← Back to IP report
Log Explorer
Fact drill-down for
64.62.156.81
Risk
1
LOW
Scope
All time
All-time facts
20
In-scope
20
Filtered
20
Seen
2024-11-27
→
2025-08-24
Freestyle query (contains)
Time (days, optional)
Page size
25
50
100
200
Apply
Reset (all-time)
Active
(none)
Clear
Faceted filters (facts-based)
exact core + snapshot + optional start/end
Annotation facets
Annotator (exact)
(any)
base — 13
sfp — 3
bot — 2
ua — 2
Severity (exact)
(any)
(none) — 13
24 — 3
12 — 2
10 — 2
Label (exact)
(any)
observed — 13
sensitive_file — 3
bot — 2
ua — 2
HTTP facets
Method (exact, case-insensitive)
(any)
GET — 20
HTTP status (exact)
(any)
301 — 9
404 — 8
200 — 3
Snapshot facets
Subnet (exact)
(any)
64.62.156.0/24 — 20
ASN (exact)
(any)
6939 — 20
Country / Region / City (exact)
(any country)
United States — 20
(any region)
Minnesota — 20
(any city)
Minneapolis — 20
Org contains (ip_org or as_org_name)
Custom time window (optional override)
Provide start/end to scope time explicitly (overrides days). Leave blank for all-time.
Start
End
Tip: keep windows tight when you need speed, but the default is fact-complete.
Top annotators (facts, in-scope)
base
13
sfp
3
bot
2
ua
2
Top labels (facts, in-scope)
observed
13
sensitive_file
3
bot
2
ua
2
Click a pill to apply it as a filter.
Annotated access events
Showing page
1
/
1
— total
20
rows
← Prev
Next →
#
1
2025-08-24 06:20:48
event
16403938
GET
301
bytes
178
ann
base
label
observed
Request
event observed
/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
2
2025-08-24 06:20:48
event
16403937
GET
301
bytes
178
ann
base
label
observed
Request
event observed
/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/favicon.ico
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
3
2025-03-08 02:35:26
event
4088314
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
4
2025-02-15 07:56:58
event
3674504
GET
404
bytes
8122
ann
base
label
observed
Request
event observed
/.git/config
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/122.0.6261.94 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/.git/config
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/122.0.6261.94 Safari/537.36
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
5
2025-02-15 07:56:58
event
3674504
GET
404
bytes
8122
ann
ua
12
label
ua
Request
Headless browser/automation framework user-agent
/.git/config
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/122.0.6261.94 Safari/537.36
Annotation
facts
label
ua
rule
ua:headless
conf
78.00
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
More (full fields + snapshot)
expand
url
/.git/config
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/122.0.6261.94 Safari/537.36
summary
Headless browser/automation framework user-agent
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
6
2025-02-15 07:56:58
event
3674504
GET
404
bytes
8122
ann
sfp
24
label
sensitive_file
Request
Probe for Git metadata
/.git/config
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/122.0.6261.94 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:git_metadata
conf
82.00
details
Request targeted Git metadata (can reveal source/config). Snippet='/.git/config'
More (full fields + snapshot)
expand
url
/.git/config
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/122.0.6261.94 Safari/537.36
summary
Probe for Git metadata
details
Request targeted Git metadata (can reveal source/config). Snippet='/.git/config'
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
7
2025-02-15 07:56:58
event
3674504
GET
404
bytes
8122
ann
bot
10
label
bot
Request
Bot user-agent detected: HeadlessChrome
/.git/config
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/122.0.6261.94 Safari/537.36
Annotation
facts
label
bot
rule
bot:headlesschrome
conf
95.00
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/122.0.6261.94 Safari/537.36'
More (full fields + snapshot)
expand
url
/.git/config
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/122.0.6261.94 Safari/537.36
summary
Bot user-agent detected: HeadlessChrome
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/122.0.6261.94 Safari/537.36'
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
8
2025-02-15 07:43:57
event
3674234
GET
200
bytes
7197
ann
base
label
observed
Request
event observed
/
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
9
2025-01-26 12:53:10
event
3060894
GET
200
bytes
7181
ann
base
label
observed
Request
event observed
/
referer
http://68.183.80.204/
UA
Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
http://68.183.80.204/
UA
Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
10
2025-01-26 12:53:10
event
3060893
GET
200
bytes
