JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.14.66.120

111.14.66.120 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 4%: ?

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS24444
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Jinan, Shandong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.14.66.120

Whois 111.14.66.120

IP Abuse Reports for 111.14.66.120:

This IP address has been reported a total of 4 times from 1 distinct source. 111.14.66.120 was first reported on June 16th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-23 08:07:57 (4 days ago)	(mod_security) mod_security (id:210831) triggered by 111.14.66.120 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 111.14.66.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 04:07:46.226887 2026] [security2:error] [pid 25907:tid 25907] [client 111.14.66.120:6133] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.legacy-insight.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.legacy-insight.com"] [uri "/"] [unique_id "ajo-0iNbBC_vGO_QoDqQowAAAA8"], referer: https://www.legacy-insight.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 00:06:48 (6 days ago)	(mod_security) mod_security (id:210831) triggered by 111.14.66.120 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 111.14.66.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 20:06:37.063409 2026] [security2:error] [pid 13030:tid 13030] [client 111.14.66.120:5752] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|aviil.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "aviil.com"] [uri "/index.htm"] [unique_id "ajcrDasJph1-UaKoiYFwEAAAAAM"], referer: http://aviil.com/index.htm show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 21:55:47 (1 week ago)	(mod_security) mod_security (id:210831) triggered by 111.14.66.120 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 111.14.66.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 17:55:36.457755 2026] [security2:error] [pid 23832:tid 23832] [client 111.14.66.120:5778] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.med-engineering.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.med-engineering.com"] [uri "/"] [unique_id "ajRpWJIuiEcjcw8qrlBWyQAAAAI"], referer: http://www.med-engineering.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 23:10:07 (1 week ago)	(mod_security) mod_security (id:210831) triggered by 111.14.66.120 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 111.14.66.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 19:09:57.624109 2026] [security2:error] [pid 2138:tid 2138] [client 111.14.66.120:5782] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.modeltdr.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.modeltdr.com"] [uri "/"] [unique_id "ajHXxRq9fwGLflP7fKypEwAAAAg"], referer: https://www.modeltdr.com/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.161.177.212

🇺🇸 149.72.25.247

🇹🇼 114.34.106.146

🇵🇰 103.73.101.186

🇨🇦 85.217.149.33

🇸🇦 84.8.104.116

🇺🇸 64.62.156.39

🇿🇲 41.63.62.103

🇵🇰 203.135.42.52

🇸🇪 185.217.0.181

🇨🇳 180.167.128.202

🇨🇦 158.69.117.34

🇮🇳 103.24.172.222

🇳🇱 45.148.10.152

🇸🇳 41.82.50.218

🇺🇸 20.65.194.142

🇩🇿 197.203.67.81

🇩🇪 194.187.176.233

🇺🇸 164.92.101.37

🇭🇰 152.32.135.48