JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.5.53.221

194.5.53.221 was found in our database!

This IP was reported 95 times. Confidence of Abuse is 23%: ?

23%

ISP	VPN Consumer Paris, France
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.5.53.221

Whois 194.5.53.221

IP Abuse Reports for 194.5.53.221:

This IP address has been reported a total of 95 times from 52 distinct sources. 194.5.53.221 was first reported on May 16th 2022, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇦 URAN Publishing Service	2026-06-08 18:11:40 (3 weeks ago)	194.5.53.221 - - [08/Jun/2026:21:11:39 +0300] "GET /wp-content/plugins/ioxi/ HTTP/1.1" 404 713 "-" " ... show more 194.5.53.221 - - [08/Jun/2026:21:11:39 +0300] "GET /wp-content/plugins/ioxi/ HTTP/1.1" 404 713 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" ... show less	Web App Attack
Anonymous	2026-06-07 23:04:37 (3 weeks ago)	Aggressive web scan	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-07 15:44:02 (3 weeks ago)	194.5.53.221 - - [07/Jun/2026:18:44:01 +0300] "GET /wp-admin/images/bootstrap.php HTTP/1.1" 404 714 ... show more 194.5.53.221 - - [07/Jun/2026:18:44:01 +0300] "GET /wp-admin/images/bootstrap.php HTTP/1.1" 404 714 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" 194.5.53.221 - - [07/Jun/2026:18:44:01 +0300] "GET /wp-content/plugins/seoplugins/db.php?u HTTP/1.1" 404 714 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" ... show less	Web App Attack
🇬🇧 consul.to	2026-06-07 01:49:03 (3 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇷🇺 sms.ru	2026-06-06 22:41:55 (3 weeks ago)	/wp-admin/maint/bootstrap.php	Web App Attack
🇫🇷 ELYAZ	2026-05-09 00:16:28 (1 month ago)	(wordpress) Failed wordpress login from 194.5.53.221 (FR/France/-): (CF_ENABLE)	Brute-Force
🇺🇸 TPI-Abuse	2026-04-29 15:26:52 (2 months ago)	(mod_security) mod_security (id:222160) triggered by 194.5.53.221 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:222160) triggered by 194.5.53.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 11:26:44.474645 2026] [security2:error] [pid 23567:tid 23567] [client 194.5.53.221:38435] ModSecurity: Access denied with code 403 (phase 1). String match "wp-content/plugins/wp-easycart/inc/admin/phpinfo.php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6347"] [id "222160"] [rev "1"] [msg "COMODO WAF: Information disclosure vulnerability in The EasyCart plugin before 2.0.6 for WordPress (CVE-2014-4942)\|\|scruffware.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "scruffware.com"] [uri "/wp-content/plugins/wp-easycart/inc/admin/phpinfo.php"] [unique_id "afIjNCprppfRU7kEYsvzvwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-04-27 22:43:07 (2 months ago)	194.5.53.221 - - [28/Apr/2026:01:43:06 +0300] "GET /wp-admin/js/widgets/about.php7 HTTP/1.1" 404 714 ... show more 194.5.53.221 - - [28/Apr/2026:01:43:06 +0300] "GET /wp-admin/js/widgets/about.php7 HTTP/1.1" 404 714 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0" 194.5.53.221 - - [28/Apr/2026:01:43:06 +0300] "GET /wp-includes/pomo/about.php HTTP/1.1" 404 714 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" ... show less	Web App Attack
🇬🇧 consul.to	2026-04-27 22:13:43 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Site.eu	2026-04-14 10:39:49 (2 months ago)	Excessive 404/403 errors	Brute-Force
🇪🇸 masterguru	2026-04-01 11:39:10 (2 months ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122) show less	Bad Web Bot
🇬🇧 consul.to	2026-04-01 05:15:20 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇦 URAN Publishing Service	2026-04-01 03:37:48 (2 months ago)	194.5.53.221 - - [01/Apr/2026:06:37:47 +0300] "GET /wp-content/plugins/TOPXOH/wDR.php HTTP/1.1" 404 ... show more 194.5.53.221 - - [01/Apr/2026:06:37:47 +0300] "GET /wp-content/plugins/TOPXOH/wDR.php HTTP/1.1" 404 710 "-" "Go-http-client/1.1" 194.5.53.221 - - [01/Apr/2026:06:37:47 +0300] "GET /wp-content/plugins/pwnd/pwnd.php HTTP/1.1" 404 710 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇳🇱 Site.eu	2026-03-31 22:29:23 (2 months ago)	Excessive 404/403 errors	Brute-Force
🇳🇱 Site.eu	2026-03-26 07:21:26 (3 months ago)	Excessive 404/403 errors	Brute-Force

Showing 1 to 15 of 95 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 185.152.92.227

🇺🇸 205.210.31.45

🇧🇷 187.72.128.177

🇺🇸 141.11.88.6

🇧🇩 103.171.69.180

🇦🇪 94.202.15.23

🇭🇰 94.190.231.106

🇫🇷 90.3.136.99

🇺🇸 44.216.236.187

🇺🇸 38.141.62.31

🇰🇷 14.54.22.11

🇺🇸 44.181.189.32

🇪🇬 41.34.67.121

🇨🇱 186.10.86.130

🇳🇱 104.23.166.164

🇵🇱 83.168.107.158

🇺🇸 47.88.59.71

🇻🇳 45.119.212.99

🇫🇷 37.60.236.245

🇬🇧 34.89.69.228