JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.14.224.113

124.14.224.113 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 4%: ?

ISP	BeiJing Guoxin bilin Telecom Technology Co.,Ltd
Usage Type	Commercial
ASN	AS4808
Domain Name	drpeng.com.cn
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.14.224.113

Whois 124.14.224.113

IP Abuse Reports for 124.14.224.113:

This IP address has been reported a total of 5 times from 2 distinct sources. 124.14.224.113 was first reported on May 20th 2022, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-24 22:53:16 (4 days ago)	(mod_security) mod_security (id:210831) triggered by 124.14.224.113 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 124.14.224.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 18:53:10.493062 2026] [security2:error] [pid 17015:tid 17015] [client 124.14.224.113:4225] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.robbieburnsnight.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.robbieburnsnight.com"] [uri "/"] [unique_id "ajxf1nDvawk0rclPqWcC3AAAABU"], referer: http://www.robbieburnsnight.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 22:57:32 (5 days ago)	(mod_security) mod_security (id:210831) triggered by 124.14.224.113 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 124.14.224.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 18:57:24.744543 2026] [security2:error] [pid 15310:tid 15377] [client 124.14.224.113:9561] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|philacentric.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "philacentric.com"] [uri "/"] [unique_id "ajsPVCHJBCtkATXBGY5S7QAAAco"], referer: http://philacentric.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 21:39:22 (5 days ago)	(mod_security) mod_security (id:210831) triggered by 124.14.224.113 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 124.14.224.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 17:39:16.263313 2026] [security2:error] [pid 20918:tid 20933] [client 124.14.224.113:1882] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|royalbusinesscollege.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "royalbusinesscollege.com"] [uri "/"] [unique_id "ajr9BCPltR0U9NugMwuDbgAAAAw"], referer: https://royalbusinesscollege.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 20:33:36 (6 days ago)	(mod_security) mod_security (id:210831) triggered by 124.14.224.113 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 124.14.224.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 16:33:30.121199 2026] [security2:error] [pid 22636:tid 22636] [client 124.14.224.113:6074] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|envirotreecare.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "envirotreecare.com"] [uri "/index.html"] [unique_id "ajmcGqZyyZbvFSHVFbMmMQAAAAA"], referer: http://envirotreecare.com/index.html show less	Brute-Force Bad Web Bot Web App Attack
🇿🇦 IrisFlower	2022-05-20 01:02:54 (4 years ago)	Unauthorized connection attempt detected from IP address 124.14.224.113 to port 443 [J]	Port Scan Hacking

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 190.220.172.154

🇧🇷 131.161.249.165

🇳🇬 102.88.137.213

🇸🇬 34.87.173.220

🇧🇲 199.172.218.108

🇹🇷 131.222.251.199

🇰🇷 124.153.187.49

🇫🇷 90.7.209.139

🇩🇪 64.226.107.125

🇰🇷 58.229.180.110

🇨🇳 223.84.195.56

🇪🇬 197.39.122.130

🇭🇰 152.32.251.174

🇮🇩 125.164.196.92

🇨🇳 124.251.110.186

🇮🇳 103.146.111.106

🇫🇷 92.222.104.211

🇨🇦 85.217.149.55

🇺🇸 69.49.246.176

🇺🇸 67.82.199.83