Professional Documents
Culture Documents
Severity High
Start Date: 2017-03-28 11:58:44 GMT+05:30
End Date: 2017-03-30 11:58:44 GMT+05:30
Report Generation Time: 2017-03-30 11:58:59 GMT+05:30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
1. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Taiwan 118.163.71. HTTP Return Code : 301 Unknown Server Protection/Web Servers
28 2 Remote Code 19 101 HTTP Host : 122.255.12.211
13:56:44 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET
2. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 Taiwan 118.163.71. Unknown Server Protection/Web Servers
28 2 Remote Code 19 101
13:58:44 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
3. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Taiwan 118.163.71. HTTP Return Code : 404 Unknown Server Protection/Web Servers
28 2 Remote Code 5 101 HTTP Host : 122.255.12.200
14:19:33 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI : /
HTTP Request Method : GET
4. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 Taiwan 118.163.71. Unknown Server Protection/Web Servers
28 2 Remote Code 5 101
14:21:34 Execution (CVE-2017-
GMT+05: 5638)
30
5. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 124.16.144. HTTP Return Code : 301 Unknown Server Protection/Web Servers
28 2 Remote Code 19 31 HTTP Host : 203.115.27.147
14:47:33 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET
6. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 China 124.16.144. Unknown Server Protection/Web Servers
28 2 Remote Code 19 31
14:49:33 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
7. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 121.196.225 HTTP Return Code : 404 Unknown Server Protection/Web Servers
28 2 Remote Code 5 .253 HTTP Host : 203.115.27.144
14:56:18 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI :
/portal/client/cms/viewcmspage.a
ction
HTTP Request Method : GET
8. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.253.1 China 121.196.225 Unknown Server Protection/Web Servers
28 2 Remote Code 5 .253
14:58:18 Execution (CVE-2017-
GMT+05: 5638)
30
9. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 China 124.16.144. HTTP Return Code : 404 Unknown Server Protection/Web Servers
28 2 Remote Code 5 31 HTTP User-Agent : Mozilla/5.0
15:28:57 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Host : 203.115.27.136
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI : /
HTTP Request Method : GET
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
10. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 China 124.16.144. Unknown Server Protection/Web Servers
28 2 Remote Code 5 31
15:30:58 Execution (CVE-2017-
GMT+05: 5638)
30
11. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 124.16.144. HTTP Return Code : 301 Unknown Server Protection/Web Servers
28 2 Remote Code 0 31 HTTP Host : 203.115.27.148
16:10:49 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET
12. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.253.1 China 124.16.144. Unknown Server Protection/Web Servers
28 2 Remote Code 0 31
16:12:50 Execution (CVE-2017-
GMT+05: 5638)
30
13. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 61.160.215. HTTP Return Code : 403 Unknown Server Protection/Web Servers
28 2 Remote Code 0 150 HTTP User-Agent : Mozilla/4.0
16:22:29 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Host : 203.115.27.148
HTTP Server Type : Apache
HTTP URI : /index.action
HTTP Request Method : GET
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
14. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 China 61.160.215. HTTP Return Code : 404 Unknown Server Protection/Web Servers
28 2 Remote Code 5 150 HTTP User-Agent : Mozilla/4.0
16:22:29 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Host : 203.115.27.136
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI : /index.action
HTTP Request Method : GET
15. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 61.160.215. HTTP Return Code : 404 Unknown Server Protection/Web Servers
28 2 Remote Code 5 150 HTTP User-Agent : Mozilla/4.0
16:22:29 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Host : 203.115.27.144
HTTP Server Type : Apache-
Coyote/1.1
Keep-Alive: timeout=5, max=100
HTTP URI : /index.action
HTTP Request Method : GET
16. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 61.160.215. HTTP Return Code : 403 Unknown Server Protection/Web Servers
28 2 Remote Code 19 150 HTTP Host : 203.115.27.147
16:22:29 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache
HTTP URI : /index.action
HTTP Request Method : GET
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
17. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 61.160.215. HTTP Return Code : 303 Unknown Server Protection/Web Servers
28 2 Remote Code 15 150 HTTP Host : 203.115.27.146
16:22:30 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Microsoft-
IIS/8.5
HTTP URI : /index.action
HTTP Request Method : GET
18. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 China 61.160.215. HTTP Return Code : 302 Unknown Server Protection/Web Servers
28 2 Remote Code 0 150 HTTP Host : 203.115.27.132
16:22:30 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Lotus-
Domino
HTTP URI : /index.action
HTTP Request Method : GET
19. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.254.1 China 61.160.215. Unknown Server Protection/Web Servers
