Scribd Logo
Upload

Welcome to Scribd!

  • Servers High Severity

    Uploaded by

    Rasika Sampath Apr
    20 views39 pages
    high severity servers

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    high severity servers

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    20 views39 pages

    Servers High Severity

    Uploaded by

    Rasika Sampath Apr
    high severity servers

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 39

    Servers_High_Severity

    Severity High
    Start Date: 2017-03-28 11:58:44 GMT+05:30
    End Date: 2017-03-30 11:58:44 GMT+05:30
    Report Generation Time: 2017-03-30 11:58:59 GMT+05:30

    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    1. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Taiwan 118.163.71. HTTP Return Code : 301 Unknown Server Protection/Web Servers
    28 2 Remote Code 19 101 HTTP Host : 122.255.12.211
    13:56:44 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache
    HTTP URI : /
    HTTP Request Method : GET

    2. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 Taiwan 118.163.71. Unknown Server Protection/Web Servers
    28 2 Remote Code 19 101
    13:58:44 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    3. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Taiwan 118.163.71. HTTP Return Code : 404 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 101 HTTP Host : 122.255.12.200
    14:19:33 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Microsoft-
    HTTPAPI/2.0
    HTTP URI : /
    HTTP Request Method : GET

    4. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 Taiwan 118.163.71. Unknown Server Protection/Web Servers
    28 2 Remote Code 5 101
    14:21:34 Execution (CVE-2017-
    GMT+05: 5638)
    30

    5. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 124.16.144. HTTP Return Code : 301 Unknown Server Protection/Web Servers
    28 2 Remote Code 19 31 HTTP Host : 203.115.27.147
    14:47:33 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache
    HTTP URI : /
    HTTP Request Method : GET

    6. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 China 124.16.144. Unknown Server Protection/Web Servers
    28 2 Remote Code 19 31
    14:49:33 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    7. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 121.196.225 HTTP Return Code : 404 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 .253 HTTP Host : 203.115.27.144
    14:56:18 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache-
    Coyote/1.1
    HTTP URI :
    /portal/client/cms/viewcmspage.a
    ction
    HTTP Request Method : GET

    8. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.253.1 China 121.196.225 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 .253
    14:58:18 Execution (CVE-2017-
    GMT+05: 5638)
    30

    9. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 China 124.16.144. HTTP Return Code : 404 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 31 HTTP User-Agent : Mozilla/5.0
    15:28:57 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Host : 203.115.27.136
    HTTP Server Type : Microsoft-
    HTTPAPI/2.0
    HTTP URI : /
    HTTP Request Method : GET
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    10. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 China 124.16.144. Unknown Server Protection/Web Servers
    28 2 Remote Code 5 31
    15:30:58 Execution (CVE-2017-
    GMT+05: 5638)
    30

    11. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 124.16.144. HTTP Return Code : 301 Unknown Server Protection/Web Servers
    28 2 Remote Code 0 31 HTTP Host : 203.115.27.148
    16:10:49 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache
    HTTP URI : /
    HTTP Request Method : GET

    12. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.253.1 China 124.16.144. Unknown Server Protection/Web Servers
    28 2 Remote Code 0 31
    16:12:50 Execution (CVE-2017-
    GMT+05: 5638)
    30

    13. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 61.160.215. HTTP Return Code : 403 Unknown Server Protection/Web Servers
    28 2 Remote Code 0 150 HTTP User-Agent : Mozilla/4.0
    16:22:29 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
    GMT+05: 5638) NT 6.1)
    30 HTTP Host : 203.115.27.148
    HTTP Server Type : Apache
    HTTP URI : /index.action
    HTTP Request Method : GET
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    14. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 China 61.160.215. HTTP Return Code : 404 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 150 HTTP User-Agent : Mozilla/4.0
    16:22:29 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
    GMT+05: 5638) NT 6.1)
    30 HTTP Host : 203.115.27.136
    HTTP Server Type : Microsoft-
    HTTPAPI/2.0
    HTTP URI : /index.action
    HTTP Request Method : GET

    15. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 61.160.215. HTTP Return Code : 404 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 150 HTTP User-Agent : Mozilla/4.0
    16:22:29 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
    GMT+05: 5638) NT 6.1)
    30 HTTP Host : 203.115.27.144
    HTTP Server Type : Apache-
    Coyote/1.1
    Keep-Alive: timeout=5, max=100
    HTTP URI : /index.action
    HTTP Request Method : GET

