JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 14.128.13.34

14.128.13.34 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 38%: ?

38%

ISP	Tomattos Technologies Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136246
Hostname(s)	lemon-yellow.colorbytes.net
Domain Name	tomattos.com
Country	🇧🇩 Bangladesh
City	Dhaka, Dhaka Division

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 14.128.13.34

Whois 14.128.13.34

IP Abuse Reports for 14.128.13.34:

This IP address has been reported a total of 17 times from 6 distinct sources. 14.128.13.34 was first reported on November 21st 2023, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇹 Malta	2026-06-29 15:32:35 (6 hours ago)	14.128.13.34 - - [29/Jun/2026:17:32:35 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Linux ... show more 14.128.13.34 - - [29/Jun/2026:17:32:35 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇺🇸 TPI-Abuse	2026-06-29 08:18:42 (13 hours ago)	(mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 i ... show more (mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 04:18:39.173768 2026] [security2:error] [pid 9668:tid 9668] [client 14.128.13.34:34650] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|brianwhitty.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "brianwhitty.com"] [uri "/wp-json/wp/v2/users/5"] [unique_id "akIqX_vHr7zpPSzdWee25AAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-29 06:45:30 (14 hours ago)	(mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 i ... show more (mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 02:45:22.650839 2026] [security2:error] [pid 25190:tid 25190] [client 14.128.13.34:43722] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|parastesh.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "parastesh.org"] [uri "/wp-json/wp/v2/users/6"] [unique_id "akIUgkcanIiRNFcp5EF63QAAAHM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-29 06:05:35 (15 hours ago)	(mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 i ... show more (mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 02:05:31.717865 2026] [security2:error] [pid 27062:tid 27062] [client 14.128.13.34:46830] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|crr-construction.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "crr-construction.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akILKwQw_Lz2qKc98fJQ9gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-29 05:16:28 (16 hours ago)	(mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 i ... show more (mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 01:16:23.920960 2026] [security2:error] [pid 764:tid 764] [client 14.128.13.34:37696] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|superlamb.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "superlamb.com"] [uri "/wp-json/wp/v2/users/9"] [unique_id "akH_p62gsP5RcKBjS4OD5AAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-29 04:05:38 (17 hours ago)	(mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 i ... show more (mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 00:05:30.227917 2026] [security2:error] [pid 2268:tid 2268] [client 14.128.13.34:44272] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|heatherweathers.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "heatherweathers.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akHvCjjlvpXfHbNGmYx0iAAAAJA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-29 02:05:18 (19 hours ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-29 01:39:25 (20 hours ago)	(mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 i ... show more (mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 21:39:20.560643 2026] [security2:error] [pid 30526:tid 30526] [client 14.128.13.34:54452] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|pinebrookdesign.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pinebrookdesign.com"] [uri "/wp-json/wp/v2/users/2"] [unique_id "akHMyDvGu3RkdAuMgsuBbAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-29 01:20:06 (20 hours ago)	(mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 i ... show more (mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 21:19:55.759144 2026] [security2:error] [pid 27595:tid 27595] [client 14.128.13.34:58482] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|karenbernsteinlaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "karenbernsteinlaw.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akHIO1oEjfgT8TFoDKN6jwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-29 00:39:42 (21 hours ago)	(mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 i ... show more (mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 20:39:39.027928 2026] [security2:error] [pid 27461:tid 27461] [client 14.128.13.34:42180] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|oakglenhouse.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "oakglenhouse.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akG-y5Nkk51GELWE-A5xogAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-29 00:19:38 (21 hours ago)	(mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 i ... show more (mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 20:19:31.162018 2026] [security2:error] [pid 10761:tid 10761] [client 14.128.13.34:59264] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|dwightbrown.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "dwightbrown.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akG6EwNvCFz6e-06JPe3iAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xxkodedxx	2026-06-28 23:20:35 (22 hours ago)	[Zorvexus edge-defense] GET .env / WordPress honeypot probe Trigger: 1× honeypot-get in 10m window. ... show more [Zorvexus edge-defense] GET .env / WordPress honeypot probe Trigger: 1× honeypot-get in 10m window. Active: 23:19:46 UTC Volume: 1 honeypot probe(s) Bait taken: /wp-json/rankmath/v1/getHead?url=https://accounts.zvxlabs.com UA: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" Auto-banned 30d. zorvexus-banner. show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 22:23:10 (23 hours ago)	(mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 i ... show more (mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 18:23:05.602673 2026] [security2:error] [pid 30697:tid 30703] [client 14.128.13.34:35694] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|labs.cocoonprojects.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "labs.cocoonprojects.com"] [uri "/wp-json/wp/v2/users/3"] [unique_id "akGeyayUBMciEK7BOSsjgwAAAQM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-28 21:11:23 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 i ... show more (mod_security) mod_security (id:225170) triggered by 14.128.13.34 (lemon-yellow.colorbytes.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 17:11:18.295249 2026] [security2:error] [pid 3777:tid 3777] [client 14.128.13.34:44494] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bronislawsuchanek.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bronislawsuchanek.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akGN9jRAD1y-Lr4T05Kp2gAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-28 17:50:52 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 217.182.64.143

🇭🇰 199.45.155.93

🇳🇱 176.65.148.147

🇺🇸 162.241.235.142

🇺🇸 162.216.149.76

🇻🇳 113.163.34.73

🇫🇷 85.217.140.34

🇩🇪 45.144.233.139

🇪🇸 37.152.146.6

🇧🇷 2800:3f0:4001:c02::123

🇧🇷 190.115.84.25

🇱🇹 188.69.225.188

🇳🇱 185.226.197.37

🇺🇸 173.247.255.22

🇦🇫 149.54.15.162

🇨🇴 143.105.99.35

🇺🇸 141.11.88.118

🇨🇳 123.163.213.239

🇵🇰 119.156.28.157

🇺🇸 108.24.146.28