Host 20.76.239.164
Netherlands
-
Server vulnerable to Log4J CVE-2021-44228
The reply originated from a backend server, the originating frontend server has been included in the report for reference.
It is critical to patch log4j or the application using since the issues is exploited in the wild and leads to RCE.
First seen 2021-12-31 07:38-
Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a57d4d6f0e30c977a1c67c216406862f41Received reply after a Log4j payload from this host Ping was received because of query value Reply took 367.401203ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b203336372e3430313230336d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f8880459a5c7f9f40b02c15407668aafc2f7fb367694bbafReceived reply after a Log4j payload from this host Ping was received because of Cache-Control Reply took 423.624644ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662043616368652d436f6e74726f6c0a5265706c7920746f6f6b203432332e3632343634346d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f8880459d2eb3d8f84d0fd3da73f01d28ca45e55aeea9544Received reply after a Log4j payload from this host Ping was received because of cookie value Reply took 481.700915ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620636f6f6b69652076616c75650a5265706c7920746f6f6b203438312e3730303931356d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5f7752965567b57ea3302681d8bba8a4bReceived reply after a Log4j payload from this host Ping was received because of query value Reply took 549.588181ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b203534392e3538383138316d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f8880459cfe551f6ad9be0275bf5c20475d339634497ad8bReceived reply after a Log4j payload from this host Ping was received because of random header Reply took 604.228194ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662072616e646f6d206865616465720a5265706c7920746f6f6b203630342e3232383139346d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f8880459a5c7f9f4c97649e9457555662cf2f8f121c37019Received reply after a Log4j payload from this host Ping was received because of Cache-Control Reply took 641.209956ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662043616368652d436f6e74726f6c0a5265706c7920746f6f6b203634312e3230393935366d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f88804599319012391b66d0f70bea3fc6dda12ab0fd62b1bReceived reply after a Log4j payload from this host Ping was received because of query argument Reply took 255.661163ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b203235352e3636313136336d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f888045993190123b501cdb22b9706fd8ac7f30886aeb8dfReceived reply after a Log4j payload from this host Ping was received because of query argument Reply took 299.292946ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b203239392e3239323934366d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f888045993190123a3ba76fa26fa85b5b96faa3087800ec1Received reply after a Log4j payload from this host Ping was received because of query argument Reply took 340.596124ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b203334302e3539363132346d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f8880459d5e18a6591401f02ddfa8aad1cc86d189ead09d3Received reply after a Log4j payload from this host Ping was received because of cookie name Reply took 469.686643ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620636f6f6b6965206e616d650a5265706c7920746f6f6b203436392e3638363634336d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f888045993190123351dc80cf87faf97e277628ebc24e1e9Received reply after a Log4j payload from this host Ping was received because of query argument Reply took 538.510648ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b203533382e3531303634386d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f888045993190123d03519e8a2fa9b7babff772ae8ec075dReceived reply after a Log4j payload from this host Ping was received because of query argument Reply took 569.457459ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b203536392e3435373435396d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f8880459931901236f0e7b5b3b5a4fe018c39ac752e85cd3Received reply after a Log4j payload from this host Ping was received because of query argument Reply took 509.818187ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b203530392e3831383138376d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38 -
Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5489f772c6df465f7d0a88beeaba6478bReceived reply after a Log4j payload from this host Ping was received because of query value Reply took 594.935692ms Orignal request was to 20.76.228.248:443 This event's HTTP and SSL details are preserved from the orignal request. Orignal reply: 5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b203539342e3933353639326d730a4f7269676e616c20726571756573742077617320746f2032302e37362e3232382e3234383a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a
Found on 2021-12-31 07:38
-