JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 170.83.116.85

170.83.116.85 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 34%: ?

34%

ISP	CABLE SATELITE S.DE R.L. DE C.V.
Usage Type	Fixed Line ISP
ASN	AS271971
Domain Name	cabsathn.com
Country	🇭🇳 Honduras
City	San Pedro Sula, Cortes Department

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 170.83.116.85

Whois 170.83.116.85

IP Abuse Reports for 170.83.116.85:

This IP address has been reported a total of 18 times from 14 distinct sources. 170.83.116.85 was first reported on November 10th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-17 07:00:17 (1 day ago)	Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) ... show more Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) employed by Angara Technologies Group (Explicitly identified himself as enemy a week before attack began) \| Attack Signature Blocked: /wishlist/index/add/product/784/form_key/29DkbleUVSDHLje3/ \| UA: Mozilla/5.0 (Linux; Android 4.1) AppleWebKit/531.2 (KHTML, like Gecko) Chrome/45.0.883.0 Safari/531.2 \| (Magento Site) show less	Hacking Bad Web Bot Web App Attack
🇬🇧 Oakley	2026-06-09 04:01:39 (1 week ago)	(confirmed_bot_sig) Confirmed bot	Hacking
🇩🇪 EGP Abuse Dept	2026-06-06 01:30:10 (1 week ago)	Scraping webshop URLs (www.sanal.nl), likely botnet drone	Bad Web Bot Exploited Host
Anonymous	2026-06-03 03:43:17 (2 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇮🇩 Diskominfo Lumajang	2026-05-28 18:10:03 (3 weeks ago)	Security Event Detected by SOC Diskominfo Lumajang: event=alert, hits=3	Brute-Force
🇩🇪 SMARTNET	2026-05-27 06:03:53 (3 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 22ada211-5b5c-463a-b46f-60fd11dc639d	DDoS Attack
🇺🇸 quilla	2026-04-03 03:20:35 (2 months ago)	Botnet infected device observed in honeypot (Vector: TCP)	DDoS Attack
🇺🇸 kosada.com	2026-02-03 16:17:11 (4 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 MPL	2026-01-18 04:04:22 (5 months ago)	tcp/23	Port Scan
🇺🇸 TPI-Abuse	2026-01-13 01:27:21 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 170.83.116.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 170.83.116.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 12 20:27:13.503299 2026] [security2:error] [pid 196324:tid 196324] [client 170.83.116.85:19759] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.nwarchitect.com\|F\|2"] [data ".ods-qa.openlinksw.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.nwarchitect.com"] [uri "/www.ods-qa.openlinksw.com"] [unique_id "aWWfca9Naluf4zfNtEwu0wAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-24 04:50:10 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-12-14 01:45:59 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (6 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
Anonymous	2025-11-24 19:29:37 (6 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-18 00:07:09 (7 months ago)	scanning http requests from known botnet	Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 220.118.173.234

🇺🇸 162.216.149.250

🇭🇰 152.32.212.226

🇻🇳 103.252.123.105

🇫🇷 91.196.152.209

🇩🇪 43.228.157.8

🇬🇧 35.203.211.113

🇰🇬 213.145.146.206

🇮🇪 207.254.22.207

🇲🇽 189.224.165.71

🇧🇷 177.10.203.106

🇧🇷 153.67.110.204

🇺🇸 147.185.132.33

🇺🇸 143.42.1.185

🇫🇷 91.196.152.35

🇹🇭 61.19.146.211

🇵🇭 49.145.218.101

🇧🇪 34.77.138.112

🇮🇳 13.71.92.229

🇺🇸 205.210.31.84