JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.5.53.66

194.5.53.66 was found in our database!

This IP was reported 103 times. Confidence of Abuse is 47%: ?

47%

ISP	VPN Consumer Paris, France
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.5.53.66

Whois 194.5.53.66

IP Abuse Reports for 194.5.53.66:

This IP address has been reported a total of 103 times from 54 distinct sources. 194.5.53.66 was first reported on August 13th 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-03 16:06:42 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.66 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 12:06:37.783810 2026] [security2:error] [pid 13997:tid 13997] [client 194.5.53.66:42193] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cauchosindustrialesespeciales.com"] [uri "/.git/HEAD"] [unique_id "aiBRDf4HEUI3k4WYrrZf3gAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 15:22:44 (1 day ago)	(mod_security) mod_security (id:949110) triggered by 194.5.53.66 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:949110) triggered by 194.5.53.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 11:22:40.225980 2026] [security2:error] [pid 1807:tid 1807] [client 194.5.53.66:46403] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "joycepelham.com"] [uri "/.git/HEAD"] [unique_id "aiBGwC7lVQ69KBAVBDvQMAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 14:52:48 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.66 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 10:52:45.367728 2026] [security2:error] [pid 8141:tid 8141] [client 194.5.53.66:40011] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ctrussell.us"] [uri "/.git/HEAD"] [unique_id "aiA_vQwlK6TVNMRdpvL1ZgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Aetherweb Ark	2026-06-03 14:06:13 (1 day ago)	(mod_security) mod_security (id:949110) triggered by 194.5.53.66 (FR/France/-): N in the last X secs	Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 14:06:06 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.66 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 10:05:56.634166 2026] [security2:error] [pid 21249:tid 21249] [client 194.5.53.66:22963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "muddypuddy.com"] [uri "/.git/config"] [unique_id "aiA0xF0hI2Uhu5KnoAduXAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 12:16:12 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.66 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 08:16:08.434592 2026] [security2:error] [pid 29118:tid 29123] [client 194.5.53.66:64729] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marinkovich.info"] [uri "/.git/"] [unique_id "aiAbCMt5S2fqIClCsJlJOQAAAUE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-03 11:05:55 (2 days ago)	Abuse Detected (4)	Brute-Force Web App Attack
🇩🇪 YF	2026-05-27 19:10:36 (1 week ago)	Attaque distribuée subnet	DDoS Attack Web App Attack
🇨🇭 backslash	2026-05-25 16:48:00 (1 week ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-19 03:22:02 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.66 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 23:21:54.013894 2026] [security2:error] [pid 13119:tid 13119] [client 194.5.53.66:47669] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "redtraffic.media"] [uri "/.env.php"] [unique_id "agvXUpPumhe3orADLdxD4AAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇼 kk_it_man	2026-05-14 08:53:02 (3 weeks ago)	ET WEB_SERVER Script tag in URI Possible Cross Site Scripting Attempt	Port Scan
🇺🇸 threatintelligence_bvc	2026-04-26 05:06:37 (1 month ago)		Brute-Force
Anonymous	2026-04-19 00:09:42 (1 month ago)	Blocked: Reason='Vulnerability probing — PHP scan detected (17/60 min)'; Requests=17	Port Scan
🇫🇷 dynamix	2026-04-18 07:46:50 (1 month ago)	Multiple WAF Violations	Web App Attack
🇮🇹 Progetto1	2026-04-14 09:02:01 (1 month ago)	Mail - Multiple failed login attempts	Brute-Force Exploited Host

Showing 1 to 15 of 103 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 14.187.199.197

🇩🇯 2620:171:c3:f002:9999::241

🇵🇸 213.6.196.230

🇩🇪 167.94.146.52

🇻🇳 160.250.186.220

🇮🇳 143.110.186.36

🇩🇪 139.59.156.82

🇸🇬 134.185.91.213

🇨🇳 110.249.201.17

🇺🇸 104.234.32.59

🇮🇳 103.5.16.243

🇫🇷 91.134.255.222

🇮🇩 43.230.28.154

🇧🇪 34.140.66.160

🇬🇧 31.14.254.18

🇺🇸 20.65.194.116

🇨🇱 170.238.203.112

🇧🇩 103.171.69.74

🇺🇸 64.62.156.121

🇺🇸 54.225.181.161