JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.5.53.80

194.5.53.80 was found in our database!

This IP was reported 107 times. Confidence of Abuse is 42%: ?

42%

ISP	VPN Consumer Paris, France
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.5.53.80

Whois 194.5.53.80

IP Abuse Reports for 194.5.53.80:

This IP address has been reported a total of 107 times from 60 distinct sources. 194.5.53.80 was first reported on November 28th 2022, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 CBJ	2026-06-03 16:09:44 (3 days ago)	fail2ban: apache-filepath-recon ...	Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 14:45:23 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 10:45:15.083753 2026] [security2:error] [pid 1751:tid 1751] [client 194.5.53.80:44543] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "isleofcain.com"] [uri "/.git/config"] [unique_id "aiA9-0sVn19n3VkrENoVvAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 14:21:55 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 10:21:50.442223 2026] [security2:error] [pid 8766:tid 8766] [client 194.5.53.80:29669] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "debbiegarner.com"] [uri "/.git/HEAD"] [unique_id "aiA4fpLD99ErlUx7z7aSTwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 13:19:55 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 09:19:51.026554 2026] [security2:error] [pid 29405:tid 29405] [client 194.5.53.80:38583] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chezlubacov.xyz"] [uri "/.git/HEAD"] [unique_id "aiAp9wxvXVTDyoDqNxzPKAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 12:29:41 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 08:29:33.173588 2026] [security2:error] [pid 32583:tid 32583] [client 194.5.53.80:37781] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "talkingmess.com"] [uri "/.git/config"] [unique_id "aiAeLV2aeM1xsTUVssFORwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-03 12:05:11 (3 days ago)	Abuse Detected (4)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 11:20:06 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 07:19:58.510170 2026] [security2:error] [pid 19617:tid 19617] [client 194.5.53.80:63683] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sublimetiles.com"] [uri "/.git/HEAD"] [unique_id "aiAN3oeOcNVKIWWFCg21WgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 10:58:22 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 06:58:15.546156 2026] [security2:error] [pid 13153:tid 13153] [client 194.5.53.80:37801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thorsander.com"] [uri "/.git/"] [unique_id "aiAIx_Cnr9DS0JXR00OXFQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 10:24:48 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 06:24:44.872608 2026] [security2:error] [pid 11547:tid 11568] [client 194.5.53.80:21055] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "atlasrecordssearch.com"] [uri "/.git/HEAD"] [unique_id "aiAA7KkP0NGb7JClfjT7egAAAMU"] show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 Valhalla	2026-06-03 10:23:22 (3 days ago)	/.git/config	Hacking Web App Attack
🇩🇪 YF	2026-05-27 19:10:50 (1 week ago)	Attaque distribuée subnet	DDoS Attack Web App Attack
🇩🇪 sledzik1984	2026-05-06 03:13:43 (1 month ago)	194.5.53.80 - - [06/May/2026:05:13:43 +0200] "GET /wp-includes/blocks/latest-comments/template-loade ... show more 194.5.53.80 - - [06/May/2026:05:13:43 +0200] "GET /wp-includes/blocks/latest-comments/template-loader.php HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36" 194.5.53.80 - - [06/May/2026:05:13:43 +0200] "GET /wp-content/wpvivid_uploads/wp-conflg.php HTTP/1.1" 301 169 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 194.5.53.80 - - [06/May/2026:05:13:43 +0200] "GET /wp-content/plugins/hello-plus/classes/ehp-sarang.php HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" ... show less	Web App Attack
Anonymous	2026-04-19 00:10:05 (1 month ago)	Blocked: Reason='Vulnerability probing — PHP scan detected (13/60 min)'; Requests=13	Port Scan
🇫🇷 dynamix	2026-04-18 14:17:46 (1 month ago)	Multiple WAF Violations	Web App Attack
🇫🇷 devsecops.cv	2026-04-14 08:22:33 (1 month ago)	Fail2Ban: plesk-bot-aggressive - 15 failures	Port Scan Bad Web Bot Web App Attack

Showing 1 to 15 of 107 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.79

🇺🇸 172.234.218.34

🇮🇩 103.166.10.244

🇩🇪 64.89.163.173

🇫🇷 185.177.72.11

🇺🇸 185.150.190.63

🇺🇸 162.216.150.249

🇮🇳 139.59.83.32

🇧🇩 103.163.117.83

🇺🇸 66.132.172.202

🇳🇱 5.255.127.96

🇺🇸 172.70.134.209

🇺🇸 147.185.132.19

🇲🇳 103.50.205.131

🇫🇷 82.102.18.220

🇮🇪 54.76.253.50

🇱🇹 45.227.254.170

🇨🇴 45.65.233.18

🇬🇧 31.148.99.199

🇮🇹 31.59.89.180