AbuseIPDB » 14.191.113.38
14.191.113.38 was found in our database!
This IP was reported 8 times. Confidence of
Abuse
is 19% : ?
ISP
Vietnam Posts and Telecommunications Group
Usage Type
Fixed Line ISP
ASN
AS45899
Domain Name
vnpt.com.vn
Country
π»π³
Viet Nam
City
Da Nang, Da Nang City
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 14.191.113.38 :
This IP address has been reported a total of
8
times from
8 distinct
sources.
14.191.113.38 was first reported on
September 12th 2022 , and the most recent report was
2 days ago .
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
π¨π
backslash
2026-07-15 01:57:01
(2 days ago)
block ruleset honeypot detection from VN 94A4A313D6448382F283B457A9C419564BD9A72C
Bad Web Bot
π©πͺ
ghostwarriors
2026-07-11 06:20:31
(5 days ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
π¨πΏ
vitex
2026-05-26 04:00:00
(1 month ago)
Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically cr ...
show more
Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically crawled git blame endpoints (/*/blame/commit/<hash>/file) across all commits of public repositories, causing server load of 17+ (normal: <2). Over 71,000 unique IPs involved. Attack window: 2026-05-26 03:30-06:37 UTC. Primary target: PureHTML/purezencart (9933 commits, 5065 files). Each blame request triggers expensive git operations; 30,000+ slow requests per hour.
show less
DDoS Attack
Bad Web Bot
π«π·
bigorre.org
2026-05-13 11:01:22
(2 months ago)
Unidentified crawling: not a self-announced bot in user-agent
Bad Web Bot
πΊπΈ
kosada.com
2026-04-19 05:05:13
(2 months ago)
Web bot: DDoS
DDoS Attack
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-03-09 10:52:26
(4 months ago)
(mod_security) mod_security (id:217210) triggered by 14.191.113.38 (static.vnpt.vn): 1 in the last 3 ...
show more
(mod_security) mod_security (id:217210) triggered by 14.191.113.38 (static.vnpt.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 09 06:52:19.730595 2026] [security2:error] [pid 19890:tid 19890] [client 14.191.113.38:10206] ModSecurity: Access denied with code 403 (phase 2). Match of "rx ^(?i:(?:[a-z]{3,10}\\\\s+(?:\\\\w{3,7}?://[\\\\w\\\\-\\\\./]*(?::\\\\d+)?)?/[^?#]*(?:\\\\?[^#\\\\s]*)?(?:#[\\\\S]*)?|connect (?:\\\\d{1,3}\\\\.){3}\\\\d{1,3}\\\\.?(?::\\\\d+)?|options \\\\*)\\\\s+[\\\\w\\\\./]+|get /[^?#]*(?:\\\\?[^#\\\\s]*)?(?:#[\\\\S]*)?)$" against "REQUEST_LINE" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "114"] [id "217210"] [rev "1"] [msg "COMODO WAF: Invalid HTTP Request Line||top22open.online|F|4"] [data "GET http://top22open.online HTTP/1.1"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "top22open.online"] [uri "/"] [unique_id "aa6mYwifkTIWWsjx-JOY8wAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-11-14 19:09:36
(8 months ago)
scanning http requests from known botnet
Web App Attack
π©πͺ
ISPLtd
2022-09-12 20:43:34
(3 years ago)
Sep 12 21:42:59 SRC=14.191.113.38 PROTO=TCP SPT=32010 DPT=445 SYN
Sep 12 21:43:29 SRC=14.191.113.38 ...
show more
Sep 12 21:42:59 SRC=14.191.113.38 PROTO=TCP SPT=32010 DPT=445 SYN
Sep 12 21:43:29 SRC=14.191.113.38 PROTO=TCP SPT=32010 DPT=445
Sep 12 21:43:33 SRC=14.191.113.38 PROTO=TCP SPT=32010 DPT=445
...
show less
Port Scan
Showing 1 to
8
of 8 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: