JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.5.53.68

194.5.53.68 was found in our database!

This IP was reported 93 times. Confidence of Abuse is 64%: ?

64%

ISP	VPN Consumer Paris, France
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.5.53.68

Whois 194.5.53.68

IP Abuse Reports for 194.5.53.68:

This IP address has been reported a total of 93 times from 52 distinct sources. 194.5.53.68 was first reported on December 25th 2022, and the most recent report was 22 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 openstrike.co.uk	2026-06-04 05:13:25 (22 minutes ago)	2 attacks on VC URLs: GET /.git/config HTTP/1.1	Hacking
🇺🇸 TPI-Abuse	2026-06-03 16:10:16 (13 hours ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.68 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 12:10:08.984529 2026] [security2:error] [pid 31124:tid 31124] [client 194.5.53.68:57261] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "virginians.com"] [uri "/.git/"] [unique_id "aiBR4BKE8BmBO4K9VmfrZQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-03 15:17:38 (14 hours ago)	194.5.53.68 - - [03/Jun/2026:23:17:37 +0800] "GET /.git-audit-probe-1d131d46b7383d54/HEAD HTTP/1.1" ... show more 194.5.53.68 - - [03/Jun/2026:23:17:37 +0800] "GET /.git-audit-probe-1d131d46b7383d54/HEAD HTTP/1.1" 404 196 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0" ... show less	Bad Web Bot Web App Attack
🇩🇪 Marc	2026-06-03 14:26:51 (15 hours ago)	194.5.53.68 - - [03/Jun/2026:16:26:51 +0200] "GET /.git-audit-probe-3c645f04e0ba4983/HEAD HTTP/1.1" ... show more 194.5.53.68 - - [03/Jun/2026:16:26:51 +0200] "GET /.git-audit-probe-3c645f04e0ba4983/HEAD HTTP/1.1" 404 2965 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0" 194.5.53.68 - - [03/Jun/2026:16:26:51 +0200] "GET /.git/HEAD HTTP/1.1" 404 403 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0" 194.5.53.68 - - [03/Jun/2026:16:26:51 +0200] "GET /.git/config HTTP/1.1" 404 403 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0" show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-03 14:12:49 (15 hours ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.68 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 10:12:41.033798 2026] [security2:error] [pid 13023:tid 13023] [client 194.5.53.68:64483] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "greenmountainfeeds.com"] [uri "/.git/HEAD"] [unique_id "aiA2WdOuiDhqMrJGpsp88QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 13:13:42 (16 hours ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.68 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 09:13:34.420552 2026] [security2:error] [pid 17772:tid 17772] [client 194.5.53.68:47155] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jmms.mx"] [uri "/.git/config"] [unique_id "aiAofvmoINUe-IQYqYp6tAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 12:29:50 (17 hours ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.68 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 08:29:47.431110 2026] [security2:error] [pid 1519:tid 1519] [client 194.5.53.68:54013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jeffmasonmusic.com"] [uri "/.git/HEAD"] [unique_id "aiAeOxLj-yMmOArFUqcxRwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Aetherweb Ark	2026-06-03 12:08:35 (17 hours ago)	(mod_security) mod_security (id:949110) triggered by 194.5.53.68 (FR/France/-): N in the last X secs	Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 11:09:04 (18 hours ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.68 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 07:09:01.975526 2026] [security2:error] [pid 11713:tid 11720] [client 194.5.53.68:34665] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "miltonthepuppy.com"] [uri "/.git/HEAD"] [unique_id "aiALTWHWpM1RxcXUJFIADwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-03 11:05:24 (18 hours ago)	Abuse Detected (4)	Brute-Force Web App Attack
🇦🇺 2000cn.com.au	2026-06-03 10:23:06 (19 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-06-03 10:10:21 (19 hours ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.68 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 06:10:18.738491 2026] [security2:error] [pid 2834:tid 2834] [client 194.5.53.68:29085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "flavornet.org"] [uri "/.git/"] [unique_id "ah_9in_sfWwSbADSupPzxQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 YF	2026-05-27 19:10:38 (1 week ago)	Attaque distribuée subnet	DDoS Attack Web App Attack
🇩🇪 Admin-Gito	2026-05-27 16:20:23 (1 week ago)	194.5.53.68 - - [27/May/2026:18:05:09 +0200] "POST //xmlrpc.php HTTP/1.1" 200 3149 "-" "Mozilla/5.0 ... show more 194.5.53.68 - - [27/May/2026:18:05:09 +0200] "POST //xmlrpc.php HTTP/1.1" 200 3149 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36" 194.5.53.68 - - [27/May/2026:18:06:24 +0200] "POST //xmlrpc.php HTTP/1.1" 200 3151 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" 194.5.53.68 - - [27/May/2026:18:06:47 +0200] "POST //xmlrpc.php HTTP/1.1" 200 3149 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" ... show less	Brute-Force Web App Attack
🇩🇪 Vasile	2026-05-08 02:04:09 (3 weeks ago)	Shield Guard: Honeypot: /.env.backup	Web App Attack

Showing 1 to 15 of 93 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:ff68:7:6f:258:7bff:fe73:c43f

🇮🇳 223.185.60.74

🇬🇧 185.216.145.166

🇺🇸 165.227.209.27

🇭🇰 154.221.17.137

🇹🇷 95.130.170.146

🇨🇳 61.146.235.54

🇮🇩 180.252.226.157

🇨🇷 179.48.248.245

🇺🇸 172.105.157.44

🇵🇹 81.193.216.17

🇳🇱 62.45.39.47

🇧🇷 45.205.1.5

🇳🇱 5.255.122.197

🇮🇳 2401:4900:88d0:c2e2:f5f0:5d4:80c0:3c67

🇨🇭 195.177.93.228

🇺🇸 185.149.26.145

🇹🇭 182.53.52.68

🇸🇰 78.99.32.152

🇰🇷 58.65.96.141