SCARD

Suspicious activity by IP address 162.158.88.75

Below is a list of the last 500 suspicious interactions with this IP.

Last observed Tue, 14 Jul 2026 15:10:00 (Australia/Brisbane)

Back to main list

Summary of suspicious activity by IP address 162.158.88.75

Description Count
ET SCAN LeakIX Inbound User-Agent 12
ET SCAN SFTP/FTP Password Exposure via sftp-config.json 4
SERVER-WEBAPP PHPUnit PHP remote code execution attempt 2

Detailed activity by IP address 162.158.88.75

Timestamp Description Protocol Destination Port
2026-07-14 15:10:00 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-07-14 15:10:00 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-07-14 14:09:33 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-07-14 14:09:33 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-07-04 09:14:19 ET SCAN SFTP/FTP Password Exposure via sftp-config.json TCP 80
2026-07-04 09:14:19 ET SCAN SFTP/FTP Password Exposure via sftp-config.json TCP 80
2026-06-18 07:37:22 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-06-18 07:37:22 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-06-13 12:18:42 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-06-13 12:18:40 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-06-13 11:18:17 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-06-13 11:18:17 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-06-02 09:51:56 SERVER-WEBAPP PHPUnit PHP remote code execution attempt TCP 80
2026-06-02 09:51:56 SERVER-WEBAPP PHPUnit PHP remote code execution attempt TCP 80
2026-05-22 19:12:01 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-05-22 19:12:01 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-04-03 02:03:36 ET SCAN SFTP/FTP Password Exposure via sftp-config.json TCP 80
2026-04-03 02:03:36 ET SCAN SFTP/FTP Password Exposure via sftp-config.json TCP 80

 

Back to top