JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.171.106.111

116.171.106.111 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 39%: ?

39%

ISP	China United Network Communications Corporation Limited
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Guiyang, Guizhou

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.171.106.111

Whois 116.171.106.111

IP Abuse Reports for 116.171.106.111:

This IP address has been reported a total of 24 times from 17 distinct sources. 116.171.106.111 was first reported on January 13th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-06-15 01:09:35 (1 week ago)	Form spam	Web Spam
🇧🇪 cmbplf	2026-06-10 17:51:11 (1 week ago)	502 limiting connections by zone (12m59s)	DDoS Attack
🇺🇸 mnsf	2026-06-02 14:11:22 (2 weeks ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇬🇧 anycast_ac	2026-05-30 04:14:18 (3 weeks ago)	[WebProtection] Scanner detected \| port:443 (5 requests) requestis	Port Scan
🇷🇴 Fn4ticHz	2026-05-29 02:43:48 (3 weeks ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇺🇸 TPI-Abuse	2026-05-28 15:08:56 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 116.171.106.111 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 116.171.106.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 11:08:49.084768 2026] [security2:error] [pid 14355:tid 14355] [client 116.171.106.111:60176] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|qualityelevatorcabs.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "qualityelevatorcabs.com"] [uri "/[email protected]"] [unique_id "ahhagfJ33rsnVMEEVsJVWgAAABI"], referer: http://qualityelevatorcabs.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 SMARTNET	2026-05-27 06:03:53 (3 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 22ada211-5b5c-463a-b46f-60fd11dc639d	DDoS Attack
🇮🇹 Progetto1	2026-05-19 18:45:04 (1 month ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇷🇴 Fn4ticHz	2026-05-09 14:03:04 (1 month ago)	Repeated DDoS targeted -- ZeroGuard X ManagedSRV	DDoS Attack Exploited Host
🇸🇬 pusathosting.com	2026-05-06 03:40:04 (1 month ago)	24ds22 bruteforce	Brute-Force Web App Attack
🇮🇹 VHosting	2026-04-26 15:38:07 (1 month ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇱🇻 garmtech.com	2026-04-18 01:36:40 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 04-36.116.171.106.111.web-spam ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 04-36.116.171.106.111.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇳🇱 Cloud86 B.V.	2026-04-07 07:30:21 (2 months ago)	categories: Email Spam	Email Spam
🇩🇪 NoaQT	2026-04-05 22:02:29 (2 months ago)	116.171.106.111 - - [05/Apr/2026:16:33:46 +0200] "GET /web/login HTTP/1.1" 499 0 "https://blog.IKjxg ... show more 116.171.106.111 - - [05/Apr/2026:16:33:46 +0200] "GET /web/login HTTP/1.1" 499 0 "https://blog.IKjxgS.com/blog" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 116.171.106.111 - - [05/Apr/2026:16:33:48 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.vQImShDu.us/home" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 116.171.106.111 - - [05/Apr/2026:16:33:52 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.youtube.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 116.171.106.111 - - [05/Apr/2026:16:33:52 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.reddit.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 116.171.106.111 - - [05/Apr/2026:16:33:52 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.instagram.c ... show less	DDoS Attack
🇩🇪 NoaQT	2026-04-05 17:04:51 (2 months ago)	116.171.106.111 - - [05/Apr/2026:19:04:22 +0200] "GET /web/login HTTP/1.1" 499 0 "https://news.smart ... show more 116.171.106.111 - - [05/Apr/2026:19:04:22 +0200] "GET /web/login HTTP/1.1" 499 0 "https://news.smart-link.uk/about" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 116.171.106.111 - - [05/Apr/2026:19:04:30 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.elitetop.biz/products" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 116.171.106.111 - - [05/Apr/2026:19:04:30 +0200] "GET /web/login HTTP/1.1" 499 0 "https://shop.appdigital.us/about" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 116.171.106.111 - - [05/Apr/2026:19:04:30 +0200] "GET /web/login HTTP/1.1" 499 0 "https://www.elitetop.biz/products" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36" 116.171.106.111 - - [05/Apr/2026:19:04:30 +0200] "GET /web/login HTTP/1.1" 499 0 "https: ... show less	DDoS Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 119.47.90.19

🇧🇬 78.128.113.74

🇩🇪 69.5.169.187

🇺🇸 64.62.156.148

🇺🇸 20.168.0.86

🇨🇦 217.181.82.239

🇧🇿 190.197.31.229

🇺🇸 172.253.15.211

🇧🇷 170.239.71.116

🇩🇪 164.92.251.94

🇭🇰 114.111.53.214

🇮🇳 103.59.207.177

🇨🇳 58.212.237.201

🇧🇷 45.189.70.102

🇻🇳 14.225.23.94

🇺🇸 2604:a880:400:d1:0:4:9e83:8001

🇧🇷 118.26.105.144

🇰🇷 61.76.136.25

🇬🇧 45.82.76.105

🇺🇸 45.79.54.163