SCARD

Suspicious activity by IP address 192.142.28.77

Below is a list of the last 500 suspicious interactions with this IP.

Last observed Tue, 14 Jul 2026 05:20:04 (Australia/Brisbane)

Back to main list

Summary of suspicious activity by IP address 192.142.28.77

Description Count
SURICATA HTTP request buffer too long 112
ET HUNTING Suspicious Chmod Usage in URI (Inbound) 10
ET WEB_SERVER WGET Command Specifying Output in HTTP Headers 4
ET WEB_SERVER CURL Command Specifying Output in HTTP Headers 4
ET WEB_SERVER ThinkPHP RCE Exploitation Attempt 4
SERVER-WEBAPP TP-Link Archer Router command injection attempt 4
ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) 2
ET HUNTING Javascript Sandbox Escape via Global Object (process) 2
ET WEB_SERVER /etc/passwd Detected in URI 2
ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body 2
ET WEB_SPECIFIC_APPS DigiEver DS-2105 Pro time_tzsetup.cgi ntp Parameter Command Injection Attempt (CVE-2023-52163) 2
ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 1
ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 1
ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) 1

Detailed activity by IP address 192.142.28.77

Timestamp Description Protocol Destination Port
2026-07-14 05:20:04 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-07-14 05:20:04 ET WEB_SERVER ThinkPHP RCE Exploitation Attempt TCP 80
2026-07-14 05:20:04 ET WEB_SERVER ThinkPHP RCE Exploitation Attempt TCP 80
2026-07-14 05:20:04 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-07-14 05:17:48 ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3 TCP 8080
2026-07-14 05:17:48 ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M2 TCP 8080
2026-07-14 05:17:48 ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) TCP 8080
2026-07-13 15:09:51 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-07-13 15:09:51 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-07-13 14:28:25 SURICATA HTTP request buffer too long TCP 80
2026-07-13 14:28:23 SURICATA HTTP request buffer too long TCP 80
2026-07-13 14:27:49 SURICATA HTTP request buffer too long TCP 80
2026-07-13 14:27:49 SURICATA HTTP request buffer too long TCP 80
2026-07-13 14:27:48 SURICATA HTTP request buffer too long TCP 80
2026-07-13 14:27:48 SURICATA HTTP request buffer too long TCP 80
2026-07-13 13:59:53 SURICATA HTTP request buffer too long TCP 80
2026-07-13 13:59:52 SURICATA HTTP request buffer too long TCP 80
2026-07-13 13:59:17 SURICATA HTTP request buffer too long TCP 80
2026-07-13 13:59:16 SURICATA HTTP request buffer too long TCP 80
2026-07-13 13:38:47 SURICATA HTTP request buffer too long TCP 80
2026-07-13 13:38:46 SURICATA HTTP request buffer too long TCP 80
2026-07-13 13:05:03 SURICATA HTTP request buffer too long TCP 80
2026-07-13 13:05:02 SURICATA HTTP request buffer too long TCP 80
2026-07-13 13:04:44 SURICATA HTTP request buffer too long TCP 80
2026-07-13 13:04:43 SURICATA HTTP request buffer too long TCP 80
2026-07-13 13:00:52 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-07-13 12:20:29 SURICATA HTTP request buffer too long TCP 80
2026-07-13 12:20:29 SURICATA HTTP request buffer too long TCP 80
2026-07-13 11:54:30 SURICATA HTTP request buffer too long TCP 80
2026-07-13 11:54:30 SURICATA HTTP request buffer too long TCP 80
2026-07-13 11:54:19 SURICATA HTTP request buffer too long TCP 80
2026-07-13 11:54:18 SURICATA HTTP request buffer too long TCP 80
2026-07-13 11:54:11 SURICATA HTTP request buffer too long TCP 80
2026-07-13 11:54:10 SURICATA HTTP request buffer too long TCP 80
2026-07-13 11:53:58 SURICATA HTTP request buffer too long TCP 80
2026-07-13 11:53:57 SURICATA HTTP request buffer too long TCP 80
2026-07-13 11:53:56 SURICATA HTTP request buffer too long TCP 80
2026-07-13 11:53:54 SURICATA HTTP request buffer too long TCP 80
2026-07-13 11:27:15 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-07-13 11:27:15 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-07-13 10:27:39 SURICATA HTTP request buffer too long TCP 80
