LeakIX - Host 103.107.183.30

Host 103.107.183.30

Vietnam

VNPT Corp

Ubuntu

Server vulnerable to Log4J CVE-2021-44228

The reply originated from a backend server, the originating frontend server has been included in the report for reference.

It is critical to patch log4j or the application using since the issues is exploited in the wild and leads to RCE.

IP: 103.107.183.30
Port: 443
URL: https://103.107.183.30

First seen 2021-12-14 10:31
Last seen 2021-12-31 19:42
Open for 17 days

Severity: critical
Fingerprint: aff4d642200b0639f8880459931901236f244f3d6cba81da18e3edad993c13b8

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 4.09728732s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20342e3039373238373332730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-31 19:42

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7615cdc4384c16a94309893d3307da2ca

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 7.627057152s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20372e363237303537313532730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-31 19:42

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5cafabac22b3f6d0dbe265bf8c739699d

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 6.922827041s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20362e393232383237303431730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-31 19:42

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7a20087b631a211e98de227fc35239184

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 5.529384306s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20352e353239333834333036730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-31 19:42

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123cb0e42bcf3dfa97354236db2f5f9ab05

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 6.231717233s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20362e323331373137323333730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-31 19:42

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a549c1ea056e993e621e3f678596cb3083

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 4.810638954s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20342e383130363338393534730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-31 19:42

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a52e1722dcb633af5376779412bcb4aa0b

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 2.847894605s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20322e383437383934363035730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 07:27

Severity: critical
Fingerprint: aff4d642200b0639f88804599319012390abcfee8febfd21420d59e4bac29277

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 2.184555272s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20322e313834353535323732730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 07:27

Severity: critical
Fingerprint: aff4d642200b0639f88804599319012301b20a6322aca7f4e4d892b335dd0037

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 4.419206244s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20342e343139323036323434730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 07:27

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb73fe5e354ba444c6b51c6b07a25183812

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 3.607649851s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20332e363037363439383531730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 07:27

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7d10fd3ac6feed103beb1766242bb5f16

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 5.950915094s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20352e393530393135303934730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 07:27

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5757a9302706b46cd908c323845f7794b

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 5.200932992s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20352e323030393332393932730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 07:27

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7a6822cf6512c9876bbeab361954fdb63

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 5.539799336s
Orignal request was to 45.124.95.11:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20352e353339373939333336730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e31313a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 03:31

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5bf947980b62a69d07d525c17099a97fa

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 2.708016229s
Orignal request was to 45.124.95.11:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20322e373038303136323239730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e31313a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 03:31

Severity: critical
Fingerprint: aff4d642200b0639f8880459931901231cad2fc309bc6aa5ab457400ac855e8a

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 1.941064025s
Orignal request was to 45.124.95.11:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20312e393431303634303235730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e31313a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 03:31

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5f1aafe9e016fa42e733e3049c03e2f76

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 6.986498863s
Orignal request was to 45.124.95.11:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20362e393836343938383633730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e31313a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 03:31

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123f0999bc977665633579ddbf2a20ea470

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 6.307701855s
Orignal request was to 45.124.95.11:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20362e333037373031383535730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e31313a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 03:31

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a53132aca4d6809c9cd1c4a54b8f4014f2

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 4.823426943s
Orignal request was to 45.124.95.11:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20342e383233343236393433730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e31313a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 03:31

Severity: critical
Fingerprint: aff4d642200b0639f8880459931901237d3c4ce705c52791c9596ef4012e9472

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 4.125105446s
Orignal request was to 45.124.95.11:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20342e313235313035343436730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e31313a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 03:31

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb761f43b27724fedd17c7c0bb44119d9eb

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 3.384978167s
Orignal request was to 45.124.95.11:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20332e333834393738313637730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e31313a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-24 03:31

Severity: critical
Fingerprint: aff4d642200b0639f88804599319012301ac7ffe410f5c540ae7a81315c24811

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 5.128577057s
Orignal request was to 103.107.182.188:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20352e313238353737303537730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-18 08:39

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7bbafd9c75eadca396be5dd6c55203344

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 4.341794419s
Orignal request was to 103.107.182.188:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20342e333431373934343139730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-18 08:39

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5d028d0217d621df751b633ee82c1c1d5

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 3.629482905s
Orignal request was to 103.107.182.188:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20332e363239343832393035730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-18 08:39

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5610c2330a7d6678ae163713d4c04b69f

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 5.821509395s
Orignal request was to 103.107.182.188:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20352e383231353039333935730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-18 08:39

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123afe066fb67e7ef7598e86570332d2175

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 2.924333378s
Orignal request was to 103.107.182.188:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20322e393234333333333738730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-18 08:39

