JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.255.127.166

5.255.127.166 was found in our database!

This IP was reported 295 times. Confidence of Abuse is 100%: ?

100%

ISP	The Infrastructure Group B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60404
Domain Name	theinfrastructure.group
Country	🇳🇱 Netherlands
City	Dronten, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.255.127.166

Whois 5.255.127.166

IP Abuse Reports for 5.255.127.166:

This IP address has been reported a total of 295 times from 166 distinct sources. 5.255.127.166 was first reported on April 16th 2026, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 4server	2026-04-20 00:21:47 (1 month ago)	[MonApr2002:21:42.8187702026][security2:error][pid2304083:tid2304107][client5.255.127.166:0]ModSecur ... show more [MonApr2002:21:42.8187702026][security2:error][pid2304083:tid2304107][client5.255.127.166:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"gipfelbild.com\"][uri\"/.git/config\"][unique_id\"aeVxlgiA83nqmZOf7D6jBQAAABM\"] show less	Hacking Web App Attack
🇫🇷 SpaceHost-Server	2026-04-19 22:28:24 (1 month ago)		Brute-Force Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-04-19 20:05:02 (1 month ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice02,wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 directorioeducativo.com	2026-04-19 16:25:55 (1 month ago)	GET URL: "/.git/config"Agent: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36"	Web App Attack
🇺🇸 mnsf	2026-04-19 16:06:07 (1 month ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
🇫🇷 Baking333	2026-04-19 14:56:17 (1 month ago)	[redacted] 5.255.127.166 - - [19/Apr/2026:15:56:15 +0100] "GET /.git/config HTTP/1.1" 302 5292 0/120 ... show more [redacted] 5.255.127.166 - - [19/Apr/2026:15:56:15 +0100] "GET /.git/config HTTP/1.1" 302 5292 0/120735 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36" [redacted] 5.255.127.166 - - [19/Apr/2026:15:56:15 +0100] "GET /.git/HEAD HTTP/1.1" 302 5292 0/116394 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36" show less	Bad Web Bot Web App Attack
🇩🇪 macrob	2026-04-19 14:03:11 (1 month ago)	2026/04/19 14:03:10 [error] 1471101#1471101: 163066713 access forbidden by rule, client: 5.255.127. ... show more 2026/04/19 14:03:10 [error] 1471101#1471101: 163066713 access forbidden by rule, client: 5.255.127.166, server: binixo.com, request: "GET /.git/HEAD HTTP/2.0", host: "binixo.com" 2026/04/19 14:03:10 [error] 1471102#1471102: 163066714 access forbidden by rule, client: 5.255.127.166, server: binixo.com, request: "GET /.git/config HTTP/2.0", host: "binixo.com" 2026/04/19 14:03:10 [error] 1471101#1471101: 163065066 access forbidden by rule, client: 5.255.127.166, server: binixo.lk, request: "GET /.git/config HTTP/2.0", host: "binixo.lk", referrer: "https://binixo-lk.com/.git/config" ... show less	Web App Attack
🇨🇳 ThreatBook.io	2026-04-18 23:33:07 (1 month ago)	ThreatBook Intelligence: Zombie,vpn_proxy more details on https://threatbook.io/ip/5.255.127.166 202 ... show more ThreatBook Intelligence: Zombie,vpn_proxy more details on https://threatbook.io/ip/5.255.127.166 2026-04-18 22:59:12 /.git/HEAD 2026-04-18 22:59:12 / 2026-04-18 22:59:12 /.git/config show less	Web App Attack
🇩🇪 XICTRON	2026-04-18 21:30:06 (1 month ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
🇫🇷 Little Iguana	2026-04-18 21:02:46 (1 month ago)	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
🇩🇪 Kreapptivo	2026-04-18 19:36:44 (1 month ago)	[18/Apr/2026:21:36:41 +0200] Web-Request: "GET /.git/config", User-Agent: "Mozilla/5.0 (Macintosh; I ... show more [18/Apr/2026:21:36:41 +0200] Web-Request: "GET /.git/config", User-Agent: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36" show less	Bad Web Bot Web App Attack
🇩🇪 grassau.com	2026-04-18 17:21:09 (1 month ago)	Port Scan detected from 5.255.127.166 (NL/The Netherlands/Flevoland/Dronten/-).	Port Scan
🇩🇪 FeG Deutschland	2026-04-18 16:56:15 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 127	Exploited Host Web App Attack
🇳🇱 wlt-blocker	2026-04-18 16:38:27 (1 month ago)	Unauthorized access to webpage admin	Web App Attack
Anonymous	2026-04-18 16:05:06 (1 month ago)	WAF repeated trigger detected by Fail2Ban	Web App Attack

Showing 241 to 255 of 295 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 186.96.145.241

🇺🇸 167.71.248.81

🇰🇷 112.216.129.27

🇺🇸 104.234.32.113

🇧🇷 45.239.238.93

🇨🇳 42.56.154.145

🇮🇩 8.215.85.137

🇫🇷 5.189.173.102

🇳🇱 2.27.7.107

🇪🇹 196.189.124.229

🇳🇱 195.178.110.30

🇳🇱 185.242.226.33

🇺🇸 157.56.160.189

🇯🇵 125.195.21.96

🇨🇳 111.170.148.210

🇺🇸 54.167.52.189

🇳🇱 45.148.10.157

🇸🇬 2a09:bac1:6520:8::19c:2a9

🇬🇧 213.171.208.62

🇧🇷 200.175.61.207