JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 14.144.13.38

14.144.13.38 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 5%: ?

ISP	CHINANET Guangdong province network
Usage Type	Fixed Line ISP
ASN	AS140318
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 14.144.13.38

Whois 14.144.13.38

IP Abuse Reports for 14.144.13.38:

This IP address has been reported a total of 8 times from 3 distinct sources. 14.144.13.38 was first reported on February 18th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-19 13:29:01 (1 day ago)	(mod_security) mod_security (id:210831) triggered by 14.144.13.38 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 14.144.13.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 09:28:53.863172 2026] [security2:error] [pid 17210:tid 17210] [client 14.144.13.38:7574] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.lightningbug.farm\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.lightningbug.farm"] [uri "/"] [unique_id "ajVEFcmml-9nbR7Y3hnxJAAAACc"], referer: http://www.lightningbug.farm/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 20:36:16 (3 days ago)	(mod_security) mod_security (id:210831) triggered by 14.144.13.38 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 14.144.13.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 16:36:09.546984 2026] [security2:error] [pid 22721:tid 22721] [client 14.144.13.38:5215] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|caferutadelaseda.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "caferutadelaseda.com"] [uri "/index.php"] [unique_id "ajMFOecghzDx5QZoeROC9wAAACI"], referer: http://caferutadelaseda.com/index.php show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 20:10:51 (4 days ago)	(mod_security) mod_security (id:210831) triggered by 14.144.13.38 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 14.144.13.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 16:10:45.566638 2026] [security2:error] [pid 8888:tid 8888] [client 14.144.13.38:32915] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.gurneysbottleshop.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.gurneysbottleshop.com"] [uri "/"] [unique_id "ajGtxZhYbxaCq8u1s0ZOTAAAAAM"], referer: http://www.gurneysbottleshop.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 19:17:30 (1 month ago)	(mod_security) mod_security (id:210831) triggered by 14.144.13.38 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 14.144.13.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 15:17:22.742207 2026] [security2:error] [pid 2970:tid 2970] [client 14.144.13.38:6338] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|neo-zone.net\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "neo-zone.net"] [uri "/"] [unique_id "ae5kwsGX-0xgsRGbCPFmKAAAAAA"], referer: http://neo-zone.net/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-23 16:31:33 (2 months ago)	(mod_security) mod_security (id:210831) triggered by 14.144.13.38 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 14.144.13.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 23 12:31:28.202581 2026] [security2:error] [pid 26008:tid 26008] [client 14.144.13.38:19365] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.puckerbikini.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.puckerbikini.com"] [uri "/"] [unique_id "acFq4B4Mh5mcio8epvCX8wAAAAg"], referer: http://www.puckerbikini.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-24 19:16:58 (3 months ago)	(mod_security) mod_security (id:210831) triggered by 14.144.13.38 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 14.144.13.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 24 14:16:52.843616 2026] [security2:error] [pid 25944:tid 25944] [client 14.144.13.38:18150] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|sooperare.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "sooperare.com"] [uri "/"] [unique_id "aZ35JDJNo601uiK2OZ7oBwAAABE"], referer: https://sooperare.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2023-07-01 14:49:33 (2 years ago)		Web Spam Email Spam Blog Spam Bad Web Bot Web App Attack
🇳🇱 speedtaq.com	2022-02-18 05:25:39 (4 years ago)	14.144.13.38 - - [18/Feb/2022:11:17:41 +0100] "GET /product-category/monk/sights-scopes-optics/binoc ... show more 14.144.13.38 - - [18/Feb/2022:11:17:41 +0100] "GET /product-category/monk/sights-scopes-optics/binoculars/merchandise/ HTTP/1.1" 200 67673 "https://speedtaq.com/product-category/monk/sights-scopes-optics/binoculars/merchandise/" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0); 360Spider" 14.144.13.38 - - [18/Feb/2022:11:25:35 +0100] "GET /my-account/lost-password/ HTTP/1.1" 200 67533 "https://speedtaq.com/my-account/lost-password/" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0); 360Spider" show less	Bad Web Bot

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.78.54.138

🇳🇱 172.71.183.180

🇳🇱 172.71.183.163

🇨🇳 14.210.3.105

🇺🇸 3.129.187.38

🇺🇸 205.210.31.104

🇺🇸 162.217.103.68

🇨🇳 117.34.85.169

🇫🇷 91.196.152.100

🇺🇸 66.132.186.135

🇨🇳 60.255.229.249

🇮🇹 4.232.80.255

🇺🇸 4.149.142.7

🇧🇪 198.235.24.239

🇳🇱 172.211.56.214

🇺🇸 107.2.22.2

🇬🇧 35.203.210.48

🇷🇴 2.57.122.177

🇨🇳 222.189.36.138

🇨🇳 182.34.100.141