET /.git/HEAD HTTP/1.1" 404 360 "-" "Mozilla/5.0 (Li ... show more 5.133.103.85 - - [27/May/2026:11:22:16 +0200] "GET /.git/HEAD HTTP/1.1" 404 360 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-05-27 09:02:06 (1 week ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 5.133.103.85 (TR/Turkey/demo.egegen.org): 1 in ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 5.133.103.85 (TR/Turkey/demo.egegen.org): 1 in the last 3600 secs (0-195) show less	Hacking
🇸🇬 drewf.ink	2026-05-27 08:42:43 (1 week ago)	[08:42] Port scanning. Port(s) scanned: TCP/2086	Port Scan
🇸🇬 anotherwatcher	2026-05-27 08:41:09 (1 week ago)	bad bot	Bad Web Bot
🇩🇪 KiekerJan	2026-05-27 08:37:27 (1 week ago)	5.133.103.85 - - [27/May/2026:10:37:25 +0200] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Ma ... show more 5.133.103.85 - - [27/May/2026:10:37:25 +0200] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 5.133.103.85 - - [27/May/2026:10:37:26 +0200] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" ... show less	Web App Attack
🇮🇪 AutosOnShow	2026-05-27 08:22:04 (1 week ago)	blocked for webapp attack \| path requested: /.env \| seen at 2026-05-27 08:21:30.246 \|	Web App Attack

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.10.151

🇩🇪 2620:171:f8:f0:9999::203

🇮🇩 157.85.221.145

🇵🇰 116.71.136.125

🇳🇱 45.148.10.147

🇺🇸 20.169.104.237

🇪🇸 5.154.28.252

🇨🇳 117.50.213.145

🇰🇷 106.243.155.71

🇫🇷 91.231.89.207

🇵🇱 83.3.152.201

🇺🇸 64.95.14.237

🇺🇸 64.62.156.70

🇱🇹 45.227.254.170

🇬🇧 217.146.80.121

🇺🇸 209.97.249.98

🇬🇧 118.26.104.179

🇮🇳 103.30.119.5

🇳🇬 102.91.4.191

🇫🇷 91.231.89.119