JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.5.53.89

194.5.53.89 was found in our database!

This IP was reported 94 times. Confidence of Abuse is 41%: ?

41%

ISP	VPN Consumer Paris, France
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.5.53.89

Whois 194.5.53.89

IP Abuse Reports for 194.5.53.89:

This IP address has been reported a total of 94 times from 53 distinct sources. 194.5.53.89 was first reported on June 26th 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-10 08:39:11 (1 week ago)	[redacted] 194.5.53.89 - - [10/Jun/2026:10:39:08 +0200] "GET /wp-admin/css/index.php HTTP/1.1" 404 2 ... show more [redacted] 194.5.53.89 - - [10/Jun/2026:10:39:08 +0200] "GET /wp-admin/css/index.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0" [redacted] 194.5.53.89 - - [10/Jun/2026:10:39:08 +0200] "GET /assets/images/admin.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" [redacted] 194.5.53.89 - - [10/Jun/2026:10:39:08 +0200] "GET /wp-admin/css/colors/sunrise/admin.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" [redacted] 194.5.53.89 - - [10/Jun/2026:10:39:09 +0200] "GET /wp-admin/css/colors/blue/about.php HTTP/1.1" 404 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" [redacted] 194.5.53.89 - - [10/ ... show less	Hacking Web App Attack
🇲🇾 Rizzy	2026-06-09 14:12:40 (1 week ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 16:20:36 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 12:20:31.299258 2026] [security2:error] [pid 25166:tid 25166] [client 194.5.53.89:29475] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lordcain.net"] [uri "/.git/config"] [unique_id "aiBUT_FJ_wwU_c7-9zev3gAAACs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 15:39:55 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 11:39:52.605880 2026] [security2:error] [pid 11035:tid 11035] [client 194.5.53.89:40481] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chyps.com"] [uri "/.git/HEAD"] [unique_id "aiBKyEHLxuH6YmOMgLlqjgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 15:17:15 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 11:17:08.541282 2026] [security2:error] [pid 32175:tid 32175] [client 194.5.53.89:36573] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "camouflagebikinis.com"] [uri "/.git/HEAD"] [unique_id "aiBFdIOtyFpyNRFXvPqUOQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 14:13:30 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 10:13:24.243688 2026] [security2:error] [pid 20939:tid 20939] [client 194.5.53.89:20135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lilachost.net"] [uri "/.git/"] [unique_id "aiA2hEUCSM3vLKIlL8b1LwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 13:23:22 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 09:23:14.476523 2026] [security2:error] [pid 24064:tid 24064] [client 194.5.53.89:33341] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "k0cgy.net"] [uri "/.git/HEAD"] [unique_id "aiAqwugvu2IWcA-DfcJnEAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 12:56:35 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 08:56:28.365691 2026] [security2:error] [pid 20597:tid 20597] [client 194.5.53.89:54009] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "butlerinc.net"] [uri "/.git/HEAD"] [unique_id "aiAkfCX236cXM8eGPUjs9wAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 LRob.fr	2026-06-03 12:45:03 (2 weeks ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 12:29:22 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 08:29:16.814635 2026] [security2:error] [pid 15216:tid 15216] [client 194.5.53.89:22779] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "talkingmess.com"] [uri "/.git/HEAD"] [unique_id "aiAeHKgHltZPgRkSgR5DVgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-03 11:05:24 (2 weeks ago)	Abuse Detected (4)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 10:58:45 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 06:58:41.437270 2026] [security2:error] [pid 20425:tid 20425] [client 194.5.53.89:39331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "title41.com"] [uri "/.git/HEAD"] [unique_id "aiAI4ZKBG-Ryw6JrvB0jRwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 YF	2026-05-27 19:10:58 (3 weeks ago)	Attaque distribuée subnet	DDoS Attack Web App Attack
🇺🇸 agenciahypelab.com.br	2026-05-26 12:58:00 (3 weeks ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-05-19 03:22:03 (4 weeks ago)	(mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 194.5.53.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 23:21:54.264568 2026] [security2:error] [pid 6925:tid 6925] [client 194.5.53.89:29511] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "redtraffic.media"] [uri "/beta/.env"] [unique_id "agvXUuKjnr7yA5rBGhyVBQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 94 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.91.170.245

🇺🇸 202.8.42.141

🇪🇸 196.196.150.4

🇵🇱 194.180.48.148

🇮🇹 151.60.80.61

🇷🇺 138.124.77.177

🇺🇸 99.63.102.6

🇨🇳 60.24.209.67

🇺🇸 47.251.90.59

🇨🇳 47.120.74.75

🇺🇸 18.119.209.50

🇪🇹 196.189.51.64

🇺🇸 173.255.223.115

🇨🇦 142.44.225.68

🇳🇱 91.92.40.36

🇱🇹 45.227.254.170

🇳🇱 45.148.10.152

🇸🇬 43.160.214.230

🇸🇬 23.111.14.183

🇺🇸 20.9.25.20