SCARD

Suspicious activity by IP address 70.19.66.221

Below is a list of the last 500 suspicious interactions with this IP.

Last observed Sat, 11 Apr 2026 11:03:23 (Australia/Brisbane)

Back to main list

Summary of suspicious activity by IP address 70.19.66.221

Description Count
ET EXPLOIT D-Link DSL-2750B - OS Command Injection 5
ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) 5
ET HUNTING Suspicious Chmod Usage in URI (Inbound) 5
SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt 4

Detailed activity by IP address 70.19.66.221

Timestamp Description Protocol Destination Port
2026-04-11 11:03:23 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-11 11:03:23 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-11 11:03:23 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-08 16:22:04 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-08 16:22:04 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-08 16:22:04 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-08 16:22:04 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-08 16:22:04 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-08 16:22:04 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-08 16:22:04 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-08 16:22:04 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-08 11:09:38 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-08 11:09:38 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-08 11:09:38 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80
2026-04-08 11:09:38 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-08 11:09:38 ET EXPLOIT D-Link DSL-2750B - OS Command Injection TCP 80
2026-04-08 11:09:38 SERVER-WEBAPP D-Link DSL-2750B routers login.cgi command injection attempt TCP 80
2026-04-08 11:09:38 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-08 11:09:38 ET EXPLOIT D-Link DSL-2750B Command Injection Attempt (CVE-2016-20017) TCP 80

 

Back to top