JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 120.82.83.86

120.82.83.86 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 5%: ?

ISP	China Unicom Guangdong province network
Usage Type	Fixed Line ISP
ASN	AS17816
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 120.82.83.86

Whois 120.82.83.86

IP Abuse Reports for 120.82.83.86:

This IP address has been reported a total of 18 times from 2 distinct sources. 120.82.83.86 was first reported on April 1st 2025, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-17 21:33:23 (23 hours ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 17:33:16.660640 2026] [security2:error] [pid 11732:tid 11732] [client 120.82.83.86:36137] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.gogitzit.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.gogitzit.com"] [uri "/"] [unique_id "ajMSnLQevktdCL7jIRBakgAAAAE"], referer: http://www.gogitzit.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 15:01:35 (1 day ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 11:01:31.114324 2026] [security2:error] [pid 29325:tid 29325] [client 120.82.83.86:34900] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.wasabioldies.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.wasabioldies.com"] [uri "/"] [unique_id "ajK2y7BhnnCv_f-dJwrQcwAAAA8"], referer: http://www.wasabioldies.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 22:34:42 (1 day ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 18:34:34.455948 2026] [security2:error] [pid 21064:tid 21064] [client 120.82.83.86:34513] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.powerlinemagazine.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.powerlinemagazine.com"] [uri "/"] [unique_id "ajHPehXQ24OACzZHftEtmAAAAAc"], referer: http://www.powerlinemagazine.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-30 22:44:41 (2 weeks ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 30 18:44:37.165090 2026] [security2:error] [pid 32330:tid 32330] [client 120.82.83.86:46842] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.stlouisdave.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.stlouisdave.com"] [uri "/"] [unique_id "ahtoVV_-QuRvKiq_2n4Y2AAAABI"], referer: http://www.stlouisdave.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 19:16:54 (3 weeks ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 15:16:48.456546 2026] [security2:error] [pid 31231:tid 31231] [client 120.82.83.86:45891] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|lunchtimers.org\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "lunchtimers.org"] [uri "/"] [unique_id "ahdDIOt0FeWsKqcPBaS9jAAAABQ"], referer: http://lunchtimers.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 19:03:45 (3 weeks ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 15:03:37.622107 2026] [security2:error] [pid 7386:tid 7386] [client 120.82.83.86:16302] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.calogerolawfirm.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.calogerolawfirm.com"] [uri "/"] [unique_id "ahCoiR-4My3kUxCj-HrM-wAAABg"], referer: http://www.calogerolawfirm.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-19 19:30:51 (4 weeks ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 19 15:30:45.592228 2026] [security2:error] [pid 717:tid 717] [client 120.82.83.86:16325] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|aokatheists.org\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "aokatheists.org"] [uri "/index.html"] [unique_id "agy6ZWDIEbuc_Tp4mQwWrwAAAA0"], referer: http://aokatheists.org/index.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-18 23:14:35 (4 weeks ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 19:14:31.373630 2026] [security2:error] [pid 31086:tid 31086] [client 120.82.83.86:13194] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|scoutmountaindistrict.org\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "scoutmountaindistrict.org"] [uri "/"] [unique_id "agudV0eTCid2Nlhp1GaMAAAAAA0"], referer: http://scoutmountaindistrict.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-18 21:15:05 (1 month ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 17:15:00.589055 2026] [security2:error] [pid 3742:tid 3742] [client 120.82.83.86:13343] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.kennythompson.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.kennythompson.com"] [uri "/"] [unique_id "aguBVPhy5orb36rAPUGebwAAABI"], referer: http://www.kennythompson.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇳 ThreatBook.io	2026-03-31 22:56:08 (2 months ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/120.82.83.86 2026-03-3 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/120.82.83.86 2026-03-31 06:56:41 /robots.txt 2026-03-31 09:42:58 /robots.txt show less	Web App Attack
🇨🇳 ThreatBook.io	2026-02-12 23:13:00 (4 months ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/120.82.83.86 2026-02-1 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/120.82.83.86 2026-02-12 09:18:54 /sitemap.xml show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 21:57:47 (4 months ago)	(mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 120.82.83.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 16:57:40.190370 2026] [security2:error] [pid 14882:tid 14882] [client 120.82.83.86:27894] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.bringkittyhome.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.bringkittyhome.com"] [uri "/"] [unique_id "aY5M1FCf73yXQK1nZJbJUQAAAAY"], referer: https://www.bringkittyhome.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇳 ThreatBook.io	2025-10-07 22:21:27 (8 months ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.86 2025-10-07 01: ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.86 2025-10-07 01:49:09 /config.json show less	Web App Attack
🇨🇳 ThreatBook.io	2025-07-02 22:52:58 (11 months ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.86 2025-07-02 18: ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.86 2025-07-02 18:05:41 /Login_files/saved_resource.html show less	Web App Attack
🇨🇳 ThreatBook.io	2025-06-30 23:03:13 (11 months ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.86 2025-06-30 00: ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.83.86 2025-06-30 00:33:26 / show less	Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.182

🇺🇸 162.216.149.217

🇺🇸 154.197.57.20

🇺🇸 147.185.132.36

🇮🇳 125.19.245.34

🇮🇷 94.182.211.50

🇨🇦 74.58.176.108

🇺🇸 47.88.48.113

🇰🇷 222.109.234.122

🇱🇰 220.247.224.226

🇧🇷 143.95.214.121

🇱🇹 141.98.11.41

🇩🇪 141.11.107.166

🇮🇳 103.248.120.6

🇫🇷 88.168.101.8

🇺🇸 52.45.29.57

🇧🇷 45.169.21.209

🇪🇸 213.181.75.191

🇹🇳 197.5.145.150

🇧🇷 189.112.218.72