    16. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 61.160.215. HTTP Return Code : 403 Unknown Server Protection/Web Servers
    28 2 Remote Code 19 150 HTTP Host : 203.115.27.147
    16:22:29 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
    GMT+05: 5638) (compatible; MSIE 9.0; Windows
    30 NT 6.1)
    HTTP Server Type : Apache
    HTTP URI : /index.action
    HTTP Request Method : GET
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    17. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 61.160.215. HTTP Return Code : 303 Unknown Server Protection/Web Servers
    28 2 Remote Code 15 150 HTTP Host : 203.115.27.146
    16:22:30 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
    GMT+05: 5638) (compatible; MSIE 9.0; Windows
    30 NT 6.1)
    HTTP Server Type : Microsoft-
    IIS/8.5
    HTTP URI : /index.action
    HTTP Request Method : GET

    18. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 China 61.160.215. HTTP Return Code : 302 Unknown Server Protection/Web Servers
    28 2 Remote Code 0 150 HTTP Host : 203.115.27.132
    16:22:30 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
    GMT+05: 5638) (compatible; MSIE 9.0; Windows
    30 NT 6.1)
    HTTP Server Type : Lotus-
    Domino
    HTTP URI : /index.action
    HTTP Request Method : GET

    19. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.254.1 China 61.160.215. Unknown Server Protection/Web Servers
    28 2 Remote Code 0 150
    16:24:30 Execution (CVE-2017-
    GMT+05: 5638)
    30

    20. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.254.2 China 61.160.215. Unknown Server Protection/Web Servers
    28 2 Remote Code 5 150
    16:24:30 Execution (CVE-2017-
    GMT+05: 5638)
    30

    21. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 61.160.215. Unknown Server Protection/Web Servers
    28 2 Remote Code 15 150
    16:24:30 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    22. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 115.159.97. HTTP Return Code : 303 Unknown Server Protection/Web Servers
    28 2 Remote Code 15 73 HTTP Host : 203.115.27.146
    17:58:09 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Microsoft-
    IIS/8.5
    HTTP URI : /
    HTTP Request Method : GET

    23. 2017-03- HTTP: Apache Struts 7 Exploit High Inconclusive 10.96.252.2 China 115.159.97. Unknown Server Protection/Web Servers
    28 2 Remote Code 15 73
    18:00:10 Execution (CVE-2017-
    GMT+05: 5638)
    30

    24. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 States .203 HTTP Host : www.ndbbank.com
    19:44:35 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
    GMT+05: 5638) (compatible; MSIE 9.0; Windows
    30 NT 6.1)
    HTTP Server Type : Apache-
    Coyote/1.1
    HTTP URI :
    /pages/english/investor_relations/
    main_ir_07.jsp
    HTTP Request Method : GET
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    25. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Not 111.11.7.17 HTTP Return Code : 301 Unknown Server Protection/Web Servers
    28 2 Remote Code 19 Applicabl 8 HTTP Host : 122.255.12.211
    20:02:20 Execution (CVE-2017- e HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache
    HTTP URI : /
    HTTP Request Method : GET

    26. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 China 111.11.7.17 Unknown Server Protection/Web Servers
    28 2 Remote Code 19 8
    20:04:19 Execution (CVE-2017-
    GMT+05: 5638)
    30

    27. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Not 111.11.7.17 HTTP Return Code : 404 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 Applicabl 8 HTTP Host : 122.255.12.200
    20:07:29 Execution (CVE-2017- e HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Microsoft-
    HTTPAPI/2.0
    HTTP URI : /
    HTTP Request Method : GET

    28. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 China 111.11.7.17 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 8
    20:09:29 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    29. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Vietnam 117.6.225.1 HTTP Return Code : 403 Unknown Server Protection/Web Servers
    28 2 Remote Code 0 0 HTTP Host : 122.255.12.212
    21:20:38 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache
    HTTP URI :
    /Struts2XMLHelloWorld/User/hom
    e.action:linux
    HTTP Request Method : GET

    30. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 States .203 HTTP Host : www.ndbbank.com
    21:24:44 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
    GMT+05: 5638) (compatible; MSIE 9.0; Windows
    30 NT 6.1)
    HTTP Server Type : Apache-
    Coyote/1.1
    HTTP URI :
    /pages/english/individuals/ndb_sa
    lary_max/Tamil_Financial_Guide.p
    df
    HTTP Request Method : GET
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    31. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Venezuel 190.205.54. HTTP Return Code : 403 Unknown Server Protection/Web Servers
    28 2 Remote Code 0 a 150 HTTP Host : 122.255.12.212
    21:47:46 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache
    HTTP URI : /notFound.action
    HTTP Request Method : GET

