JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 114.119.133.119

114.119.133.119 was found in our database!

This IP was reported 1,041 times. Confidence of Abuse is 42%: ?

42%

ISP	Huawei-Cloud-SG
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136907
Hostname(s)	petalbot-114-119-133-119.petalsearch.com
Domain Name	huawei.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 114.119.133.119

Whois 114.119.133.119

IP Abuse Reports for 114.119.133.119:

This IP address has been reported a total of 1,041 times from 68 distinct sources. 114.119.133.119 was first reported on February 6th 2021, and the most recent report was 39 seconds ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-24 09:29:57 (39 seconds ago)	FortiWeb WAF: 20 attacks detected. Threat Score: 5400. Types: Client Management(10), GEO IP(10). Ori ... show more FortiWeb WAF: 20 attacks detected. Threat Score: 5400. Types: Client Management(10), GEO IP(10). Origin: Singapore. show less	Web App Attack
🇬🇷 setupgr	2026-06-24 09:09:45 (20 minutes ago)	(mod_security) mod_security (id:11000010) triggered by 114.119.133.119 (SG/Singapore/-/Singapore/-/[ ... show more (mod_security) mod_security (id:11000010) triggered by 114.119.133.119 (SG/Singapore/-/Singapore/-/[AS136907 HWCLOUDS-AS-AP HUAWEI CLOUDS]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 24 12:09:42.543763 2026] [security2:error] [pid 63968:tid 64014] [client 114.119.133.119:37437] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "PetalBot" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "104"] [id "11000010"] [msg "BLOCKED BOT: PetalBot - in adoro.gr"] [severity "CRITICAL"] [hostname "adoro.gr"] [uri "/wp-content/uploads/2018/12/IRINA-ROSEN171.jpg"] [unique_id "ajue1j_tjI8vsxY4WxOuGwAAAJM"], referer: https://adoro.gr/wp-content/uploads/2018/12/IRINA-ROSEN171.jpg show less	Port Scan
🇺🇸 mccsoft.io	2026-06-23 23:08:08 (10 hours ago)	Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). So ... show more Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). Source matched a blocked-path security rule (jail nginx-444); server returned HTTP 444 (connection closed without response). TCP three-way handshake completed (full HTTP request received). show less	Bad Web Bot Web App Attack
🇺🇸 mccsoft.io	2026-06-22 09:33:53 (1 day ago)	Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). So ... show more Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). Source matched a blocked-path security rule (jail nginx-444); server returned HTTP 444 (connection closed without response). TCP three-way handshake completed (full HTTP request received). show less	Bad Web Bot Web App Attack
Anonymous	2026-06-22 09:23:05 (2 days ago)	FortiWeb WAF: 14 attacks detected. Threat Score: 7200. Types: Client Management(7), GEO IP(7). Origi ... show more FortiWeb WAF: 14 attacks detected. Threat Score: 7200. Types: Client Management(7), GEO IP(7). Origin: Singapore. show less	Web App Attack
🇺🇸 mccsoft.io	2026-06-21 04:47:57 (3 days ago)	Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). So ... show more Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). Source matched a blocked-path security rule (jail nginx-444); server returned HTTP 444 (connection closed without response). TCP three-way handshake completed (full HTTP request received). show less	Bad Web Bot Web App Attack
Anonymous	2026-06-20 09:22:06 (4 days ago)	FortiWeb WAF: 22 attacks detected. Threat Score: 9800. Types: Client Management(11), GEO IP(11). Ori ... show more FortiWeb WAF: 22 attacks detected. Threat Score: 9800. Types: Client Management(11), GEO IP(11). Origin: Singapore. show less	Web App Attack
🇬🇷 setupgr	2026-06-20 04:27:12 (4 days ago)	(mod_security) mod_security (id:11000010) triggered by 114.119.133.119 (SG/Singapore/-/Singapore/-/[ ... show more (mod_security) mod_security (id:11000010) triggered by 114.119.133.119 (SG/Singapore/-/Singapore/-/[AS136907 HWCLOUDS-AS-AP HUAWEI CLOUDS]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 20 07:27:10.810576 2026] [security2:error] [pid 79894:tid 79930] [client 114.119.133.119:47517] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "PetalBot" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "104"] [id "11000010"] [msg "BLOCKED BOT: PetalBot - in adoro.gr"] [severity "CRITICAL"] [hostname "adoro.gr"] [uri "/wp-content/uploads/2018/12/IRINA-ROSEN118.jpg"] [unique_id "ajYWnic2acK9dyAMRdJElgAAAUk"], referer: https://adoro.gr/wp-content/uploads/2018/12/IRINA-ROSEN118.jpg show less	Port Scan
🇺🇸 mccsoft.io	2026-06-19 21:30:59 (4 days ago)	Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). So ... show more Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). Source matched a blocked-path security rule (jail nginx-444); server returned HTTP 444 (connection closed without response). TCP three-way handshake completed (full HTTP request received). show less	Bad Web Bot Web App Attack
