GKS-Webdesign - AbuseIPDB User Profile

JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

User GKS-Webdesign joined AbuseIPDB in July 2021 and has reported 440 IP addresses.

Standing (weight) is good.

ACTIVE USER WEBMASTER SUPPORTER

IP	Date	Comment	Categories
🇺🇸 34.214.159.49	19 May 2026	Blocked Count: 372 Pattern Match: /phpinfo.php Request URI: /docs/phpinfo.php The Request: /docs/ ... show more Blocked Count: 372 Pattern Match: /phpinfo.php Request URI: /docs/phpinfo.php The Request: /docs/phpinfo.php Query String: Referrer: Protocol: HTTP/1.0 IP Address: 34.214.159.49 User Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 show less	Hacking Brute-Force Web App Attack
🇺🇸 204.12.237.42	24 Apr 2026	From: "Patrick Brown" <[email protected]> To: [email protected] Subject: Revamp Or Rede ... show more From: "Patrick Brown" <[email protected]> To: [email protected] Subject: Revamp Or Redesign Website. Date: 23 Apr 2026 13:32:05 -0700 show less	Email Spam
🇺🇸 34.56.253.36	04 Jul 2025	Request blocked on 2025/07/04 @ 04:34:40 am: Blocked Count: 616 Pattern Match: python Request U ... show more Request blocked on 2025/07/04 @ 04:34:40 am: Blocked Count: 616 Pattern Match: python Request URI: / Protocol: HTTP/1.0 IP Address: 34.56.253.36 User Agent: python-requests/2.27.1 show less	Hacking Exploited Host
🇮🇪 13.74.9.7	21 May 2025	Request blocked on 2025/05/21 @ 01:52:35 pm: Blocked Count: 1060 Pattern Match: /install.php Re ... show more Request blocked on 2025/05/21 @ 01:52:35 pm: Blocked Count: 1060 Pattern Match: /install.php Request URI: /css/install.php The Request: /css/install.php Query String: Referrer: Protocol: HTTP/1.0 IP Address: 13.79.73.227 User Agent: show less	Hacking Brute-Force Exploited Host
🇮🇪 52.169.142.204	21 May 2025	Request blocked on 2025/05/21 @ 09:15:41 am: Blocked Count: 153 Pattern Match: /upload/ Request ... show more Request blocked on 2025/05/21 @ 09:15:41 am: Blocked Count: 153 Pattern Match: /upload/ Request URI: /admin/upload/css.php The Request: /admin/upload/css.php Query String: Referrer: Protocol: HTTP/1.1 IP Address: 52.169.142.204 User Agent: show less	Hacking Exploited Host
🇫🇷 194.5.53.217	04 Apr 2025	Request blocked on 2025/04/02 @ 05:27:30 pm: Blocked Count: 596 Pattern Match: python Request U ... show more Request blocked on 2025/04/02 @ 05:27:30 pm: Blocked Count: 596 Pattern Match: python Request URI: / The Request: / Protocol: HTTP/1.0 IP Address: 194.5.53.217 User Agent: Python/3.11 aiohttp/3.11.11 show less	Hacking Brute-Force Web App Attack
🇫🇷 154.83.103.102	04 Apr 2025	Request blocked on 2025/04/04 @ 10:17:32 am: Blocked Count: 287 Request URI: /shared/config/conf ... show more Request blocked on 2025/04/04 @ 10:17:32 am: Blocked Count: 287 Request URI: /shared/config/config.js The Request: /shared/config/config.js Protocol: HTTP/1.1 IP Address: 154.83.103.102 User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36 show less	Hacking Brute-Force Exploited Host Web App Attack
🇫🇷 35.180.28.54	31 Mar 2025	Request blocked on 2025/03/31 @ 03:59:03 pm: Blocked Count: 87 Pattern Match: /phpinfo.php Requ ... show more Request blocked on 2025/03/31 @ 03:59:03 pm: Blocked Count: 87 Pattern Match: /phpinfo.php Request URI: /phpinfo.php The Request: /phpinfo.php Query String: Referrer: Protocol: HTTP/1.1 show less	Hacking Brute-Force
🇺🇸 209.189.232.134	31 Mar 2025	Multiple attempts detected Date/Time: 2025-03-31 00:25:50 Alert ID: 7002 Message: SERVER-OTH ... show more Multiple attempts detected Date/Time: 2025-03-31 00:25:50 Alert ID: 7002 Message: SERVER-OTHER Microsoft Exchange Autodiscover CVE-2021-34473 Server Side Request Forgery SERVER-OTHER Microsoft Exchange Server CVE-2021-34473 Remote Code Execution Vulnerability show less	Port Scan Hacking Brute-Force
🇵🇱 212.87.3.1	28 Mar 2025	Email spam/phishing received receiver=protection.outlook.com; client-ip=212.87.3.1; helo=alfa.c ... show more Email spam/phishing received receiver=protection.outlook.com; client-ip=212.87.3.1; helo=alfa.chem.uw.edu.pl; Received: from alfa.chem.uw.edu.pl (212.87.3.1) by LN2PEPF000100CB.mail.protection.outlook.com (10.167.240.5) with Microsoft SMTP Server id 15.20.8534.20 via Frontend Transport; Fri, 28 Mar 2025 15:47:52 +0000 show less	Email Spam Spoofing