2026-07-13 10:27:38 SURICATA HTTP request buffer too long TCP 80
2026-07-13 10:27:03 SURICATA HTTP request buffer too long TCP 80
2026-07-13 10:27:03 SURICATA HTTP request buffer too long TCP 80
2026-07-13 09:58:11 SURICATA HTTP request buffer too long TCP 80
2026-07-13 09:58:10 SURICATA HTTP request buffer too long TCP 80
2026-07-13 09:57:49 SURICATA HTTP request buffer too long TCP 80
2026-07-13 09:57:48 SURICATA HTTP request buffer too long TCP 80
2026-07-13 09:31:55 SURICATA HTTP request buffer too long TCP 80
2026-07-13 09:31:55 SURICATA HTTP request buffer too long TCP 80
2026-07-13 09:31:19 SURICATA HTTP request buffer too long TCP 80
2026-07-13 09:31:18 SURICATA HTTP request buffer too long TCP 80
2026-07-13 08:59:21 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-07-13 08:59:21 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-07-13 08:57:23 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-07-13 08:28:12 SURICATA HTTP request buffer too long TCP 80
2026-07-13 08:28:11 SURICATA HTTP request buffer too long TCP 80
2026-07-13 08:27:36 SURICATA HTTP request buffer too long TCP 80
2026-07-13 08:27:36 SURICATA HTTP request buffer too long TCP 80
2026-07-13 07:57:59 SURICATA HTTP request buffer too long TCP 80
2026-07-13 07:57:57 SURICATA HTTP request buffer too long TCP 80
2026-07-13 07:57:57 SURICATA HTTP request buffer too long TCP 80
2026-07-13 07:57:56 SURICATA HTTP request buffer too long TCP 80
2026-07-13 07:56:25 SURICATA HTTP request buffer too long TCP 80
2026-07-13 07:56:24 SURICATA HTTP request buffer too long TCP 80
2026-07-13 07:56:01 SURICATA HTTP request buffer too long TCP 80
2026-07-13 07:56:01 SURICATA HTTP request buffer too long TCP 80
2026-07-13 07:16:22 SURICATA HTTP request buffer too long TCP 80
2026-07-13 07:16:21 SURICATA HTTP request buffer too long TCP 80
2026-07-13 06:58:23 SURICATA HTTP request buffer too long TCP 80
2026-07-13 06:58:21 SURICATA HTTP request buffer too long TCP 80
2026-07-13 06:39:52 SURICATA HTTP request buffer too long TCP 80
2026-07-13 06:39:52 SURICATA HTTP request buffer too long TCP 80
2026-07-13 06:39:14 SURICATA HTTP request buffer too long TCP 80
2026-07-13 06:39:14 SURICATA HTTP request buffer too long TCP 80
2026-07-13 06:38:55 SURICATA HTTP request buffer too long TCP 80
2026-07-13 06:38:55 SURICATA HTTP request buffer too long TCP 80
2026-07-13 06:15:47 SURICATA HTTP request buffer too long TCP 80
2026-07-13 06:15:46 SURICATA HTTP request buffer too long TCP 80
2026-07-13 05:32:56 SURICATA HTTP request buffer too long TCP 80
2026-07-13 05:32:55 SURICATA HTTP request buffer too long TCP 80
2026-07-13 05:32:50 SURICATA HTTP request buffer too long TCP 80
2026-07-13 05:32:49 SURICATA HTTP request buffer too long TCP 80
2026-07-13 05:32:13 SURICATA HTTP request buffer too long TCP 80
2026-07-13 05:32:11 SURICATA HTTP request buffer too long TCP 80
2026-07-13 03:54:00 SURICATA HTTP request buffer too long TCP 80
2026-07-13 03:54:00 SURICATA HTTP request buffer too long TCP 80
2026-07-13 03:53:59 SURICATA HTTP request buffer too long TCP 80
2026-07-13 03:53:59 SURICATA HTTP request buffer too long TCP 80
2026-07-13 03:14:58 SURICATA HTTP request buffer too long TCP 80
2026-07-13 03:14:56 SURICATA HTTP request buffer too long TCP 80
2026-07-13 03:14:36 SURICATA HTTP request buffer too long TCP 80
2026-07-13 03:14:35 SURICATA HTTP request buffer too long TCP 80
2026-07-13 03:14:17 SURICATA HTTP request buffer too long TCP 80
2026-07-13 03:14:15 SURICATA HTTP request buffer too long TCP 80
2026-07-13 02:57:19 SURICATA HTTP request buffer too long TCP 80
2026-07-13 02:57:19 SURICATA HTTP request buffer too long TCP 80
2026-07-13 02:56:43 SURICATA HTTP request buffer too long TCP 80
2026-07-13 02:56:43 SURICATA HTTP request buffer too long TCP 80
2026-07-13 02:37:34 SURICATA HTTP request buffer too long TCP 80
2026-07-13 02:37:32 SURICATA HTTP request buffer too long TCP 80
