JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.119.234.221

111.119.234.221 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 22%: ?

22%

ISP	Huawei-Cloud-SG
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136907
Hostname(s)	ecs-111-119-234-221.compute.hwclouds-dns.com
Domain Name	huawei.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.119.234.221

Whois 111.119.234.221

IP Abuse Reports for 111.119.234.221:

This IP address has been reported a total of 34 times from 32 distinct sources. 111.119.234.221 was first reported on December 22nd 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 rsa	2026-05-27 14:52:00 (3 weeks ago)	excessive crawling ddos	DDoS Attack Bad Web Bot Web App Attack
🇨🇦 1gz	2026-05-21 00:48:53 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /author/ebodini/page/1668/ UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 Sklurk	2026-05-20 02:00:21 (1 month ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-05-14 21:17:42 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 111.119.234.221 (ecs-111-119-234-221.compute.hw ... show more (mod_security) mod_security (id:210730) triggered by 111.119.234.221 (ecs-111-119-234-221.compute.hwclouds-dns.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 17:17:35.394721 2026] [security2:error] [pid 30752:tid 30752] [client 111.119.234.221:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.swarnar.com\|F\|2"] [data ".washingtonpost.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.swarnar.com"] [uri "/www.washingtonpost.com"] [unique_id "agY77_lJUI0UknhEMH59fAAAAAI"], referer: https://www.swarnar.com/www.washingtonpost.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-13 18:28:51 (1 month ago)	Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ... show more Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in printer-friendly.asp show less	Exploited Host Bad Web Bot
🇫🇷 bigorre.org	2026-05-10 10:23:45 (1 month ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇯🇵 zwh	2024-12-31 17:40:05 (1 year ago)	SSH Brute-Force	Brute-Force SSH
🇺🇸 octageeks.com	2024-12-31 05:07:45 (1 year ago)	Wordpress malicious attack:[sshd]	Web App Attack
🇺🇸 anon333	2024-12-31 02:33:16 (1 year ago)	Hacker syslog review 1735612396	Hacking
🇺🇸 Teknikal_Domain	2024-12-31 02:10:29 (1 year ago)	Dec 30 21:10:18 gen sshd[419544]: Failed password for root from 111.119.234.221 port 41832 ssh2 Dec ... show more Dec 30 21:10:18 gen sshd[419544]: Failed password for root from 111.119.234.221 port 41832 ssh2 Dec 30 21:10:26 gen sshd[419548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.119.234.221 user=root Dec 30 21:10:29 gen sshd[419548]: Failed password for root from 111.119.234.221 port 55998 ssh2 ... show less	Brute-Force SSH
Anonymous	2024-12-31 02:06:57 (1 year ago)	111.119.234.221 (SG/Singapore/-), 5 distributed sshd attacks on account [REDACTED] in the last 3600 ... show more 111.119.234.221 (SG/Singapore/-), 5 distributed sshd attacks on account [REDACTED] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Dec 30 21:06:35 sshd[3954856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.232.37.174 user=[USERNAME] show less	DDoS Attack
🇨🇭 ranklord	2024-12-31 00:54:34 (1 year ago)	Dec 31 00:54:32 webo sshd[892792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid= ... show more Dec 31 00:54:32 webo sshd[892792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.119.234.221 user=root Dec 31 00:54:34 webo sshd[892792]: Received disconnect from 111.119.234.221 port 48800:11: Bye Bye [preauth] ... show less	Brute-Force SSH
🇸🇬 simpeg-adm.bandung.go.id	2024-12-31 00:31:08 (1 year ago)	Dec 31 00:30:58 wworkflows sshd[2807762]: Failed password for root from 111.119.234.221 port 42696 s ... show more Dec 31 00:30:58 wworkflows sshd[2807762]: Failed password for root from 111.119.234.221 port 42696 ssh2 Dec 31 00:31:05 wworkflows sshd[2807793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.119.234.221 user=root Dec 31 00:31:07 wworkflows sshd[2807793]: Failed password for root from 111.119.234.221 port 59998 ssh2 ... show less	Brute-Force SSH
🇬🇧 Stuart Reid	2024-12-30 23:48:53 (1 year ago)	...	SSH
🇫🇷 ak47suk1.my	2024-12-30 21:22:35 (1 year ago)	Dec 30 21:22:00 horseguai sshd[760194]: Failed password for root from 111.119.234.221 port 39976 ssh ... show more Dec 30 21:22:00 horseguai sshd[760194]: Failed password for root from 111.119.234.221 port 39976 ssh2 Dec 30 21:22:06 horseguai sshd[760198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.119.234.221 user=root Dec 30 21:22:08 horseguai sshd[760198]: Failed password for root from 111.119.234.221 port 55706 ssh2 Dec 30 21:22:32 horseguai sshd[760205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.119.234.221 user=root Dec 30 21:22:34 horseguai sshd[760205]: Failed password for root from 111.119.234.221 port 45404 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇹 77.90.185.78

🇩🇪 69.5.169.180

🇸🇬 47.84.226.151

🇧🇷 45.205.1.244

🇭🇰 43.103.52.114

🇮🇳 205.254.174.21

🇮🇷 185.113.9.199

🇨🇳 183.184.55.86

🇮🇳 168.144.81.184

🇧🇩 103.111.35.180

🇺🇸 68.101.217.160

🇭🇰 47.86.33.195

🇳🇱 45.148.10.141

🇺🇸 34.208.194.230

🇺🇸 216.239.38.223

🇺🇸 65.49.1.180

🇺🇸 20.55.73.223

🇺🇸 3.218.103.254

🇧🇷 2804:1b1:1080:4bb2:c599:3ceb:cd9d:374a

🇧🇷 205.210.31.214