JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.83.135.102

5.83.135.102 was found in our database!

This IP was reported 513 times. Confidence of Abuse is 100%: ?

100%

ISP	AltunHOST
Usage Type	Data Center/Web Hosting/Transit
ASN	AS203516
Hostname(s)	5-83-135-102.altunhost.com
Domain Name	altunhost.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.83.135.102

Whois 5.83.135.102

IP Abuse Reports for 5.83.135.102:

This IP address has been reported a total of 513 times from 161 distinct sources. 5.83.135.102 was first reported on April 28th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 YF	2026-04-29 10:02:15 (1 month ago)	Attaque distribuée subnet	DDoS Attack Web App Attack
🇳🇱 Roderic	2026-04-29 09:34:05 (1 month ago)	(apache_scanners-2) Failed apache-scanners trigger with match [redacted])	Port Scan
🇫🇷 Kenshin869	2026-04-29 09:32:27 (1 month ago)	Wordpress unauthorized access attempt	Brute-Force
🇳🇱 Site.eu	2026-04-29 08:28:44 (1 month ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇺🇸 rsiddall	2026-04-29 07:27:06 (1 month ago)	5.83.135.102 - - [29/Apr/2026:03:26:48 -0400] "POST /wp-login.php HTTP/1.1" 404 - "https://evangamba ... show more 5.83.135.102 - - [29/Apr/2026:03:26:48 -0400] "POST /wp-login.php HTTP/1.1" 404 - "https://evangambardella.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0" 5.83.135.102 - - [29/Apr/2026:03:26:51 -0400] "POST /wp-login.php HTTP/1.1" 404 - "https://evangambardella.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 5.83.135.102 - - [29/Apr/2026:03:26:54 -0400] "POST /wp-login.php HTTP/1.1" 404 - "https://evangambardella.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15" 5.83.135.102 - - [29/Apr/2026:03:26:57 -0400] "POST /wp-login.php HTTP/1.1" 404 - "https://evangambardella.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15" 5.83.135.102 - - [29/Apr/2026:03:26:59 -0400] "POST /wp-login.php ... show less	Brute-Force
🇳🇱 i-turnradio.nl	2026-04-29 06:42:20 (1 month ago)	2026-04-29 @ 08:42:20 (CET) ~ Blocked for trying to access: /wp-login.php	Web App Attack
🇺🇸 TPI-Abuse	2026-04-29 06:20:54 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 5.83.135.102 (5-83-135-102.altunhost.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 5.83.135.102 (5-83-135-102.altunhost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 02:20:46.010533 2026] [security2:error] [pid 6979:tid 6979] [client 5.83.135.102:55097] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|lockdownclaim.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lockdownclaim.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afGjPkIh3Lu1otjoDbA96wAAAAU"], referer: https://www.google.com/search?q=wordpress show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mind5t0rm	2026-04-29 05:37:46 (1 month ago)	(WPLOGIN) WP Login Attack 5.83.135.102 (DE/Germany/5-83-135-102.altunhost.com): 3 in the last 3600 s ... show more (WPLOGIN) WP Login Attack 5.83.135.102 (DE/Germany/5-83-135-102.altunhost.com): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 5.83.135.102 - - [29/Apr/2026:12:37:37 +0700] "GET /wp-login.php HTTP/1.1" 200 2323 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 5.83.135.102 - - [29/Apr/2026:12:37:39 +0700] "GET /wp-login.php HTTP/1.1" 200 2323 "https://www.google.com/search?q=wordpress" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 5.83.135.102 - - [29/Apr/2026:12:37:41 +0700] "GET /wp-login.php?redirect_to=https%3A%2F%2Fpowerhouseconsulting.group%2Fwp-admin%2F&reauth=1 HTTP/1.1" 200 2323 "-" "Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" show less	Port Scan
🇩🇪 R.G.	2026-04-29 04:15:59 (1 month ago)	(WPLOGINorWHATEVER) Get lost please 5.83.135.102 (DE/Germany/5-83-135-102.altunhost.com): 7 in the l ... show more (WPLOGINorWHATEVER) Get lost please 5.83.135.102 (DE/Germany/5-83-135-102.altunhost.com): 7 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2026-04-29 04:14:40 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 5.83.135.102 (5-83-135-102.altunhost.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 5.83.135.102 (5-83-135-102.altunhost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 00:14:36.172651 2026] [security2:error] [pid 6150:tid 6290] [client 5.83.135.102:55511] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|thecraftsycat.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "thecraftsycat.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afGFrBHRtbemauSKkBIiQAAAAg4"], referer: https://t.co/ show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2026-04-29 03:31:12 (1 month ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-04-29 02:48:36 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 5.83.135.102 (5-83-135-102.altunhost.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 5.83.135.102 (5-83-135-102.altunhost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 22:48:31.857501 2026] [security2:error] [pid 1831:tid 1831] [client 5.83.135.102:59246] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fishleadership.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fishleadership.org"] [uri "/wp-json/wp/v2/users"] [unique_id "afFxfyuT6jsm0fneV8fQdAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-04-29 02:25:36 (1 month ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-04-29 01:43:15 (1 month ago)	(wordpress) Failed wordpress login from 5.83.135.102 (DE/Germany/5-83-135-102.altunhost.com)	Brute-Force
🇺🇸 TPI-Abuse	2026-04-29 01:25:08 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 5.83.135.102 (5-83-135-102.altunhost.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 5.83.135.102 (5-83-135-102.altunhost.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 21:25:01.427172 2026] [security2:error] [pid 30869:tid 30869] [client 5.83.135.102:58908] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|newmooncafe.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "newmooncafe.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afFd7XGLpKxq43DrWO5unAAAAAc"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 481 to 495 of 513 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇿 212.47.140.107

🇺🇸 172.237.156.206

🇳🇱 160.119.76.81

🇨🇳 118.196.116.42

🇹🇷 95.130.170.146

🇬🇧 45.82.76.128

🇵🇾 201.217.12.57

🇺🇸 135.237.126.195

🇺🇸 108.176.235.179

🇮🇹 93.48.24.181

🇧🇷 45.232.156.108

🇺🇸 20.124.84.235

🇳🇱 212.30.37.50

🇻🇳 203.162.214.103

🇺🇸 134.199.86.107

🇺🇸 98.80.4.15

🇺🇸 67.207.84.8

🇮🇶 65.20.158.10

🇨🇳 49.72.212.22

🇿🇲 41.63.62.103