JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.255.122.197

5.255.122.197 was found in our database!

This IP was reported 1,031 times. Confidence of Abuse is 100%: ?

100%

ISP	The Infrastructure Group B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60404
Domain Name	theinfrastructure.group
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.255.122.197

Whois 5.255.122.197

IP Abuse Reports for 5.255.122.197:

This IP address has been reported a total of 1,031 times from 388 distinct sources. 5.255.122.197 was first reported on January 27th 2025, and the most recent report was 40 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 patrisei	2026-06-03 09:36:58 (1 day ago)	You are now banned for 10 years by Schiffdorf-West Patrol. Trigger: crowdsecurity/http-probing	Port Scan Web App Attack
🇩🇪 LRob.fr	2026-06-03 08:00:06 (1 day ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇮🇩 soc-yk	2026-06-03 07:18:10 (1 day ago)	Type: suspicious_network_activity Risk: 100 Events: 167 Evidence: - Persistent suspicious network a ... show more Type: suspicious_network_activity Risk: 100 Events: 167 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Port Scan Hacking
🇫🇷 polarolouis	2026-06-03 07:08:00 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇦🇹 SchiWaGoA	2026-06-03 05:06:24 (1 day ago)	This IP was detected by CrowdSec trigger from crowdsecurity/http-sensitive-files	Web App Attack Hacking
Anonymous	2026-06-03 04:39:57 (1 day ago)	Scenarios: http-crawl-non_statics, http-sensitive-files Total requests: 195 [03/Jun/2026:04:39:52 +0 ... show more Scenarios: http-crawl-non_statics, http-sensitive-files Total requests: 195 [03/Jun/2026:04:39:52 +0000] [Client: 5.255.122.197] GET [301] "/" User-Agent: "Mozilla/5.0 (iPhone; CPU iPhone OS 18_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Mobile/15E148 Safari/604.1" [03/Jun/2026:04:39:53 +0000] [Client: 5.255.122.197] GET [302] "/" User-Agent: "Mozilla/5.0 (X11; Linux x86_64; rv:149.0) Gecko/20100101 Firefox/149.0" [03/Jun/2026:04:39:54 +0000] [Client: 5.255.122.197] GET [302] "/" User-Agent: "Mozilla/5.0 (iPhone; CPU iPhone OS 18_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Mobile/15E148 Safari/604.1" [03/Jun/2026:04:39:56 +0000] [Client: 5.255.122.197] GET [302] "/.yarnrc" User-Agent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36 Edg/146.0.0.0" show less	Web App Attack
🇳🇱 Site.eu	2026-06-03 02:59:45 (1 day ago)	Excessive multi-domain requests	Brute-Force
🇫🇷 alpha	2026-06-03 02:40:15 (1 day ago)	Automated honeypot: scanner probed decoy URL on cdn.aldorand.fr (honeypot decoy)	Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-06-03 01:31:16 (1 day ago)	Accessed trap at '/.aws/credentials'	Web App Attack
🇬🇧 andypiper	2026-06-03 01:02:22 (1 day ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇦🇺 AWW-Admin	2026-06-02 23:36:17 (1 day ago)	(mod_security) mod_security triggered on hostname [redacted] 5.255.122.197 (-)	SQL Injection
Anonymous	2026-06-02 21:39:58 (1 day ago)	Aggressive web scan	Web App Attack
🇩🇪 paissangroup	2026-06-02 21:36:21 (1 day ago)	Multiple WAF Violations	Web App Attack
🇬🇧 Axel	2026-06-02 20:40:02 (1 day ago)	Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env Server: ... show more Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /.env Server: UK-01 show less	Web App Attack Hacking SQL Injection
🇩🇪 Marc	2026-06-02 19:43:18 (1 day ago)	5.255.122.197 - - [02/Jun/2026:21:43:18 +0200] "GET /.git/config HTTP/1.1" 404 403 "-" "Mozilla/5.0 ... show more 5.255.122.197 - - [02/Jun/2026:21:43:18 +0200] "GET /.git/config HTTP/1.1" 404 403 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/147.0.0.0" 5.255.122.197 - - [02/Jun/2026:21:43:18 +0200] "GET /.git/FETCH_HEAD HTTP/1.1" 404 4031 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/147.0.0.0" 5.255.122.197 - - [02/Jun/2026:21:43:18 +0200] "GET /.git/HEAD HTTP/1.1" 404 403 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:149.0) Gecko/20100101 Firefox/149.0" show less	Brute-Force

Showing 46 to 60 of 1031 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.114

🇩🇪 194.88.98.84

🇩🇪 141.11.250.239

🇩🇪 130.12.181.108

🇩🇪 57.129.122.51

🇳🇱 45.144.212.54

🇺🇸 172.172.196.177

🇺🇦 159.26.120.37

🇭🇰 123.58.213.128

🇨🇳 118.145.102.69

🇮🇩 103.176.79.139

🇳🇱 86.54.31.36

🇺🇸 68.183.24.99

🇱🇹 62.60.130.139

🇬🇧 35.203.211.20

🇷🇴 2.57.121.112

🇧🇷 2600:1f1e:530:6901:5e25:2221:754d:933

🇰🇷 180.182.229.194

🇭🇰 152.32.252.65

🇺🇸 107.150.99.126