← Back to IP report
Log Explorer
Fact drill-down for
45.156.129.2
Risk
4
LOW
Scope
All time
All-time facts
225
In-scope
225
Filtered
225
Seen
2023-07-09
→
2024-02-25
Freestyle query (contains)
Time (days, optional)
Page size
25
50
100
200
Apply
Reset (all-time)
Active
(none)
Clear
Faceted filters (facts-based)
exact core + snapshot + optional start/end
Annotation facets
Annotator (exact)
(any)
base — 194
cred — 16
scan_velocity — 8
fwprobe — 4
ua — 3
Severity (exact)
(any)
(none) — 206
10 — 12
28 — 4
6 — 3
Label (exact)
(any)
observed — 194
cred — 16
scan_velocity — 8
fwprobe — 4
ua — 3
HTTP facets
Method (exact, case-insensitive)
(any)
GET — 225
HTTP status (exact)
(any)
404 — 91
200 — 71
301 — 51
(none) — 8
302 — 4
Snapshot facets
Subnet (exact)
(any)
45.156.129.0/24 — 225
ASN (exact)
(any)
211680 — 225
Country / Region / City (exact)
(any country)
United States — 225
(any region)
Illinois — 225
(any city)
Chicago — 225
Org contains (ip_org or as_org_name)
Custom time window (optional override)
Provide start/end to scope time explicitly (overrides days). Leave blank for all-time.
Start
End
Tip: keep windows tight when you need speed, but the default is fact-complete.
Top annotators (facts, in-scope)
base
194
cred
16
scan_velocity
8
fwprobe
4
ua
3
Top labels (facts, in-scope)
observed
194
cred
16
scan_velocity
8
fwprobe
4
ua
3
Click a pill to apply it as a filter.
Annotated access events
Showing page
1
/
5
— total
225
rows
← Prev
Next →
#
1
2024-02-25 14:25:05
event
1234049
GET
200
bytes
1300
ann
base
label
observed
Request
event observed
/static/img/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/static/img/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
2
2024-02-25 14:25:05
event
1234048
GET
301
ann
base
label
observed
Request
event observed
/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
3
2024-02-25 14:25:05
event
1234047
GET
200
bytes
1300
ann
base
label
observed
Request
event observed
/static/img/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/static/img/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
4
2024-02-25 14:25:05
event
1234046
GET
301
ann
base
label
observed
Request
event observed
/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
5
2024-02-25 14:25:02
event
1234045
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
6
2024-02-25 14:25:02
event
1234044
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
7
2024-02-25 14:25:00
event
1234043
GET
200
bytes
4557
ann
base
label
observed
Request
event observed
/
referer
http://www.syndu.com/
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
http://www.syndu.com/
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
8
2024-02-25 14:25:00
event
1234042
GET
200
bytes
4557
ann
base
label
observed
Request
event observed
/
referer
http://www.syndu.com/
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
http://www.syndu.com/
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
9
2024-02-25 14:24:58
event
1234040
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
10
2024-02-25 14:24:58
event
1234038
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
11
2024-02-10 18:17:20
event
1069049
GET
404
bytes
4058
ann
base
label
observed
Request
event observed
/cgi-bin/config.exp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/cgi-bin/config.exp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
12
2024-02-10 18:17:20
event
1069048
GET
404
bytes
4058
ann
base
label
observed
Request
event observed
/cgi-bin/config.exp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/cgi-bin/config.exp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
13
2024-02-10 18:17:17
event
1069047
GET
302
ann
base
label
observed
Request
event observed
/admin/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/admin/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
14
2024-02-10 18:17:17
event
1069046
GET
302
ann
base
label
observed
Request
event observed
/admin/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/admin/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
15
2024-02-10 18:16:55
event
1069045
GET
404
bytes
4056
ann
base
label
observed
Request
event observed
/api/session/properties
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/api/session/properties
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
16
2024-02-10 18:16:55
event
1069044
GET
404
bytes
4056
ann
base
label
observed
Request
event observed
/api/session/properties
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/api/session/properties
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
17
2024-02-10 18:16:55
event
1069045
GET
404
bytes
4056
ann
cred
10
label
cred
Request
Auth request appears to use an automation-oriented user agent
/api/session/properties
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
cred
rule
cred:scripted_user_agent
conf
70.00
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
More (full fields + snapshot)
expand
url
/api/session/properties
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
Auth request appears to use an automation-oriented user agent
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
18
2024-02-10 18:16:55
event
1069045
GET
404
bytes
4056
ann
cred
label
cred
Request
Auth endpoint request observed
/api/session/properties
