Below is a list of the last 500 suspicious interactions with this IP.
Last observed Tue, 14 Apr 2026 06:03:20 (Australia/Brisbane)
| Description | Count |
|---|---|
| ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | 32 |
| ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | 17 |
| Timestamp | Description | Protocol | Destination Port |
|---|---|---|---|
| 2026-04-14 06:03:20 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-14 06:03:19 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-13 23:37:21 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-13 23:37:20 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-13 23:37:20 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-13 02:13:02 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-13 02:13:02 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-08 11:29:10 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-08 11:29:09 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-08 11:29:09 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-07 15:30:30 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-07 15:30:29 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-05 07:35:17 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-05 07:35:16 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-05 07:35:16 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-05 04:41:31 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-05 04:41:31 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-04 04:44:03 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-04 04:44:02 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-03 17:32:31 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-03 17:32:29 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-03 04:19:27 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-03 04:19:27 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-03 04:19:26 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-03 01:23:19 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-03 01:23:18 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-02 06:29:29 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-02 06:29:28 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-02 06:29:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-02 02:47:38 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-02 02:47:37 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-02 02:47:36 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-01 05:50:58 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-01 05:50:57 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-30 15:52:22 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-30 12:43:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-30 12:43:27 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-29 06:02:46 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-29 06:02:46 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-29 00:39:57 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-29 00:39:57 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-28 23:56:31 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-03-28 23:56:30 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-28 09:17:16 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-28 09:17:15 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-28 07:26:39 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-28 07:26:39 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-28 01:54:26 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-03-28 01:54:25 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
Back to top