    32. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Venezuel 190.205.54. Unknown Server Protection/Web Servers
    28 2 Remote Code 0 a 150
    21:49:46 Execution (CVE-2017-
    GMT+05: 5638)
    30

    33. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 States .203 HTTP Host : www.ndbbank.com
    21:51:44 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
    GMT+05: 5638) (compatible; MSIE 9.0; Windows
    30 NT 6.1)
    HTTP Server Type : Apache-
    Coyote/1.1
    HTTP URI :
    /pages/english/rates/exchange_ra
    tes.jsp
    HTTP Request Method : GET
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    34. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 States .201 HTTP Host : www.ndbbank.com
    22:38:12 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
    GMT+05: 5638) (compatible; MSIE 9.0; Windows
    30 NT 6.1)
    HTTP Server Type : Apache-
    Coyote/1.1
    HTTP URI :
    /pages/english/rates/exchange_ra
    tes.jsp
    HTTP Request Method : GET

    35. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 States .201 HTTP Host : www.ndbbank.com
    22:53:13 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
    GMT+05: 5638) (compatible; MSIE 9.0; Windows
    30 NT 6.1)
    HTTP Server Type : Apache-
    Coyote/1.1
    HTTP URI :
    /pages/english/quick_access/debe
    nture_issue.jsp
    HTTP Request Method : GET

    36. 2017-03- HTTP: Apache Struts 3 Exploit High Inconclusive 10.96.253.1 United 192.161.172 Unknown Server Protection/Web Servers
    28 2 Remote Code 5 States .201
    22:55:13 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    37. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Vietnam 117.6.225.1 HTTP Return Code : 302 Unknown Server Protection/Web Servers
    28 2 Remote Code 15 0 HTTP Host : 122.255.12.210
    23:09:30 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Microsoft-
    IIS/8.5
    HTTP URI :
    /Struts2XMLHelloWorld/User/hom
    e.action:linux
    HTTP Request Method : GET

    38. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 China 111.11.7.17 HTTP Return Code : 302 Unknown Server Protection/Web Servers
    28 2 Remote Code 0 8 HTTP Host : 122.255.12.196
    23:14:36 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Lotus-
    Domino
    HTTP URI : /
    HTTP Request Method : GET

    39. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.1 China 111.11.7.17 Unknown Server Protection/Web Servers
    28 2 Remote Code 0 8
    23:16:37 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    40. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 180.168.208 HTTP Return Code : 301 Unknown Server Protection/Web Servers
    29 2 Remote Code 19 .14 HTTP Host : 122.255.12.211
    00:30:24 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache
    HTTP URI : /
    HTTP Request Method : GET

    41. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 China 180.168.208 Unknown Server Protection/Web Servers
    29 2 Remote Code 19 .14
    00:32:24 Execution (CVE-2017-
    GMT+05: 5638)
    30

    42. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Not 180.168.208 HTTP Return Code : 404 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 Applicabl .14 HTTP Host : 122.255.12.200
    00:35:11 Execution (CVE-2017- e HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Microsoft-
    HTTPAPI/2.0
    HTTP URI : /
    HTTP Request Method : GET

    43. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 China 180.168.208 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 .14
    00:37:12 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    44. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 India 202.88.252. HTTP Return Code : 303 Unknown Server Protection/Web Servers
    29 2 Remote Code 15 51 HTTP Host : 122.255.12.210
    00:56:50 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Microsoft-
    IIS/8.5
    HTTP URI : /
    HTTP Request Method : GET

    45. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 India 202.88.252. Unknown Server Protection/Web Servers
    29 2 Remote Code 15 51
    00:58:50 Execution (CVE-2017-
    GMT+05: 5638)
    30

    46. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Vietnam 117.6.225.1 HTTP Return Code : 403 Unknown Server Protection/Web Servers
    29 2 Remote Code 19 0 HTTP Host : 203.115.27.147
    01:06:14 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache
    HTTP URI :
    /Struts2XMLHelloWorld/User/hom
    e.action:linux
    HTTP Request Method : GET
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    47. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Vietnam 117.6.225.1 HTTP Return Code : 404 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 0 HTTP User-Agent : Mozilla/5.0
    01:10:49 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Host : 203.115.27.136
    HTTP Server Type : Microsoft-
    HTTPAPI/2.0
    HTTP URI :
    /Struts2XMLHelloWorld/User/hom
    e.action:linux
    HTTP Request Method : GET