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
cred
rule
cred:auth_hit:auth_other
conf
55.00
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
More (full fields + snapshot)
expand
url
/api/session/properties
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
Auth endpoint request observed
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
19
2024-02-10 18:16:55
event
1069044
GET
404
bytes
4056
ann
cred
10
label
cred
Request
Auth request appears to use an automation-oriented user agent
/api/session/properties
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
cred
rule
cred:scripted_user_agent
conf
70.00
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
More (full fields + snapshot)
expand
url
/api/session/properties
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
Auth request appears to use an automation-oriented user agent
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
20
2024-02-10 18:16:55
event
1069044
GET
404
bytes
4056
ann
cred
label
cred
Request
Auth endpoint request observed
/api/session/properties
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
cred
rule
cred:auth_hit:auth_other
conf
55.00
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
More (full fields + snapshot)
expand
url
/api/session/properties
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
Auth endpoint request observed
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
21
2024-02-10 18:16:33
event
1069043
GET
404
bytes
4058
ann
base
label
observed
Request
event observed
/solr/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/solr/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
22
2024-02-10 18:16:33
event
1069042
GET
404
bytes
4058
ann
base
label
observed
Request
event observed
/solr/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/solr/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
23
2024-02-10 18:16:30
event
1069039
GET
404
bytes
4056
ann
base
label
observed
Request
event observed
/favicon-32x32.png
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/favicon-32x32.png
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
24
2024-02-10 18:16:30
event
1069038
GET
404
bytes
4056
ann
base
label
observed
Request
event observed
/favicon-32x32.png
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/favicon-32x32.png
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
25
2024-02-10 18:16:08
event
1069037
GET
404
bytes
4054
ann
base
label
observed
Request
event observed
/index.jsp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/index.jsp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
26
2024-02-10 18:16:08
event
1069036
GET
404
bytes
4054
ann
base
label
observed
Request
event observed
/index.jsp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/index.jsp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
27
2024-02-10 18:16:08
event
1069036
GET
404
bytes
4054
ann
scan_velocity
10
label
scan_velocity
Request
Scan-velocity indicator: scanv:404_ratio
/index.jsp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
scan_velocity
rule
scanv:404_ratio
conf
75.00
details
404=17/20(0.85); score=5; window=90s; total=20; rpm_equiv=13.3; upm_nonstatic_equiv=4.7; 404=17/20(0.85); ext_hits=3; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/index.jsp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
Scan-velocity indicator: scanv:404_ratio
details
404=17/20(0.85); score=5; window=90s; total=20; rpm_equiv=13.3; upm_nonstatic_equiv=4.7; 404=17/20(0.85); ext_hits=3; ua_sig=0; methods=['GET']
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
28
2024-02-10 18:16:08
event
1069036
GET
404
bytes
4054
ann
scan_velocity
label
scan_velocity
Request
Scan-velocity window summary
/index.jsp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
scan_velocity
rule
scanv:window
conf
—
details
window=90s; total=20; rpm_equiv=13.3; upm_nonstatic_equiv=4.7; 404=17/20(0.85); ext_hits=3; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/index.jsp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
Scan-velocity window summary
details
window=90s; total=20; rpm_equiv=13.3; upm_nonstatic_equiv=4.7; 404=17/20(0.85); ext_hits=3; ua_sig=0; methods=['GET']
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
29
2024-02-10 18:15:49
event
1069035
GET
404
bytes
184
ann
base
label
observed
Request
event observed
/static/historypage.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/static/historypage.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
30
2024-02-10 18:15:49
event
1069034
GET
404
bytes
184
ann
base
label
observed
Request
event observed
/static/historypage.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/static/historypage.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
31
2024-02-10 18:15:49
event
1069033
GET
http —
ann
base
label
observed
Request
event observed
/static/historypage.js
referer
—
UA
—
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/static/historypage.js
referer
—
UA
—
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
32
2024-02-10 18:15:49
event
1069033
GET
http —
ann
ua
6
label
ua
Request
Missing User-Agent header
/static/historypage.js
referer
—
UA
—
Annotation
facts
label
ua
rule
ua:missing
conf
60.00
details
Request had no User-Agent value (missing/empty field).
