LeakIX - Host 104.42.197.127

Host 104.42.197.127

United States

MICROSOFT-CORP-MSN-AS-BLOCK

Server vulnerable to Log4J CVE-2021-44228

The reply originated from a backend server, the originating frontend server has been included in the report for reference.

It is critical to patch log4j or the application using since the issues is exploited in the wild and leads to RCE.

IP: 104.42.197.127
Port: 443
URL: https://104.42.197.127

First seen 2021-12-31 11:58

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a51678ec44a356140a0106426201064262

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 782.902839ms
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b203738322e3930323833396d730a

Found on 2021-12-31 11:58

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7522ad5c12f649bf7139079c9139079c9

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 1.252136604s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20312e323532313336363034730a

Found on 2021-12-31 11:58

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123d2b525d02e78abe64952095c4952095c

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 1.721350332s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20312e373231333530333332730a

Found on 2021-12-31 11:58

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5ca3060d1af5a6be78fea765c8fea765c

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 2.198284774s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20322e313938323834373734730a

Found on 2021-12-31 11:58

Severity: critical
Fingerprint: aff4d642200b0639f8880459931901239a0cc0543bd6777a7ba102ae7ba102ae

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 3.151539587s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20332e313531353339353837730a

Found on 2021-12-31 11:58

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a55ee529811f4185b779ad4d4079ad4d40

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 3.623928355s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20332e363233393238333535730a

Found on 2021-12-31 11:58

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb719b8cee69907978cc67aee2dc67aee2d

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 4.090030685s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20342e303930303330363835730a

Found on 2021-12-31 11:58

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123ac2a0844dde9d00a56d4755e56d4755e

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 315.569306ms
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b203331352e3536393330366d730a

Found on 2021-12-31 11:58

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb70c9ceb3d08d1684366ff7a0166ff7a01

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 2.679775076s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20322e363739373735303736730a

Found on 2021-12-31 11:58

Create report

Domain summary

No record