JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 163.5.241.54

163.5.241.54 was found in our database!

This IP was reported 102 times. Confidence of Abuse is 52%: ?

52%

ISP	Ionis Group - Ionis Schools of Technology and Management SAS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	ionis-group.com
Country	🇫🇷 France
City	Paris, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 163.5.241.54

Whois 163.5.241.54

IP Abuse Reports for 163.5.241.54:

This IP address has been reported a total of 102 times from 45 distinct sources. 163.5.241.54 was first reported on May 23rd 2023, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇦 URAN Publishing Service	2026-06-07 17:17:25 (6 days ago)	163.5.241.54 - - [07/Jun/2026:20:17:24 +0300] "GET /wp-content/ HTTP/1.1" 404 709 "-" "Mozilla/5.0 ( ... show more 163.5.241.54 - - [07/Jun/2026:20:17:24 +0300] "GET /wp-content/ HTTP/1.1" 404 709 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" 163.5.241.54 - - [07/Jun/2026:20:17:24 +0300] "GET /wp-admin/maint/ HTTP/1.1" 404 709 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" ... show less	Web App Attack
🇫🇷 dynamix	2026-06-07 16:44:50 (6 days ago)	Multiple WAF Violations	Web App Attack
🇬🇧 consul.to	2026-06-07 07:36:14 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-06 13:31:55 (1 week ago)	163.5.241.54 - - [06/Jun/2026:16:31:54 +0300] "GET /wp-admin/css/colors/light/ HTTP/1.1" 404 707 "-" ... show more 163.5.241.54 - - [06/Jun/2026:16:31:54 +0300] "GET /wp-admin/css/colors/light/ HTTP/1.1" 404 707 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" 163.5.241.54 - - [06/Jun/2026:16:31:55 +0300] "GET /wp-content/uploads/ HTTP/1.1" 404 707 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" ... show less	Web App Attack
🇷🇺 sms.ru	2026-06-06 01:45:46 (1 week ago)	/wp-admin/css/wp-conflg.php	Web App Attack
🇩🇪 Vegascosmetics	2026-06-06 00:46:08 (1 week ago)	Kingcopy(AI-IDS) Report: IP automatically blocked after harassing activity. Vegas Security System	Hacking Web App Attack
🇫🇷 Octopuce	2026-06-05 23:42:43 (1 week ago)	Aggressive web search of vulnerable pages: /default.php /wp-includes/assets/info.php /wp-includes/cl ... show more Aggressive web search of vulnerable pages: /default.php /wp-includes/assets/info.php /wp-includes/class.api.php /wp-admin/chosen.php /autoload_ ... show less	Web App Attack
🇬🇧 consul.to	2026-06-05 22:20:43 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇷🇴 INTEQ	2026-06-04 12:50:25 (1 week ago)	Web attack from 163.5.241.54	Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 11:30:58 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 163.5.241.54 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 163.5.241.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 07:30:53.033520 2026] [security2:error] [pid 29505:tid 29505] [client 163.5.241.54:42327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lambdaclimateresearch.com"] [uri "/.git/"] [unique_id "aiFh7UPWpiKJEBEVbCI5VgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 10:32:46 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 163.5.241.54 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 163.5.241.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 06:32:39.107119 2026] [security2:error] [pid 19967:tid 19967] [client 163.5.241.54:36331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "markrikey.com"] [uri "/.git/"] [unique_id "aiFUR6_uMY05c4Vc7gF39AAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-04 10:06:51 (1 week ago)	Abuse Detected (4)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 09:11:12 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 163.5.241.54 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 163.5.241.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 05:11:06.210642 2026] [security2:error] [pid 23951:tid 23951] [client 163.5.241.54:47647] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fathereeinc.com"] [uri "/.git/HEAD"] [unique_id "aiFBKv6ZbLTTEPqr8YcHLgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 08:41:50 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 163.5.241.54 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 163.5.241.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 04:41:43.220511 2026] [security2:error] [pid 4136:tid 4269] [client 163.5.241.54:20795] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "straight8inc.com"] [uri "/.git/HEAD"] [unique_id "aiE6R_6iPm6GfkHY0-mO1AAAAVg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 08:20:59 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 163.5.241.54 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 163.5.241.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 04:20:53.946390 2026] [security2:error] [pid 19870:tid 19870] [client 163.5.241.54:48427] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "patrickjolly.us"] [uri "/.git/config"] [unique_id "aiE1ZZmPbPaEZykp_g85yAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 102 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 194.180.49.220

🇨🇳 175.167.184.185

🇻🇳 103.186.101.231

🇮🇳 103.184.154.14

🇧🇷 45.140.193.156

🇳🇱 45.92.1.242

🇨🇳 27.18.90.142

🇺🇸 20.163.15.172

🇸🇬 8.222.232.216

🇫🇷 2001:41d0:33a:a00::40a

🇰🇷 222.118.59.16

🇹🇼 218.161.68.57

🇺🇸 162.245.42.131

🇨🇳 118.178.229.234

🇮🇳 103.136.46.45

🇺🇸 47.77.192.57

🇵🇰 153.117.40.119

🇰🇷 110.14.190.217

🇲🇽 108.179.194.19

🇺🇸 104.168.124.42