More (full fields + snapshot)
expand
url
/static/historypage.js
referer
—
UA
—
summary
Missing User-Agent header
details
Request had no User-Agent value (missing/empty field).
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
33
2024-02-10 18:15:49
event
1069033
GET
http —
ann
scan_velocity
10
label
scan_velocity
Request
Scan-velocity indicator: scanv:404_ratio
/static/historypage.js
referer
—
UA
—
Annotation
facts
label
scan_velocity
rule
scanv:404_ratio
conf
75.00
details
404=14/21(0.67); score=2; window=90s; total=21; rpm_equiv=14.0; upm_nonstatic_equiv=4.0; 404=14/21(0.67); ext_hits=2; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/static/historypage.js
referer
—
UA
—
summary
Scan-velocity indicator: scanv:404_ratio
details
404=14/21(0.67); score=2; window=90s; total=21; rpm_equiv=14.0; upm_nonstatic_equiv=4.0; 404=14/21(0.67); ext_hits=2; ua_sig=0; methods=['GET']
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
34
2024-02-10 18:15:49
event
1069033
GET
http —
ann
scan_velocity
label
scan_velocity
Request
Scan-velocity window summary
/static/historypage.js
referer
—
UA
—
Annotation
facts
label
scan_velocity
rule
scanv:window
conf
—
details
window=90s; total=21; rpm_equiv=14.0; upm_nonstatic_equiv=4.0; 404=14/21(0.67); ext_hits=2; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/static/historypage.js
referer
—
UA
—
summary
Scan-velocity window summary
details
window=90s; total=21; rpm_equiv=14.0; upm_nonstatic_equiv=4.0; 404=14/21(0.67); ext_hits=2; ua_sig=0; methods=['GET']
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
35
2024-02-10 18:15:31
event
1069032
GET
404
bytes
4059
ann
base
label
observed
Request
event observed
/showLogin.cc
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/showLogin.cc
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
36
2024-02-10 18:15:31
event
1069031
GET
404
bytes
4059
ann
base
label
observed
Request
event observed
/showLogin.cc
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/showLogin.cc
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
37
2024-02-10 18:15:28
event
1069030
GET
200
bytes
4722
ann
base
label
observed
Request
event observed
/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
38
2024-02-10 18:15:28
event
1069029
GET
200
bytes
4722
ann
base
label
observed
Request
event observed
/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
39
2024-02-10 18:15:09
event
1069028
GET
404
bytes
4057
ann
base
label
observed
Request
event observed
/webfig/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/webfig/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
40
2024-02-10 18:15:09
event
1069027
GET
404
bytes
4057
ann
base
label
observed
Request
event observed
/webfig/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/webfig/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
41
2024-02-10 18:15:09
event
1069027
GET
404
bytes
4057
ann
scan_velocity
10
label
scan_velocity
Request
Scan-velocity indicator: scanv:404_ratio
/webfig/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
scan_velocity
rule
scanv:404_ratio
conf
75.00
details
404=15/21(0.71); score=3; window=90s; total=21; rpm_equiv=14.0; upm_nonstatic_equiv=4.7; 404=15/21(0.71); ext_hits=2; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/webfig/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
Scan-velocity indicator: scanv:404_ratio
details
404=15/21(0.71); score=3; window=90s; total=21; rpm_equiv=14.0; upm_nonstatic_equiv=4.7; 404=15/21(0.71); ext_hits=2; ua_sig=0; methods=['GET']
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
42
2024-02-10 18:15:09
event
1069027
GET
404
bytes
4057
ann
scan_velocity
label
scan_velocity
Request
Scan-velocity window summary
/webfig/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
scan_velocity
rule
scanv:window
conf
—
details
window=90s; total=21; rpm_equiv=14.0; upm_nonstatic_equiv=4.7; 404=15/21(0.71); ext_hits=2; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/webfig/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
Scan-velocity window summary
details