    48. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Vietnam 117.6.225.1 HTTP Return Code : 403 Unknown Server Protection/Web Servers
    29 2 Remote Code 0 0 HTTP Host : 203.115.27.148
    01:15:21 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache
    HTTP URI :
    /Struts2XMLHelloWorld/User/hom
    e.action:linux
    HTTP Request Method : GET

    49. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 219.151.7.1 HTTP Return Code : 301 Unknown Server Protection/Web Servers
    29 2 Remote Code 19 49 HTTP Host : 203.115.27.147
    01:24:13 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) HTTP Server Type : Apache
    30 HTTP URI : /
    HTTP Request Method : GET
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    50. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 China 219.151.7.1 HTTP Return Code : 404 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 49 HTTP User-Agent : Mozilla/5.0
    01:24:14 Execution (CVE-2017- HTTP Host : 203.115.27.136
    GMT+05: 5638) HTTP Server Type : Microsoft-
    30 HTTPAPI/2.0
    HTTP URI : /
    HTTP Request Method : GET

    51. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 219.151.7.1 HTTP Return Code : 200 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 49 HTTP User-Agent : Mozilla/5.0
    01:24:17 Execution (CVE-2017- HTTP Host : 203.115.27.144
    GMT+05: 5638) HTTP Server Type : Apache-
    30 Coyote/1.1
    HTTP URI : /
    HTTP Request Method : GET

    52. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 219.151.7.1 HTTP Return Code : 301 Unknown Server Protection/Web Servers
    29 2 Remote Code 0 49 HTTP User-Agent : Mozilla/5.0
    01:24:18 Execution (CVE-2017- HTTP Host : 203.115.27.148
    GMT+05: 5638) HTTP Server Type : Apache
    30 HTTP URI : /
    HTTP Request Method : GET

    53. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 China 219.151.7.1 HTTP Return Code : 302 Unknown Server Protection/Web Servers
    29 2 Remote Code 0 49 HTTP Host : 203.115.27.132
    01:24:19 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) HTTP Server Type : Lotus-
    30 Domino
    HTTP URI : /
    HTTP Request Method : GET

    54. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 219.151.7.1 HTTP Return Code : 303 Unknown Server Protection/Web Servers
    29 2 Remote Code 15 49 HTTP Host : 203.115.27.146
    01:24:19 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) HTTP Server Type : Microsoft-
    30 IIS/8.5
    HTTP URI : /
    HTTP Request Method : GET
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    55. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.252.2 China 219.151.7.1 Unknown Server Protection/Web Servers
    29 2 Remote Code 15 49
    01:26:13 Execution (CVE-2017-
    GMT+05: 5638)
    30

    56. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.252.2 China 219.151.7.1 Unknown Server Protection/Web Servers
    29 2 Remote Code 19 49
    01:26:13 Execution (CVE-2017-
    GMT+05: 5638)
    30

    57. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.254.1 China 219.151.7.1 Unknown Server Protection/Web Servers
    29 2 Remote Code 0 49
    01:26:14 Execution (CVE-2017-
    GMT+05: 5638)
    30

    58. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.254.2 China 219.151.7.1 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 49
    01:26:14 Execution (CVE-2017-
    GMT+05: 5638)
    30

    59. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.253.1 China 219.151.7.1 Unknown Server Protection/Web Servers
    29 2 Remote Code 0 49
    01:26:18 Execution (CVE-2017-
    GMT+05: 5638)
    30

    60. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.253.1 China 219.151.7.1 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 49
    01:26:18 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    61. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 120.27.240. HTTP Return Code : 200 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 44 HTTP Host : www.ndbbank.com
    01:56:25 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
    GMT+05: 5638) (compatible; MSIE 9.0; Windows
    30 NT 6.1)
    HTTP Server Type : Apache-
    Coyote/1.1
    HTTP URI : /
    HTTP Request Method : GET

    62. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Canada 144.217.166 HTTP Return Code : 301 Unknown Server Protection/Web Servers
    29 2 Remote Code 19 .8 HTTP Host : 203.115.27.147
    02:27:36 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache
    HTTP URI : /
    HTTP Request Method : GET

    63. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 Canada 144.217.166 Unknown Server Protection/Web Servers
    29 2 Remote Code 19 .8
    02:29:36 Execution (CVE-2017-
    GMT+05: 5638)
    30

    64. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 120.76.156. HTTP Return Code : 200 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 204 HTTP Host : www.ndbbank.com
    02:32:24 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
    GMT+05: 5638) (compatible; MSIE 9.0; Windows
    30 NT 6.1)
    HTTP Server Type : Apache-
    Coyote/1.1
    HTTP URI : /
    HTTP Request Method : GET
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    65. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Italy 2.233.133.1 HTTP Return Code : 404 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 84 HTTP Host : 203.115.27.144
    02:44:50 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache-
    Coyote/1.1
    HTTP URI : /notFound.action
    HTTP Request Method : GET