🇬🇷 setupgr	2026-06-19 15:23:57 (4 days ago)	(mod_security) mod_security (id:11000010) triggered by 114.119.133.119 (SG/Singapore/-/Singapore/-/[ ... show more (mod_security) mod_security (id:11000010) triggered by 114.119.133.119 (SG/Singapore/-/Singapore/-/[AS136907 HWCLOUDS-AS-AP HUAWEI CLOUDS]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 19 18:23:56.281075 2026] [security2:error] [pid 2278:tid 2419] [client 114.119.133.119:59739] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "PetalBot" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "104"] [id "11000010"] [msg "BLOCKED BOT: PetalBot - in adoro.gr"] [severity "CRITICAL"] [hostname "adoro.gr"] [uri "/wp-content/plugins/justified-image-grid/timthumb.php"] [unique_id "ajVfDAuYeXI6iTUJgvvxiQAAAIY"], referer: https://adoro.gr/wp-content/plugins/justified-image-grid/timthumb.php?src=https%3A%2F%2Fadoro.gr%2Fwp-content%2Fuploads%2F2018%2F12%2F15972373_10211698449355453_6758174151697276247_o_10211698449355453.jpg&h=300&q=50&f=.jpg show less	Port Scan
🇬🇷 setupgr	2026-06-19 08:40:22 (5 days ago)	(mod_security) mod_security (id:11000010) triggered by 114.119.133.119 (SG/Singapore/-/Singapore/-/[ ... show more (mod_security) mod_security (id:11000010) triggered by 114.119.133.119 (SG/Singapore/-/Singapore/-/[AS136907 HWCLOUDS-AS-AP HUAWEI CLOUDS]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 19 11:40:18.916882 2026] [security2:error] [pid 79894:tid 79938] [client 114.119.133.119:61205] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "PetalBot" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "104"] [id "11000010"] [msg "BLOCKED BOT: PetalBot - in adoro.gr"] [severity "CRITICAL"] [hostname "adoro.gr"] [uri "/wp-content/plugins/justified-image-grid/timthumb.php"] [unique_id "ajUAcic2acK9dyAMRdLaPAAAAVE"], referer: https://adoro.gr/wp-content/plugins/justified-image-grid/timthumb.php?src=https%3A%2F%2Fadoro.gr%2Fwp-content%2Fuploads%2F2018%2F12%2F15975238_10211698551318002_8237078453826552149_o_10211698551318002.jpg&h=300&q=50&f=.jpg show less	Port Scan
🇺🇸 mccsoft.io	2026-06-18 19:14:32 (5 days ago)	Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). So ... show more Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). Source matched a blocked-path security rule (jail nginx-444); server returned HTTP 444 (connection closed without response). TCP three-way handshake completed (full HTTP request received). show less	Bad Web Bot Web App Attack
Anonymous	2026-06-18 09:24:26 (6 days ago)	FortiWeb WAF: 32 attacks detected. Threat Score: 8800. Types: Client Management(16), GEO IP(16). Ori ... show more FortiWeb WAF: 32 attacks detected. Threat Score: 8800. Types: Client Management(16), GEO IP(16). Origin: Singapore. show less	Web App Attack
🇬🇷 setupgr	2026-06-18 06:37:23 (6 days ago)	(mod_security) mod_security (id:11000010) triggered by 114.119.133.119 (SG/Singapore/-/Singapore/-/[ ... show more (mod_security) mod_security (id:11000010) triggered by 114.119.133.119 (SG/Singapore/-/Singapore/-/[AS136907 HWCLOUDS-AS-AP HUAWEI CLOUDS]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 18 09:37:18.847095 2026] [security2:error] [pid 2280080:tid 2280112] [client 114.119.133.119:37795] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "PetalBot" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "104"] [id "11000010"] [msg "BLOCKED BOT: PetalBot - in adoro.gr"] [severity "CRITICAL"] [hostname "adoro.gr"] [uri "/wp-content/plugins/justified-image-grid/timthumb.php"] [unique_id "ajOSHssskNLCXd8cDXTrawAAAAU"], referer: https://adoro.gr/wp-content/plugins/justified-image-grid/timthumb.php?src=https%3A%2F%2Fadoro.gr%2Fwp-content%2Fuploads%2F2018%2F12%2F16113062_10211698543197799_5576196173208268891_o_10211698543197799.jpg&h=300&q=50&f=.jpg show less	Port Scan
🇬🇷 setupgr	2026-06-18 05:27:59 (6 days ago)	(mod_security) mod_security (id:11000010) triggered by 114.119.133.119 (SG/Singapore/-/Singapore/-/[ ... show more (mod_security) mod_security (id:11000010) triggered by 114.119.133.119 (SG/Singapore/-/Singapore/-/[AS136907 HWCLOUDS-AS-AP HUAWEI CLOUDS]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 18 08:27:57.051729 2026] [security2:error] [pid 2280080:tid 2280108] [client 114.119.133.119:58051] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "PetalBot" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "104"] [id "11000010"] [msg "BLOCKED BOT: PetalBot - in adoro.gr"] [severity "CRITICAL"] [hostname "adoro.gr"] [uri "/wp-content/plugins/yith-woocommerce-name-your-price-premium/plugin-options/vendor/category-rules-vendor-options.php"] [unique_id "ajOB3csskNLCXd8cDXTmggAAAAE"], referer: https://adoro.gr/wp-content/plugins/yith-woocommerce-name-your-price-premium/plugin-options/vendor/ show less	Port Scan

Showing 1 to 15 of 1041 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.37.38.210

🇬🇧 185.216.145.163

🇺🇸 165.154.134.203

🇸🇬 152.42.204.200

🇰🇷 119.204.60.250

🇱🇹 45.227.254.170

🇺🇸 208.109.38.143

🇺🇸 172.71.203.123

🇸🇬 152.42.204.127

🇸🇬 152.42.203.139

🇨🇳 121.229.156.17

🇻🇳 116.99.49.208

🇷🇺 91.231.197.1

🇻🇳 59.153.243.12

🇺🇸 24.30.46.249

🇷🇴 2.57.121.25

🇺🇸 184.105.139.88

🇰🇭 175.100.79.215

🇸🇬 152.42.200.66

🇵🇰 124.29.247.27