DigitalOcean Referral Badge
cloud1
cloud2
cloud3
cloud4
cloud5
cloud6
← Back to IP report

Log Explorer

Fact drill-down for 185.177.72.108
Risk 37 MED Scope All time All-time facts 673 In-scope 673 Filtered 673 Seen 2025-07-152025-08-10
Reset (all-time)
Active (none) Clear
Faceted filters (facts-based) exact core + snapshot + optional start/end
Annotation facets
HTTP facets
Snapshot facets
Custom time window (optional override)
Provide start/end to scope time explicitly (overrides days). Leave blank for all-time.
Tip: keep windows tight when you need speed, but the default is fact-complete.
Top annotators (facts, in-scope)
base 452 trav 71 sfp 69 scan_velocity 67 cred 8 ua 6
Top labels (facts, in-scope)
observed 452 trav 71 sensitive_file 69 scan_velocity 67 cred 8 ua 6
Click a pill to apply it as a filter.

Annotated access events

Showing page 1 / 14 — total 673 rows
#1 2025-08-10 00:56:54 event 15616706 GET 301 bytes 178
ann base label observed
Request event observed
/.env
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/.env
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#2 2025-08-10 00:56:54 event 15616693 GET 301 bytes 178
ann base label observed
Request event observed
/.git/HEAD
referer
-
UA
-
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/.git/HEAD
referer
-
UA
-
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#3 2025-08-10 00:56:54 event 15616693 GET 301 bytes 178
ann ua 8 label ua
Request Very short User-Agent string
/.git/HEAD
referer
-
UA
-
Annotation facts
label
ua
rule
ua:very_short
conf
65.00
details
Short/generic UAs are common in basic scripts and commodity automation.
More (full fields + snapshot) expand
url
/.git/HEAD
referer
-
UA
-
summary
Very short User-Agent string
details
Short/generic UAs are common in basic scripts and commodity automation.
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#4 2025-08-10 00:56:54 event 15616706 GET 301 bytes 178
ann sfp 40 label sensitive_file
Request Probe for environment/secret file (.env)
/.env
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env'
More (full fields + snapshot) expand
url
/.env
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env'
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#5 2025-08-10 00:56:54 event 15616693 GET 301 bytes 178
ann sfp 24 label sensitive_file
Request Probe for Git metadata
/.git/HEAD
referer
-
UA
-
Annotation facts
label
sensitive_file
rule
sfp:file:git_metadata
conf
82.00
details
Request targeted Git metadata (can reveal source/config). Snippet='/.git/HEAD'
More (full fields + snapshot) expand
url
/.git/HEAD
referer
-
UA
-
summary
Probe for Git metadata
details
Request targeted Git metadata (can reveal source/config). Snippet='/.git/HEAD'
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#6 2025-07-27 16:25:48 event 15049668 GET 404 bytes 7945
ann base label observed
Request event observed
/web.config.temp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/web.config.temp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#7 2025-07-27 16:25:48 event 15049668 GET 404 bytes 7945
ann trav 34 label trav
Request Path traversal / LFI indicator detected
/web.config.temp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
trav
rule
trav:sensitive_target
conf
95.00
details
Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.
More (full fields + snapshot) expand
url
/web.config.temp
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Path traversal / LFI indicator detected
details
Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#8 2025-07-27 16:25:43 event 15049661 GET 404 bytes 7947
ann base label observed
Request event observed
/web.config.old
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/web.config.old
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#9 2025-07-27 16:25:43 event 15049661 GET 404 bytes 7947
ann trav 34 label trav
Request Path traversal / LFI indicator detected
/web.config.old
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
trav
rule
trav:sensitive_target
conf
95.00
details
Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.
More (full fields + snapshot) expand
url
/web.config.old
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Path traversal / LFI indicator detected
details
Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#10 2025-07-27 16:25:43 event 15049661 GET 404 bytes 7947
ann sfp 16 label sensitive_file
Request Probe for backup/editor artifact
/web.config.old
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
sensitive_file
rule
sfp:file:backup_artifact
conf
70.00
details
Request path contains a common backup/editor artifact extension/suffix. Snippet='/web.config.old'
More (full fields + snapshot) expand
url
/web.config.old
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Probe for backup/editor artifact
details
Request path contains a common backup/editor artifact extension/suffix. Snippet='/web.config.old'
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#11 2025-07-27 16:25:40 event 15049652 GET 404 bytes 7946
ann base label observed
Request event observed
/web.config.bakup
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/web.config.bakup
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#12 2025-07-27 16:25:40 event 15049652 GET 404 bytes 7946
ann trav 34 label trav
Request Path traversal / LFI indicator detected
/web.config.bakup
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
trav
rule
trav:sensitive_target
conf
95.00
details
Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.