28 2 Remote Code 0 150
16:24:30 Execution (CVE-2017-
GMT+05: 5638)
30
20. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.254.2 China 61.160.215. Unknown Server Protection/Web Servers
28 2 Remote Code 5 150
16:24:30 Execution (CVE-2017-
GMT+05: 5638)
30
21. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 61.160.215. Unknown Server Protection/Web Servers
28 2 Remote Code 15 150
16:24:30 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
22. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 115.159.97. HTTP Return Code : 303 Unknown Server Protection/Web Servers
28 2 Remote Code 15 73 HTTP Host : 203.115.27.146
17:58:09 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
IIS/8.5
HTTP URI : /
HTTP Request Method : GET
23. 2017-03- HTTP: Apache Struts 7 Exploit High Inconclusive 10.96.252.2 China 115.159.97. Unknown Server Protection/Web Servers
28 2 Remote Code 15 73
18:00:10 Execution (CVE-2017-
GMT+05: 5638)
30
24. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
28 2 Remote Code 5 States .203 HTTP Host : www.ndbbank.com
19:44:35 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI :
/pages/english/investor_relations/
main_ir_07.jsp
HTTP Request Method : GET
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
25. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Not 111.11.7.17 HTTP Return Code : 301 Unknown Server Protection/Web Servers
28 2 Remote Code 19 Applicabl 8 HTTP Host : 122.255.12.211
20:02:20 Execution (CVE-2017- e HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET
26. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 China 111.11.7.17 Unknown Server Protection/Web Servers
28 2 Remote Code 19 8
20:04:19 Execution (CVE-2017-
GMT+05: 5638)
30
27. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Not 111.11.7.17 HTTP Return Code : 404 Unknown Server Protection/Web Servers
28 2 Remote Code 5 Applicabl 8 HTTP Host : 122.255.12.200
20:07:29 Execution (CVE-2017- e HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI : /
HTTP Request Method : GET
28. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 China 111.11.7.17 Unknown Server Protection/Web Servers
28 2 Remote Code 5 8
20:09:29 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
29. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Vietnam 117.6.225.1 HTTP Return Code : 403 Unknown Server Protection/Web Servers
28 2 Remote Code 0 0 HTTP Host : 122.255.12.212
21:20:38 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI :
/Struts2XMLHelloWorld/User/hom
e.action:linux
HTTP Request Method : GET
30. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
28 2 Remote Code 5 States .203 HTTP Host : www.ndbbank.com
21:24:44 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI :
/pages/english/individuals/ndb_sa
lary_max/Tamil_Financial_Guide.p
df
HTTP Request Method : GET
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
31. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Venezuel 190.205.54. HTTP Return Code : 403 Unknown Server Protection/Web Servers
28 2 Remote Code 0 a 150 HTTP Host : 122.255.12.212
21:47:46 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /notFound.action
HTTP Request Method : GET
32. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Venezuel 190.205.54. Unknown Server Protection/Web Servers
28 2 Remote Code 0 a 150
21:49:46 Execution (CVE-2017-
GMT+05: 5638)
30
33. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
28 2 Remote Code 5 States .203 HTTP Host : www.ndbbank.com
21:51:44 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI :
/pages/english/rates/exchange_ra
tes.jsp
HTTP Request Method : GET
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
34. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
28 2 Remote Code 5 States .201 HTTP Host : www.ndbbank.com
22:38:12 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI :
/pages/english/rates/exchange_ra
tes.jsp
HTTP Request Method : GET
35. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
28 2 Remote Code 5 States .201 HTTP Host : www.ndbbank.com
22:53:13 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI :
/pages/english/quick_access/debe
nture_issue.jsp
HTTP Request Method : GET
36. 2017-03- HTTP: Apache Struts 3 Exploit High Inconclusive 10.96.253.1 United 192.161.172 Unknown Server Protection/Web Servers
28 2 Remote Code 5 States .201
22:55:13 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
37. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Vietnam 117.6.225.1 HTTP Return Code : 302 Unknown Server Protection/Web Servers
28 2 Remote Code 15 0 HTTP Host : 122.255.12.210
23:09:30 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
IIS/8.5
HTTP URI :
/Struts2XMLHelloWorld/User/hom
e.action:linux
HTTP Request Method : GET
38. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 China 111.11.7.17 HTTP Return Code : 302 Unknown Server Protection/Web Servers
28 2 Remote Code 0 8 HTTP Host : 122.255.12.196
23:14:36 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Lotus-
Domino
HTTP URI : /
HTTP Request Method : GET
39. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.1 China 111.11.7.17 Unknown Server Protection/Web Servers
28 2 Remote Code 0 8
23:16:37 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
40. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 180.168.208 HTTP Return Code : 301 Unknown Server Protection/Web Servers
29 2 Remote Code 19 .14 HTTP Host : 122.255.12.211
00:30:24 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET
41. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 China 180.168.208 Unknown Server Protection/Web Servers
29 2 Remote Code 19 .14
00:32:24 Execution (CVE-2017-
GMT+05: 5638)
30
42. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Not 180.168.208 HTTP Return Code : 404 Unknown Server Protection/Web Servers
29 2 Remote Code 5 Applicabl .14 HTTP Host : 122.255.12.200
00:35:11 Execution (CVE-2017- e HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI : /
HTTP Request Method : GET
43. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 China 180.168.208 Unknown Server Protection/Web Servers
29 2 Remote Code 5 .14
00:37:12 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
44. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 India 202.88.252. HTTP Return Code : 303 Unknown Server Protection/Web Servers
29 2 Remote Code 15 51 HTTP Host : 122.255.12.210
00:56:50 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
IIS/8.5
HTTP URI : /
HTTP Request Method : GET
45. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 India 202.88.252. Unknown Server Protection/Web Servers
29 2 Remote Code 15 51
00:58:50 Execution (CVE-2017-
GMT+05: 5638)
30
46. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Vietnam 117.6.225.1 HTTP Return Code : 403 Unknown Server Protection/Web Servers
29 2 Remote Code 19 0 HTTP Host : 203.115.27.147
01:06:14 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI :
/Struts2XMLHelloWorld/User/hom
e.action:linux
HTTP Request Method : GET
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
47. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Vietnam 117.6.225.1 HTTP Return Code : 404 Unknown Server Protection/Web Servers
29 2 Remote Code 5 0 HTTP User-Agent : Mozilla/5.0
01:10:49 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Host : 203.115.27.136
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI :
/Struts2XMLHelloWorld/User/hom
e.action:linux
HTTP Request Method : GET
48. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Vietnam 117.6.225.1 HTTP Return Code : 403 Unknown Server Protection/Web Servers
29 2 Remote Code 0 0 HTTP Host : 203.115.27.148
01:15:21 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI :
/Struts2XMLHelloWorld/User/hom
e.action:linux
HTTP Request Method : GET
49. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 219.151.7.1 HTTP Return Code : 301 Unknown Server Protection/Web Servers
29 2 Remote Code 19 49 HTTP Host : 203.115.27.147
01:24:13 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) HTTP Server Type : Apache
30 HTTP URI : /
HTTP Request Method : GET
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
50. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 China 219.151.7.1 HTTP Return Code : 404 Unknown Server Protection/Web Servers
29 2 Remote Code 5 49 HTTP User-Agent : Mozilla/5.0
01:24:14 Execution (CVE-2017- HTTP Host : 203.115.27.136
GMT+05: 5638) HTTP Server Type : Microsoft-
30 HTTPAPI/2.0
HTTP URI : /
HTTP Request Method : GET
51. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 219.151.7.1 HTTP Return Code : 200 Unknown Server Protection/Web Servers
29 2 Remote Code 5 49 HTTP User-Agent : Mozilla/5.0
01:24:17 Execution (CVE-2017- HTTP Host : 203.115.27.144
GMT+05: 5638) HTTP Server Type : Apache-
30 Coyote/1.1
HTTP URI : /
HTTP Request Method : GET
52. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 219.151.7.1 HTTP Return Code : 301 Unknown Server Protection/Web Servers
29 2 Remote Code 0 49 HTTP User-Agent : Mozilla/5.0
01:24:18 Execution (CVE-2017- HTTP Host : 203.115.27.148
GMT+05: 5638) HTTP Server Type : Apache
30 HTTP URI : /
HTTP Request Method : GET
53. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 China 219.151.7.1 HTTP Return Code : 302 Unknown Server Protection/Web Servers
29 2 Remote Code 0 49 HTTP Host : 203.115.27.132
01:24:19 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) HTTP Server Type : Lotus-
30 Domino
HTTP URI : /
HTTP Request Method : GET
54. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 219.151.7.1 HTTP Return Code : 303 Unknown Server Protection/Web Servers
29 2 Remote Code 15 49 HTTP Host : 203.115.27.146
01:24:19 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) HTTP Server Type : Microsoft-
30 IIS/8.5
HTTP URI : /
HTTP Request Method : GET
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
55. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.252.2 China 219.151.7.1 Unknown Server Protection/Web Servers
29 2 Remote Code 15 49
01:26:13 Execution (CVE-2017-
GMT+05: 5638)
30
56. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.252.2 China 219.151.7.1 Unknown Server Protection/Web Servers
29 2 Remote Code 19 49
01:26:13 Execution (CVE-2017-
GMT+05: 5638)
30
57. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.254.1 China 219.151.7.1 Unknown Server Protection/Web Servers
29 2 Remote Code 0 49
01:26:14 Execution (CVE-2017-
GMT+05: 5638)
30
58. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.254.2 China 219.151.7.1 Unknown Server Protection/Web Servers
29 2 Remote Code 5 49
01:26:14 Execution (CVE-2017-
GMT+05: 5638)
30
59. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.253.1 China 219.151.7.1 Unknown Server Protection/Web Servers
29 2 Remote Code 0 49
01:26:18 Execution (CVE-2017-
GMT+05: 5638)
30
60. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.253.1 China 219.151.7.1 Unknown Server Protection/Web Servers
29 2 Remote Code 5 49
01:26:18 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
61. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 120.27.240. HTTP Return Code : 200 Unknown Server Protection/Web Servers
29 2 Remote Code 5 44 HTTP Host : www.ndbbank.com
01:56:25 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI : /
HTTP Request Method : GET
62. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Canada 144.217.166 HTTP Return Code : 301 Unknown Server Protection/Web Servers
29 2 Remote Code 19 .8 HTTP Host : 203.115.27.147
02:27:36 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET
63. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 Canada 144.217.166 Unknown Server Protection/Web Servers
29 2 Remote Code 19 .8
02:29:36 Execution (CVE-2017-
GMT+05: 5638)
30
64. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 120.76.156. HTTP Return Code : 200 Unknown Server Protection/Web Servers
29 2 Remote Code 5 204 HTTP Host : www.ndbbank.com
02:32:24 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI : /
HTTP Request Method : GET
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
65. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Italy 2.233.133.1 HTTP Return Code : 404 Unknown Server Protection/Web Servers
29 2 Remote Code 5 84 HTTP Host : 203.115.27.144
02:44:50 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI : /notFound.action
HTTP Request Method : GET
66. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Italy 2.233.133.1 Unknown Server Protection/Web Servers
29 2 Remote Code 5 84
02:46:49 Execution (CVE-2017-
GMT+05: 5638)
30
67. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 China 180.168.208 HTTP Return Code : 302 Unknown Server Protection/Web Servers
29 2 Remote Code 0 .14 HTTP Host : 122.255.12.196
03:15:05 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Lotus-
Domino
HTTP URI : /
HTTP Request Method : GET
68. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.1 China 180.168.208 Unknown Server Protection/Web Servers
29 2 Remote Code 0 .14
03:17:04 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
69. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Canada 144.217.166 HTTP Return Code : 404 Unknown Server Protection/Web Servers
29 2 Remote Code 5 .8 HTTP User-Agent : Mozilla/5.0
03:31:18 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Host : 203.115.27.136
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI : /
HTTP Request Method : GET
70. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 Canada 144.217.166 Unknown Server Protection/Web Servers
29 2 Remote Code 5 .8
03:33:19 Execution (CVE-2017-
GMT+05: 5638)
30
71. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 124.16.144. HTTP Return Code : 301 Unknown Server Protection/Web Servers
29 2 Remote Code 0 31 HTTP Host : 122.255.12.212
03:45:16 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET
72. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.253.1 China 124.16.144. Unknown Server Protection/Web Servers
29 2 Remote Code 0 31
03:47:17 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
73. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 Taiwan 118.163.71. HTTP Return Code : 302 Unknown Server Protection/Web Servers
29 2 Remote Code 0 101 HTTP Host : 122.255.12.196
03:48:02 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Lotus-
Domino
HTTP URI : /
HTTP Request Method : GET
74. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.1 Not 118.163.71. Unknown Server Protection/Web Servers
29 2 Remote Code 0 Applicabl 101
03:50:03 Execution (CVE-2017- e
GMT+05: 5638)
30
75. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Canada 144.217.166 HTTP Return Code : 301 Unknown Server Protection/Web Servers
29 2 Remote Code 0 .8 HTTP Host : 203.115.27.148
04:33:37 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET
76. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.253.1 Canada 144.217.166 Unknown Server Protection/Web Servers
29 2 Remote Code 0 .8
04:35:37 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
77. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 14.144.54.1 HTTP Return Code : 200 Unknown Server Protection/Web Servers
29 2 Remote Code 5 86 HTTP Host : www.ndbbank.com
05:33:09 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI : /
HTTP Request Method : GET
78. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Slovakia 89.173.5.18 HTTP Return Code : 303 Unknown Server Protection/Web Servers
29 2 Remote Code 15 3 HTTP Host : 203.115.27.146
06:24:01 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
IIS/8.5
HTTP URI :
/admin/agent/default.action
HTTP Request Method : GET
79. 2017-03- HTTP: Apache Struts 6 Exploit High Inconclusive 10.96.252.2 Not 89.173.5.18 Unknown Server Protection/Web Servers
29 2 Remote Code 15 Applicabl 3
06:26:02 Execution (CVE-2017- e
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
80. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Italy 93.56.12.16 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 4 HTTP User-Agent : Mozilla/5.0
