JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.255.115.92

5.255.115.92 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 56%: ?

56%

ISP	The Infrastructure Group B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60404
Domain Name	theinfrastructure.group
Country	🇳🇱 Netherlands
City	Dronten, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.255.115.92

Whois 5.255.115.92

IP Abuse Reports for 5.255.115.92:

This IP address has been reported a total of 12 times from 8 distinct sources. 5.255.115.92 was first reported on June 26th 2026, and the most recent report was 16 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-28 06:26:18 (16 minutes ago)	(mod_security) mod_security (id:210492) triggered by 5.255.115.92 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 5.255.115.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 02:26:14.703487 2026] [security2:error] [pid 17042:tid 17042] [client 5.255.115.92:60642] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "theholographicseed.com"] [uri "/.env"] [unique_id "akC-htKBEJSOn5YeRLX4qwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 05:48:19 (54 minutes ago)	(mod_security) mod_security (id:210492) triggered by 5.255.115.92 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 5.255.115.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 01:48:11.971641 2026] [security2:error] [pid 24017:tid 24017] [client 5.255.115.92:54682] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thehomemailbox.com"] [uri "/.git/HEAD"] [unique_id "akC1m3NlgBSHG8EzthNUNwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 04:19:17 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 5.255.115.92 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 5.255.115.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 00:19:13.207581 2026] [security2:error] [pid 29439:tid 29439] [client 5.255.115.92:41792] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thegrousewoods.com"] [uri "/.git/HEAD"] [unique_id "akCgwZyFgsNyhbNh_cTmWAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-28 04:04:02 (2 hours ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 03:59:09 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 5.255.115.92 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 5.255.115.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 23:59:05.771300 2026] [security2:error] [pid 11434:tid 11452] [client 5.255.115.92:38812] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thebiglies.info"] [uri "/.git/HEAD"] [unique_id "akCcCU4-pKBHl1384PyDlgAAANA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 00:20:43 (6 hours ago)	(mod_security) mod_security (id:210492) triggered by 5.255.115.92 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 5.255.115.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 20:20:38.274841 2026] [security2:error] [pid 24554:tid 24554] [client 5.255.115.92:54892] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "us-war-crimes-commission.org"] [uri "/.git/HEAD"] [unique_id "akBo1hiPE5Z1qvJej0I0IwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-27 23:32:22 (7 hours ago)	209 requests with url.path /.git/config 144 requests with url.path config.json 132 requests wit ... show more 209 requests with url.path /.git/config 144 requests with url.path config.json 132 requests with url.path .aws/ show less	Brute-Force Bad Web Bot
Anonymous	2026-06-27 22:05:52 (8 hours ago)	Blocked: Reason='Suspicious traffic score=75 (review-based detection)'; Requests=81	Hacking
🇩🇪 LRob.fr	2026-06-27 20:00:07 (10 hours ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇫🇷 dynamix	2026-06-27 19:17:35 (11 hours ago)	Multiple WAF Violations	Web App Attack
🇮🇹 VHosting	2026-06-27 16:00:11 (14 hours ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-26 21:59:30 (1 day ago)	Auto-ban: >3000 req/min op 2026-06-26	Web App Attack SSH Hacking

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.90.232.249

🇵🇱 20.215.211.204

🇧🇷 200.175.104.103

🇴🇲 194.163.6.22

🇺🇸 147.185.132.222

🇭🇰 104.208.108.166

🇺🇸 104.194.9.81

🇳🇱 45.198.224.46

🇺🇸 216.73.216.251

🇧🇪 198.235.24.232

🇷🇴 193.32.162.84

🇻🇳 171.225.206.198

🇺🇸 162.216.150.129

🇺🇸 162.216.149.225

🇰🇷 118.37.214.187

🇨🇳 220.167.233.206

🇺🇸 216.73.217.59

🇨🇳 182.121.213.209

🇧🇷 177.72.235.134

🇮🇶 176.241.94.36