SCARD

Suspicious activity by IP address 144.48.132.32

Below is a list of the last 500 suspicious interactions with this IP.

Last observed Tue, 14 Jul 2026 14:22:15 (Australia/Brisbane)

Back to main list

Summary of suspicious activity by IP address 144.48.132.32

Description Count
ET EXPLOIT Netgear DGN Remote Command Execution 4
SERVER-WEBAPP Netgear DGN1000 series routers authentication bypass attempt 4
ET WEB_SERVER WGET Command Specifying Output in HTTP Headers 2
ET EXPLOIT D-Link Devices Home Network Administration Protocol Command Execution 2
ET HUNTING Suspicious Chmod Usage in URI (Inbound) 1
ET EXPLOIT MVPower DVR Shell UCE 1
ET WEB_SPECIFIC_APPS MVPower CCTV DVR /shell JAWS Webserver Unauthenticated Remote Command Execution (CVE-2016-20016) 1
ET SCAN Mirai Variant User-Agent (Inbound) 1
ET SCAN JAWS Webserver Unauthenticated Shell Command Execution 1

Detailed activity by IP address 144.48.132.32

Timestamp Description Protocol Destination Port
2026-07-14 14:22:15 ET EXPLOIT Netgear DGN Remote Command Execution TCP 80
2026-07-14 14:22:15 SERVER-WEBAPP Netgear DGN1000 series routers authentication bypass attempt TCP 80
2026-07-14 14:22:15 ET EXPLOIT Netgear DGN Remote Command Execution TCP 80
2026-07-14 14:22:15 SERVER-WEBAPP Netgear DGN1000 series routers authentication bypass attempt TCP 80
2026-06-26 00:30:29 ET WEB_SERVER WGET Command Specifying Output in HTTP Headers TCP 80
2026-06-26 00:30:29 ET WEB_SERVER WGET Command Specifying Output in HTTP Headers TCP 80
2026-06-26 00:30:29 ET EXPLOIT D-Link Devices Home Network Administration Protocol Command Execution TCP 80
2026-06-26 00:30:29 ET EXPLOIT D-Link Devices Home Network Administration Protocol Command Execution TCP 80
2026-05-29 18:29:22 ET SCAN JAWS Webserver Unauthenticated Shell Command Execution TCP 80
2026-05-29 18:29:22 ET SCAN Mirai Variant User-Agent (Inbound) TCP 80
2026-05-29 18:29:22 ET WEB_SPECIFIC_APPS MVPower CCTV DVR /shell JAWS Webserver Unauthenticated Remote Command Execution (CVE-2016-20016) TCP 80
2026-05-29 18:29:22 ET EXPLOIT MVPower DVR Shell UCE TCP 80
2026-05-29 18:29:22 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-05-17 10:29:18 ET EXPLOIT Netgear DGN Remote Command Execution TCP 80
2026-05-17 10:29:18 ET EXPLOIT Netgear DGN Remote Command Execution TCP 80
2026-05-17 10:29:18 SERVER-WEBAPP Netgear DGN1000 series routers authentication bypass attempt TCP 80
2026-05-17 10:29:18 SERVER-WEBAPP Netgear DGN1000 series routers authentication bypass attempt TCP 80

 

Back to top