JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 83.142.52.24

83.142.52.24 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 8%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 83.142.52.24

Whois 83.142.52.24

IP Abuse Reports for 83.142.52.24:

This IP address has been reported a total of 19 times from 15 distinct sources. 83.142.52.24 was first reported on July 11th 2022, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-05-20 09:08:59 (3 weeks ago)	Known malicious PHP file or CMS probe	Web App Attack
🇩🇪 big-cloud.nl	2026-04-15 00:11:13 (1 month ago)	Try to access /xmlrpc.php?Fuck_You_Elon_Musk_XD	Web App Attack
🇺🇸 bazter.pro	2026-03-20 23:01:48 (2 months ago)	Auto-Ban [2026-03-21 01:01:45]: CRITICAL: Sensitive files (235); DC: FINE GROUP SERVERS SOLUTIONS LL ... show more Auto-Ban [2026-03-21 01:01:45]: CRITICAL: Sensitive files (235); DC: FINE GROUP SERVERS SOLUTIONS LLC [Paths: 4] \| Details: Sensitive files/paths: /xmlrpc.php, /xmlrpc.php, /xmlrpc.php, /xmlrpc.php, /xmlrpc.php \| Other paths: /xmlrpc.php, /?author=1, /wp-login.php, /wp-json/wp/v2/users show less	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-03-18 22:45:51 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 83.142.52.24 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 83.142.52.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 18 18:45:42.953135 2026] [security2:error] [pid 19549:tid 19558] [client 83.142.52.24:34019] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|prominentregroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "prominentregroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "absrFkTdcSBRqf9J5sPDlAAAAUc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-12 20:42:40 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 83.142.52.24 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 83.142.52.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 12 16:42:36.377893 2026] [security2:error] [pid 12309:tid 12309] [client 83.142.52.24:59275] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|syconline.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "syconline.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abMlPLFctJ2f4vG-c06qOwAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 13:06:12 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-11-05 14:00:21 (7 months ago)	Forum/form spam	Web Spam
🇺🇸 nationaleventpros.com	2025-10-31 15:19:39 (7 months ago)	WordPress login attempt	Brute-Force
🇺🇸 Psycho Solutions LLC	2024-03-27 15:55:38 (2 years ago)	Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-admin/plugin-install.php?ta ... show more Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-admin/plugin-install.php?tab=plugin-information - User Agent: N/A - Timestamp: 3/27/2024 10:55 am (UTC-6) show less	Web Spam Hacking Bad Web Bot Web App Attack
🇺🇸 mnsf	2024-02-27 03:04:38 (2 years ago)	Login Too Frequent (6)	Brute-Force Web App Attack
🇵🇱 TI	2023-11-03 06:31:50 (2 years ago)	Scrapping website, using diffrent useragents, not wait for response, #botnet20231026	DDoS Attack Bad Web Bot
🇯🇵 HeliJP	2022-09-29 11:24:44 (3 years ago)	2022-09-29 11:43:38 - Recognized attacks\bad behavior from IP address 83.142.52.24 on port 443\80 (4 ... show more 2022-09-29 11:43:38 - Recognized attacks\bad behavior from IP address 83.142.52.24 on port 443\80 (43 daily hits): Remote Command Execution: Windows Command Injection, Remote Command Execution: Wildcard bypass technique attempt, PHP Injection Attack: High-Risk PHP Function Call Found, PHP Injection Attack: Low-Value PHP Function Call Found, SQL Injection Attack Detected via libinjection, SQL Injection Attack: SQL Operator Detected, SQL Injection Attack: SQL Tautology Detected, SQL Injection Attack: Common DB Names Detected, SQL Injection Attack, Detects basic SQL authentication bypass attempts 1/3, Detects MSSQL code execution and information gathering attempts, Detects MySQL comments, conditions and ch(a)r injections, Detects chained SQL injection attempts 2/2, Detects classic SQL injection probings 1/3, Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (12), SQL Comment Sequence Detected, SQL Hex Encoding Identified, SQLi bypass attempt by ticks detected show less	Hacking SQL Injection Web App Attack
Anonymous	2022-09-04 19:43:31 (3 years ago)	83.142.52.24 - - [29/Aug/2022:21:44:03 +0200] "GET /xmlrpc.php HTTP/1.0" 403 6464 "https://www.parti ... show more 83.142.52.24 - - [29/Aug/2022:21:44:03 +0200] "GET /xmlrpc.php HTTP/1.0" 403 6464 "https://www.particular-sound.de/" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36" 83.142.52.24 - - [05/Sep/2022:01:43:30 +0200] "GET /xmlrpc.php HTTP/1.0" 403 6464 "https://www.particular-sound.de/" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36" 83.142.52.24 - - [05/Sep/2022:01:43:30 +0200] "GET /xmlrpc.php HTTP/1.0" 403 6464 "https://www.particular-sound.de/" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
Anonymous	2022-08-29 15:44:04 (3 years ago)	83.142.52.24 - - [29/Aug/2022:21:43:59 +0200] "GET /xmlrpc.php HTTP/1.0" 403 6464 "https://www.parti ... show more 83.142.52.24 - - [29/Aug/2022:21:43:59 +0200] "GET /xmlrpc.php HTTP/1.0" 403 6464 "https://www.particular-sound.de/" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36" 83.142.52.24 - - [29/Aug/2022:21:44:02 +0200] "GET /xmlrpc.php HTTP/1.0" 403 6464 "https://www.particular-sound.de/" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36" 83.142.52.24 - - [29/Aug/2022:21:44:03 +0200] "GET /xmlrpc.php HTTP/1.0" 403 6464 "https://www.particular-sound.de/" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇨🇭 backslash	2022-08-19 10:00:02 (3 years ago)	block ruleset SQL-Injection: >iKO AFBC2EAECDB027719265B50DA3B95A6DF54F7E3D	SQL Injection

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇬 91.92.40.217

🇱🇹 77.90.185.243

🇳🇱 45.148.10.151

🇫🇷 37.66.144.68

🇨🇳 27.155.92.28

🇺🇸 20.14.78.253

🇮🇳 4.213.224.194

🇰🇷 222.236.155.146

🇺🇸 205.185.125.209

🇧🇴 181.115.171.28

🇮🇳 168.144.95.137

🇳🇱 93.123.72.183

🇫🇷 91.231.89.113

🇷🇺 85.95.166.40

🇷🇺 80.246.94.174

🇺🇸 66.132.172.97

🇧🇷 45.205.1.246

🇮🇩 43.133.148.170

🇭🇰 38.76.186.126

🇺🇸 216.180.246.175