window=90s; total=21; rpm_equiv=14.0; upm_nonstatic_equiv=4.7; 404=15/21(0.71); ext_hits=2; ua_sig=0; methods=['GET']
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
43
2024-02-10 18:15:06
event
1069025
GET
404
bytes
4057
ann
base
label
observed
Request
event observed
/favicon/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/favicon/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
44
2024-02-10 18:15:06
event
1069023
GET
404
bytes
4057
ann
base
label
observed
Request
event observed
/favicon/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/favicon/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
45
2024-02-10 18:15:03
event
1069017
GET
404
bytes
4058
ann
base
label
observed
Request
event observed
/remote/login
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/remote/login
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
46
2024-02-10 18:15:03
event
1069016
GET
404
bytes
4058
ann
base
label
observed
Request
event observed
/remote/login
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/remote/login
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
event observed
details
—
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
47
2024-02-10 18:15:03
event
1069016
GET
404
bytes
4058
ann
scan_velocity
10
label
scan_velocity
Request
Scan-velocity indicator: scanv:404_ratio
/remote/login
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
scan_velocity
rule
scanv:404_ratio
conf
75.00
details
404=13/19(0.68); score=2; window=90s; total=19; rpm_equiv=12.7; upm_nonstatic_equiv=4.7; 404=13/19(0.68); ext_hits=2; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/remote/login
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
Scan-velocity indicator: scanv:404_ratio
details
404=13/19(0.68); score=2; window=90s; total=19; rpm_equiv=12.7; upm_nonstatic_equiv=4.7; 404=13/19(0.68); ext_hits=2; ua_sig=0; methods=['GET']
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
48
2024-02-10 18:15:03
event
1069016
GET
404
bytes
4058
ann
scan_velocity
label
scan_velocity
Request
Scan-velocity window summary
/remote/login
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
scan_velocity
rule
scanv:window
conf
—
details
window=90s; total=19; rpm_equiv=12.7; upm_nonstatic_equiv=4.7; 404=13/19(0.68); ext_hits=2; ua_sig=0; methods=['GET']
More (full fields + snapshot)
expand
url
/remote/login
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
Scan-velocity window summary
details
window=90s; total=19; rpm_equiv=12.7; upm_nonstatic_equiv=4.7; 404=13/19(0.68); ext_hits=2; ua_sig=0; methods=['GET']
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
49
2024-02-10 18:15:03
event
1069017
GET
404
bytes
4058
ann
fwprobe
28
label
fwprobe
Request
Fortinet SSL-VPN / remote login endpoint probe
/remote/login
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
fwprobe
rule
fwprobe:fortinet:remote_login_or_sslvpn
conf
90.00
details
Request path matched a known firewall/VPN/gateway management or portal surface.
More (full fields + snapshot)
expand
url
/remote/login
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
Fortinet SSL-VPN / remote login endpoint probe
details
Request path matched a known firewall/VPN/gateway management or portal surface.
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
#
50
2024-02-10 18:15:03
event
1069016
GET
404
bytes
4058
ann
fwprobe
28
label
fwprobe
Request
Fortinet SSL-VPN / remote login endpoint probe
/remote/login
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
Annotation
facts
label
fwprobe
rule
fwprobe:fortinet:remote_login_or_sslvpn
conf
90.00
details
Request path matched a known firewall/VPN/gateway management or portal surface.
More (full fields + snapshot)
expand
url
/remote/login
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
summary
Fortinet SSL-VPN / remote login endpoint probe
details
Request path matched a known firewall/VPN/gateway management or portal surface.
subnet
45.156.129.0/24
asn
211680 — NSEC - Sistemas Informaticos, S.A.
geo
United States, Illinois, Chicago
org
Inap CHI
×
This is a custom alert message.
×
Confirm Action
Are you sure you want to proceed?