    66. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Italy 2.233.133.1 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 84
    02:46:49 Execution (CVE-2017-
    GMT+05: 5638)
    30

    67. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 China 180.168.208 HTTP Return Code : 302 Unknown Server Protection/Web Servers
    29 2 Remote Code 0 .14 HTTP Host : 122.255.12.196
    03:15:05 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Lotus-
    Domino
    HTTP URI : /
    HTTP Request Method : GET

    68. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.1 China 180.168.208 Unknown Server Protection/Web Servers
    29 2 Remote Code 0 .14
    03:17:04 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    69. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Canada 144.217.166 HTTP Return Code : 404 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 .8 HTTP User-Agent : Mozilla/5.0
    03:31:18 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Host : 203.115.27.136
    HTTP Server Type : Microsoft-
    HTTPAPI/2.0
    HTTP URI : /
    HTTP Request Method : GET

    70. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 Canada 144.217.166 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 .8
    03:33:19 Execution (CVE-2017-
    GMT+05: 5638)
    30

    71. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 124.16.144. HTTP Return Code : 301 Unknown Server Protection/Web Servers
    29 2 Remote Code 0 31 HTTP Host : 122.255.12.212
    03:45:16 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache
    HTTP URI : /
    HTTP Request Method : GET

    72. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.253.1 China 124.16.144. Unknown Server Protection/Web Servers
    29 2 Remote Code 0 31
    03:47:17 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    73. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 Taiwan 118.163.71. HTTP Return Code : 302 Unknown Server Protection/Web Servers
    29 2 Remote Code 0 101 HTTP Host : 122.255.12.196
    03:48:02 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Lotus-
    Domino
    HTTP URI : /
    HTTP Request Method : GET

    74. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.1 Not 118.163.71. Unknown Server Protection/Web Servers
    29 2 Remote Code 0 Applicabl 101
    03:50:03 Execution (CVE-2017- e
    GMT+05: 5638)
    30

    75. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Canada 144.217.166 HTTP Return Code : 301 Unknown Server Protection/Web Servers
    29 2 Remote Code 0 .8 HTTP Host : 203.115.27.148
    04:33:37 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Apache
    HTTP URI : /
    HTTP Request Method : GET

    76. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.253.1 Canada 144.217.166 Unknown Server Protection/Web Servers
    29 2 Remote Code 0 .8
    04:35:37 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    77. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 14.144.54.1 HTTP Return Code : 200 Unknown Server Protection/Web Servers
    29 2 Remote Code 5 86 HTTP Host : www.ndbbank.com
    05:33:09 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
    GMT+05: 5638) (compatible; MSIE 9.0; Windows
    30 NT 6.1)
    HTTP Server Type : Apache-
    Coyote/1.1
    HTTP URI : /
    HTTP Request Method : GET

    78. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Slovakia 89.173.5.18 HTTP Return Code : 303 Unknown Server Protection/Web Servers
    29 2 Remote Code 15 3 HTTP Host : 203.115.27.146
    06:24:01 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
    GMT+05: 5638) (Macintosh; Intel Mac OS X
    30 10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Server Type : Microsoft-
    IIS/8.5
    HTTP URI :
    /admin/agent/default.action
    HTTP Request Method : GET

    79. 2017-03- HTTP: Apache Struts 6 Exploit High Inconclusive 10.96.252.2 Not 89.173.5.18 Unknown Server Protection/Web Servers
    29 2 Remote Code 15 Applicabl 3
    06:26:02 Execution (CVE-2017- e
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    80. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Italy 93.56.12.16 HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 4 HTTP User-Agent : Mozilla/5.0
    08:05:41 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 203.115.27.144

    81. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.253.1 Italy 93.56.12.16 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 4
    08:07:41 Execution (CVE-2017-
    GMT+05: 5638)
    30

    82. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 Italy 93.56.12.16 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 4
    08:09:41 Execution (CVE-2017-
    GMT+05: 5638)
    30

