JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 120.82.82.174

120.82.82.174 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 5%: ?

ISP	China Unicom Guangdong province network
Usage Type	Fixed Line ISP
ASN	AS17816
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 120.82.82.174

Whois 120.82.82.174

IP Abuse Reports for 120.82.82.174:

This IP address has been reported a total of 11 times from 4 distinct sources. 120.82.82.174 was first reported on September 4th 2025, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-21 03:57:48 (5 hours ago)	(mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 23:57:44.568750 2026] [security2:error] [pid 27962:tid 27962] [client 120.82.82.174:43660] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.rangejudging.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.rangejudging.com"] [uri "/"] [unique_id "ajdhOPVuj0w1xiYZZQE5IgAAABg"], referer: http://www.rangejudging.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 20:00:34 (2 days ago)	(mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 16:00:30.355842 2026] [security2:error] [pid 20666:tid 20666] [client 120.82.82.174:41671] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|tcmu.org\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "tcmu.org"] [uri "/index.html"] [unique_id "ajROXmIyjr3QslxoGVkUVAAAAAY"], referer: http://tcmu.org/index.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 02:25:35 (4 days ago)	(mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 22:25:29.829058 2026] [security2:error] [pid 11399:tid 11399] [client 120.82.82.174:6875] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|lawrencehale.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "lawrencehale.com"] [uri "/"] [unique_id "ajIFmdw0kfq9TeB_5RiqZAAAACY"], referer: https://lawrencehale.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-24 19:22:55 (1 month ago)	(mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 24 15:22:49.239870 2026] [security2:error] [pid 18202:tid 18202] [client 120.82.82.174:56040] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|rodandreelpiercam.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "rodandreelpiercam.com"] [uri "/"] [unique_id "aevDCXyOejKgHvnTtRFRWAAAAAU"], referer: https://rodandreelpiercam.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-05 01:57:50 (2 months ago)	(mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 21:57:44.383967 2026] [security2:error] [pid 28687:tid 28696] [client 120.82.82.174:25603] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.plumberw9.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.plumberw9.com"] [uri "/"] [unique_id "adHBmPvVidserS3fcdEd9AAAAAY"], referer: https://www.plumberw9.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇿🇦 Tokolosh Hunters	2026-04-02 18:47:47 (2 months ago)	AutoBlockWindow-Known bad useragent query-2026-04-02 18:47:46	Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-21 22:07:46 (3 months ago)	(mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 17:07:36.174559 2026] [security2:error] [pid 25361:tid 25361] [client 120.82.82.174:40480] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.crearcuestionarios.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.crearcuestionarios.com"] [uri "/"] [unique_id "aZosqPhd9b-cLGKyg7bAWAAAAAE"], referer: http://www.crearcuestionarios.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:21:06 (4 months ago)	(mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.82.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:20:57.799552 2026] [security2:error] [pid 30783:tid 30783] [client 120.82.82.174:15339] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|bigchus.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "bigchus.com"] [uri "/"] [unique_id "aYpdyQHAntmRDGZJYRtJqgAAAAg"], referer: http://bigchus.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 EGP Abuse Dept	2026-01-19 04:25:06 (5 months ago)	Unauthorized connection to proxy port 8080	Port Scan Hacking
🇨🇳 ThreatBook.io	2025-11-14 22:23:38 (7 months ago)	ThreatBook Intelligence: Zombie,Mobile more details on https://threatbook.io/ip/120.82.82.174 2025-1 ... show more ThreatBook Intelligence: Zombie,Mobile more details on https://threatbook.io/ip/120.82.82.174 2025-11-14 08:01:37 /favicon.ico show less	Web App Attack
🇨🇳 ThreatBook.io	2025-09-04 22:28:30 (9 months ago)	ThreatBook Intelligence: Mobile more details on http://threatbook.io/ip/120.82.82.174 2025-09-04 11: ... show more ThreatBook Intelligence: Mobile more details on http://threatbook.io/ip/120.82.82.174 2025-09-04 11:11:01 /favicon.ico show less	Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 20.172.70.211

🇯🇵 203.25.124.39

🇧🇷 201.16.238.49

🇺🇸 159.89.44.80

🇭🇰 150.5.154.160

🇺🇸 147.185.132.130

🇳🇱 91.92.40.5

🇨🇳 47.109.91.215

🇳🇱 45.148.10.157

🇩🇪 8.211.37.93

🇲🇽 201.110.142.115

🇪🇹 196.188.93.169

🇺🇸 192.236.244.137

🇲🇽 187.194.49.172

🇲🇽 187.190.35.163

🇳🇱 91.92.40.8

🇱🇹 45.227.254.170

🇧🇦 31.223.144.155

🇬🇧 193.32.209.237

🇬🇧 188.240.59.54