JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.255.109.126

5.255.109.126 was found in our database!

This IP was reported 273 times. Confidence of Abuse is 100%: ?

100%

ISP	The Infrastructure Group B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60404
Domain Name	theinfrastructure.group
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.255.109.126

Whois 5.255.109.126

IP Abuse Reports for 5.255.109.126:

This IP address has been reported a total of 273 times from 162 distinct sources. 5.255.109.126 was first reported on January 24th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Bedios GmbH	2026-05-19 06:16:34 (2 weeks ago)	Login credentials theft attempt	Hacking
🇷🇸 Smel	2026-05-19 04:22:05 (2 weeks ago)	HTTP/80/443/8080 Unauthorized Probe, Hack -	Hacking Web App Attack
🇫🇷 ingroscart.it	2026-05-19 03:49:46 (2 weeks ago)	(mod_security) mod_security triggered on hostname [redacted] 5.255.109.126 (-)	SQL Injection
🇩🇪 updown.io	2026-05-18 17:19:24 (2 weeks ago)	{"level":"info","ts":1779124719.2293556,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1779124719.2293556,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"5.255.109.126","remote_port":"54668","client_ip":"5.255.109.126","proto":"HTTP/1.1","method":"GET","host":"status.jour.work","uri":"/","headers":{"User-Agent":["Mozilla/5.0 (compatible; SemrushBot/7~bl; +http://www.semrush.com/bot.html)"],"Accept-Encoding":["gzip"]}},"bytes_read":0,"user_id":"","duration":0.000065244,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://status.jour.work/"],"Content-Type":[]}} {"level":"info","ts":1779124728.2791715,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"5.255.109.126","remote_port":"37706","client_ip":"5.255.109.126","proto":"HTTP/1.1","method":"GET","host":"status.jour.work","uri":"/sitemap.xml","headers":{"User-Agent":["Mozilla/5.0 (compatible; ClaudeBot/1.0; [email protected])"],"Accept-Encoding":["gzip"]}},"bytes_read":0,"user_id":"","du ... show less	DDoS Attack Web App Attack
🇧🇬 Stoyko Stoykov	2026-05-18 16:30:00 (2 weeks ago)	5.255.109.126 - - [18/May/2026:19:29:58 +0300] "GET /.aws/credentials HTTP/1.1" 404 0 "-" "Mozilla/5 ... show more 5.255.109.126 - - [18/May/2026:19:29:58 +0300] "GET /.aws/credentials HTTP/1.1" 404 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack
🇬🇧 venus.launch.bz	2026-05-18 16:00:30 (2 weeks ago)	(mod_security) mod_security triggered on hostname [redacted] 5.255.109.126 (-)	SQL Injection
🇯🇵 VXG-NET	2026-05-18 15:09:39 (2 weeks ago)	port=80, indicator_type=info-leak	Hacking
🇩🇪 bescared	2026-05-18 14:58:47 (2 weeks ago)	F2B - Malicious activity detected. URL Probing. -8ff06ede-	Hacking Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-05-18 10:24:35 (2 weeks ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 Petros Stefanakis	2026-05-18 07:17:50 (2 weeks ago)	(mod_security) mod_security triggered on hostname [redacted] 5.255.109.126 (-)	SQL Injection
🇺🇸 mnsf	2026-05-18 07:05:22 (2 weeks ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇬🇧 consul.to	2026-05-18 05:56:14 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇮🇪 Jim Keir	2026-05-18 05:12:21 (2 weeks ago)	2026-05-18 05:12:21 5.255.109.126 Bad bot, blocking Mozilla/5.0	Bad Web Bot
🇺🇸 etu brutus	2026-05-18 04:15:43 (2 weeks ago)	5.255.109.126 Blocked by [Attack Vector List] ...	Hacking Brute-Force Exploited Host
🇬🇧 consul.to	2026-05-16 12:36:09 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack

Showing 76 to 90 of 273 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.175

🇻🇳 160.250.5.32

🇻🇳 103.130.213.223

🇺🇦 82.193.122.91

🇺🇸 66.132.195.17

🇵🇰 223.123.124.120

🇲🇽 189.156.248.146

🇺🇸 162.241.181.42

🇸🇬 152.32.218.244

🇭🇰 152.32.212.224

🇨🇳 139.170.72.223

🇩🇪 43.228.157.197

🇺🇦 31.43.45.146

🇺🇸 20.29.56.192

🇩🇪 194.88.98.92

🇬🇧 193.163.125.112

🇮🇷 185.226.119.178

🇸🇬 139.99.38.177

🇮🇳 122.187.230.148

🇷🇴 80.94.92.177