JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 14.241.92.66

14.241.92.66 was found in our database!

This IP was reported 333 times. Confidence of Abuse is 91%: ?

91%

ISP	Vietnam Posts and Telecommunications Group
Usage Type	Mobile ISP
ASN	AS45899
Domain Name	vnpt.com.vn
Country	🇻🇳 Viet Nam
City	Hanoi, Hanoi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 14.241.92.66

Whois 14.241.92.66

IP Abuse Reports for 14.241.92.66:

This IP address has been reported a total of 333 times from 87 distinct sources. 14.241.92.66 was first reported on November 23rd 2024, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-16 08:35:04 (14 hours ago)	(mod_security) mod_security (id:240335) triggered by 14.241.92.66 (static.vnpt.vn): 1 in the last 30 ... show more (mod_security) mod_security (id:240335) triggered by 14.241.92.66 (static.vnpt.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 04:34:57.328171 2026] [security2:error] [pid 20157:tid 20157] [client 14.241.92.66:49630] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 14.241.92.66 (+1 hits since last alert)\|arsenalfordemocracy.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "arsenalfordemocracy.com"] [uri "/xmlrpc.php"] [unique_id "ajEKsQ3Y2PQANMxFLYaQXQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 06:32:18 (16 hours ago)	(mod_security) mod_security (id:240335) triggered by 14.241.92.66 (static.vnpt.vn): 1 in the last 30 ... show more (mod_security) mod_security (id:240335) triggered by 14.241.92.66 (static.vnpt.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 02:32:14.435953 2026] [security2:error] [pid 4042:tid 4042] [client 14.241.92.66:63162] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 14.241.92.66 (+1 hits since last alert)\|graciousholding.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "graciousholding.com"] [uri "/xmlrpc.php"] [unique_id "ajDt7hHL-eF2-x_GA_a_3AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-16 02:13:17 (20 hours ago)	[ssd1.kdns.gr] httpd-xmlrpc-post: sites=me-meraki.gr; logs=/var/log/httpd/domains/me-meraki.gr.log; ... show more [ssd1.kdns.gr] httpd-xmlrpc-post: sites=me-meraki.gr; logs=/var/log/httpd/domains/me-meraki.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-16 01:42:01 (21 hours ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇦🇺 dyln	2026-06-15 03:46:42 (1 day ago)	Dyls honeypot brute-force: SMB (4 total hits)	Brute-Force
🇫🇷 masterguru	2026-06-12 05:17:19 (4 days ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
Anonymous	2026-06-10 06:29:01 (6 days ago)	[ns65.kdns.gr] httpd-xmlrpc-post: sites=inagia.gr; logs=/var/log/httpd/domains/inagia.gr.log; sample ... show more [ns65.kdns.gr] httpd-xmlrpc-post: sites=inagia.gr; logs=/var/log/httpd/domains/inagia.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-10 04:54:00 (6 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-09 03:28:40 (1 week ago)	Attac	Brute-Force
🇳🇱 Site.eu	2026-06-09 02:57:43 (1 week ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇫🇮 YF	2026-06-08 05:00:29 (1 week ago)	xmlrpc.php Potential DDoS or brute force	DDoS Attack Brute-Force
🇺🇸 TPI-Abuse	2026-06-08 04:57:44 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 14.241.92.66 (static.vnpt.vn): 1 in the last 30 ... show more (mod_security) mod_security (id:240335) triggered by 14.241.92.66 (static.vnpt.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 00:57:39.229693 2026] [security2:error] [pid 5202:tid 5202] [client 14.241.92.66:52590] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 14.241.92.66 (+1 hits since last alert)\|mortuarymessageservices.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mortuarymessageservices.com"] [uri "/xmlrpc.php"] [unique_id "aiZLw0OOn84rEQ10Gl26NwAAAC4"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 ICS Labs	2026-06-05 19:03:17 (1 week ago)	ICS Labs identified 14.241.92.66 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-06-05 08:50:15 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 14.241.92.66 (static.vnpt.vn): 1 in the last 30 ... show more (mod_security) mod_security (id:240335) triggered by 14.241.92.66 (static.vnpt.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 04:50:07.516223 2026] [security2:error] [pid 17758:tid 17766] [client 14.241.92.66:56138] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 14.241.92.66 (+1 hits since last alert)\|tsengkwongchi.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "tsengkwongchi.com"] [uri "/xmlrpc.php"] [unique_id "aiKNv6HeKwTZzdmS_Hz7XgAAAUE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 08:17:11 (1 week ago)	Attac	Brute-Force

Showing 1 to 15 of 333 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.161.225

🇺🇸 207.90.244.28

🇧🇴 190.129.122.185

🇮🇷 178.216.249.206

🇺🇸 173.244.56.6

🇺🇸 162.216.149.233

🇺🇸 104.22.24.29

🇯🇵 103.232.213.51

🇮🇩 103.188.177.46

🇺🇸 72.205.196.61

🇺🇸 66.132.172.55

🇺🇸 63.135.161.131

🇰🇼 62.150.237.107

🇫🇷 62.84.186.183

🇮🇳 45.195.83.7

🇳🇱 45.148.10.183

🇷🇴 2.57.122.177

🇭🇰 199.45.154.191

🇳🇱 176.65.139.130

🇺🇸 150.107.38.168