Vous êtes sur la page 1sur 39

Servers_High_Severity

Severity High
Start Date: 2017-03-28 11:58:44 GMT+05:30
End Date: 2017-03-30 11:58:44 GMT+05:30
Report Generation Time: 2017-03-30 11:58:59 GMT+05:30

Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

1. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Taiwan 118.163.71. HTTP Return Code : 301 Unknown Server Protection/Web Servers
28 2 Remote Code 19 101 HTTP Host : 122.255.12.211
13:56:44 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET

2. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 Taiwan 118.163.71. Unknown Server Protection/Web Servers
28 2 Remote Code 19 101
13:58:44 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

3. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Taiwan 118.163.71. HTTP Return Code : 404 Unknown Server Protection/Web Servers
28 2 Remote Code 5 101 HTTP Host : 122.255.12.200
14:19:33 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI : /
HTTP Request Method : GET

4. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 Taiwan 118.163.71. Unknown Server Protection/Web Servers
28 2 Remote Code 5 101
14:21:34 Execution (CVE-2017-
GMT+05: 5638)
30

5. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 124.16.144. HTTP Return Code : 301 Unknown Server Protection/Web Servers
28 2 Remote Code 19 31 HTTP Host : 203.115.27.147
14:47:33 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET

6. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 China 124.16.144. Unknown Server Protection/Web Servers
28 2 Remote Code 19 31
14:49:33 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

7. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 121.196.225 HTTP Return Code : 404 Unknown Server Protection/Web Servers
28 2 Remote Code 5 .253 HTTP Host : 203.115.27.144
14:56:18 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI :
/portal/client/cms/viewcmspage.a
ction
HTTP Request Method : GET

8. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.253.1 China 121.196.225 Unknown Server Protection/Web Servers
28 2 Remote Code 5 .253
14:58:18 Execution (CVE-2017-
GMT+05: 5638)
30

9. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 China 124.16.144. HTTP Return Code : 404 Unknown Server Protection/Web Servers
28 2 Remote Code 5 31 HTTP User-Agent : Mozilla/5.0
15:28:57 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Host : 203.115.27.136
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI : /
HTTP Request Method : GET
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

10. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 China 124.16.144. Unknown Server Protection/Web Servers
28 2 Remote Code 5 31
15:30:58 Execution (CVE-2017-
GMT+05: 5638)
30

11. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 124.16.144. HTTP Return Code : 301 Unknown Server Protection/Web Servers
28 2 Remote Code 0 31 HTTP Host : 203.115.27.148
16:10:49 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET

12. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.253.1 China 124.16.144. Unknown Server Protection/Web Servers
28 2 Remote Code 0 31
16:12:50 Execution (CVE-2017-
GMT+05: 5638)
30

13. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 61.160.215. HTTP Return Code : 403 Unknown Server Protection/Web Servers
28 2 Remote Code 0 150 HTTP User-Agent : Mozilla/4.0
16:22:29 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Host : 203.115.27.148
HTTP Server Type : Apache
HTTP URI : /index.action
HTTP Request Method : GET
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

14. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 China 61.160.215. HTTP Return Code : 404 Unknown Server Protection/Web Servers
28 2 Remote Code 5 150 HTTP User-Agent : Mozilla/4.0
16:22:29 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Host : 203.115.27.136
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI : /index.action
HTTP Request Method : GET

15. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 61.160.215. HTTP Return Code : 404 Unknown Server Protection/Web Servers
28 2 Remote Code 5 150 HTTP User-Agent : Mozilla/4.0
16:22:29 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Host : 203.115.27.144
HTTP Server Type : Apache-
Coyote/1.1
Keep-Alive: timeout=5, max=100
HTTP URI : /index.action
HTTP Request Method : GET

16. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 61.160.215. HTTP Return Code : 403 Unknown Server Protection/Web Servers
28 2 Remote Code 19 150 HTTP Host : 203.115.27.147
16:22:29 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache
HTTP URI : /index.action
HTTP Request Method : GET
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

17. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 61.160.215. HTTP Return Code : 303 Unknown Server Protection/Web Servers
28 2 Remote Code 15 150 HTTP Host : 203.115.27.146
16:22:30 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Microsoft-
IIS/8.5
HTTP URI : /index.action
HTTP Request Method : GET

18. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 China 61.160.215. HTTP Return Code : 302 Unknown Server Protection/Web Servers
28 2 Remote Code 0 150 HTTP Host : 203.115.27.132
16:22:30 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Lotus-
Domino
HTTP URI : /index.action
HTTP Request Method : GET

19. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.254.1 China 61.160.215. Unknown Server Protection/Web Servers
28 2 Remote Code 0 150
16:24:30 Execution (CVE-2017-
GMT+05: 5638)
30

20. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.254.2 China 61.160.215. Unknown Server Protection/Web Servers
28 2 Remote Code 5 150
16:24:30 Execution (CVE-2017-
GMT+05: 5638)
30

21. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 61.160.215. Unknown Server Protection/Web Servers
28 2 Remote Code 15 150
16:24:30 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

22. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 115.159.97. HTTP Return Code : 303 Unknown Server Protection/Web Servers
28 2 Remote Code 15 73 HTTP Host : 203.115.27.146
17:58:09 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
IIS/8.5
HTTP URI : /
HTTP Request Method : GET

23. 2017-03- HTTP: Apache Struts 7 Exploit High Inconclusive 10.96.252.2 China 115.159.97. Unknown Server Protection/Web Servers
28 2 Remote Code 15 73
18:00:10 Execution (CVE-2017-
GMT+05: 5638)
30

24. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
28 2 Remote Code 5 States .203 HTTP Host : www.ndbbank.com
19:44:35 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI :
/pages/english/investor_relations/
main_ir_07.jsp
HTTP Request Method : GET
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

25. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Not 111.11.7.17 HTTP Return Code : 301 Unknown Server Protection/Web Servers
28 2 Remote Code 19 Applicabl 8 HTTP Host : 122.255.12.211
20:02:20 Execution (CVE-2017- e HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET

26. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 China 111.11.7.17 Unknown Server Protection/Web Servers
28 2 Remote Code 19 8
20:04:19 Execution (CVE-2017-
GMT+05: 5638)
30

27. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Not 111.11.7.17 HTTP Return Code : 404 Unknown Server Protection/Web Servers
28 2 Remote Code 5 Applicabl 8 HTTP Host : 122.255.12.200
20:07:29 Execution (CVE-2017- e HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI : /
HTTP Request Method : GET

28. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 China 111.11.7.17 Unknown Server Protection/Web Servers
28 2 Remote Code 5 8
20:09:29 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

29. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Vietnam 117.6.225.1 HTTP Return Code : 403 Unknown Server Protection/Web Servers
28 2 Remote Code 0 0 HTTP Host : 122.255.12.212
21:20:38 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI :
/Struts2XMLHelloWorld/User/hom
e.action:linux
HTTP Request Method : GET

30. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
28 2 Remote Code 5 States .203 HTTP Host : www.ndbbank.com
21:24:44 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI :
/pages/english/individuals/ndb_sa
lary_max/Tamil_Financial_Guide.p
df
HTTP Request Method : GET
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

31. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Venezuel 190.205.54. HTTP Return Code : 403 Unknown Server Protection/Web Servers
28 2 Remote Code 0 a 150 HTTP Host : 122.255.12.212
21:47:46 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /notFound.action
HTTP Request Method : GET

32. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Venezuel 190.205.54. Unknown Server Protection/Web Servers
28 2 Remote Code 0 a 150
21:49:46 Execution (CVE-2017-
GMT+05: 5638)
30

33. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
28 2 Remote Code 5 States .203 HTTP Host : www.ndbbank.com
21:51:44 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI :
/pages/english/rates/exchange_ra
tes.jsp
HTTP Request Method : GET
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

34. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
28 2 Remote Code 5 States .201 HTTP Host : www.ndbbank.com
22:38:12 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI :
/pages/english/rates/exchange_ra
tes.jsp
HTTP Request Method : GET

35. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 United 192.161.172 HTTP Return Code : 200 Unknown Server Protection/Web Servers
28 2 Remote Code 5 States .201 HTTP Host : www.ndbbank.com
22:53:13 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI :
/pages/english/quick_access/debe
nture_issue.jsp
HTTP Request Method : GET

36. 2017-03- HTTP: Apache Struts 3 Exploit High Inconclusive 10.96.253.1 United 192.161.172 Unknown Server Protection/Web Servers
28 2 Remote Code 5 States .201
22:55:13 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

37. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Vietnam 117.6.225.1 HTTP Return Code : 302 Unknown Server Protection/Web Servers
28 2 Remote Code 15 0 HTTP Host : 122.255.12.210
23:09:30 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
IIS/8.5
HTTP URI :
/Struts2XMLHelloWorld/User/hom
e.action:linux
HTTP Request Method : GET

38. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 China 111.11.7.17 HTTP Return Code : 302 Unknown Server Protection/Web Servers
28 2 Remote Code 0 8 HTTP Host : 122.255.12.196
23:14:36 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Lotus-
Domino
HTTP URI : /
HTTP Request Method : GET

39. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.1 China 111.11.7.17 Unknown Server Protection/Web Servers
28 2 Remote Code 0 8
23:16:37 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

40. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 180.168.208 HTTP Return Code : 301 Unknown Server Protection/Web Servers
29 2 Remote Code 19 .14 HTTP Host : 122.255.12.211
00:30:24 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET

41. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 China 180.168.208 Unknown Server Protection/Web Servers
29 2 Remote Code 19 .14
00:32:24 Execution (CVE-2017-
GMT+05: 5638)
30

42. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Not 180.168.208 HTTP Return Code : 404 Unknown Server Protection/Web Servers
29 2 Remote Code 5 Applicabl .14 HTTP Host : 122.255.12.200
00:35:11 Execution (CVE-2017- e HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI : /
HTTP Request Method : GET

43. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 China 180.168.208 Unknown Server Protection/Web Servers
29 2 Remote Code 5 .14
00:37:12 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

44. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 India 202.88.252. HTTP Return Code : 303 Unknown Server Protection/Web Servers
29 2 Remote Code 15 51 HTTP Host : 122.255.12.210
00:56:50 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
IIS/8.5
HTTP URI : /
HTTP Request Method : GET

45. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 India 202.88.252. Unknown Server Protection/Web Servers
29 2 Remote Code 15 51
00:58:50 Execution (CVE-2017-
GMT+05: 5638)
30

46. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Vietnam 117.6.225.1 HTTP Return Code : 403 Unknown Server Protection/Web Servers
29 2 Remote Code 19 0 HTTP Host : 203.115.27.147
01:06:14 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI :
/Struts2XMLHelloWorld/User/hom
e.action:linux
HTTP Request Method : GET
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

47. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Vietnam 117.6.225.1 HTTP Return Code : 404 Unknown Server Protection/Web Servers
29 2 Remote Code 5 0 HTTP User-Agent : Mozilla/5.0
01:10:49 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Host : 203.115.27.136
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI :
/Struts2XMLHelloWorld/User/hom
e.action:linux
HTTP Request Method : GET

48. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Vietnam 117.6.225.1 HTTP Return Code : 403 Unknown Server Protection/Web Servers
29 2 Remote Code 0 0 HTTP Host : 203.115.27.148
01:15:21 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI :
/Struts2XMLHelloWorld/User/hom
e.action:linux
HTTP Request Method : GET

49. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 219.151.7.1 HTTP Return Code : 301 Unknown Server Protection/Web Servers
29 2 Remote Code 19 49 HTTP Host : 203.115.27.147
01:24:13 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) HTTP Server Type : Apache
30 HTTP URI : /
HTTP Request Method : GET
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

50. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 China 219.151.7.1 HTTP Return Code : 404 Unknown Server Protection/Web Servers
29 2 Remote Code 5 49 HTTP User-Agent : Mozilla/5.0
01:24:14 Execution (CVE-2017- HTTP Host : 203.115.27.136
GMT+05: 5638) HTTP Server Type : Microsoft-
30 HTTPAPI/2.0
HTTP URI : /
HTTP Request Method : GET

51. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 219.151.7.1 HTTP Return Code : 200 Unknown Server Protection/Web Servers
29 2 Remote Code 5 49 HTTP User-Agent : Mozilla/5.0
01:24:17 Execution (CVE-2017- HTTP Host : 203.115.27.144
GMT+05: 5638) HTTP Server Type : Apache-
30 Coyote/1.1
HTTP URI : /
HTTP Request Method : GET

52. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 219.151.7.1 HTTP Return Code : 301 Unknown Server Protection/Web Servers
29 2 Remote Code 0 49 HTTP User-Agent : Mozilla/5.0
01:24:18 Execution (CVE-2017- HTTP Host : 203.115.27.148
GMT+05: 5638) HTTP Server Type : Apache
30 HTTP URI : /
HTTP Request Method : GET

53. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 China 219.151.7.1 HTTP Return Code : 302 Unknown Server Protection/Web Servers
29 2 Remote Code 0 49 HTTP Host : 203.115.27.132
01:24:19 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) HTTP Server Type : Lotus-
30 Domino
HTTP URI : /
HTTP Request Method : GET

54. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 China 219.151.7.1 HTTP Return Code : 303 Unknown Server Protection/Web Servers
29 2 Remote Code 15 49 HTTP Host : 203.115.27.146
01:24:19 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) HTTP Server Type : Microsoft-
30 IIS/8.5
HTTP URI : /
HTTP Request Method : GET
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

55. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.252.2 China 219.151.7.1 Unknown Server Protection/Web Servers
29 2 Remote Code 15 49
01:26:13 Execution (CVE-2017-
GMT+05: 5638)
30

56. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.252.2 China 219.151.7.1 Unknown Server Protection/Web Servers
29 2 Remote Code 19 49
01:26:13 Execution (CVE-2017-
GMT+05: 5638)
30

57. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.254.1 China 219.151.7.1 Unknown Server Protection/Web Servers
29 2 Remote Code 0 49
01:26:14 Execution (CVE-2017-
GMT+05: 5638)
30

58. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.254.2 China 219.151.7.1 Unknown Server Protection/Web Servers
29 2 Remote Code 5 49
01:26:14 Execution (CVE-2017-
GMT+05: 5638)
30

59. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.253.1 China 219.151.7.1 Unknown Server Protection/Web Servers
29 2 Remote Code 0 49
01:26:18 Execution (CVE-2017-
GMT+05: 5638)
30

60. 2017-03- HTTP: Apache Struts 2 Exploit High Inconclusive 10.96.253.1 China 219.151.7.1 Unknown Server Protection/Web Servers
29 2 Remote Code 5 49
01:26:18 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

61. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 120.27.240. HTTP Return Code : 200 Unknown Server Protection/Web Servers
29 2 Remote Code 5 44 HTTP Host : www.ndbbank.com
01:56:25 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI : /
HTTP Request Method : GET

62. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Canada 144.217.166 HTTP Return Code : 301 Unknown Server Protection/Web Servers
29 2 Remote Code 19 .8 HTTP Host : 203.115.27.147
02:27:36 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET

63. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.252.2 Canada 144.217.166 Unknown Server Protection/Web Servers
29 2 Remote Code 19 .8
02:29:36 Execution (CVE-2017-
GMT+05: 5638)
30

64. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 120.76.156. HTTP Return Code : 200 Unknown Server Protection/Web Servers
29 2 Remote Code 5 204 HTTP Host : www.ndbbank.com
02:32:24 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI : /
HTTP Request Method : GET
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

65. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Italy 2.233.133.1 HTTP Return Code : 404 Unknown Server Protection/Web Servers
29 2 Remote Code 5 84 HTTP Host : 203.115.27.144
02:44:50 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI : /notFound.action
HTTP Request Method : GET

66. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Italy 2.233.133.1 Unknown Server Protection/Web Servers
29 2 Remote Code 5 84
02:46:49 Execution (CVE-2017-
GMT+05: 5638)
30

67. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 China 180.168.208 HTTP Return Code : 302 Unknown Server Protection/Web Servers
29 2 Remote Code 0 .14 HTTP Host : 122.255.12.196
03:15:05 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Lotus-
Domino
HTTP URI : /
HTTP Request Method : GET

68. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.1 China 180.168.208 Unknown Server Protection/Web Servers
29 2 Remote Code 0 .14
03:17:04 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

69. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.2 Canada 144.217.166 HTTP Return Code : 404 Unknown Server Protection/Web Servers
29 2 Remote Code 5 .8 HTTP User-Agent : Mozilla/5.0
03:31:18 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Host : 203.115.27.136
HTTP Server Type : Microsoft-
HTTPAPI/2.0
HTTP URI : /
HTTP Request Method : GET

70. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.2 Canada 144.217.166 Unknown Server Protection/Web Servers
29 2 Remote Code 5 .8
03:33:19 Execution (CVE-2017-
GMT+05: 5638)
30

71. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 124.16.144. HTTP Return Code : 301 Unknown Server Protection/Web Servers
29 2 Remote Code 0 31 HTTP Host : 122.255.12.212
03:45:16 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET

72. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.253.1 China 124.16.144. Unknown Server Protection/Web Servers
29 2 Remote Code 0 31
03:47:17 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

73. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.254.1 Taiwan 118.163.71. HTTP Return Code : 302 Unknown Server Protection/Web Servers
29 2 Remote Code 0 101 HTTP Host : 122.255.12.196
03:48:02 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Lotus-
Domino
HTTP URI : /
HTTP Request Method : GET

74. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.254.1 Not 118.163.71. Unknown Server Protection/Web Servers
29 2 Remote Code 0 Applicabl 101
03:50:03 Execution (CVE-2017- e
GMT+05: 5638)
30

75. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 Canada 144.217.166 HTTP Return Code : 301 Unknown Server Protection/Web Servers
29 2 Remote Code 0 .8 HTTP Host : 203.115.27.148
04:33:37 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Apache
HTTP URI : /
HTTP Request Method : GET

76. 2017-03- HTTP: Apache Struts 8 Exploit High Inconclusive 10.96.253.1 Canada 144.217.166 Unknown Server Protection/Web Servers
29 2 Remote Code 0 .8
04:35:37 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

77. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.253.1 China 14.144.54.1 HTTP Return Code : 200 Unknown Server Protection/Web Servers
29 2 Remote Code 5 86 HTTP Host : www.ndbbank.com
05:33:09 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Server Type : Apache-
Coyote/1.1
HTTP URI : /
HTTP Request Method : GET

78. 2017-03- HTTP: Apache Struts 1 Exploit High Inconclusive 10.96.252.2 Slovakia 89.173.5.18 HTTP Return Code : 303 Unknown Server Protection/Web Servers
29 2 Remote Code 15 3 HTTP Host : 203.115.27.146
06:24:01 Execution (CVE-2017- HTTP User-Agent : Mozilla/5.0
GMT+05: 5638) (Macintosh; Intel Mac OS X
30 10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Server Type : Microsoft-
IIS/8.5
HTTP URI :
/admin/agent/default.action
HTTP Request Method : GET

79. 2017-03- HTTP: Apache Struts 6 Exploit High Inconclusive 10.96.252.2 Not 89.173.5.18 Unknown Server Protection/Web Servers
29 2 Remote Code 15 Applicabl 3
06:26:02 Execution (CVE-2017- e
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

80. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Italy 93.56.12.16 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 4 HTTP User-Agent : Mozilla/5.0
08:05:41 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 203.115.27.144

81. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.253.1 Italy 93.56.12.16 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 4
08:07:41 Execution (CVE-2017-
GMT+05: 5638)
30

82. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 Italy 93.56.12.16 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 4
08:09:41 Execution (CVE-2017-
GMT+05: 5638)
30

83. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .203 /pages/english/invstr_and_comnt
08:50:04 Execution (CVE-2017- y_rlatins/snr_mgmt.jsp
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

84. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .203 /pages/english/individuals/ndb_sa
09:30:55 Execution (CVE-2017- lary_max/Tamil_Financial_Guide.p
GMT+05: 5638) df
30 HTTP User-Agent : Mozilla/4.0
(compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com

85. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 United 24.56.230.1 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 19 States 5 HTTP User-Agent : Mozilla/5.0
11:32:23 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.211

86. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 United 24.56.230.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 19 States 5
11:34:24 Execution (CVE-2017-
GMT+05: 5638)
30

87. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.2 United 24.56.230.1 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States 5 HTTP User-Agent : Mozilla/5.0
11:35:19 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.200
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

88. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 United 24.56.230.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 19 States 5
11:36:24 Execution (CVE-2017-
GMT+05: 5638)
30

89. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.2 Not 24.56.230.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 Applicabl 5
11:37:20 Execution (CVE-2017- e
GMT+05: 5638)
30

90. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.2 United 24.56.230.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States 5
11:39:21 Execution (CVE-2017-
GMT+05: 5638)
30

91. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Italy 93.46.201.1 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 7 HTTP User-Agent : Mozilla/5.0
12:30:40 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.210

92. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 Italy 93.46.201.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 7
12:32:40 Execution (CVE-2017-
GMT+05: 5638)
30

93. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 Italy 93.46.201.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 7
12:34:40 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

94. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 Brazil 187.115.73. HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 70 HTTP User-Agent : Mozilla/5.0
12:57:57 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 203.115.27.132

95. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.1 Brazil 187.115.73. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 70
12:59:57 Execution (CVE-2017-
GMT+05: 5638)
30

96. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 Brazil 187.115.73. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 70
13:01:57 Execution (CVE-2017-
GMT+05: 5638)
30

97. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 United 24.56.230.1 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 States 5 HTTP User-Agent : Mozilla/5.0
13:13:55 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.196

98. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.1 United 24.56.230.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 States 5
13:15:55 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

99. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 United 24.56.230.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 States 5
13:17:55 Execution (CVE-2017-
GMT+05: 5638)
30

100. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Italy 2.233.133.1 HTTP URI : /notFound.action Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 84 HTTP User-Agent : Mozilla/5.0
14:08:17 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.210

101. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Italy 2.233.133.1 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 84
14:10:17 Execution (CVE-2017-
GMT+05: 5638)
30

102. 2017-03- HTTP: Microsoft 1 Exploit High Attack 104.40.129. Not 10.96.253.1 HTTP Return Code : 200 Unknown Client Protection/Operating
29 Windows HTTP Blocked 109 Applicabl 5 HTTP URI : Systems
14:22:56 Services Integer e /pages/english/investor_relations/
GMT+05: Underflow js/jquery-1.9.1.js
30 Vulnerability HTTP Request Method : GET

103. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 China 119.78.254. HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 19 4 HTTP User-Agent : Mozilla/5.0
16:04:04 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.211
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

104. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 19 4
16:06:05 Execution (CVE-2017-
GMT+05: 5638)
30

105. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 19 4
16:08:05 Execution (CVE-2017-
GMT+05: 5638)
30

106. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.2 Not 119.78.254. HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 Applicabl 4 HTTP User-Agent : Mozilla/5.0
16:08:43 Execution (CVE-2017- e (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.200

107. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.2 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 4
16:10:45 Execution (CVE-2017-
GMT+05: 5638)
30

108. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.2 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 4
16:12:45 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

109. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .203 /pages/english/invstr_and_comnt
16:55:46 Execution (CVE-2017- y_rlatins/corp_info.jsp
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com

110. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Vietnam 203.162.235 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 .250 HTTP User-Agent : Mozilla/5.0
17:24:09 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.210

111. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 Not 203.162.235 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 Applicabl .250
17:26:10 Execution (CVE-2017- e
GMT+05: 5638)
30

112. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 Vietnam 203.162.235 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 .250
17:28:09 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

113. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Taiwan 125.227.128 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 .173 HTTP User-Agent : Mozilla/5.0
17:29:45 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.208

114. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.253.1 Not 125.227.128 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 Applicabl .173
17:31:46 Execution (CVE-2017- e
GMT+05: 5638)
30

115. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 Taiwan 125.227.128 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 .173
17:33:46 Execution (CVE-2017-
GMT+05: 5638)
30

116. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : /abt_us/careers.jsp Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .201 HTTP User-Agent : Mozilla/4.0
18:43:03 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : www.ndbbank.com

117. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 China 119.78.254. HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 4 HTTP User-Agent : Mozilla/5.0
18:56:15 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.196
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

118. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.1 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 4
18:58:15 Execution (CVE-2017-
GMT+05: 5638)
30

119. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 4
19:00:15 Execution (CVE-2017-
GMT+05: 5638)
30

120. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Vietnam 117.6.225.1 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 15 0 /Struts2XMLHelloWorld/User/hom
19:46:26 Execution (CVE-2017- e.action:linux
GMT+05: 5638) HTTP User-Agent : Mozilla/5.0
30 (Macintosh; Intel Mac OS X
10_12_3) AppleWebKit/537.36
(KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 203.115.27.146

121. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 China 121.42.147. HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 64 HTTP User-Agent : Mozilla/4.0
19:57:49 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : www.ndbbank.com
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

122. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 China 119.78.254. HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 4 HTTP User-Agent : Mozilla/5.0
20:56:46 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 203.115.27.132

123. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.254.1 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 4
20:58:45 Execution (CVE-2017-
GMT+05: 5638)
30

124. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 China 119.78.254. Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 4
21:00:45 Execution (CVE-2017-
GMT+05: 5638)
30

125. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .203 /applications/personal_loans.jsp
21:31:48 Execution (CVE-2017- HTTP User-Agent : Mozilla/4.0
GMT+05: 5638) (compatible; MSIE 9.0; Windows
30 NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com

126. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .203 /pages/english/ndb_network/bran
21:45:11 Execution (CVE-2017- ches.jsp
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

127. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Vietnam 203.162.235 HTTP URI : / Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 .250 HTTP User-Agent : Mozilla/5.0
22:22:35 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.212

128. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.253.1 Vietnam 203.162.235 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 .250
22:24:35 Execution (CVE-2017-
GMT+05: 5638)
30

129. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 Vietnam 203.162.235 Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 0 .250
22:26:35 Execution (CVE-2017-
GMT+05: 5638)
30

130. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
29 2 Remote Code Blocked 5 States .203 /pages/english/individuals/visa_ca
22:40:39 Execution (CVE-2017- rd.jsp
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

131. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 Slovakia 37.9.169.9 HTTP URI : / Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 15 HTTP User-Agent : Mozilla/5.0
01:49:38 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 203.115.27.146

132. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.252.2 Slovakia 37.9.169.9 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 15
01:51:39 Execution (CVE-2017-
GMT+05: 5638)
30

133. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Germany 88.198.116. HTTP URI : / Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 245 HTTP User-Agent : Mozilla/5.0
01:51:55 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.208

134. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 Slovakia 37.9.169.9 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 15
01:53:39 Execution (CVE-2017-
GMT+05: 5638)
30

135. 2017-03- HTTP: Apache Struts 6 Exploit High Attack 10.96.253.1 Not 88.198.116. Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 Applicabl 245
01:53:56 Execution (CVE-2017- e
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

136. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 Germany 88.198.116. Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 245
01:55:56 Execution (CVE-2017-
GMT+05: 5638)
30

137. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Italy 2.233.133.1 HTTP URI : /notFound.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 84 HTTP User-Agent : Mozilla/5.0
04:47:05 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 122.255.12.208

138. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 Not 2.233.133.1 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 Applicabl 84
04:49:06 Execution (CVE-2017- e
GMT+05: 5638)
30

139. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : /index.jsp Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 States .203 HTTP User-Agent : Mozilla/4.0
06:17:50 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : www.ndbbank.com

140. 2017-03- HTTP: Apache 1 Exploit High Attack 10.96.252.2 United 204.232.241 HTTP URI : //cgi- Unknown Server Protection/Web Servers
30 mod_cgi Bash Blocked 19 States .139 sys/defaultwebpage.cgi
09:06:51 Environment Variable HTTP User-Agent : () { :; };
GMT+05: Code Injection /sbin/ifconfig
30 HTTP Request Method : GET
HTTP Host :
www.ndbbankonline.com
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

141. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 States .201 /pages/english/quick_access/notic
09:16:28 Execution (CVE-2017- es.jsp
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com

142. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 .171 HTTP User-Agent : Mozilla/4.0
09:45:58 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : 203.115.27.144

143. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 0 .171 HTTP User-Agent : Mozilla/4.0
09:45:58 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : 203.115.27.132

144. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 0 .171 HTTP User-Agent : Mozilla/4.0
09:45:58 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : 203.115.27.148

145. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.252.2 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 15 .171 HTTP User-Agent : Mozilla/4.0
09:45:59 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : 203.115.27.146
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

146. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.2 China 115.236.169 HTTP URI : /index.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 .171 HTTP User-Agent : Mozilla/4.0
09:45:59 Execution (CVE-2017- (compatible; MSIE 9.0; Windows
GMT+05: 5638) NT 6.1)
30 HTTP Request Method : GET
HTTP Host : 203.115.27.136

147. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 Italy 2.233.133.1 HTTP URI : /notFound.action Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 0 84 HTTP User-Agent : Mozilla/5.0
09:46:53 Execution (CVE-2017- (Macintosh; Intel Mac OS X
GMT+05: 5638) 10_12_3) AppleWebKit/537.36
30 (KHTML, like Gecko)
Chrome/56.0.2924.87
Safari/537.36
HTTP Request Method : GET
HTTP Host : 203.115.27.132

148. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 China 115.236.169 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 0 .171
09:47:59 Execution (CVE-2017-
GMT+05: 5638)
30

149. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.253.1 China 115.236.169 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 .171
09:47:59 Execution (CVE-2017-
GMT+05: 5638)
30

150. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.254.1 Italy 2.233.133.1 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 0 84
09:47:59 Execution (CVE-2017-
GMT+05: 5638)
30
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

151. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.2 China 115.236.169 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 .171
09:47:59 Execution (CVE-2017-
GMT+05: 5638)
30

152. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.254.1 China 115.236.169 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 0 .171
09:47:59 Execution (CVE-2017-
GMT+05: 5638)
30

153. 2017-03- HTTP: Apache Struts 2 Exploit High Attack 10.96.252.2 China 115.236.169 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 15 .171
09:47:59 Execution (CVE-2017-
GMT+05: 5638)
30

154. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 States .203 /pages/english/news/ifc_further.js
11:00:48 Execution (CVE-2017- p
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com

155. 2017-03- HTTP: Apache Struts 1 Exploit High Attack 10.96.253.1 United 192.161.172 HTTP URI : Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 States .201 /pages/english/quick_access/debe
11:08:10 Execution (CVE-2017- nture_issue.jsp
GMT+05: 5638) HTTP User-Agent : Mozilla/4.0
30 (compatible; MSIE 9.0; Windows
NT 6.1)
HTTP Request Method : GET
HTTP Host : www.ndbbank.com
Servers_High_Severity

# Time Attack Name Alert Attack Sever Result Dest IP Src Src IP Layer7 Data App Risk Protection Category
Count Category ity Country

156. 2017-03- HTTP: Apache Struts 3 Exploit High Attack 10.96.253.1 United 192.161.172 Unknown Server Protection/Web Servers
30 2 Remote Code Blocked 5 States .201
11:10:10 Execution (CVE-2017-
GMT+05: 5638)
30