JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 83.142.54.97

83.142.54.97 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 14%: ?

14%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 83.142.54.97

Whois 83.142.54.97

IP Abuse Reports for 83.142.54.97:

This IP address has been reported a total of 22 times from 17 distinct sources. 83.142.54.97 was first reported on September 29th 2022, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 NicoID	2026-04-28 00:15:34 (1 month ago)	83.142.54.97 - - [27/Apr/2026:05:38:32 -0600] "GET /wp-login.php HTTP/1.1" 200 4885 "https://www.goo ... show more 83.142.54.97 - - [27/Apr/2026:05:38:32 -0600] "GET /wp-login.php HTTP/1.1" 200 4885 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" ... show less	Brute-Force
🇨🇿 ptlab	2026-04-21 00:55:17 (1 month ago)	Detected wp_login attack from WP-host.	Hacking Web App Attack
Anonymous	2026-04-19 12:15:08 (1 month ago)	FPROCO WEBEXPLOIT 83.142.54.97 (83.142.54.97)	Web App Attack
🇺🇸 TPI-Abuse	2026-04-13 09:19:15 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 83.142.54.97 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 83.142.54.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 05:19:10.579371 2026] [security2:error] [pid 373401:tid 373401] [client 83.142.54.97:56113] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|persnicketyinc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "persnicketyinc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ady1DnCbK8gS47_oSp8HlgAAABo"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-02 22:15:43 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 83.142.54.97 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 83.142.54.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 18:15:37.657450 2026] [security2:error] [pid 16258:tid 16258] [client 83.142.54.97:15367] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|praemiumtech.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "praemiumtech.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ac7qidlUdZUmZM3WywuCOAAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-02 18:14:11 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 83.142.54.97 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 83.142.54.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 14:14:02.798700 2026] [security2:error] [pid 24241:tid 24241] [client 83.142.54.97:10997] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|numeralla.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "numeralla.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ac6x6t5cIW3Q8iH7kJim7wAAABE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 vaia.cloud	2026-03-30 15:04:01 (2 months ago)	trying wp-login.php/xmlrpc.php 43 times in 1 minutes	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-03-20 00:37:03 (2 months ago)	(mod_security) mod_security (id:210350) triggered by 83.142.54.97 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 83.142.54.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 19 20:36:22.705999 2026] [security2:error] [pid 14680:tid 14680] [client 83.142.54.97:58725] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|ratalads.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "ratalads.com"] [uri "/"] [unique_id "abyWhoMp3VezDLnMzG7s8QAAAC4"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 hostseries	2025-04-07 00:00:38 (1 year ago)	Brute-force cPanel Services	Brute-Force
🇨🇿 lp	2025-03-13 14:55:40 (1 year ago)	Unauthorized VPN login attempts: 2 attempts were recorded from 83.142.54.97 2025-03-13T15:26:52+01:0 ... show more Unauthorized VPN login attempts: 2 attempts were recorded from 83.142.54.97 2025-03-13T15:26:52+01:00 vpn Access-Reject 'jconway' station: 83.142.54.97 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-03-13T15:36:04+01:00 vpn Access-Reject 'gedanken' station: 83.142.54.97 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇭 backslash	2025-03-12 03:45:06 (1 year ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇮🇩 BPS-StatisticsIndonesia	2025-01-10 01:15:41 (1 year ago)	WP Login Scan Activities	Web App Attack
🇩🇪 dihost	2024-12-31 03:52:51 (1 year ago)	(smtpauth) Failed SMTP AUTH login from 83.142.54.97 (IL/Israel/-): 5 in the last 3600 secs	Brute-Force
Anonymous	2024-11-21 03:05:34 (1 year ago)	BruteForce IMAP/POP3	Brute-Force
Anonymous	2024-11-18 11:57:42 (1 year ago)	Ports: 143,993; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.74

🇳🇱 192.42.116.55

🇺🇸 137.119.163.156

🇮🇱 85.65.68.45

🇧🇬 79.124.59.78

🇳🇱 45.148.10.151

🇪🇨 38.224.81.123

🇸🇪 2a0d:bbc7::f816:3eff:fe84:8a9e

🇧🇷 201.71.192.108

🇳🇱 185.223.235.49

🇺🇸 172.253.214.117

🇺🇸 148.153.188.254

🇺🇸 147.185.132.46

🇫🇷 88.142.46.185

🇺🇸 45.159.22.125

🇳🇱 45.148.10.147

🇩🇪 213.209.159.56

🇮🇷 185.179.223.141

🇰🇷 175.192.243.185

🇸🇬 172.70.189.158