JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.204.101.168

116.204.101.168 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 27%: ?

27%

ISP	Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co)
Usage Type	Data Center/Web Hosting/Transit
ASN	AS55990
Hostname(s)	ecs-116-204-101-168.compute.hwclouds-dns.com
Domain Name	huawei.com
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.204.101.168

Whois 116.204.101.168

IP Abuse Reports for 116.204.101.168:

This IP address has been reported a total of 8 times from 7 distinct sources. 116.204.101.168 was first reported on April 25th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 HandyTreff.de	2026-05-22 21:23:08 (2 weeks ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -41.113 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -41.113 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0. show less	Web App Attack Bad Web Bot
Anonymous	2026-05-17 14:00:20 (3 weeks ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
🇫🇮 YF	2026-05-17 09:03:02 (3 weeks ago)	WordPress content enumeration	Web App Attack
🇮🇩 David Koswari	2026-05-13 05:49:00 (4 weeks ago)	REQ_BLOCKED_ACL	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇺🇸 TPI-Abuse	2026-05-01 20:23:23 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 116.204.101.168 (ecs-116-204-101-168.compute.hw ... show more (mod_security) mod_security (id:210730) triggered by 116.204.101.168 (ecs-116-204-101-168.compute.hwclouds-dns.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 01 16:23:16.852850 2026] [security2:error] [pid 21146:tid 21166] [client 116.204.101.168:57784] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|evolutionaryethics.com\|F\|2"] [data ".tifaa.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "evolutionaryethics.com"] [uri "/www.tifaa.com"] [unique_id "afULtIJq1r07mpkH3PW30QAAAQk"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-05-01 08:15:26 (1 month ago)		Bad Web Bot
Anonymous	2026-04-26 19:33:46 (1 month ago)	Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ... show more Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in thread-post.asp show less	Exploited Host Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-25 12:05:54 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 116.204.101.168 (ecs-116-204-101-168.compute.hw ... show more (mod_security) mod_security (id:210730) triggered by 116.204.101.168 (ecs-116-204-101-168.compute.hwclouds-dns.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 25 08:05:50.029332 2026] [security2:error] [pid 26093:tid 26093] [client 116.204.101.168:51282] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|elainebroussard.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "elainebroussard.com"] [uri "/sloppysnowman/[email protected]"] [unique_id "aeyuHpZB7bcimASNJytJZAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 2402:8100:263c:2ccf:dc54:cb96:396:c1ec

🇨🇳 220.181.51.116

🇦🇷 190.50.39.161

🇮🇶 185.166.25.150

🇮🇩 163.7.8.79

🇰🇷 115.178.75.243

🇨🇳 106.75.237.200

🇷🇴 80.94.92.164

🇺🇸 66.132.172.225

🇸🇦 50.60.134.32

🇲🇾 47.250.129.199

🇱🇹 45.227.254.170

🇺🇸 20.124.91.101

🇩🇪 216.58.207.14

🇳🇱 195.178.110.204

🇳🇱 195.178.110.30

🇦🇷 191.97.228.24

🇦🇷 98.97.134.4

🇷🇺 91.132.23.182

🇳🇱 89.248.167.131