AbuseIPDB » 1.14.66.207

1.14.66.207 was found in our database!

This IP was reported 664 times. Confidence of Abuse is 93%: ?

93%

ISP	Tencent Cloud Computing (Beijing) Co. Ltd.
Usage Type	Data Center/Web Hosting/Transit
Domain Name	tencent.com
Country	China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 1.14.66.207

Whois 1.14.66.207

IP Abuse Reports for 1.14.66.207:

This IP address has been reported a total of 664 times from 146 distinct sources. 1.14.66.207 was first reported on August 30th 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp	Comment	Categories
woutvde	2023-12-03 16:37:04 (1 day ago)		Web App Attack
URAN Publishing Service	2023-12-03 08:22:29 (1 day ago)	1.14.66.207 - - [03/Dec/2023:10:22:01 +0200] "GET /wp-login.php HTTP/1.1" 404 277 "-" "Apache-HttpCl ... show more1.14.66.207 - - [03/Dec/2023:10:22:01 +0200] "GET /wp-login.php HTTP/1.1" 404 277 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" 1.14.66.207 - - [03/Dec/2023:10:22:28 +0200] "GET /xmlrpc.php HTTP/1.1" 404 277 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" ... show less	Web App Attack
mr-money.de	2023-12-02 17:30:34 (2 days ago)	1.14.66.207 - - [02/Dec/2023:18:30:33 +0100] "GET /wp-login.php HTTP/1.1" 404 6590 "-" "Apache-HttpC ... show more1.14.66.207 - - [02/Dec/2023:18:30:33 +0100] "GET /wp-login.php HTTP/1.1" 404 6590 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" ... show less	Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
URAN Publishing Service	2023-12-01 08:44:14 (3 days ago)	1.14.66.207 - - [01/Dec/2023:10:44:03 +0200] "GET /wp-login.php HTTP/1.1" 404 285 "-" "Apache-HttpCl ... show more1.14.66.207 - - [01/Dec/2023:10:44:03 +0200] "GET /wp-login.php HTTP/1.1" 404 285 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" 1.14.66.207 - - [01/Dec/2023:10:44:13 +0200] "GET /wp-login.php HTTP/1.1" 404 273 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" ... show less	Web App Attack
MAGIC	2023-12-01 01:06:03 (4 days ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Major Hostility	2023-11-29 22:09:09 (5 days ago)	"GET /?author=3 HTTP/1.1" 404 "GET /?author=4 HTTP/1.1" 404 "GET /?author=5 HTTP/1.1" 40 ... show more"GET /?author=3 HTTP/1.1" 404 "GET /?author=4 HTTP/1.1" 404 "GET /?author=5 HTTP/1.1" 404 show less	Web App Attack
NoAbuseforU	2023-11-29 22:05:00 (5 days ago)	"Illegal file type"	Brute-Force
Dolphi	2023-11-28 03:20:03 (6 days ago)	Excessive POST /xmlrpc.php requests	Brute-Force Web App Attack
MAGIC	2023-11-28 02:12:48 (6 days ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
SaferWeb	2023-11-28 00:03:25 (1 week ago)	#1 (mod_security) mod_security (id:913100) triggered by 1.14.66.207 (CN/China/-): 3 in the last 600 ... show more#1 (mod_security) mod_security (id:913100) triggered by 1.14.66.207 (CN/China/-): 3 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: show less	Bad Web Bot Web App Attack
URAN Publishing Service	2023-11-27 02:26:06 (1 week ago)	1.14.66.207 - - [27/Nov/2023:04:25:48 +0200] "GET /wp-login.php HTTP/1.1" 404 289 "-" "Apache-HttpCl ... show more1.14.66.207 - - [27/Nov/2023:04:25:48 +0200] "GET /wp-login.php HTTP/1.1" 404 289 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" 1.14.66.207 - - [27/Nov/2023:04:26:05 +0200] "GET /xmlrpc.php HTTP/1.1" 404 289 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" ... show less	Web App Attack
URAN Publishing Service	2023-11-25 17:40:10 (1 week ago)	1.14.66.207 - - [25/Nov/2023:19:40:06 +0200] "GET /wp-login.php HTTP/1.1" 404 278 "-" "Apache-HttpCl ... show more1.14.66.207 - - [25/Nov/2023:19:40:06 +0200] "GET /wp-login.php HTTP/1.1" 404 278 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" 1.14.66.207 - - [25/Nov/2023:19:40:08 +0200] "GET /wp-login.php HTTP/1.1" 404 273 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" ... show less	Web App Attack
TPI-Abuse	2023-11-25 16:07:25 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 1.14.66.207 (-): 1 in the last 300 secs; Ports: ... show more(mod_security) mod_security (id:240335) triggered by 1.14.66.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 25 11:07:22.914230 2023] [security2:error] [pid 1328] [client 1.14.66.207:49702] [client 1.14.66.207] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 1.14.66.207 (+1 hits since last alert)|towncenters.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "towncenters.net"] [uri "/xmlrpc.php"] [unique_id "ZWIbugYluW2AnbmHLiSJUgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Hirte	2023-11-22 16:14:32 (1 week ago)	C1: Web Attack GET /wp-login.php	Web Spam Hacking Bad Web Bot Web App Attack
Rip	2023-11-22 09:05:31 (1 week ago)	1.14.66.207 - - [22/Nov/2023:01:05:29 -0800] "GET /?author=3 HTTP/1.1" 404 53202 "-" "Apache-HttpCli ... show more1.14.66.207 - - [22/Nov/2023:01:05:29 -0800] "GET /?author=3 HTTP/1.1" 404 53202 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" 1.14.66.207 - - [22/Nov/2023:01:05:29 -0800] "GET /?author=4 HTTP/1.1" 404 53202 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" 1.14.66.207 - - [22/Nov/2023:01:05:30 -0800] "GET /?author=5 HTTP/1.1" 404 53202 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" 1.14.66.207 - - [22/Nov/2023:01:05:30 -0800] "GET /?author=6 HTTP/1.1" 404 53202 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" ... show less	Web App Attack

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