08:05:41 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 203.115.27.144
81. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.253.1 Italy 93.56.12.16 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 4
08:07:41 Execution (CVE-2017-
GMT+05: 5638)
30
82. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 Italy 93.56.12.16 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 4
08:09:41 Execution (CVE-2017-
GMT+05: 5638)
30
83. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .203 /pages/english/invstr_and_comnt
08:50:04 Execution (CVE-2017- y_rlatins/snr_mgmt.jsp
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
84. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .203 /pages/english/individuals/ndb_sa
09:30:55 Execution (CVE-2017- lary_max/Tamil_Financial_Guide.p
GMT+05: 5638) df
30 HTTP User-Agent : Mozilla/4.0
(compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
85. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 United 24.56.230.1 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 19 States 5 HTTP User-Agent : Mozilla/5.0
11:32:23 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.211
86. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 United 24.56.230.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 19 States 5
11:34:24 Execution (CVE-2017-
GMT+05: 5638)
30
87. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.2 United 24.56.230.1 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States 5 HTTP User-Agent : Mozilla/5.0
11:35:19 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.200
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
88. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 United 24.56.230.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 19 States 5
11:36:24 Execution (CVE-2017-
GMT+05: 5638)
30
89. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.2 Not 24.56.230.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 Applicabl 5
11:37:20 Execution (CVE-2017- e
GMT+05: 5638)
30
90. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.2 United 24.56.230.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States 5
11:39:21 Execution (CVE-2017-
GMT+05: 5638)
30
91. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Italy 93.46.201.1 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 7 HTTP User-Agent : Mozilla/5.0
12:30:40 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.210
92. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 Italy 93.46.201.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 7
12:32:40 Execution (CVE-2017-
GMT+05: 5638)
30
93. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 Italy 93.46.201.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 7
12:34:40 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
94. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 Brazil 187.115.73. HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 70 HTTP User-Agent : Mozilla/5.0
12:57:57 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 203.115.27.132
95. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.1 Brazil 187.115.73. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 70
12:59:57 Execution (CVE-2017-
GMT+05: 5638)
30
96. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 Brazil 187.115.73. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 70
13:01:57 Execution (CVE-2017-
GMT+05: 5638)
30
97. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 United 24.56.230.1 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 States 5 HTTP User-Agent : Mozilla/5.0
13:13:55 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.196
98. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.1 United 24.56.230.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 States 5
13:15:55 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
99. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 United 24.56.230.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 States 5
13:17:55 Execution (CVE-2017-
GMT+05: 5638)
30
100. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Italy 2.233.133.1 HTTP URI : /notFound.action Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 84 HTTP User-Agent : Mozilla/5.0
14:08:17 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.210
101. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Italy 2.233.133.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 84
14:10:17 Execution (CVE-2017-
GMT+05: 5638)
30
102. 2017-03- HTTP: Microsoft 1 Exploit High Attack 104.40.129. Not 10.96.253.1 HTTP Return Code : 200 Unknown Client Protection/Operating
29 Windows HTTP Blocked 109 Applicabl 5 HTTP URI : Systems
14:22:56 Services Integer e /pages/english/investor_relations/
GMT+05: Underflow js/jquery-1.9.1.js
30 Vulnerability HTTP Request Method : GET
103. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 China 119.78.254. HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 19 4 HTTP User-Agent : Mozilla/5.0
16:04:04 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.211
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
104. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 19 4
16:06:05 Execution (CVE-2017-
GMT+05: 5638)
30
105. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 19 4
16:08:05 Execution (CVE-2017-
GMT+05: 5638)
30
106. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.2 Not 119.78.254. HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 Applicabl 4 HTTP User-Agent : Mozilla/5.0
16:08:43 Execution (CVE-2017- e (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.200
107. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.2 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 4
16:10:45 Execution (CVE-2017-
GMT+05: 5638)
30
108. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.2 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 4
16:12:45 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
109. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .203 /pages/english/invstr_and_comnt
16:55:46 Execution (CVE-2017- y_rlatins/corp_info.jsp
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
110. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Vietnam 203.162.235 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 .250 HTTP User-Agent : Mozilla/5.0
17:24:09 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.210
111. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 Not 203.162.235 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 Applicabl .250
17:26:10 Execution (CVE-2017- e
GMT+05: 5638)
30
112. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 Vietnam 203.162.235 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 .250
17:28:09 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
113. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Taiwan 125.227.128 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 .173 HTTP User-Agent : Mozilla/5.0
17:29:45 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.208
114. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.253.1 Not 125.227.128 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 Applicabl .173
17:31:46 Execution (CVE-2017- e
GMT+05: 5638)
30
115. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 Taiwan 125.227.128 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 .173
17:33:46 Execution (CVE-2017-
GMT+05: 5638)
30
116. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : /abt_us/careers.jsp Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .201 HTTP User-Agent : Mozilla/4.0
18:43:03 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : www.ndbbank.com
117. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 China 119.78.254. HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 4 HTTP User-Agent : Mozilla/5.0
18:56:15 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.196
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
118. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.1 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 4
18:58:15 Execution (CVE-2017-
GMT+05: 5638)
30
119. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 4
19:00:15 Execution (CVE-2017-
GMT+05: 5638)
30
120. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Vietnam 117.6.225.1 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 0 /Struts2XMLHelloWorld/User/hom
19:46:26 Execution (CVE-2017- e.action:linux
GMT+05: 5638) HTTP User-Agent : Mozilla/5.0
30 (Macintosh; Intel Mac OS X
10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 203.115.27.146
121. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 China 121.42.147. HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 64 HTTP User-Agent : Mozilla/4.0
19:57:49 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : www.ndbbank.com
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
122. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 China 119.78.254. HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 4 HTTP User-Agent : Mozilla/5.0
20:56:46 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 203.115.27.132
123. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.1 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 4
20:58:45 Execution (CVE-2017-
GMT+05: 5638)
30
124. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 4
21:00:45 Execution (CVE-2017-
GMT+05: 5638)
30
125. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .203 /applications/personal_loans.jsp
21:31:48 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
126. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .203 /pages/english/ndb_network/bran
21:45:11 Execution (CVE-2017- ches.jsp
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
127. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Vietnam 203.162.235 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 .250 HTTP User-Agent : Mozilla/5.0
22:22:35 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.212
128. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.253.1 Vietnam 203.162.235 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 .250
22:24:35 Execution (CVE-2017-
GMT+05: 5638)
30
129. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 Vietnam 203.162.235 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 .250
22:26:35 Execution (CVE-2017-
GMT+05: 5638)
30
130. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .203 /pages/english/individuals/visa_ca
22:40:39 Execution (CVE-2017- rd.jsp
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
131. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Slovakia 37.9.169.9 HTTP URI : / Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 15 HTTP User-Agent : Mozilla/5.0
01:49:38 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 203.115.27.146
132. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 Slovakia 37.9.169.9 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 15
01:51:39 Execution (CVE-2017-
GMT+05: 5638)
30
133. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Germany 88.198.116. HTTP URI : / Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 245 HTTP User-Agent : Mozilla/5.0
01:51:55 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.208
134. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 Slovakia 37.9.169.9 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 15
01:53:39 Execution (CVE-2017-
GMT+05: 5638)
30
135. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.253.1 Not 88.198.116. Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 Applicabl 245
01:53:56 Execution (CVE-2017- e
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
136. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 Germany 88.198.116. Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 245
01:55:56 Execution (CVE-2017-
GMT+05: 5638)
30
137. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Italy 2.233.133.1 HTTP URI : /notFound.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 84 HTTP User-Agent : Mozilla/5.0
04:47:05 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.208
138. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Not 2.233.133.1 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 Applicabl 84
04:49:06 Execution (CVE-2017- e
GMT+05: 5638)
30
139. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : /index.jsp Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 States .203 HTTP User-Agent : Mozilla/4.0
06:17:50 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : www.ndbbank.com
140. 2017-03- HTTP: Apache 1 Exploit High Attack 10.96.252.2 United 204.232.241 HTTP URI : //cgi- Unknown Server Protection/Web Servers
30 mod_cgi Bash Blocked 19 States .139 sys/defaultwebpage.cgi
09:06:51 Environment Variable HTTP User-Agent : () { :; };
GMT+05: Code Injection /sbin/ifconfig
30 HTTP Request Method : GET
HTTP Host :
www.ndbbankonline.com
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
141. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 States .201 /pages/english/quick_access/notic
09:16:28 Execution (CVE-2017- es.jsp
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
142. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 .171 HTTP User-Agent : Mozilla/4.0
09:45:58 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : 203.115.27.144
143. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 0 .171 HTTP User-Agent : Mozilla/4.0
09:45:58 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : 203.115.27.132
144. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 0 .171 HTTP User-Agent : Mozilla/4.0
09:45:58 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : 203.115.27.148
145. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 15 .171 HTTP User-Agent : Mozilla/4.0
09:45:59 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : 203.115.27.146
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
146. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.2 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 .171 HTTP User-Agent : Mozilla/4.0
09:45:59 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : 203.115.27.136
147. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 Italy 2.233.133.1 HTTP URI : /notFound.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 0 84 HTTP User-Agent : Mozilla/5.0
09:46:53 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 203.115.27.132
148. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 China 115.236.169 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 0 .171
09:47:59 Execution (CVE-2017-
GMT+05: 5638)
30
149. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 China 115.236.169 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 .171
09:47:59 Execution (CVE-2017-
GMT+05: 5638)
30
150. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 Italy 2.233.133.1 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 0 84
09:47:59 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
151. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.2 China 115.236.169 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 .171
09:47:59 Execution (CVE-2017-
GMT+05: 5638)
30
152. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 China 115.236.169 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 0 .171
09:47:59 Execution (CVE-2017-
GMT+05: 5638)
30
153. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 China 115.236.169 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 15 .171
09:47:59 Execution (CVE-2017-
GMT+05: 5638)
30
154. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 States .203 /pages/english/news/ifc_further.js
11:00:48 Execution (CVE-2017- p
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
155. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 States .201 /pages/english/quick_access/debe
11:08:10 Execution (CVE-2017- nture_issue.jsp
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
Servers_High_Severity
# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country
156. 2017-03- HTTP: Apache Struts 3 Exploit High Attack 10.96.253.1 United 192.161.172 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 States .201
11:10:10 Execution (CVE-2017-
GMT+05: 5638)
30