    83. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 States .203 /pages/english/invstr_and_comnt
    08:50:04 Execution (CVE-2017- y_rlatins/snr_mgmt.jsp
    GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
    30 (compatible; MSIE 9.0; Windows
    NT 6.1)
    HTTP Request Method : GET
    HTTP Host : www.ndbbank.com
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    84. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 States .203 /pages/english/individuals/ndb_sa
    09:30:55 Execution (CVE-2017- lary_max/Tamil_Financial_Guide.p
    GMT+05: 5638) df
    30 HTTP User-Agent : Mozilla/4.0
    (compatible; MSIE 9.0; Windows
    NT 6.1)
    HTTP Request Method : GET
    HTTP Host : www.ndbbank.com

    85. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 United 24.56.230.1 HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 19 States 5 HTTP User-Agent : Mozilla/5.0
    11:32:23 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.211

    86. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 United 24.56.230.1 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 19 States 5
    11:34:24 Execution (CVE-2017-
    GMT+05: 5638)
    30

    87. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.2 United 24.56.230.1 HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 States 5 HTTP User-Agent : Mozilla/5.0
    11:35:19 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.200
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    88. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 United 24.56.230.1 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 19 States 5
    11:36:24 Execution (CVE-2017-
    GMT+05: 5638)
    30

    89. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.2 Not 24.56.230.1 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 Applicabl 5
    11:37:20 Execution (CVE-2017- e
    GMT+05: 5638)
    30

    90. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.2 United 24.56.230.1 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 States 5
    11:39:21 Execution (CVE-2017-
    GMT+05: 5638)
    30

    91. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Italy 93.46.201.1 HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 15 7 HTTP User-Agent : Mozilla/5.0
    12:30:40 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.210

    92. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 Italy 93.46.201.1 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 15 7
    12:32:40 Execution (CVE-2017-
    GMT+05: 5638)
    30

    93. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 Italy 93.46.201.1 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 15 7
    12:34:40 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    94. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 Brazil 187.115.73. HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 70 HTTP User-Agent : Mozilla/5.0
    12:57:57 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 203.115.27.132

    95. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.1 Brazil 187.115.73. Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 70
    12:59:57 Execution (CVE-2017-
    GMT+05: 5638)
    30

    96. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 Brazil 187.115.73. Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 70
    13:01:57 Execution (CVE-2017-
    GMT+05: 5638)
    30

    97. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 United 24.56.230.1 HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 States 5 HTTP User-Agent : Mozilla/5.0
    13:13:55 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.196

    98. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.1 United 24.56.230.1 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 States 5
    13:15:55 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    99. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 United 24.56.230.1 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 States 5
    13:17:55 Execution (CVE-2017-
    GMT+05: 5638)
    30

    100. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Italy 2.233.133.1 HTTP URI : /notFound.action Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 15 84 HTTP User-Agent : Mozilla/5.0
    14:08:17 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.210

    101. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Italy 2.233.133.1 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 15 84
    14:10:17 Execution (CVE-2017-
    GMT+05: 5638)
    30

    102. 2017-03- HTTP: Microsoft 1 Exploit High Attack 104.40.129. Not 10.96.253.1 HTTP Return Code : 200 Unknown Client Protection/Operating
    29 Windows HTTP Blocked 109 Applicabl 5 HTTP URI : Systems
    14:22:56 Services Integer e /pages/english/investor_relations/
    GMT+05: Underflow js/jquery-1.9.1.js
    30 Vulnerability HTTP Request Method : GET

    103. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 China 119.78.254. HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 19 4 HTTP User-Agent : Mozilla/5.0
    16:04:04 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.211
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    104. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 China 119.78.254. Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 19 4
    16:06:05 Execution (CVE-2017-
    GMT+05: 5638)
    30

    105. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 China 119.78.254. Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 19 4
    16:08:05 Execution (CVE-2017-
    GMT+05: 5638)
    30

    106. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.2 Not 119.78.254. HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 Applicabl 4 HTTP User-Agent : Mozilla/5.0
    16:08:43 Execution (CVE-2017- e (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.200

    107. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.2 China 119.78.254. Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 4
    16:10:45 Execution (CVE-2017-
    GMT+05: 5638)
    30

    108. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.2 China 119.78.254. Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 4
    16:12:45 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    109. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 States .203 /pages/english/invstr_and_comnt
    16:55:46 Execution (CVE-2017- y_rlatins/corp_info.jsp
    GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
    30 (compatible; MSIE 9.0; Windows
    NT 6.1)
    HTTP Request Method : GET
    HTTP Host : www.ndbbank.com

    110. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Vietnam 203.162.235 HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 15 .250 HTTP User-Agent : Mozilla/5.0
    17:24:09 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.210

    111. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 Not 203.162.235 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 15 Applicabl .250
    17:26:10 Execution (CVE-2017- e
    GMT+05: 5638)
    30

