JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 41.248.54.53

41.248.54.53 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 66%: ?

66%

ISP	ADSL_Maroc_telecom
Usage Type	Fixed Line ISP
ASN	AS36903
Domain Name	menara.ma
Country	🇲🇦 Morocco
City	Tangier, Tanger-Tetouan-Al Hoceima

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 41.248.54.53

Whois 41.248.54.53

IP Abuse Reports for 41.248.54.53:

This IP address has been reported a total of 15 times from 10 distinct sources. 41.248.54.53 was first reported on June 4th 2026, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-04 23:00:41 (12 hours ago)	(mod_security) mod_security (id:210492) triggered by 41.248.54.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 41.248.54.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 19:00:38.077873 2026] [security2:error] [pid 12314:tid 12314] [client 41.248.54.53:42774] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "austinbiblestudents.org"] [uri "/.git/config"] [unique_id "aiIDltzOhfdpEAbAqVL8jAAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-06-04 22:50:55 (12 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-06-04 22:45:09 (12 hours ago)	(mod_security) mod_security (id:210492) triggered by 41.248.54.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 41.248.54.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 18:45:01.728788 2026] [security2:error] [pid 23588:tid 23588] [client 41.248.54.53:40370] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aurumprivatecapital.com"] [uri "/.git/config"] [unique_id "aiH_7aRUssA0GUw_2eaBEQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-04 22:44:49 (12 hours ago)	[FriJun0500:44:45.0084212026][security2:error][pid2146802:tid2147046][client41.248.54.53:0]ModSecuri ... show more [FriJun0500:44:45.0084212026][security2:error][pid2146802:tid2147046][client41.248.54.53:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"aurumgioielleria.ch\"][uri\"/.git/config\"][unique_id\"aiH_3XJKT-AF1seGsjmVWwAAAM0\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 22:19:34 (12 hours ago)	(mod_security) mod_security (id:210492) triggered by 41.248.54.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 41.248.54.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 18:19:31.089813 2026] [security2:error] [pid 21694:tid 21694] [client 41.248.54.53:59224] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aupapierjaponais.com"] [uri "/.git/config"] [unique_id "aiH58wXK9Zv-pGHIqS5OTQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-04 22:06:03 (13 hours ago)	Trying to access config files	Web App Attack
🇺🇸 mnsf	2026-06-04 22:05:12 (13 hours ago)	Abuse Detected (2)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 22:03:55 (13 hours ago)	(mod_security) mod_security (id:210492) triggered by 41.248.54.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 41.248.54.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 18:03:50.909105 2026] [security2:error] [pid 7319:tid 7319] [client 41.248.54.53:37682] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "auguststoten.com"] [uri "/.git/config"] [unique_id "aiH2Rql5Sc432H_9NvGNDwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-04 21:53:54 (13 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇳🇱 wlt-blocker	2026-06-04 21:53:27 (13 hours ago)	Unauthorized access to webpage admin	Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 21:43:37 (13 hours ago)	(mod_security) mod_security (id:210492) triggered by 41.248.54.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 41.248.54.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 17:43:31.223878 2026] [security2:error] [pid 1305:tid 1305] [client 41.248.54.53:41230] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "auditleverage.com"] [uri "/.git/config"] [unique_id "aiHxg1HSVpJIZh_hGDTBWAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Antinson	2026-06-04 21:40:13 (13 hours ago)	Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)	Bad Web Bot
Anonymous	2026-06-04 20:45:02 (14 hours ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 20:44:45 (14 hours ago)	(mod_security) mod_security (id:210492) triggered by 41.248.54.53 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 41.248.54.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 16:44:41.317790 2026] [security2:error] [pid 6826:tid 6826] [client 41.248.54.53:34952] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "atticlodgeoutdoorlearningcenter.com"] [uri "/.git/config"] [unique_id "aiHjuVa0Up4RkuEDqLL02gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 BlueWire Hosting	2026-06-04 20:42:34 (14 hours ago)	Bad bot ignoring robot.txt	Bad Web Bot

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 104.36.177.74

🇺🇸 107.150.103.249

🇭🇰 103.20.223.56

🇵🇹 87.103.126.54

🇳🇱 45.148.10.147

🇳🇱 45.148.10.67

🇨🇳 14.103.123.16

🇷🇴 2.57.122.177

🇩🇪 151.243.11.35

🇪🇸 143.20.129.157

🇺🇸 136.116.198.170

🇷🇴 92.118.39.205

🇺🇸 43.130.100.35

🇵🇰 39.49.150.46

🇺🇸 205.210.31.58

🇮🇶 185.24.60.245

🇺🇸 147.185.132.214

🇭🇰 139.198.113.29

🇻🇳 113.187.72.69

🇺🇸 104.236.229.227