# Remote Address Threat Level Method Path Query String Headers Body Acceptable Timestamp Port Request Types Attack Types Analyse Request Other Requests by Actor CSV Dump
1 172.212.73.231 5 GET /owa/auth/x.js
Header Value
Host 188.245.40.243
User-Agent Mozilla/5.0 zgrab/0.x
Accept */*
Cookie X-AnonResource=true; X-AnonResource-Backend=localhost/ecp/default.flt?~3; X-BEResource=localhost/owa/auth/logon.aspx?~3;
Accept-Encoding gzip
Parameter Value
False 2024-08-02 09:25:56.743723 80
SCAN
ATTACK
GRAB
RECON
MULTIPLE
2 172.212.73.231 5 GET /owa/auth/logon.aspx
Header Value
Host 188.245.40.243
User-Agent Mozilla/5.0 zgrab/0.x
Accept */*
Accept-Encoding gzip
Parameter Value
False 2024-07-29 22:52:10.741888 80
SCAN
ATTACK
MULTIPLE
3 172.212.73.231 5 GET /owa/auth/logon.aspx
Header Value
Host 188.245.40.243
User-Agent Mozilla/5.0 zgrab/0.x
Accept */*
Accept-Encoding gzip
Parameter Value
False 2024-07-20 03:39:56.601844 80
SCAN
ATTACK
MULTIPLE
4 172.212.73.231 5 GET /owa/auth/logon.aspx
Header Value
Host 188.245.40.243
User-Agent Mozilla/5.0 zgrab/0.x
Accept */*
Accept-Encoding gzip
Parameter Value
False 2024-07-14 17:26:59.999263 80
SCAN
ATTACK
MULTIPLE
5 172.212.73.231 5 GET /owa/auth/logon.aspx
Header Value
Host 188.245.40.243
User-Agent Mozilla/5.0 zgrab/0.x
Accept */*
Accept-Encoding gzip
Parameter Value
False 2024-07-11 01:35:02.074437 80
SCAN
ATTACK
MULTIPLE
6 172.212.73.231 5 GET /ecp/Current/exporttool/microsoft.exchange.ediscovery.exporttool.application
Header Value
Host 188.245.40.243
User-Agent Mozilla/5.0 zgrab/0.x
Accept */*
Accept-Encoding gzip
Parameter Value
False 2024-07-09 13:27:45.955769 80
SCAN
ATTACK
MULTIPLE
7 172.212.73.231 5 GET /owa/auth/logon.aspx
Header Value
Host 188.245.40.243
User-Agent Mozilla/5.0 zgrab/0.x
Accept */*
Accept-Encoding gzip
Parameter Value
False 2024-07-08 12:04:18.659259 80
SCAN
ATTACK
MULTIPLE