    112. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 Vietnam 203.162.235 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 15 .250
    17:28:09 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    113. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Taiwan 125.227.128 HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 .173 HTTP User-Agent : Mozilla/5.0
    17:29:45 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.208

    114. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.253.1 Not 125.227.128 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 Applicabl .173
    17:31:46 Execution (CVE-2017- e
    GMT+05: 5638)
    30

    115. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 Taiwan 125.227.128 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 .173
    17:33:46 Execution (CVE-2017-
    GMT+05: 5638)
    30

    116. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : /abt_us/careers.jsp Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 States .201 HTTP User-Agent : Mozilla/4.0
    18:43:03 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
    GMT+05: 5638) NT 6.1)
    30 HTTP Request Method : GET
    HTTP Host : www.ndbbank.com

    117. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 China 119.78.254. HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 4 HTTP User-Agent : Mozilla/5.0
    18:56:15 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.196
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    118. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.1 China 119.78.254. Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 4
    18:58:15 Execution (CVE-2017-
    GMT+05: 5638)
    30

    119. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 China 119.78.254. Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 4
    19:00:15 Execution (CVE-2017-
    GMT+05: 5638)
    30

    120. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Vietnam 117.6.225.1 HTTP URI : Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 15 0 /Struts2XMLHelloWorld/User/hom
    19:46:26 Execution (CVE-2017- e.action:linux
    GMT+05: 5638) HTTP User-Agent : Mozilla/5.0
    30 (Macintosh; Intel Mac OS X
    10_12_3) AppleWebKit/537.36
    (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 203.115.27.146

    121. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 China 121.42.147. HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 64 HTTP User-Agent : Mozilla/4.0
    19:57:49 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
    GMT+05: 5638) NT 6.1)
    30 HTTP Request Method : GET
    HTTP Host : www.ndbbank.com
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    122. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 China 119.78.254. HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 4 HTTP User-Agent : Mozilla/5.0
    20:56:46 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 203.115.27.132

    123. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.1 China 119.78.254. Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 4
    20:58:45 Execution (CVE-2017-
    GMT+05: 5638)
    30

    124. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 China 119.78.254. Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 4
    21:00:45 Execution (CVE-2017-
    GMT+05: 5638)
    30

    125. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 States .203 /applications/personal_loans.jsp
    21:31:48 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
    GMT+05: 5638) (compatible; MSIE 9.0; Windows
    30 NT 6.1)
    HTTP Request Method : GET
    HTTP Host : www.ndbbank.com

    126. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 States .203 /pages/english/ndb_network/bran
    21:45:11 Execution (CVE-2017- ches.jsp
    GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
    30 (compatible; MSIE 9.0; Windows
    NT 6.1)
    HTTP Request Method : GET
    HTTP Host : www.ndbbank.com
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    127. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Vietnam 203.162.235 HTTP URI : / Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 .250 HTTP User-Agent : Mozilla/5.0
    22:22:35 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.212

    128. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.253.1 Vietnam 203.162.235 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 .250
    22:24:35 Execution (CVE-2017-
    GMT+05: 5638)
    30

    129. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 Vietnam 203.162.235 Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 0 .250
    22:26:35 Execution (CVE-2017-
    GMT+05: 5638)
    30

    130. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
    29 2 Remote Code Blocked 5 States .203 /pages/english/individuals/visa_ca
    22:40:39 Execution (CVE-2017- rd.jsp
    GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
    30 (compatible; MSIE 9.0; Windows
    NT 6.1)
    HTTP Request Method : GET
    HTTP Host : www.ndbbank.com
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    131. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Slovakia 37.9.169.9 HTTP URI : / Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 15 HTTP User-Agent : Mozilla/5.0
    01:49:38 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 203.115.27.146

    132. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 Slovakia 37.9.169.9 Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 15
    01:51:39 Execution (CVE-2017-
    GMT+05: 5638)
    30

    133. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Germany 88.198.116. HTTP URI : / Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 245 HTTP User-Agent : Mozilla/5.0
    01:51:55 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.208

    134. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 Slovakia 37.9.169.9 Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 15
    01:53:39 Execution (CVE-2017-
    GMT+05: 5638)
    30

    135. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.253.1 Not 88.198.116. Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 Applicabl 245
    01:53:56 Execution (CVE-2017- e
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    136. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 Germany 88.198.116. Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 245
    01:55:56 Execution (CVE-2017-
    GMT+05: 5638)
    30

    137. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Italy 2.233.133.1 HTTP URI : /notFound.action Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 84 HTTP User-Agent : Mozilla/5.0
    04:47:05 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 122.255.12.208

