AbuseIPDB » 14.56.118.54
14.56.118.54
This IP was reported 3 times. Confidence of
Abuse
is 0% : ?
ISP
Korea Telecom
Usage Type
Fixed Line ISP
ASN
AS4766
Domain Name
kt.com
Country
๐ฐ๐ท
Korea (the Republic of)
City
Seoul, Seoul
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 14.56.118.54 :
This IP address has been reported a total of
3
times from
2 distinct
sources.
14.56.118.54 was first reported on
February 20th 2026 , and the most recent report was
3 months ago
Old Reports:
The most recent abuse report for this IP address is from
3 months ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
TPI-Abuse
2026-02-23 04:17:08
(3 months ago)
(mod_security) mod_security (id:217200) triggered by 14.56.118.54 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:217200) triggered by 14.56.118.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 23:17:01.599345 2026] [security2:error] [pid 7080:tid 7080] [client 14.56.118.54:42085] ModSecurity: Access denied with code 403 (phase 1). Match of "endsWith /wp-cron.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "103"] [id "217200"] [rev "2"] [msg "COMODO WAF: HTTP/1.1 POST request missing Content-Length Header||www.ballantinepaintinganddrywall.com|F|2"] [data "/contact.php"] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "www.ballantinepaintinganddrywall.com"] [uri "/contact.php"] [unique_id "aZvUvZu7bwkr-qTZkurQggAAAA4"], referer: https://www.ballantinepaintinganddrywall.com/contact.php
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-22 13:35:03
(3 months ago)
(mod_security) mod_security (id:217200) triggered by 14.56.118.54 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:217200) triggered by 14.56.118.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 08:34:54.077893 2026] [security2:error] [pid 20837:tid 20837] [client 14.56.118.54:40521] ModSecurity: Access denied with code 403 (phase 1). Match of "endsWith /wp-cron.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "103"] [id "217200"] [rev "2"] [msg "COMODO WAF: HTTP/1.1 POST request missing Content-Length Header||bbproductionsonline.com|F|2"] [data "/wp-json/contact-form-7/v1/contact-forms/65/feedback"] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "bbproductionsonline.com"] [uri "/wp-json/contact-form-7/v1/contact-forms/65/feedback"] [unique_id "aZsF_shadk-gLcV1haUExAAAAAY"], referer: https://bbproductionsonline.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
1gz
2026-02-20 13:05:15
(3 months ago)
Triggered Cloudflare WAF (l7ddos) from KR.
Action taken: BLOCK
Protocol: HTTP/2 (GET method)
Endpoin ...
show more
Triggered Cloudflare WAF (l7ddos) from KR.
Action taken: BLOCK
Protocol: HTTP/2 (GET method)
Endpoint: /
UA: Mozilla/5.0 (iPhone; CPU iPhone OS 17_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/138.0 Mobile/15E148 Safari/605.1.15
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
DDoS Attack
Bad Web Bot
Showing 1 to
3
of 3 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: