This IP address has been reported a total of
66
times from
45 distinct
sources.
193.148.56.148 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 148.56.148.193.rbl.malw ...
show moreMalware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 148.56.148.193.rbl.malware.expert succeeded at REQUEST_HEADERS:X-Forwarded-For. (1001000-nue6-2)
show less
[MonJun2903:15:52.8822942026][security2:error][pid2341572:tid2341712][client193.148.56.148:0]ModSecu ...
show more[MonJun2903:15:52.8822942026][security2:error][pid2341572:tid2341712][client193.148.56.148:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(curl\|wget\|python\|nikto\|sqlmap\|acunetix\|fimap\|dirbuster\|cmsmap\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"217\"][id\"990210\"][msg\"Suspicioususer-agentblocked\"][hostname\"alessandrolucchini.ch\"][uri\"/\"][unique_id\"akHHSI5Z3wqLjWXGivp2DQAAARY\"]
show less
(joomla_vulnerability) Apache: Massive search core.js (joomla) from 193.148.56.148 (FI/Finland/-): 1 ...
show more(joomla_vulnerability) Apache: Massive search core.js (joomla) from 193.148.56.148 (FI/Finland/-): 1 in the last 3600 secs (0-195)
show less
Honeypot triggered on tcpdata.com - Attempted to access /administrator/components/com_sppagebuilder/ ...
show moreHoneypot triggered on tcpdata.com - Attempted to access /administrator/components/com_sppagebuilder/sppagebuilder.xml (admin_panel_probe). User-Agent: python-requests/2.34.2
show less
[SunJun2815:16:52.7600032026][security2:error][pid2033820:tid2033840][client193.148.56.148:0]ModSecu ...
show more[SunJun2815:16:52.7600032026][security2:error][pid2033820:tid2033840][client193.148.56.148:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"python-requests/\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"203\"][id\"332039\"][rev\"4\"][msg\"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/.\"][severity\"CRITICAL\"][hostname\"aid-consultancy.ch\"][uri\"/\"][unique_id\"akEexMKRyccoNuThM04F5gAAARI\"]
show less