SCARD

Suspicious activity by IP address 183.222.14.242

Below is a list of the last 500 suspicious interactions with this IP.

Last observed Tue, 14 Jul 2026 14:05:15 (Australia/Brisbane)

Back to main list

Summary of suspicious activity by IP address 183.222.14.242

Description Count
ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 21
ET WEB_SERVER Generic PHP Remote File Include 3
ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) 3
ET WEB_SERVER PHP.//Input in HTTP POST 3
ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) 3
ET WEB_SERVER auto_prepend_file PHP config option in uri 3
ET WEB_SERVER allow_url_include PHP config option in uri 3
ET WEB_SERVER PHP tags in HTTP POST 3
ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body 3
SERVER-WEBAPP PHP PHP-CGI command execution attempt 2

Detailed activity by IP address 183.222.14.242

Timestamp Description Protocol Destination Port
2026-07-14 14:05:15 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-12 20:33:31 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-12 20:33:30 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-11 16:20:39 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-11 16:20:39 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-10 22:47:10 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-07-10 22:47:10 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80
2026-07-10 22:47:10 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-07-10 22:47:10 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-07-10 22:47:10 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-07-10 22:47:10 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-07-10 22:47:10 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-07-10 22:47:10 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-07-10 22:47:10 SERVER-WEBAPP PHP PHP-CGI command execution attempt TCP 80
2026-07-10 22:47:10 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-07-10 22:47:10 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-07-10 22:47:10 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80
2026-07-10 22:47:10 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-07-10 22:47:10 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-07-10 22:47:10 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-07-10 22:47:10 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-07-10 22:47:10 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-07-10 22:47:10 SERVER-WEBAPP PHP PHP-CGI command execution attempt TCP 80
2026-07-10 21:46:08 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-10 21:46:08 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-10 17:43:36 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-10 17:43:35 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-09 01:38:46 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-07 04:53:56 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-07 04:53:55 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-07 01:58:16 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-07 01:58:16 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-29 13:35:31 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-29 13:35:30 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-20 20:43:18 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-20 20:43:18 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-20 15:20:43 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-20 15:20:41 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-20 09:07:17 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-06-20 09:07:17 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-06-20 09:07:17 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-06-20 09:07:17 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-06-20 09:07:17 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-20 09:07:17 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-06-20 09:07:17 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-06-20 09:07:17 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-06-20 09:07:17 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80

 

Back to top