JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.255.127.166

5.255.127.166 was found in our database!

This IP was reported 295 times. Confidence of Abuse is 100%: ?

100%

ISP	The Infrastructure Group B.V.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS60404
Domain Name	theinfrastructure.group
Country	🇳🇱 Netherlands
City	Dronten, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.255.127.166

Whois 5.255.127.166

IP Abuse Reports for 5.255.127.166:

This IP address has been reported a total of 295 times from 166 distinct sources. 5.255.127.166 was first reported on April 16th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 alpha	2026-05-16 02:36:05 (2 weeks ago)	Automated honeypot: scanner probed decoy URL on cdn.aldorand.fr (honeypot decoy)	Bad Web Bot Web App Attack
🇨🇿 akac	2026-05-15 05:01:02 (2 weeks ago)	Web vulnerability scanning: HTTP/1.1 GET /.git/HEAD	Hacking Brute-Force Bad Web Bot Web App Attack
🇫🇷 alpha	2026-05-15 02:35:32 (2 weeks ago)	Automated honeypot: scanner probed decoy URL on cdn.aldorand.fr (honeypot decoy)	Bad Web Bot Web App Attack
🇬🇧 pinguin	2026-05-14 23:31:56 (2 weeks ago)	Triggered Cloudflare WAF (firewallManaged) from NL. Action taken: LOG Protocol: HTTP/1.1 (GET method ... show more Triggered Cloudflare WAF (firewallManaged) from NL. Action taken: LOG Protocol: HTTP/1.1 (GET method) Endpoint: /.git/HEAD UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 on-com	2026-05-14 22:35:20 (2 weeks ago)	URL scan	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-14 22:00:50 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 5.255.127.166 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 5.255.127.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 18:00:43.772367 2026] [security2:error] [pid 3959:tid 3959] [client 5.255.127.166:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ccamp.dev"] [uri "/.git/HEAD"] [unique_id "agZGC1BOX-8f8qWnfvwyEAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 blinx	2026-05-14 21:57:10 (2 weeks ago)	Suspicious activity detected by Modsecurity	Web Spam Port Scan Hacking Bad Web Bot Web App Attack
🇨🇦 TechnoSolutions CL	2026-05-14 21:45:19 (2 weeks ago)	5.255.127.166 - - [14/May/2026:21:44:37 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (M ... show more 5.255.127.166 - - [14/May/2026:21:44:37 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36" 5.255.127.166 - - [14/May/2026:21:45:18 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36" ... show less	Hacking Brute-Force Bad Web Bot Web App Attack
🇫🇷 ELYAZ	2026-05-14 21:30:04 (2 weeks ago)	(y3) Failed access -byebye- from 5.255.127.166 (NL/Netherlands/-): (CF_ENABLE)	Hacking
🇬🇧 consul.to	2026-05-13 22:32:22 (3 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 kosada.com	2026-05-13 20:47:29 (3 weeks ago)	Web vulnerability probing: /.git/config	Web App Attack
🇦🇺 FireGuard Server	2026-05-13 19:55:03 (3 weeks ago)	Blocked by OPNsense firewall; 12 hits, proto=tcp, ports=443	Port Scan Hacking
🇩🇪 juutis	2026-05-13 19:12:06 (3 weeks ago)	Multiple WAF abuses - IP blocked	Hacking Brute-Force Web App Attack
🇫🇮 payincog	2026-05-10 15:02:51 (3 weeks ago)	Date: 10/May/2026:17:06:57.768338 +0300 \| Reported IP: 5.255.127.166 mod_security \| id: 930130 94911 ... show more Date: 10/May/2026:17:06:57.768338 +0300 \| Reported IP: 5.255.127.166 mod_security \| id: 930130 949110 \| NL/pay.my_domain/- \| Connections: 1 \| Blocked: Permanent Block: [LF_MODSEC] \| Logs: ; ; show less	SQL Injection Brute-Force Bad Web Bot
🇬🇧 consul.to	2026-05-10 12:24:29 (3 weeks ago)	Web attack/malicious scanning detected	Web App Attack

Showing 46 to 60 of 295 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇷 152.231.189.194

🇺🇸 138.186.136.129

🇮🇩 125.167.58.180

🇫🇮 65.109.21.141

🇺🇸 3.14.15.145

🇵🇦 201.224.41.139

🇳🇱 176.65.139.31

🇩🇪 165.227.129.77

🇸🇬 165.22.252.67

🇨🇳 101.37.129.33

🇷🇺 78.36.83.253

🇬🇧 35.203.211.150

🇬🇧 35.203.211.132

🇺🇸 20.65.217.120

🇦🇪 5.107.9.166

🇵🇰 182.181.230.25

🇩🇪 176.100.37.241

🇻🇳 157.10.44.143

🇮🇳 122.175.36.92

🇧🇭 88.201.1.45