    138. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Not 2.233.133.1 Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 Applicabl 84
    04:49:06 Execution (CVE-2017- e
    GMT+05: 5638)
    30

    139. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : /index.jsp Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 States .203 HTTP User-Agent : Mozilla/4.0
    06:17:50 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
    GMT+05: 5638) NT 6.1)
    30 HTTP Request Method : GET
    HTTP Host : www.ndbbank.com

    140. 2017-03- HTTP: Apache 1 Exploit High Attack 10.96.252.2 United 204.232.241 HTTP URI : //cgi- Unknown Server Protection/Web Servers
    30 mod_cgi Bash Blocked 19 States .139 sys/defaultwebpage.cgi
    09:06:51 Environment Variable HTTP User-Agent : () { :; };
    GMT+05: Code Injection /sbin/ifconfig
    30 HTTP Request Method : GET
    HTTP Host :
    www.ndbbankonline.com
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    141. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 States .201 /pages/english/quick_access/notic
    09:16:28 Execution (CVE-2017- es.jsp
    GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
    30 (compatible; MSIE 9.0; Windows
    NT 6.1)
    HTTP Request Method : GET
    HTTP Host : www.ndbbank.com

    142. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 .171 HTTP User-Agent : Mozilla/4.0
    09:45:58 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
    GMT+05: 5638) NT 6.1)
    30 HTTP Request Method : GET
    HTTP Host : 203.115.27.144

    143. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 0 .171 HTTP User-Agent : Mozilla/4.0
    09:45:58 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
    GMT+05: 5638) NT 6.1)
    30 HTTP Request Method : GET
    HTTP Host : 203.115.27.132

    144. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 0 .171 HTTP User-Agent : Mozilla/4.0
    09:45:58 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
    GMT+05: 5638) NT 6.1)
    30 HTTP Request Method : GET
    HTTP Host : 203.115.27.148

    145. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 15 .171 HTTP User-Agent : Mozilla/4.0
    09:45:59 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
    GMT+05: 5638) NT 6.1)
    30 HTTP Request Method : GET
    HTTP Host : 203.115.27.146
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    146. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.2 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 .171 HTTP User-Agent : Mozilla/4.0
    09:45:59 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
    GMT+05: 5638) NT 6.1)
    30 HTTP Request Method : GET
    HTTP Host : 203.115.27.136

    147. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 Italy 2.233.133.1 HTTP URI : /notFound.action Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 0 84 HTTP User-Agent : Mozilla/5.0
    09:46:53 Execution (CVE-2017- (Macintosh; Intel Mac OS X
    GMT+05: 5638) 10_12_3) AppleWebKit/537.36
    30 (KHTML, like Gecko)
    Chrome/56.0.2924.87
    Safari/537.36
    HTTP Request Method : GET
    HTTP Host : 203.115.27.132

    148. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 China 115.236.169 Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 0 .171
    09:47:59 Execution (CVE-2017-
    GMT+05: 5638)
    30

    149. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 China 115.236.169 Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 .171
    09:47:59 Execution (CVE-2017-
    GMT+05: 5638)
    30

    150. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 Italy 2.233.133.1 Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 0 84
    09:47:59 Execution (CVE-2017-
    GMT+05: 5638)
    30
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    151. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.2 China 115.236.169 Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 .171
    09:47:59 Execution (CVE-2017-
    GMT+05: 5638)
    30

    152. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 China 115.236.169 Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 0 .171
    09:47:59 Execution (CVE-2017-
    GMT+05: 5638)
    30

    153. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 China 115.236.169 Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 15 .171
    09:47:59 Execution (CVE-2017-
    GMT+05: 5638)
    30

    154. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 States .203 /pages/english/news/ifc_further.js
    11:00:48 Execution (CVE-2017- p
    GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
    30 (compatible; MSIE 9.0; Windows
    NT 6.1)
    HTTP Request Method : GET
    HTTP Host : www.ndbbank.com

    155. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 States .201 /pages/english/quick_access/debe
    11:08:10 Execution (CVE-2017- nture_issue.jsp
    GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
    30 (compatible; MSIE 9.0; Windows
    NT 6.1)
    HTTP Request Method : GET
    HTTP Host : www.ndbbank.com
    Servers_High_Severity

    # Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
    Count Category ity Country

    156. 2017-03- HTTP: Apache Struts 3 Exploit High Attack 10.96.253.1 United 192.161.172 Unknown Server Protection/Web Servers
    30 2 Remote Code Blocked 5 States .201
    11:10:10 Execution (CVE-2017-
    GMT+05: 5638)
    30

    You might also like