darkknight darkknight - AbuseIPDB User Profile

JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

User darkknight darkknight joined AbuseIPDB in November 2021 and has reported 462 IP addresses.

Standing (weight) is good.

ACTIVE USER

IP	Date	Comment	Categories
🇸🇬 173.239.247.151	17 Jun 2026	173.239.247.151 - - [16/Jun/2026:10:39:26 -0400] "GET /whizzy/index.php HTTP/1.1" 403 10396 "-" "Moz ... show more 173.239.247.151 - - [16/Jun/2026:10:39:26 -0400] "GET /whizzy/index.php HTTP/1.1" 403 10396 "-" "Mozilla/5.0 [en] (X11, U; OpenVAS-VT 9.0.3)" 173.239.247.151 - - [16/Jun/2026:10:39:27 -0400] "GET /.ssh/id_dss.pub HTTP/1.1" 403 10395 "-" "Mozilla/5.0 [en] (X11, U; OpenVAS-VT 9.0.3)" 173.239.247.151 - - [16/Jun/2026:10:39:27 -0400] "GET /config.inc.php~ HTTP/1.1" 403 10395 "-" "Mozilla/5.0 [en] (X11, U; OpenVAS-VT 9.0.3)" 173.239.247.151 - - [16/Jun/2026:10:39:27 -0400] "GET /carportal/index.php HTTP/1.1" 403 10399 "-" "Mozilla/5.0 [en] (X11, U; OpenVAS-VT 9.0.3)" 173.239.247.151 - - [16/Jun/2026:10:39:27 -0400] "GET /.ssh/known_hosts HTTP/1.1" 403 10396 "-" "Mozilla/5.0 [en] (X11, U; OpenVAS-VT 9.0.3)" 173.239.247.151 - - [16/Jun/2026:10:39:27 -0400] "GET /w-cms/index.php HTTP/1.1" 403 10395 "-" "Mozilla/5.0 [en] (X11, U; OpenVAS-VT 9.0.3)" 173.239.247.151 - - [16/Jun/2026:10:39:27 -0400] "GET /.config.inc.php~ HTTP/1.1" 403 10396 "-" "Mozilla/5.0 [en] (X11, U; OpenVAS-VT 9.0.3)" show less	DDoS Attack Hacking Spoofing Web App Attack SSH
🇺🇸 54.92.171.34	14 Oct 2025	54.92.171.34 - - [14/Oct/2025:07:29:52 -0400] "GET /img-sys/server_misconfigured.png HTTP/1.1" 54. ... show more 54.92.171.34 - - [14/Oct/2025:07:29:52 -0400] "GET /img-sys/server_misconfigured.png HTTP/1.1" 54.92.171.34 - - [14/Oct/2025:07:29:52 -0400] "GET /img-sys/server_moved.png HTTP/1 54.92.171.34 - - [14/Oct/2025:07:29:52 -0400] "GET /img-sys/powered_by_cpanel.svg HTTP/ show less	DNS Compromise DNS Poisoning
🇺🇸 207.46.13.151	18 Sep 2025	Request: GET /en///.com Action Description: Warning. Justification: String match within ".asa/ .as ... show more Request: GET /en///.com Action Description: Warning. Justification: String match within ".asa/ .asax/ .ascx/ .axd/ .backup/ .bak/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .com/ .config/ .conf/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dll/ .dos/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .ini/ .key/ .licx/ .lnk/ .log/ .mdb/ .old/ .pass/ .pdb/ .pol/ .printer/ .pwd/ .resources/ .resx/ .sql/ .sys/ .vb/ .vbs/ .vbproj/ .vsdisco/ .webinfo/ .xsd/ .xsx/" at TX:extension. show less	DNS Compromise DNS Poisoning
