JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.255.112.68

5.255.112.68 was found in our database!

This IP was reported 138 times. Confidence of Abuse is 100%: ?

100%

ISP	The Infrastructure Group B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60404
Domain Name	theinfrastructure.group
Country	🇳🇱 Netherlands
City	Dronten, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.255.112.68

Whois 5.255.112.68

IP Abuse Reports for 5.255.112.68:

This IP address has been reported a total of 138 times from 91 distinct sources. 5.255.112.68 was first reported on June 20th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Hostynet	2026-06-22 11:41:42 (5 hours ago)	TCP SYN flood detected by MikroTik RouterOS filter (sustained half-open connection rate from single ... show more TCP SYN flood detected by MikroTik RouterOS filter (sustained half-open connection rate from single source). Source automatically blacklisted. show less	DDoS Attack
🇩🇰 ScamAware	2026-06-22 11:01:45 (6 hours ago)	Detected by Cloudflare Security Events via WordPress automation. Detection: sensitive_files (Sensiti ... show more Detected by Cloudflare Security Events via WordPress automation. Detection: sensitive_files (Sensitive files, source control, config, and backups). Hits from same IP in last 60 minutes: 46. Unique request paths counted internally: 46. Cloudflare action: block. Cloudflare source: firewallCustom. show less	Web App Attack
🇩🇪 FeG Deutschland	2026-06-22 10:56:14 (6 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247	Exploited Host Web App Attack
🇩🇪 bescared	2026-06-22 10:43:54 (6 hours ago)	F2B - Malicious activity detected. URL Probing. -8ff06ede-	Hacking Bad Web Bot Web App Attack
🇩🇪 Manuel Braeuer	2026-06-22 10:29:57 (6 hours ago)	5.255.112.68 - - [22/Jun/2026:12:29:55 +0200] "GET /.env HTTP/1.1" 403 4785 "-" "Mozilla/5.0 (Macint ... show more 5.255.112.68 - - [22/Jun/2026:12:29:55 +0200] "GET /.env HTTP/1.1" 403 4785 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" 5.255.112.68 - - [22/Jun/2026:12:29:56 +0200] "GET /config/production.json HTTP/1.1" 403 4785 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/147.0.0.0" 5.255.112.68 - - [22/Jun/2026:12:29:56 +0200] "GET /config/service-account.json HTTP/1.1" 403 4785 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 18_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Mobile/15E148 Safari/604.1" 5.255.112.68 - - [22/Jun/2026:12:29:56 +0200] "GET /src/.env HTTP/1.1" 403 4785 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 18_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Mobile/15E148 Safari/604.1" 5.255.112.68 - - [22/Jun/2026:12:29:56 +0200] "GET /config/firebase_credentials.json HTTP/1.1" 403 4785 " ... show less	Web App Attack
🇧🇷 ludarkstar99	2026-06-22 10:25:22 (6 hours ago)	Blocked by os-abuseipdb; 14 hits, proto=tcp, ports=443,80	Port Scan Hacking
Anonymous	2026-06-22 10:02:35 (7 hours ago)	(caddyscan) Scanner path probe from 5.255.112.68 (NL/The Netherlands/-): 5 in the last 3600 secs; Po ... show more (caddyscan) Scanner path probe from 5.255.112.68 (NL/The Netherlands/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 5.255.112.68 - - [22/Jun/2026:10:02:30 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 5.255.112.68 - - [22/Jun/2026:10:02:30 +0000] "GET /.aws/credentials HTTP/1.1" [REDACTED] 200 2627 5.255.112.68 - - [22/Jun/2026:10:02:30 +0000] "GET /.env.backup HTTP/1.1" [REDACTED] 200 2627 5.255.112.68 - - [22/Jun/2026:10:02:30 +0000] "GET /.env.staging HTTP/1.1" [REDACTED] 200 2627 5.255.112.68 - - [22/Jun/2026:10:02:31 +0000] "GET /laravel/.env HTTP/1.1" show less	Port Scan