More (full fields + snapshot) expand
url
/web.config.bakup
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Path traversal / LFI indicator detected
details
Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#13 2025-07-27 16:25:38 event 15049644 GET 404 bytes 7946
ann base label observed
Request event observed
/web.config.bak
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/web.config.bak
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#14 2025-07-27 16:25:38 event 15049644 GET 404 bytes 7946
ann trav 34 label trav
Request Path traversal / LFI indicator detected
/web.config.bak
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
trav
rule
trav:sensitive_target
conf
95.00
details
Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.
More (full fields + snapshot) expand
url
/web.config.bak
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Path traversal / LFI indicator detected
details
Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#15 2025-07-27 16:25:38 event 15049644 GET 404 bytes 7946
ann sfp 16 label sensitive_file
Request Probe for backup/editor artifact
/web.config.bak
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
sensitive_file
rule
sfp:file:backup_artifact
conf
70.00
details
Request path contains a common backup/editor artifact extension/suffix. Snippet='/web.config.bak'
More (full fields + snapshot) expand
url
/web.config.bak
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Probe for backup/editor artifact
details
Request path contains a common backup/editor artifact extension/suffix. Snippet='/web.config.bak'
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#16 2025-07-27 16:25:31 event 15049634 GET 404 bytes 7947
ann base label observed
Request event observed
/web.config
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/web.config
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#17 2025-07-27 16:25:31 event 15049634 GET 404 bytes 7947
ann trav 34 label trav
Request Path traversal / LFI indicator detected
/web.config
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
trav
rule
trav:sensitive_target
conf
95.00
details
Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.
More (full fields + snapshot) expand
url
/web.config
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Path traversal / LFI indicator detected
details
Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#18 2025-07-22 02:39:22 event 11494091 GET 301 bytes 178
ann sfp 40 label sensitive_file
Request Probe for environment/secret file (.env)
/.env.sample
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
sensitive_file
rule
sfp:file:env
conf
92.00
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env.sample'
More (full fields + snapshot) expand
url
/.env.sample
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Probe for environment/secret file (.env)
details
Request targeted a .env-style file (often contains secrets). Snippet='/.env.sample'
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#19 2025-07-22 02:39:22 event 11494091 GET 301 bytes 178
ann base label observed
Request event observed
/.env.sample
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/.env.sample
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#20 2025-07-22 02:39:22 event 11494090 GET 404 bytes 7944
ann base label observed
Request event observed
/Gulpfile.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/Gulpfile.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#21 2025-07-22 02:39:22 event 11494089 GET 404 bytes 7940
ann base label observed
Request event observed
/graphql.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/graphql.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#22 2025-07-22 02:39:22 event 11494088 GET 404 bytes 7946
ann base label observed
Request event observed
/js/qa.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/js/qa.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#23 2025-07-22 02:39:22 event 11494087 GET 404 bytes 7944
ann base label observed
Request event observed
/.config/karma.conf.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/.config/karma.conf.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#24 2025-07-22 02:39:21 event 11494086 GET 404 bytes 7946
ann base label observed
Request event observed
/server.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/server.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#25 2025-07-22 02:39:21 event 11494085 GET 404 bytes 7945
ann base label observed
Request event observed
/babel.config.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/babel.config.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#26 2025-07-22 02:39:21 event 11494083 GET 404 bytes 7941
ann base label observed
Request event observed
/.eslintrc.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/.eslintrc.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#27 2025-07-22 02:39:21 event 11494082 GET 404 bytes 7947
ann base label observed
Request event observed
/src/app.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/src/app.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#28 2025-07-22 02:39:21 event 11494081 GET 404 bytes 7947
ann base label observed
Request event observed
/swfobject.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/swfobject.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#29 2025-07-22 02:39:20 event 11494080 GET 404 bytes 7944
ann base label observed
Request event observed
/.src/server.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/.src/server.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#30 2025-07-22 02:39:20 event 11494079 GET 404 bytes 7945
ann base label observed
Request event observed
/v1/test/js/console_ajax.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/v1/test/js/console_ajax.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#31 2025-07-22 02:39:20 event 11494078 GET 404 bytes 7946
ann base label observed
Request event observed
/server/server.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/server/server.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#32 2025-07-22 02:39:20 event 11494077 GET 404 bytes 7947
ann base label observed
Request event observed
/gulpfile.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/gulpfile.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#33 2025-07-22 02:39:20 event 11494076 GET 404 bytes 7945
ann base label observed
Request event observed
/ad_js.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/ad_js.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#34 2025-07-22 02:39:19 event 11494073 GET 404 bytes 7943
ann cred 10 label cred
Request Auth request appears to use an automation-oriented user agent
/Citrix/AccessPlatform/auth/clientscripts/login.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
cred
rule
cred:scripted_user_agent
conf
70.00
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
More (full fields + snapshot) expand
url
/Citrix/AccessPlatform/auth/clientscripts/login.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Auth request appears to use an automation-oriented user agent
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#35 2025-07-22 02:39:19 event 11494073 GET 404 bytes 7943
ann cred label cred
Request Auth endpoint request observed
/Citrix/AccessPlatform/auth/clientscripts/login.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
cred
rule
cred:auth_hit:login
conf
55.00
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
More (full fields + snapshot) expand
url
/Citrix/AccessPlatform/auth/clientscripts/login.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Auth endpoint request observed
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#36 2025-07-22 02:39:19 event 11494072 GET 404 bytes 7946
ann cred 10 label cred
Request Auth request appears to use an automation-oriented user agent
/AccessPlatform/auth/clientscripts/login.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
cred
rule
cred:scripted_user_agent
conf
70.00
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
More (full fields + snapshot) expand
url
/AccessPlatform/auth/clientscripts/login.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Auth request appears to use an automation-oriented user agent
details
Automation-ish UA strings are useful correlates when paired with failures or spraying patterns.