🇺🇸 172.58.255.18	14 May 2025	172.58.255.18 - - [14/May/2025:10:52:54 -0400] "POST / HTTP/1.1" 200 163 "-" "Mozilla/5.0 (compatibl ... show more 172.58.255.18 - - [14/May/2025:10:52:54 -0400] "POST / HTTP/1.1" 200 163 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0)" 172.58.255.18 - - [14/May/2025:10:54:54 -0400] "POST / HTTP/1.1" 200 163 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0)" 172.58.255.18 - - [14/May/2025:10:56:55 -0400] "POST / HTTP/1.1" 200 163 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0)" 172.58.255.18 - - [14/May/2025:10:58:57 -0400] "POST / HTTP/1.1" 200 163 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2; WOW64; Trident/6.0)" show less	DDoS Attack
🇳🇱 77.238.255.207	13 May 2025	2025-05-13 10:37:29 77.238.255.207 CRITICAL 403 942100: SQL Injection Attack Detected via libinj ... show more 2025-05-13 10:37:29 77.238.255.207 CRITICAL 403 942100: SQL Injection Attack Detected via libinjection More show less	SQL Injection
🇩🇪 99.86.4.6	08 May 2025	99.86.4.6:443 port 11852	Port Scan Exploited Host Web App Attack
🇨🇦 65.94.169.243	18 Apr 2025	Request: GET /assets/css/xxx.css Action Description: Access denied with code 403 (phase 2). GET /a ... show more Request: GET /assets/css/xxx.css Action Description: Access denied with code 403 (phase 2). GET /assets/js/public.js GET /static/js/3.dbaa52a2.chunk.js show less	Web App Attack
🇧🇷 45.232.213.68	10 Jan 2025	tcp 0 0 :443 45.232.213.2:41336 SYN_RECV - on (27.46/5/0 ... show more tcp 0 0 :443 45.232.213.2:41336 SYN_RECV - on (27.46/5/0) tcp 0 0 :443 45.232.214.15:62213 SYN_RECV - on (9.06/5/0) tcp 0 0 :443 45.232.215.57:29317 SYN_RECV - on (24.06/5/0) tcp 0 0 :443 45.232.213.68:13839 SYN_RECV - on (1.06/5/0) show less	DDoS Attack
🇧🇷 45.232.215.57	10 Jan 2025	tcp 0 0 :443 45.232.213.2:41336 SYN_RECV - on (27.46/5/0 ... show more tcp 0 0 :443 45.232.213.2:41336 SYN_RECV - on (27.46/5/0) tcp 0 0 :443 45.232.214.15:62213 SYN_RECV - on (9.06/5/0) tcp 0 0 :443 45.232.215.57:29317 SYN_RECV - on (24.06/5/0) tcp 0 0 :443 45.232.213.68:13839 SYN_RECV - on (1.06/5/0) show less	DDoS Attack
🇧🇷 45.232.214.15	10 Jan 2025	tcp 0 0 :443 45.232.213.2:41336 SYN_RECV - on (27.46/5/0 ... show more tcp 0 0 :443 45.232.213.2:41336 SYN_RECV - on (27.46/5/0) tcp 0 0 :443 45.232.214.15:62213 SYN_RECV - on (9.06/5/0) tcp 0 0 :443 45.232.215.57:29317 SYN_RECV - on (24.06/5/0) tcp 0 0 :443 45.232.213.68:13839 SYN_RECV - on (1.06/5/0) show less	DDoS Attack
🇧🇷 45.232.213.2	10 Jan 2025	tcp 0 0 :443 45.232.213.2:41336 SYN_RECV - on (27.46/5/0 ... show more tcp 0 0 :443 45.232.213.2:41336 SYN_RECV - on (27.46/5/0) tcp 0 0 :443 45.232.214.15:62213 SYN_RECV - on (9.06/5/0) tcp 0 0 :443 45.232.215.57:29317 SYN_RECV - on (24.06/5/0) tcp 0 0 :443 45.232.213.68:13839 SYN_RECV - on (1.06/5/0) show less	DDoS Attack
🇺🇸 128.245.248.42	25 Nov 2024	x.x.x.x:25 128.245.248.42:43310 ESTABLISHED 26153/exim keepalive (7168.93	Email Spam Hacking
🇺🇸 93.157.29.176	09 Sep 2024	93.157.29.176 - - [07/Sep/2024:03:06:45 -0400] "GET /admin/db/adminer.php HTTP/1.1" 404 10154 "-" "M ... show more 93.157.29.176 - - [07/Sep/2024:03:06:45 -0400] "GET /admin/db/adminer.php HTTP/1.1" 404 10154 "-" "Mozilla/5.0 show less	Hacking Brute-Force
