JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.255.122.176

5.255.122.176 was found in our database!

This IP was reported 902 times. Confidence of Abuse is 100%: ?

100%

ISP	The Infrastructure Group B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60404
Domain Name	theinfrastructure.group
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.255.122.176

Whois 5.255.122.176

IP Abuse Reports for 5.255.122.176:

This IP address has been reported a total of 902 times from 358 distinct sources. 5.255.122.176 was first reported on May 11th 2026, and the most recent report was 2 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-04 01:28:29 (2 minutes ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 pinguin	2026-06-03 23:56:26 (1 hour ago)	Triggered Cloudflare WAF (linkMaze) from NL. Action taken: LINK_MAZE_INJECTED Protocol: HTTP/1.1 (GE ... show more Triggered Cloudflare WAF (linkMaze) from NL. Action taken: LINK_MAZE_INJECTED Protocol: HTTP/1.1 (GET method) Endpoint: /.env.local.orig UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 AvonleaConsulting	2026-06-03 22:49:41 (2 hours ago)	Brute force attack stopped by firewall	Web Spam Brute-Force Web App Attack
🇩🇪 MBombeck	2026-06-03 22:04:43 (3 hours ago)	Fail2Ban/traefik-botsearch on apps-01: banned after 5 failures	Web App Attack
🇩🇪 FeG Deutschland	2026-06-03 20:57:35 (4 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 127	Exploited Host Web App Attack
Anonymous	2026-06-03 18:26:45 (7 hours ago)	(mod_security) mod_security triggered on hostname [redacted] 5.255.122.176 (-)	SQL Injection
🇮🇹 ivanbiagi7	2026-06-03 17:54:21 (7 hours ago)	(localhost/crowdsec) custom/appsec-escalation by ip 5.255.122.176 (NL/60404) : 4h ban on Ip 5.255.12 ... show more (localhost/crowdsec) custom/appsec-escalation by ip 5.255.122.176 (NL/60404) : 4h ban on Ip 5.255.122.176 show less	Brute-Force SSH
Anonymous	2026-06-03 17:04:28 (8 hours ago)	5.255.122.176 - - [03/Jun/2026:17:04:28 +0000] "GET /.env HTTP/1.1" 404 4513 "-" "Mozilla/5.0 (Windo ... show more 5.255.122.176 - - [03/Jun/2026:17:04:28 +0000] "GET /.env HTTP/1.1" 404 4513 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36 Edg/146.0.0.0" ... show less	Brute-Force Web App Attack
🇺🇸 walnuts	2026-06-03 10:55:51 (14 hours ago)	Automated: Triggered nginx security jail (nginx-444) - probing blocked paths on web server	Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-03 10:25:58 (15 hours ago)	[WedJun0312:25:55.0580712026][security2:error][pid1584312:tid1584478][client5.255.122.176:0]ModSecur ... show more [WedJun0312:25:55.0580712026][security2:error][pid1584312:tid1584478][client5.255.122.176:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"$\?i$$\?:/\(\?:\^\\|/$\\\\\\\\.$env\\|git\\|svn\\|hg\\|DS_Store$\\|/$\?:wp-config\\|\\\\\\\\.htaccess\\|\\\\\\\\.htpasswd$\\|\\\\\\\\.$\?:sql\\|bak\\|old\\|log$\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"mail.gruppobalu.com\"][uri\"/.env.bak\"][unique_id\"aiABMyVT27eCHVunt3Q4lgAAAQc\"] show less	Port Scan Brute-Force Web App Attack
🇯🇵 HeliJP	2026-06-03 09:45:57 (15 hours ago)	2026-06-03T08:48:23Z - Recognized attacks\bad behavior from IP address 5.255.122.176 on port 443\80 ... show more 2026-06-03T08:48:23Z - Recognized attacks\bad behavior from IP address 5.255.122.176 on port 443\80 (52 daily hits): client denied by server configuration show less	Port Scan Hacking SQL Injection Brute-Force Web App Attack
🇪🇸 tg_de	2026-06-03 09:21:46 (16 hours ago)	94 attempts since 03.06.2026 09:21:41 UTC - last search for: /.env.swp	Web App Attack
🇳🇱 SysAdmin Dylan	2026-06-03 07:52:07 (17 hours ago)	(mod_security) mod_security (id:210492) triggered by 5.255.122.176 (NL/The Netherlands/-): 10 in the ... show more (mod_security) mod_security (id:210492) triggered by 5.255.122.176 (NL/The Netherlands/-): 10 in the last 3600 secs show less	Brute-Force
🇳🇱 Site.eu	2026-06-03 07:08:47 (18 hours ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 Jarda_H	2026-06-03 06:59:33 (18 hours ago)	http-probing	Web App Attack

Showing 1 to 15 of 902 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 117.72.64.105

🇺🇸 2602:80d:1007::5f

🇧🇷 205.210.31.178

🇧🇷 205.210.31.138

🇧🇪 198.235.24.207

🇺🇸 193.36.225.62

🇺🇸 185.198.240.67

🇺🇸 173.239.254.108

🇦🇷 170.78.194.30

🇺🇸 162.216.150.132

🇺🇸 147.185.132.231

🇺🇸 136.144.33.96

🇮🇪 130.176.209.182

🇮🇩 125.161.48.16

🇨🇳 123.129.70.178

🇹🇳 102.105.120.156

🇧🇬 91.92.199.36

🇺🇸 71.6.134.229

🇸🇬 47.84.143.123

🇩🇪 43.228.157.82