SCARD

Suspicious activity by IP address 92.20.55.252

Below is a list of the last 500 suspicious interactions with this IP.

Last observed Sat, 11 Apr 2026 16:03:21 (Australia/Brisbane)

Back to main list

Summary of suspicious activity by IP address 92.20.55.252

Description Count
ET HUNTING Suspicious Chmod Usage in URI (Inbound) 11
ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) 11

Detailed activity by IP address 92.20.55.252

Timestamp Description Protocol Destination Port
2026-04-11 16:03:21 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-11 16:03:21 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-11 06:03:37 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-11 06:03:37 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-11 06:03:37 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-11 06:03:37 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-11 06:03:37 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-11 06:03:37 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-11 06:03:37 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-11 06:03:37 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-11 05:15:30 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-11 05:15:30 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-11 05:15:28 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-11 05:15:28 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-11 05:15:28 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-11 05:15:28 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-11 05:15:28 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-11 05:15:28 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-11 04:15:18 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80
2026-04-11 04:15:18 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-11 04:15:18 ET EXPLOIT Possible Authenticated Command Injection Inbound - Comtrend VR-3033 (CVE-2020-10173) TCP 80
2026-04-11 04:15:18 ET HUNTING Suspicious Chmod Usage in URI (Inbound) TCP 80

 

Back to top