🇺🇸 91.231.142.16	09 Sep 2024	91.231.142.16 - - [07/Sep/2024:03:06:44 -0400] "GET /sql/adminer.php HTTP/1.1" 404 10144 "-" "Mozill ... show more 91.231.142.16 - - [07/Sep/2024:03:06:44 -0400] "GET /sql/adminer.php HTTP/1.1" 404 10144 "-" "Mozilla/5.0 (Windows show less	Hacking Brute-Force
🇺🇸 193.37.133.19	09 Sep 2024	193.37.133.19 - - [07/Sep/2024:03:06:43 -0400] "GET /admin/adminer/adminer.php HTTP/1.1" 404 10164 " ... show more 193.37.133.19 - - [07/Sep/2024:03:06:43 -0400] "GET /admin/adminer/adminer.php HTTP/1.1" 404 10164 "-" "Mozil show less	Hacking Brute-Force
🇬🇧 216.177.134.191	09 Sep 2024	216.177.134.191 - - [07/Sep/2024:03:06:40 -0400] "GET /var/www/html/adminer/adminer.php HTTP/1.1" 40 ... show more 216.177.134.191 - - [07/Sep/2024:03:06:40 -0400] "GET /var/www/html/adminer/adminer.php HTTP/1.1" 404 1017 show less	Hacking Brute-Force
🇮🇳 117.208.29.213	09 Sep 2024	117.208.29.213 - - [07/Sep/2024:00:42:00 -0400] "POST /GponForm/diag_Form?images/ HTTP/1.1" 403 1010 ... show more 117.208.29.213 - - [07/Sep/2024:00:42:00 -0400] "POST /GponForm/diag_Form?images/ HTTP/1.1" 403 10103 " show less	Hacking
🇺🇸 191.102.132.55	09 Sep 2024	191.102.132.55 - - [07/Sep/2024:00:25:18 -0400] "GET /admin/adminer.php HTTP/1.1" 404 101	Hacking Brute-Force
🇬🇧 216.177.134.198	09 Sep 2024	216.177.134.198 - - [07/Sep/2024:00:25:17 -0400] "GET /dbadmin/adminer.php HTTP/1.1" 404 10146 "-" " ... show more 216.177.134.198 - - [07/Sep/2024:00:25:17 -0400] "GET /dbadmin/adminer.php HTTP/1.1" 404 10146 "-" "M show less	Hacking Brute-Force
🇺🇸 206.232.0.234	09 Sep 2024	206.232.0.234 - - [07/Sep/2024:00:25:10 -0400] "GET /database/adminer/adminer.php HTTP/1.1" 404 1016 ... show more 206.232.0.234 - - [07/Sep/2024:00:25:10 -0400] "GET /database/adminer/adminer.php HTTP/1.1" 404 10164 "-" "Mozil show less	Hacking Brute-Force
🇺🇦 195.140.176.15	09 Sep 2024	195.140.176.15 - - [07/Sep/2024:00:25:06 -0400] "GET /usr/share/nginx/html/adminer.php HTTP/1.1"	FTP Brute-Force Hacking Brute-Force
🇬🇧 216.177.134.19	09 Sep 2024	200.234.162.13 - - [07/Sep/2024:00:25:04 -0400] "GET /cpanel/adminer.php HTTP/1.1" 404 10144 "	Hacking Brute-Force
🇨🇦 104.28.132.27	21 Aug 2024	13.37.255.24 - - [21/Aug/2024:03:03:19 -0400] "GET /wp/ HTTP/1.1" 404 10070 "-" "Mozilla/5.0 (Window ... show more 13.37.255.24 - - [21/Aug/2024:03:03:19 -0400] "GET /wp/ HTTP/1.1" 404 10070 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 13.37.255.24 - - [21/Aug/2024:03:03:20 -0400] "GET /blog/ HTTP/1.1" 404 10074 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 13.37.255.24 - - [21/Aug/2024:03:03:21 -0400] "GET /old/ HTTP/1.1" 404 10072 "-" "Mozilla/5.0 (Windows NT show less	Hacking Web App Attack
🇧🇭 15.184.34.66	21 Aug 2024	15.184.34.66 # 57266 SYN_RECV - on (3.49/5/0)	DDoS Attack
🇺🇸 104.18.5.241	16 Aug 2024	104.18.5.241:443 TIME_WAIT - timewait (56.02/0/0)	Web Spam Web App Attack