🇩🇪 Skyrider	2026-06-22 09:06:55 (8 hours ago)	crowdsecurity/http-sensitive-files	Web App Attack
🇫🇷 bazter.pro	2026-06-22 08:57:44 (8 hours ago)	Fail2Ban: apache-ratelimit - 20 failures	Port Scan Bad Web Bot Web App Attack
Anonymous	2026-06-22 07:56:42 (9 hours ago)	(caddyscan) Scanner path probe from 5.255.112.68 (NL/The Netherlands/-): 5 in the last 3600 secs; Po ... show more (caddyscan) Scanner path probe from 5.255.112.68 (NL/The Netherlands/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 5.255.112.68 - - [22/Jun/2026:07:56:39 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 5.255.112.68 - - [22/Jun/2026:07:56:39 +0000] "GET /.env.staging HTTP/1.1" [REDACTED] 200 2627 5.255.112.68 - - [22/Jun/2026:07:56:39 +0000] "GET /src/.env HTTP/1.1" [REDACTED] 200 2627 5.255.112.68 - - [22/Jun/2026:07:56:39 +0000] "GET /laravel/.env HTTP/1.1" [REDACTED] 200 2627 5.255.112.68 - - [22/Jun/2026:07:56:39 +0000] "GET /.env.test HTTP/1.1" show less	Port Scan
🇧🇪 cmbplf	2026-06-22 07:11:36 (10 hours ago)	1.035 requests with url.path .git/ 608 requests with url.path config.json 169 requests with ur ... show more 1.035 requests with url.path .git/* 608 requests with url.path config.json 169 requests with url.path debug.log 168 requests with url.path /debug.log 118 requests with url.path .aws/* 113 requests with url.path .config/ 111 requests with url.path .kube/ 106 requests with url.path .yarnrc 102 requests with url.path .npmrc 101 requests with url.path .docker/ show less	Brute-Force Bad Web Bot
🇨🇦 internetworld	2026-06-22 06:42:00 (10 hours ago)	internetworld-prod-01 Fail2Ban ban. Jail=nginx-web-probe-iw. Sanitized automatic report from interne ... show more internetworld-prod-01 Fail2Ban ban. Jail=nginx-web-probe-iw. Sanitized automatic report from internetworld.ca server security monitoring. show less	Brute-Force Web App Attack
🇬🇧 openstrike.co.uk	2026-06-22 05:14:04 (12 hours ago)	59 attacks on password grabbing URLs, VC URLs, config grabbing URLs (type 2), env grabbing URLs: GET ... show more 59 attacks on password grabbing URLs, VC URLs, config grabbing URLs (type 2), env grabbing URLs: GET /.aws/credentials HTTP/1.1 GET /.git/HEAD HTTP/1.1 GET /config/production.json HTTP/1.1 GET /.env.production.swp HTTP/1.1 show less	Hacking
🇦🇹 mindrider	2026-06-22 05:13:00 (12 hours ago)	5.255.112.68 - - [22/Jun/2026:07:12:58 +0200] "GET /.env.bak HTTP/1.1" 404 2968 "-" "Mozilla/5.0 (X1 ... show more 5.255.112.68 - - [22/Jun/2026:07:12:58 +0200] "GET /.env.bak HTTP/1.1" 404 2968 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:149.0) Gecko/20100101 Firefox/149.0" "-" 5.255.112.68 - - [22/Jun/2026:07:12:58 +0200] "GET /.env.local HTTP/1.1" 404 2968 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:150.0) Gecko/20100101 Firefox/150.0" "-" ... show less	Brute-Force Web App Attack
🇩🇪 Viveronese	2026-06-22 04:47:05 (12 hours ago)	HTTP vulnerability scanning	Web App Attack

Showing 1 to 15 of 138 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 112.27.230.157

🇺🇸 195.184.76.246

🇷🇴 193.46.255.86

🇧🇷 192.141.106.62

🇧🇷 189.90.58.210

🇧🇷 186.215.107.189

🇬🇧 172.217.32.92

🇺🇸 162.216.150.239

🇧🇩 103.183.62.1

🇫🇷 85.217.140.33

🇬🇧 74.125.40.147

🇬🇧 74.125.40.146

🇬🇧 74.125.40.145

🇫🇮 62.60.152.192

🇺🇸 34.73.133.196

🇰🇷 220.122.115.9

🇨🇳 202.112.47.54

🇫🇷 185.177.72.29

🇬🇧 172.253.82.24

🇬🇧 172.253.82.20