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#37 2025-07-22 02:39:19 event 11494072 GET 404 bytes 7946
ann cred label cred
Request Auth endpoint request observed
/AccessPlatform/auth/clientscripts/login.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
cred
rule
cred:auth_hit:login
conf
55.00
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
More (full fields + snapshot) expand
url
/AccessPlatform/auth/clientscripts/login.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
Auth endpoint request observed
details
Row-level auth primitive for downstream aggregation (no velocity logic here).
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#38 2025-07-22 02:39:19 event 11494075 GET 404 bytes 7945
ann base label observed
Request event observed
/learn/ruubikcms/ruubikcms/tiny_mce/plugins/tinybrowser/tb_tinymce.js.php
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/learn/ruubikcms/ruubikcms/tiny_mce/plugins/tinybrowser/tb_tinymce.js.php
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#39 2025-07-22 02:39:19 event 11494074 GET 404 bytes 7946
ann base label observed
Request event observed
/.src/app.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/.src/app.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#40 2025-07-22 02:39:19 event 11494073 GET 404 bytes 7943
ann base label observed
Request event observed
/Citrix/AccessPlatform/auth/clientscripts/login.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/Citrix/AccessPlatform/auth/clientscripts/login.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#41 2025-07-22 02:39:19 event 11494072 GET 404 bytes 7946
ann base label observed
Request event observed
/AccessPlatform/auth/clientscripts/login.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/AccessPlatform/auth/clientscripts/login.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#42 2025-07-22 02:39:18 event 11494071 GET 404 bytes 7943
ann base label observed
Request event observed
/mimosa-config.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/mimosa-config.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#43 2025-07-22 02:39:18 event 11494070 GET 404 bytes 7946
ann base label observed
Request event observed
/karma.conf.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/karma.conf.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#44 2025-07-22 02:39:18 event 11494069 GET 404 bytes 7945
ann base label observed
Request event observed
/gulp-azure-sync-assets.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/gulp-azure-sync-assets.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#45 2025-07-22 02:39:18 event 11494067 GET 404 bytes 7947
ann base label observed
Request event observed
/.src/index.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/.src/index.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#46 2025-07-22 02:39:18 event 11494066 GET 404 bytes 7946
ann base label observed
Request event observed
/.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#47 2025-07-22 02:39:17 event 11494064 GET 404 bytes 7944
ann base label observed
Request event observed
/gruntFile.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/gruntFile.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#48 2025-07-22 02:39:17 event 11494063 GET 404 bytes 7946
ann base label observed
Request event observed
/.prettierrc.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/.prettierrc.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#49 2025-07-22 02:39:17 event 11494062 GET 404 bytes 7947
ann base label observed
Request event observed
/learn/ruubikcms/ruubikcms/website/scripts/jquery.lightbox-0.5.js.php
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/learn/ruubikcms/ruubikcms/website/scripts/jquery.lightbox-0.5.js.php
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
#50 2025-07-22 02:39:17 event 11494061 GET 404 bytes 7943
ann base label observed
Request event observed
/js/config.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
Annotation facts
label
observed
rule
base_observed
conf
details
More (full fields + snapshot) expand
url
/js/config.js
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
summary
event observed
details
subnet
185.177.72.0/24
asn
211590 — Bucklog SARL
geo
France, Île-de-France, Vélizy-Villacoublay
org
FBW NETWORKS
Page 1 of 14