🇰🇷 112.169.152.42	28 Mar 2025	Email spam/phishing Received: from [112.169.152.42] (unknown [112.169.152.45]) (using TLSv1.2 ... show more Email spam/phishing Received: from [112.169.152.42] (unknown [112.169.152.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by alfa.chem.uw.edu.pl (*CHEM_UW_MAIL_SERVER 2018*) show less	Email Spam Spoofing
🇺🇸 40.123.26.75	18 Mar 2025	Request blocked on 2025/03/18 @ 05:07:22 am: Blocked Count: 793 Pattern Match: /jquery-file-uplo ... show more Request blocked on 2025/03/18 @ 05:07:22 am: Blocked Count: 793 Pattern Match: /jquery-file-upload/ Request URI: /assets/plugins/jquery-file-upload/server/php/include.php Protocol: HTTP/1.1 IP Address: 40.123.26.75 User Agent: show less	Port Scan Hacking Brute-Force Web App Attack
🇮🇳 165.22.214.159	16 Feb 2025	Date/Time: 2025-02-16 09:39:12 - SERVER-OTHER Squid HTTP Host Header Port Handling Denial of Servi ... show more Date/Time: 2025-02-16 09:39:12 - SERVER-OTHER Squid HTTP Host Header Port Handling Denial of Service show less	Hacking Exploited Host
🇱🇹 141.98.11.35	12 Feb 2025	Date/Time: 2025-02-12 05:30:33 - SERVER-WEBAPP Ruby On Rails CVE-2020-8163 Command Injection Attem ... show more Date/Time: 2025-02-12 05:30:33 - SERVER-WEBAPP Ruby On Rails CVE-2020-8163 Command Injection Attempt show less	Hacking Exploited Host
🇱🇹 141.98.11.35	12 Feb 2025	Date/Time: 2025-02-12 05:30:31 - MALWARE-CNC Mirai Botnet Attack Attempt	Port Scan Hacking Exploited Host
🇺🇸 66.240.192.85	09 Feb 2025	Port scanning	Port Scan Hacking
🇮🇳 143.110.182.33	09 Feb 2025	Port scanning	Port Scan Hacking
🇺🇸 161.35.190.246	09 Feb 2025	Port scanning multiple times	Port Scan Hacking
🇮🇳 143.110.245.249	09 Feb 2025	Date/Time: 2025-02-09 02:41:02 Message: SERVER-OTHER Squid HTTP Host Header Port Handling Denial ... show more Date/Time: 2025-02-09 02:41:02 Message: SERVER-OTHER Squid HTTP Host Header Port Handling Denial of Service show less	Hacking Brute-Force
🇮🇪 52.169.121.154	06 Feb 2025	Request blocked on 2025/02/06 @ 04:28:03 am: Blocked Count: 9 Pattern Match: fckeditor The Requ ... show more Request blocked on 2025/02/06 @ 04:28:03 am: Blocked Count: 9 Pattern Match: fckeditor The Request: /admin/fckeditor/editor/filemanager/owlmailer.php Protocol: HTTP/1.1 IP Address: 52.169.121.154 User Agent: show less	Hacking Brute-Force Web App Attack
🇩🇪 64.226.96.138	22 Jan 2025	SERVER-OTHER Squid HTTP Host Header Port Handling Denial of Service Date/Time: 2025-01-22 08:16:08	Hacking Brute-Force Exploited Host Web App Attack
🇬🇧 144.126.228.188	15 Jan 2025	SERVER-OTHER Squid HTTP Host Header Port Handling Denial of Service Date/Time: 2025-01-14 23:31:47	DDoS Attack Hacking Brute-Force Exploited Host
🇺🇸 23.175.49.226	13 Jan 2025	2025-01-13 21:06:33 message="SERVER-MAIL OpenSMTPD smtp_session.c Command Execution" src_ip="23.175. ... show more 2025-01-13 21:06:33 message="SERVER-MAIL OpenSMTPD smtp_session.c Command Execution" src_ip="23.175.49.226" src_country="USA" dst_country="R1" protocol="TCP" src_port="50482" dst_port="587" OS="Linux,Windows" show less	Port Scan Hacking Brute-Force Web App Attack
🇬🇧 143.110.167.126	13 Jan 2025	2025-01-12 01:58:39 message="SERVER-OTHER Squid HTTP Host Header Port Handling Denial of Service" s ... show more 2025-01-12 01:58:39 message="SERVER-OTHER Squid HTTP Host Header Port Handling Denial of Service" src_ip="143.110.167.126" src_country="GBR" dst_country="R1" protocol="TCP" src_port="50566" dst_port="443" OS="Linux,Unix" show less	Hacking Brute-Force Exploited Host Web App Attack
🇮🇳 64.227.147.167	26 Dec 2024	Request blocked on 2024/12/26 @ 12:27:41 am: Blocked Count: 1047 Pattern Match: /install.php Re ... show more Request blocked on 2024/12/26 @ 12:27:41 am: Blocked Count: 1047 Pattern Match: /install.php Request URI: /site/wp-admin/install.php The Request: /site/wp-admin/install.php Protocol: HTTP/1.0 IP Address: 64.227.147.167 User Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36 show less	Hacking Brute-Force Web App Attack