JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.83.147.54

42.83.147.54 was found in our database!

This IP was reported 1,525 times. Confidence of Abuse is 100%: ?

100%

ISP	China Network Information Center
Usage Type	Commercial
ASN	AS24151
Domain Name	cnnic.cn
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.83.147.54

Whois 42.83.147.54

IP Abuse Reports for 42.83.147.54:

This IP address has been reported a total of 1,525 times from 161 distinct sources. 42.83.147.54 was first reported on February 27th 2023, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-22 20:06:35 (4 days ago)	Unauthorized access (80/tcp/http)	Port Scan Web App Attack
🇦🇺 paulshipley.com.au	2026-06-22 12:02:23 (4 days ago)	[Mon Jun 22 22:02:22.858340 2026] [security2:error] [pid 108812] [client 42.83.147.54:12711] [client ... show more [Mon Jun 22 22:02:22.858340 2026] [security2:error] [pid 108812] [client 42.83.147.54:12711] [client 42.83.147.54] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "levellapromotions.com.au"] [uri "/"] [unique_id "ajkkTtKQ19pNUu4WIgw7lAAAAAg"] ... show less	Web App Attack
Anonymous	2026-06-22 09:21:28 (4 days ago)	FortiWeb WAF: 38 attacks detected. Threat Score: 10600. Types: Client Management(19), GEO IP(19). Or ... show more FortiWeb WAF: 38 attacks detected. Threat Score: 10600. Types: Client Management(19), GEO IP(19). Origin: China. show less	Web App Attack
🇬🇧 poundawebsiteltd	2026-06-22 00:46:36 (5 days ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 42.83.147.54 - - [22/Jun/2026:01 ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 42.83.147.54 - - [22/Jun/2026:01:46:34 +0100] GET / HTTP/1.1 403 2611 - Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko)Chrome/74.0.3729.169 Safari/537.36 show less	Web App Attack
🇦🇺 paulshipley.com.au	2026-06-21 23:51:55 (5 days ago)	[Mon Jun 22 09:51:53.982859 2026] [security2:error] [pid 44369] [client 42.83.147.54:12804] [client ... show more [Mon Jun 22 09:51:53.982859 2026] [security2:error] [pid 44369] [client 42.83.147.54:12804] [client 42.83.147.54] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "whoson2day.com"] [uri "/"] [unique_id "ajh5Gchub-SiNPOm85eemAAAAAs"] ... show less	Web App Attack
Anonymous	2026-06-21 06:40:14 (5 days ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇫🇷 masterguru	2026-06-21 04:32:19 (5 days ago)	Request content type is not allowed by policy. Match of "within %{tx.allowed_request_content_type}" ... show more Request content type is not allowed by policy. Match of "within %{tx.allowed_request_content_type}" against "TX:content_type" required. (920420-195) show less	Hacking Web App Attack
🇺🇸 sandra361	2026-06-21 03:27:45 (5 days ago)	Port scan detected: 9 attempts across 2 ports (443,80). \| Evidence: GHOST_SCAN: IN=enp1s0 SRC=42.83. ... show more Port scan detected: 9 attempts across 2 ports (443,80). \| Evidence: GHOST_SCAN: IN=enp1s0 SRC=42.83.147.54 LEN=60 TOS=0x00 PREC=0x00 TTL=38 ID=12954 DF PROTO=TCP SPT=12658 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 show less	Port Scan
🇺🇸 sandap1	2026-06-20 23:55:00 (6 days ago)	Blocked by os-abuseipdb; 10 hits, proto=tcp, ports=443,80,src_ip=42.83.147.54	Port Scan Hacking
🇺🇸 JustMeHere	2026-06-20 11:30:39 (6 days ago)	[Sat Jun 20 07:30:35.106676 2026] [security2:error] [pid 165899:tid 165933] [client 42.83.147.54:132 ... show more [Sat Jun 20 07:30:35.106676 2026] [security2:error] [pid 165899:tid 165933] [client 42.83.147.54:13212] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.15.0"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "yorknation.com"] [uri "/"] [unique_id "ajZ528qG5AJQVM2gz58upAAAAMY"] ... show less	Web App Attack
Anonymous	2026-06-20 09:22:54 (6 days ago)	FortiWeb WAF: 38 attacks detected. Threat Score: 8200. Types: Client Management(19), GEO IP(19). Ori ... show more FortiWeb WAF: 38 attacks detected. Threat Score: 8200. Types: Client Management(19), GEO IP(19). Origin: China. show less	Web App Attack
🇦🇺 paulshipley.com.au	2026-06-20 08:07:36 (6 days ago)	[Sat Jun 20 18:07:35.571450 2026] [security2:error] [pid 746553] [client 42.83.147.54:12541] [client ... show more [Sat Jun 20 18:07:35.571450 2026] [security2:error] [pid 746553] [client 42.83.147.54:12541] [client 42.83.147.54] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "mareeshefford.com"] [uri "/"] [unique_id "ajZKR78yzf4GD711De6WsAAAAAg"] ... show less	Web App Attack
🇦🇺 FireGuard Server	2026-06-20 06:10:05 (6 days ago)	Blocked by OPNsense firewall; 10 hits, proto=tcp, ports=443	Port Scan Hacking
🇺🇸 MPL	2026-06-20 05:29:46 (6 days ago)	tcp ports: 80,443 (14 or more attempts)	Port Scan
🇨🇿 ddw	2026-06-19 20:23:14 (1 week ago)	ModSecurity detection - Rules: 920420(Request content type is not allowed by policy)	Web App Attack

Showing 1 to 15 of 1525 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.10.151

🇺🇸 216.25.89.86

🇰🇷 211.106.133.202

🇧🇷 189.20.181.138

🇺🇸 159.65.239.35

🇩🇪 156.236.31.85

🇺🇸 135.237.124.21

🇳🇱 91.92.40.151

🇺🇸 35.252.230.90

🇬🇧 217.146.80.109

🇰🇷 211.223.107.86

🇧🇷 205.210.31.173

🇺🇸 205.210.31.90

🇧🇷 201.63.223.141

🇹🇷 176.91.151.105

🇫🇮 147.185.133.90

🇲🇴 125.31.2.160

🇰🇷 121.189.226.81

🇹🇼 118.163.132.211

🇦🇴 102.213.34.99