JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 120.82.83.194

120.82.83.194 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 12%: ?

12%

ISP	China Unicom Guangdong province network
Usage Type	Fixed Line ISP
ASN	AS17816
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 120.82.83.194

Whois 120.82.83.194

IP Abuse Reports for 120.82.83.194:

This IP address has been reported a total of 12 times from 2 distinct sources. 120.82.83.194 was first reported on July 3rd 2025, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-24 23:21:32 (8 hours ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.194 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 19:21:24.231927 2026] [security2:error] [pid 22949:tid 22949] [client 120.82.83.194:4172] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.streetfightfilm.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.streetfightfilm.com"] [uri "/"] [unique_id "ajxmdLcKWqVQN6M720csNgAAAB0"], referer: http://www.streetfightfilm.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 19:54:17 (3 days ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.194 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 15:54:08.492926 2026] [security2:error] [pid 8227:tid 8227] [client 120.82.83.194:7036] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|circle-h-growers.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "circle-h-growers.com"] [uri "/"] [unique_id "ajhBYAZWYeTkssFyV5WxFgAAAAI"], referer: http://circle-h-growers.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 20:28:57 (1 week ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.194 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 16:28:49.874857 2026] [security2:error] [pid 6571:tid 6571] [client 120.82.83.194:40201] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.aabondwnc.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.aabondwnc.com"] [uri "/"] [unique_id "ajGyAcM3VjLdUideg69EAgAAAAs"], referer: https://www.aabondwnc.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-23 18:42:30 (1 month ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.194 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 23 14:42:23.892067 2026] [security2:error] [pid 6111:tid 6111] [client 120.82.83.194:14451] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|esad.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "esad.com"] [uri "/"] [unique_id "ahH1D3SNf1JCB54I0G2RyQAAAAE"], referer: http://esad.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇳 ThreatBook.io	2026-05-06 23:31:35 (1 month ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.194 2026-05-06 19 ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.194 2026-05-06 19:30:46 /dfdfd 2026-05-06 01:43:45 /static/favicon.ico show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-06 18:33:16 (1 month ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.194 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 06 14:33:11.562310 2026] [security2:error] [pid 18000:tid 18000] [client 120.82.83.194:43236] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|hpepaper.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "hpepaper.com"] [uri "/"] [unique_id "afuJZ9-R2-eMPMolpSFp8QAAACo"], referer: http://hpepaper.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇳 ThreatBook.io	2026-05-05 23:51:20 (1 month ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.194 2026-05-05 12 ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.194 2026-05-05 12:09:06 /sitemap.xml 2026-05-05 02:48:05 /favicon.ico show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-05 18:59:34 (1 month ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.194 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.194 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 14:59:28.230052 2026] [security2:error] [pid 13580:tid 13580] [client 120.82.83.194:44916] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|ww-bbs.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "ww-bbs.com"] [uri "/"] [unique_id "afo-EMbquvkDhtQBDJcXWgAAACA"], referer: http://ww-bbs.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇳 ThreatBook.io	2026-04-01 23:10:15 (2 months ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.194 2026-04-01 17 ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.194 2026-04-01 17:40:14 /robots.txt show less	Web App Attack
🇨🇳 ThreatBook.io	2025-07-25 22:42:59 (10 months ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.194 2025-07-25 19 ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.194 2025-07-25 19:20:42 /config.json show less	Web App Attack
🇨🇳 ThreatBook.io	2025-07-22 23:04:59 (11 months ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.194 2025-07-22 01 ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.194 2025-07-22 01:23:37 /config.json show less	Web App Attack
🇨🇳 ThreatBook.io	2025-07-03 23:22:52 (11 months ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.194 2025-07-03 20 ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.194 2025-07-03 20:13:58 /config.json show less	Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.123

🇺🇿 198.163.195.120

🇺🇸 193.33.237.44

🇨🇳 183.199.157.185

🇨🇳 180.153.236.159

🇨🇳 180.76.234.93

🇰🇷 113.131.183.8

🇨🇦 54.39.6.251

🇱🇹 45.227.254.170

🇺🇸 45.130.83.59

🇺🇸 2600:3c00::f03c:91ff:feb0:7834

🇨🇦 216.26.240.106

🇺🇸 193.33.237.197

🇨🇳 183.199.157.78

🇦🇺 170.64.168.77

🇺🇸 162.216.149.172

🇨🇳 106.12.157.104

🇺🇸 95.164.232.43

🇫🇷 91.231.89.241

🇫🇷 85.217.140.6