7181
ann
base
label
observed
Request
event observed
/
referer
http://68.183.80.204/
UA
Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
http://68.183.80.204/
UA
Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
11
2025-01-12 10:31:03
event
4302131
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
12
2025-01-12 10:30:35
event
4302127
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/webui/
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/webui/
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
13
2024-11-29 02:58:48
event
2156787
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/geoserver/web/
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/geoserver/web/
referer
-
UA
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
14
2024-11-29 02:57:26
event
2156780
GET
301
bytes
169
ann
base
label
observed
Request
event observed
/webui/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/92.0.4515.159 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/webui/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/92.0.4515.159 Safari/537.36
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
15
2024-11-29 02:57:26
event
2156780
GET
301
bytes
169
ann
ua
12
label
ua
Request
Headless browser/automation framework user-agent
/webui/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/92.0.4515.159 Safari/537.36
Annotation
facts
label
ua
rule
ua:headless
conf
78.00
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
More (full fields + snapshot)
expand
url
/webui/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/92.0.4515.159 Safari/537.36
summary
Headless browser/automation framework user-agent
details
UA matched a headless/automation framework often seen in scripted browsing or scraping.
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
16
2024-11-29 02:57:26
event
2156780
GET
301
bytes
169
ann
bot
10
label
bot
Request
Bot user-agent detected: HeadlessChrome
/webui/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/92.0.4515.159 Safari/537.36
Annotation
facts
label
bot
rule
bot:headlesschrome
conf
95.00
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/92.0.4515.159 Safari/537.36'
More (full fields + snapshot)
expand
url
/webui/
referer
-
UA
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/92.0.4515.159 Safari/537.36
summary
Bot user-agent detected: HeadlessChrome
details
Matched bot signature (explicit). Token='HeadlessChrome'. UA='Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/92.0.4515.159 Safari/537.36'
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
17
2024-11-27 05:57:41
event
2039808
GET
404
bytes
6306
ann
sfp
24
label
sensitive_file
Request
Probe for Git metadata
/.git/config
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:git_metadata
conf
82.00
details
Request targeted Git metadata (can reveal source/config). Snippet='/.git/config'
More (full fields + snapshot)
expand
url
/.git/config
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36
summary
Probe for Git metadata
details
Request targeted Git metadata (can reveal source/config). Snippet='/.git/config'
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
18
2024-11-27 05:57:41
event
2039807
GET
404
bytes
6306
ann
sfp
24
label
sensitive_file
Request
Probe for Git metadata
/.git/config
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36
Annotation
facts
label
sensitive_file
rule
sfp:file:git_metadata
conf
82.00
details
Request targeted Git metadata (can reveal source/config). Snippet='/.git/config'
More (full fields + snapshot)
expand
url
/.git/config
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36
summary
Probe for Git metadata
details
Request targeted Git metadata (can reveal source/config). Snippet='/.git/config'
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
19
2024-11-27 05:57:41
event
2039808
GET
404
bytes
6306
ann
base
label
observed
Request
event observed
/.git/config
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/.git/config
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
#
20
2024-11-27 05:57:41
event
2039807
GET
404
bytes
6306
ann
base
label
observed
Request
event observed
/.git/config
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36
Annotation
facts
label
observed
rule
base_observed
conf
—
details
—
More (full fields + snapshot)
expand
url
/.git/config
referer
-
UA
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36
summary
event observed
details
—
subnet
64.62.156.0/24
asn
6939 — Hurricane Electric LLC
geo
United States, Minnesota, Minneapolis
org
The Shadow Server Foundation
×
This is a custom alert message.
×
Confirm Action
Are you sure you want to proceed?
