SCARD

Suspicious activity by IP address 87.121.84.167

Below is a list of the last 500 suspicious interactions with this IP.

Last observed Sat, 30 May 2026 13:34:32 (Australia/Brisbane)

Back to main list

Summary of suspicious activity by IP address 87.121.84.167

Description Count
SERVER-OTHER Apache Log4j logging remote code execution attempt 14
ET EXPLOIT Apache Obfuscated log4j RCE Attempt (tcp ldap) (CVE-2021-44228) 9
ET EXPLOIT Possible Apache log4j RCE Attempt - HTTP URI Obfuscation (CVE-2021-44228) (Inbound) 7

Detailed activity by IP address 87.121.84.167

Timestamp Description Protocol Destination Port
2026-05-30 13:34:32 ET EXPLOIT Possible Apache log4j RCE Attempt - HTTP URI Obfuscation (CVE-2021-44228) (Inbound) TCP 80
2026-05-30 13:34:32 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 13:34:32 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 13:34:32 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 13:34:32 ET EXPLOIT Apache Obfuscated log4j RCE Attempt (tcp ldap) (CVE-2021-44228) TCP 80
2026-05-30 13:34:30 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 13:34:30 ET EXPLOIT Possible Apache log4j RCE Attempt - HTTP URI Obfuscation (CVE-2021-44228) (Inbound) TCP 80
2026-05-30 13:34:30 ET EXPLOIT Apache Obfuscated log4j RCE Attempt (tcp ldap) (CVE-2021-44228) TCP 80
2026-05-30 13:34:30 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 13:34:30 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 12:50:19 ET EXPLOIT Possible Apache log4j RCE Attempt - HTTP URI Obfuscation (CVE-2021-44228) (Inbound) TCP 80
2026-05-30 12:50:19 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 12:50:19 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 12:50:19 ET EXPLOIT Apache Obfuscated log4j RCE Attempt (tcp ldap) (CVE-2021-44228) TCP 80
2026-05-30 12:50:19 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 12:50:19 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 12:50:19 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 12:50:19 ET EXPLOIT Apache Obfuscated log4j RCE Attempt (tcp ldap) (CVE-2021-44228) TCP 80
2026-05-30 12:50:19 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 12:50:19 ET EXPLOIT Apache Obfuscated log4j RCE Attempt (tcp ldap) (CVE-2021-44228) TCP 80
2026-05-30 12:50:19 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 12:50:19 ET EXPLOIT Possible Apache log4j RCE Attempt - HTTP URI Obfuscation (CVE-2021-44228) (Inbound) TCP 80
2026-05-30 12:50:19 SERVER-OTHER Apache Log4j logging remote code execution attempt TCP 80
2026-05-30 12:50:19 ET EXPLOIT Apache Obfuscated log4j RCE Attempt (tcp ldap) (CVE-2021-44228) TCP 80
2026-05-30 12:20:16 ET EXPLOIT Possible Apache log4j RCE Attempt - HTTP URI Obfuscation (CVE-2021-44228) (Inbound) TCP 8080
2026-05-30 12:20:16 ET EXPLOIT Apache Obfuscated log4j RCE Attempt (tcp ldap) (CVE-2021-44228) TCP 8080
2026-05-30 12:11:36 ET EXPLOIT Apache Obfuscated log4j RCE Attempt (tcp ldap) (CVE-2021-44228) TCP 8080
2026-05-30 12:11:36 ET EXPLOIT Possible Apache log4j RCE Attempt - HTTP URI Obfuscation (CVE-2021-44228) (Inbound) TCP 8080
2026-05-30 12:11:35 ET EXPLOIT Possible Apache log4j RCE Attempt - HTTP URI Obfuscation (CVE-2021-44228) (Inbound) TCP 8080
2026-05-30 12:11:35 ET EXPLOIT Apache Obfuscated log4j RCE Attempt (tcp ldap) (CVE-2021-44228) TCP 8080

 

Back to top