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7a31172feb650e7543d379913c57ebb3e

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 6.559634762s
Orignal request was to 103.107.182.188:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20362e353539363334373632730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-18 08:39

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7729e94d587cc7892f3e0ab9508c00c4a

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 4.858898912s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20342e383538383938393132730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 18:41

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123b3e5a603465cccd4b16ef1938e1f56e1

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 5.622926813s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20352e363232393236383133730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 18:41

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5535d7992ef578f7d13970488b7fb16bd

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 4.096555463s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20342e303936353535343633730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 18:41

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a54813575fbae2c178f884e1cf9c5724c9

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 6.309106388s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20362e333039313036333838730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 18:41

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7dbdaceb81e7325a73ef75a3ee0b76bb2

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 6.954625723s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20362e393534363235373233730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 18:41

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123cae2b3867bbc92998a0759cc554eb0a9

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 3.364416389s
Orignal request was to 103.56.158.13:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20332e333634343136333839730a4f7269676e616c20726571756573742077617320746f203130332e35362e3135382e31333a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 18:41

Severity: critical
Fingerprint: aff4d642200b0639f8880459931901238acf44ceffcebf846ec059e3c9882927

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 3.526194494s
Orignal request was to 103.107.182.188:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20332e353236313934343934730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 11:41

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123579a0d6a7777a398e2b0c36ff1de4bfb

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 5.775666519s
Orignal request was to 103.107.182.188:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20352e373735363636353139730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 11:41

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb731995db1b0822b6754f5087eebaa953e

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 8.141976185s
Orignal request was to 103.107.182.188:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20382e313431393736313835730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 11:41

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5f404c7335ad2472d0959da981fcfbdeb

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 6.583073509s
Orignal request was to 103.107.182.188:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20362e353833303733353039730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 11:41

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7aa7a65bcf8143fae1e7c4ac904369b06

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 5.046676597s
Orignal request was to 103.107.182.188:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20352e303436363736353937730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 11:41

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5942362fc1639d06e81bb1909c2f887d3

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 4.353776354s
Orignal request was to 103.107.182.188:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20342e333533373736333534730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 11:41

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123336284cfc1780526dffc9c314dd19729

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 2.678002216s
Orignal request was to 45.124.95.157:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20322e363738303032323136730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e3135373a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 10:31

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb736405321804ec480bf61b2e7f43387e4

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 6.211109062s
Orignal request was to 45.124.95.157:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20362e323131313039303632730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e3135373a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 10:31

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5174f83468dbbee034382fd62030915fb

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 5.536050999s
Orignal request was to 45.124.95.157:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20352e353336303530393939730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e3135373a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 10:31

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123278e6341768b7be0d5d45ec78537bd1b

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 4.828909376s
Orignal request was to 45.124.95.157:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20342e383238393039333736730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e3135373a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 10:31

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb722bde9afef06bbc6363c705108562918

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 4.077376712s
Orignal request was to 45.124.95.157:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20342e303737333736373132730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e3135373a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 10:31

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a516f4c2841d1fc5010ea132441ae2a2f5

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 3.368668913s
Orignal request was to 45.124.95.157:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20332e333638363638393133730a4f7269676e616c20726571756573742077617320746f2034352e3132342e39352e3135373a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2021-12-14 10:31

Create report

Server vulnerable to Log4J CVE-2021-44228
The reply originated from a backend server, the originating frontend server has been included in the report for reference.

It is critical to patch log4j or the application using since the issues is exploited in the wild and leads to RCE.

https://www.lunasec.io/docs/blog/log4j-zero-day/

https://issues.apache.org/jira/browse/LOG4J2-2109

https://logging.apache.org/log4j/2.x/security.html
IP: 103.107.183.30
Port: 80
URL: http://103.107.183.30

First seen 2021-12-11 11:39
- Severity: critical
  Fingerprint: aff4d642200b0639f8880459b944e3c4d95f205fd95f205f771f20b5e4a4677a
```
Received reply after a Log4j payload from this host
Reply took 3.473070203s
Orignal request was to 103.107.182.188

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a5265706c7920746f6f6b20332e343733303730323033730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138380a
```
  Found on 2021-12-11 11:39
- Severity: critical
  Fingerprint: aff4d642200b0639f8880459cef45ed9bfe3e522bfe3e52262094c180250e4da
```
Received reply after a Log4j payload from this host
Reply took 6.909321204s
Orignal request was to 103.107.182.188

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a5265706c7920746f6f6b20362e393039333231323034730a4f7269676e616c20726571756573742077617320746f203130332e3130372e3138322e3138380a
```
  Found on 2021-12-11 11:39
Create report

Domain summary

No record