JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.255.122.176

5.255.122.176 was found in our database!

This IP was reported 901 times. Confidence of Abuse is 100%: ?

100%

ISP	The Infrastructure Group B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60404
Domain Name	theinfrastructure.group
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.255.122.176

Whois 5.255.122.176

IP Abuse Reports for 5.255.122.176:

This IP address has been reported a total of 901 times from 358 distinct sources. 5.255.122.176 was first reported on May 11th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 netclix.gr	2026-06-02 18:32:14 (1 day ago)	(mod_security) mod_security triggered on hostname [redacted] 5.255.122.176 (-): (CF_ENABLE)	SQL Injection
🇦🇩 bakunin1848	2026-06-02 18:31:04 (1 day ago)	Firewall IPS Detection on 02-06-2026 at 20:31:04	Port Scan Exploited Host
🇪🇸 alferez	2026-06-02 17:43:59 (1 day ago)	Searching .(env\|sql\|zip\|tar\|rar) files	Hacking Exploited Host Web App Attack
🇩🇪 LRob.fr	2026-06-02 16:30:05 (1 day ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇩🇪 paissangroup	2026-06-02 16:27:01 (1 day ago)	Multiple WAF Violations	Web App Attack
🇫🇷 dwmp	2026-06-02 16:02:55 (1 day ago)	[02/Jun/2026:18:02:54.991429 +0200] ah7@rgGECL7xGIJsuzjAegAAAJE 5.255.122.176 42360 38.242.227.117 7 ... show more [02/Jun/2026:18:02:54.991429 +0200] ah7@rgGECL7xGIJsuzjAegAAAJE 5.255.122.176 42360 38.242.227.117 7081 [02/Jun/2026:18:02:54.995613 +0200] ah7@rsDO0qq2J87aRFcYUAAAAEA 5.255.122.176 42362 38.242.227.117 7081 [02/Jun/2026:18:02:55.001279 +0200] ah7@rgGECL7xGIJsuzjAewAAAJM 5.255.122.176 42364 38.242.227.117 7081 ... show less	Brute-Force SSH
🇷🇴 iulianh	2026-06-02 12:33:39 (1 day ago)	80,443	Brute-Force SSH
🇩🇪 igerman	2026-06-02 11:34:48 (1 day ago)	caddy probes: api: GET /api/client_secret.json(DROP) \| cloud-creds: GET /.aws/credentials(DROP) \| en ... show more caddy probes: api: GET /api/client_secret.json(DROP) \| cloud-creds: GET /.aws/credentials(DROP) \| env-probe: GET /.env(DROP), GET /.env.backup(DROP), GET /.env.development(DROP), GET /.env.old(DROP), GET /.env.production(DROP), GET /backend/.env(DROP), GET /public/.env(DROP), GET /src/.env(DROP) \| web: GET /(DROP), GET /.anthropic/config.json(DROP), GET /.cursor/mcp.json(DROP), GET /.openai/config.json(DROP), GET /.openclaw/agents/main/agent/models.json(DROP), GET /.yarnrc(DROP), GET /client_secret.json(DROP), GET /client_secrets.json(DROP), GET /credentials.json(DROP), GET /gcp-key.json(DROP), GET /google-credentials.json(DROP), GET /google-service-account.json(DROP), GET /google_credentials.json(DROP), GET /service-account-key.json(DROP), GET /serviceAccountKey.json(DROP) show less	Web App Attack
🇩🇪 raph	2026-06-02 09:48:08 (1 day ago)	[DOT FILES] crawler .env, .git, .config, etc.	Bad Web Bot Web App Attack
🇩🇪 dbmwebdesign	2026-06-02 09:00:26 (1 day ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇮🇩 soc-yk	2026-06-02 08:06:18 (1 day ago)	Type: suspicious_network_activity Risk: 66 Events: 298 Evidence: - Persistent suspicious network ac ... show more Type: suspicious_network_activity Risk: 66 Events: 298 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Port Scan Hacking
Anonymous	2026-06-02 07:18:22 (1 day ago)	Detected by CrowdSec IP: 5.255.122.176 Scenario: crowdsecurity/http-dos-swithcing-ua Date: Tue, 02 J ... show more Detected by CrowdSec IP: 5.255.122.176 Scenario: crowdsecurity/http-dos-swithcing-ua Date: Tue, 02 Jun 2026 09:18:22 CEST (GMT +02:00) show less	Web App Attack
🇳🇱 SysAdmin Dylan	2026-06-02 06:17:04 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 5.255.122.176 (NL/The Netherlands/-): 10 in the ... show more (mod_security) mod_security (id:210492) triggered by 5.255.122.176 (NL/The Netherlands/-): 10 in the last 3600 secs show less	Brute-Force
🇩🇪 BlueWire Hosting	2026-06-02 06:07:16 (1 day ago)	Probing websites for vulnerabilities	Web App Attack
🇦🇺 afleventoffice.com.au	2026-06-02 05:54:52 (1 day ago)	GET /.yarnrc HTTP/1.1	Web App Attack

Showing 31 to 45 of 901 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 213.177.179.91

🇧🇷 205.210.31.139

🇺🇸 162.144.107.40

🇯🇵 138.2.46.231

🇨🇳 101.96.204.7

🇺🇸 66.132.172.39

🇭🇰 43.128.61.114

🇺🇸 20.169.105.164

🇰🇷 221.167.21.148

🇺🇸 216.218.206.80

🇻🇪 201.238.0.93

🇨🇳 182.107.183.121

🇧🇷 177.174.0.3

🇫🇷 164.68.127.128

🇬🇧 157.245.36.241

🇺🇸 147.185.132.155

🇺🇸 147.185.132.148

🇮🇳 139.59.68.63

🇮🇳 139.59.59.165

🇩🇪 139.19.117.131