SCARD

Suspicious activity by IP address 24.6.228.124

Below is a list of the last 500 suspicious interactions with this IP.

Last observed Tue, 21 Apr 2026 03:38:05 (Australia/Brisbane)

Back to main list

Summary of suspicious activity by IP address 24.6.228.124

Description Count
ET HUNTING Suspicious Chmod Usage in URI (Inbound) 19
ET EXPLOIT D-Link DSL-2750B - OS Command Injection 11
ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) 11
SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt 10
ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) 8

Detailed activity by IP address 24.6.228.124

Timestamp Description Protocol Destination Port
2026-04-21 03:38:05 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-21 03:38:05 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-21 03:38:05 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-21 03:38:05 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-20 06:03:43 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-20 06:03:43 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-20 06:03:43 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-20 06:03:43 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-20 06:03:43 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-20 06:03:43 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-20 06:03:43 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-20 06:03:43 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-19 21:02:00 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-19 21:02:00 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-19 21:02:00 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-19 21:02:00 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-19 21:02:00 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-19 21:02:00 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-19 21:02:00 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-19 21:02:00 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-19 14:03:25 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-19 14:03:25 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-19 14:03:25 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-19 14:03:25 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-19 10:00:28 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-19 10:00:28 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-19 10:00:28 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-19 10:00:28 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-19 10:00:28 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-19 10:00:28 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-19 10:00:28 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-19 10:00:28 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-16 06:50:58 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-16 06:50:58 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-16 06:50:58 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-16 06:50:58 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-15 22:45:10 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-15 22:45:10 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-15 22:45:10 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-15 22:45:10 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-15 22:45:10 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-15 22:45:10 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-15 22:45:10 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-15 22:45:10 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-13 21:33:32 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-13 21:33:32 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-13 21:33:32 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-13 21:33:32 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-13 21:33:32 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-13 21:33:32 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-13 21:33:32 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-13 21:33:32 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-10 10:05:35 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-10 10:05:35 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-10 10:05:35 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-05 22:28:50 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-05 22:28:50 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-05 22:28:50 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-05 22:28:50 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80

 

Back to top