2026-07-13 02:14:14 SURICATA HTTP request buffer too long TCP 80
2026-07-13 02:14:13 SURICATA HTTP request buffer too long TCP 80
2026-07-13 02:13:51 SURICATA HTTP request buffer too long TCP 80
2026-07-13 02:13:50 SURICATA HTTP request buffer too long TCP 80
2026-07-13 01:44:15 SURICATA HTTP request buffer too long TCP 80
2026-07-13 01:44:15 SURICATA HTTP request buffer too long TCP 80
2026-07-13 01:23:00 SURICATA HTTP request buffer too long TCP 80
2026-07-13 01:22:59 SURICATA HTTP request buffer too long TCP 80
2026-07-13 01:22:10 SURICATA HTTP request buffer too long TCP 80
2026-07-13 01:22:09 SURICATA HTTP request buffer too long TCP 80
2026-07-13 01:03:22 SURICATA HTTP request buffer too long TCP 80
2026-07-13 01:03:21 SURICATA HTTP request buffer too long TCP 80
2026-07-13 01:03:04 SURICATA HTTP request buffer too long TCP 80
2026-07-13 01:03:03 SURICATA HTTP request buffer too long TCP 80
2026-07-13 00:40:20 SURICATA HTTP request buffer too long TCP 80
2026-07-13 00:40:19 SURICATA HTTP request buffer too long TCP 80
2026-07-12 23:59:01 SURICATA HTTP request buffer too long TCP 80
2026-07-12 23:59:00 SURICATA HTTP request buffer too long TCP 80
2026-07-12 23:58:24 SURICATA HTTP request buffer too long TCP 80
2026-07-12 23:58:22 SURICATA HTTP request buffer too long TCP 80
2026-07-12 23:57:40 SURICATA HTTP request buffer too long TCP 80
2026-07-12 23:57:39 SURICATA HTTP request buffer too long TCP 80
2026-07-12 23:57:22 SURICATA HTTP request buffer too long TCP 80
2026-07-12 23:57:21 SURICATA HTTP request buffer too long TCP 80
2026-07-12 23:57:20 SURICATA HTTP request buffer too long TCP 80
2026-07-12 23:57:19 SURICATA HTTP request buffer too long TCP 80
2026-07-09 16:35:44 ET WEB_SPECIFIC_APPS DigiEver DS-2105 Pro time_tzsetup.cgi ntp Parameter Command Injection Attempt (CVE-2023-52163) TCP 80
2026-07-09 16:35:44 ET WEB_SPECIFIC_APPS DigiEver DS-2105 Pro time_tzsetup.cgi ntp Parameter Command Injection Attempt (CVE-2023-52163) TCP 80
2026-07-07 23:18:56 ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) TCP 3000
2026-07-07 23:18:56 ET HUNTING Javascript Sandbox Escape via Global Object (process) TCP 3000
2026-07-07 23:18:56 ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body TCP 3000
2026-07-07 23:18:56 ET WEB_SPECIFIC_APPS React Server Components React2Shell Unsafe Flight Protocol Property Access (CVE-2025-55182) TCP 3000
2026-07-07 23:18:56 ET HUNTING Javascript Prototype Pollution Attempt via __proto__ in HTTP Body TCP 3000
2026-07-07 23:18:56 ET HUNTING Javascript Sandbox Escape via Global Object (process) TCP 3000
2026-07-04 04:15:29 SERVER-WEBAPP TP-Link Archer Router command injection attempt TCP 80
2026-07-04 04:15:29 SERVER-WEBAPP TP-Link Archer Router command injection attempt TCP 80
2026-06-24 02:41:32 ET WEB_SERVER /etc/passwd Detected in URI TCP 80
2026-06-24 02:41:32 ET WEB_SERVER /etc/passwd Detected in URI TCP 80
2026-06-21 02:08:17 ET WEB_SERVER ThinkPHP RCE Exploitation Attempt TCP 80
2026-06-21 02:08:17 ET WEB_SERVER ThinkPHP RCE Exploitation Attempt TCP 80
2026-06-19 18:45:37 SERVER-WEBAPP TP-Link Archer Router command injection attempt TCP 80
2026-06-19 18:45:37 SERVER-WEBAPP TP-Link Archer Router command injection attempt TCP 80
2026-06-15 03:48:23 ET WEB_SERVER CURL Command Specifying Output in HTTP Headers TCP 80
2026-06-15 03:48:23 ET WEB_SERVER CURL Command Specifying Output in HTTP Headers TCP 80
2026-06-15 03:48:23 ET WEB_SERVER WGET Command Specifying Output in HTTP Headers TCP 80
2026-06-15 03:48:23 ET WEB_SERVER WGET Command Specifying Output in HTTP Headers TCP 80
2026-06-15 03:31:07 ET WEB_SERVER WGET Command Specifying Output in HTTP Headers TCP 80
2026-06-15 03:31:07 ET WEB_SERVER WGET Command Specifying Output in HTTP Headers TCP 80
2026-06-15 03:31:07 ET WEB_SERVER CURL Command Specifying Output in HTTP Headers TCP 80
2026-06-15 03:31:07 ET WEB_SERVER CURL Command Specifying Output in HTTP Headers TCP 80

 

Back to top