AbuseIPDB » 202.163.107.241
202.163.107.241
This IP was reported 10 times. Confidence of
Abuse
is 31% : ?
ISP
Cyber Internet Services Pakistan
Usage Type
Fixed Line ISP
ASN
AS9541
Domain Name
cyber.net.pk
Country
๐ต๐ฐ
Pakistan
City
Lahore, Punjab
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 202.163.107.241 :
This IP address has been reported a total of
10
times from
9 distinct
sources.
202.163.107.241 was first reported on
November 24th 2020 , and the most recent report was
20 hours ago
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
TPI-Abuse
2026-06-27 14:47:06
(20 hours ago)
(mod_security) mod_security (id:240335) triggered by 202.163.107.241 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:240335) triggered by 202.163.107.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 10:46:59.326528 2026] [security2:error] [pid 27097:tid 27097] [client 202.163.107.241:55272] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 202.163.107.241 (+1 hits since last alert)|plazahacienda.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "plazahacienda.com"] [uri "/xmlrpc.php"] [unique_id "aj_iYzobiNVxI90tud9l2QAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-06-27 14:37:43
(20 hours ago)
5.142 requests with url.path */xmlrpc.php
Brute-Force
Bad Web Bot
2026-06-27 11:40:06
(23 hours ago)
[redacted] 202.163.107.241 - - [27/Jun/2026:13:39:22 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" ...
show more
[redacted] 202.163.107.241 - - [27/Jun/2026:13:39:22 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)"
[redacted] 202.163.107.241 - - [27/Jun/2026:13:39:32 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.1)"
[redacted] 202.163.107.241 - - [27/Jun/2026:13:39:43 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com"
[redacted] 202.163.107.241 - - [27/Jun/2026:13:39:54 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/13.0; WordPress/6.3; http://site13990400.com"
[redacted] 202.163.107.241 - - [27/Jun/2026:13:40:05 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)"
...
show less
Hacking
Web App Attack
๐ซ๐ท
tecnicorioja
2026-06-24 22:00:07
(3 days ago)
POST /xmlrpc.php [24/Jun/2026:10:40:23
Brute-Force
Web App Attack
๐ต๐ฑ
ChillScanner
2021-02-27 18:39:00
(5 years ago)
1 probe(s) @ 445
Port Scan
๐ฉ๐ช
Invisiblemen
2021-02-01 09:46:09
(5 years ago)
Unauthorized connection attempt from IP address 202.163.107.241 on Port 445(SMB)
Port Scan
๐บ๐ธ
etu brutus
2021-01-30 06:10:38
(5 years ago)
21/1/30@06:10:37: FAIL: Alarm-Network address from=202.163.107.241
21/1/30@06:10:37: FAIL: Alarm-Net ...
show more
21/1/30@06:10:37: FAIL: Alarm-Network address from=202.163.107.241
21/1/30@06:10:37: FAIL: Alarm-Network address from=202.163.107.241
...
show less
Hacking
Brute-Force
SSH
๐จ๐ฆ
Largnet SOC
2021-01-25 12:21:47
(5 years ago)
Icarus honeypot on github
Hacking
๐ต๐ฑ
ChillScanner
2020-12-22 20:56:09
(5 years ago)
<SMB> TCP (SYN) 202.163.107.241:39018 -> port 445, len 52
Port Scan
๐ฏ๐ต
stfw
2020-11-24 03:37:14
(5 years ago)
445/tcp 445/tcp
[2020-11-24]2pkt
Port Scan
Showing 1 to
10
of 10 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: