This IP address has been reported a total of
10
times from
7 distinct
sources.
179.48.33.145 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
(mod_security) mod_security (id:240335) triggered by 179.48.33.145 (145-33-48-179.poyntnet.net.br): ...
show more(mod_security) mod_security (id:240335) triggered by 179.48.33.145 (145-33-48-179.poyntnet.net.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 09:06:06.926455 2026] [security2:error] [pid 6444:tid 6444] [client 179.48.33.145:5359] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 179.48.33.145 (+1 hits since last alert)|f40ph.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "f40ph.org"] [uri "/xmlrpc.php"] [unique_id "ae9fPjhc3l5G4-_Dce1bJwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
Distributed web crawl (like Mellowtel), likely illicit scraping of AI training data to bypass firewa ...
show moreDistributed web crawl (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions (/forums/forums/thread-post.asp?action=reply&replyto=156550%22e%3Dyes)
show less