← Back to IP report

Log Explorer

Fact drill-down for 67.220.85.26

Risk 7 LOW Scope All time All-time facts 84 In-scope 84 Filtered 84 Seen 2024-09-27 → 2024-11-19

Reset (all-time)

Active (none) Clear

Faceted filters (facts-based) exact core + snapshot + optional start/end

Annotation facets

HTTP facets

Snapshot facets

Custom time window (optional override)

Provide start/end to scope time explicitly (overrides days). Leave blank for all-time.

Tip: keep windows tight when you need speed, but the default is fact-complete.

Top annotators (facts, in-scope)

base 54 sfp 22 trav 8

Top labels (facts, in-scope)

observed 54 sensitive_file 22 trav 8

Click a pill to apply it as a filter.

Annotated access events

Showing page 1 / 2 — total 84 rows

← Prev Next →

#1 2024-11-19 12:41:30 event 2219674 GET 404 bytes 6306

ann sfp 24 label sensitive_file

Request Probe for Git metadata

/.git/config

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

Annotation facts

label

sensitive_file

rule

sfp:file:git_metadata

conf

82.00

details

Request targeted Git metadata (can reveal source/config). Snippet='/.git/config'

More (full fields + snapshot) expand

url

/.git/config

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

summary

Probe for Git metadata

details

Request targeted Git metadata (can reveal source/config). Snippet='/.git/config'

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#2 2024-11-19 12:41:30 event 2219674 GET 404 bytes 6306

ann base label observed

Request event observed

/.git/config

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.git/config

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#3 2024-11-19 12:41:28 event 2219673 GET 301 bytes 169

ann sfp 24 label sensitive_file

Request Probe for Git metadata

/.git/config

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

Annotation facts

label

sensitive_file

rule

sfp:file:git_metadata

conf

82.00

details

Request targeted Git metadata (can reveal source/config). Snippet='/.git/config'

More (full fields + snapshot) expand

url

/.git/config

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

summary

Probe for Git metadata

details

Request targeted Git metadata (can reveal source/config). Snippet='/.git/config'

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#4 2024-11-19 12:41:28 event 2219673 GET 301 bytes 169

ann base label observed

Request event observed

/.git/config

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.git/config

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#5 2024-11-19 12:41:27 event 2219672 GET 404 bytes 6304

ann base label observed

Request event observed

/content

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/content

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#6 2024-11-19 12:41:25 event 2219671 GET 301 bytes 169

ann base label observed

Request event observed

/content

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/content

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#7 2024-11-19 12:41:24 event 2219670 GET 404 bytes 6305

ann base label observed

Request event observed

/file-manager/content

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/file-manager/content

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#8 2024-11-19 12:41:22 event 2219669 GET 301 bytes 169

ann base label observed

Request event observed

/file-manager/content

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/file-manager/content

referer

Mozilla/5.0 (iPad; CPU OS 8_4 like Mac OS X) AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/8.0.57838 Mobile/12H143 Safari/600.1.4

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#9 2024-09-27 21:30:55 event 1745937 GET 404 bytes 5532

ann base label observed

Request event observed

/.vscode/.remote-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.vscode/.remote-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#10 2024-09-27 21:30:53 event 1745936 GET 301 bytes 169

ann base label observed

Request event observed

/.vscode/.remote-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.vscode/.remote-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#11 2024-09-27 21:30:53 event 1745935 GET 404 bytes 5536

ann base label observed

Request event observed

/ftp-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/ftp-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#12 2024-09-27 21:30:50 event 1745934 GET 301 bytes 169

ann base label observed

Request event observed

/ftp-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/ftp-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#13 2024-09-27 21:30:50 event 1745933 GET 404 bytes 5537

ann base label observed

Request event observed

/sftp-config.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/sftp-config.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#14 2024-09-27 21:30:47 event 1745932 GET 301 bytes 169

ann base label observed

Request event observed

/sftp-config.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/sftp-config.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#15 2024-09-27 21:30:47 event 1745931 GET 404 bytes 5537

ann base label observed

Request event observed

/sftp.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/sftp.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#16 2024-09-27 21:30:44 event 1745930 GET 301 bytes 169

ann base label observed

Request event observed

/sftp.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/sftp.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#17 2024-09-27 21:30:44 event 1745929 GET 404 bytes 5535

ann base label observed

Request event observed

/.vscode/ftp-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.vscode/ftp-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#18 2024-09-27 21:30:41 event 1745928 GET 301 bytes 169

ann base label observed

Request event observed

/.vscode/ftp-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.vscode/ftp-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#19 2024-09-27 21:30:41 event 1745927 GET 404 bytes 5536

ann base label observed

Request event observed

/.remote-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.remote-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#20 2024-09-27 21:30:39 event 1745926 GET 301 bytes 169

ann base label observed

Request event observed

/.remote-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.remote-sync.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#21 2024-09-27 21:30:38 event 1745925 GET 404 bytes 5537

ann base label observed

Request event observed

/.vscode/sftp.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.vscode/sftp.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#22 2024-09-27 21:30:35 event 1745924 GET 301 bytes 169

ann base label observed

Request event observed

/.vscode/sftp.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.vscode/sftp.json

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#23 2024-09-27 21:30:35 event 1745923 GET 410 bytes 545

ann base label observed

Request event observed

/.env.txt

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.env.txt

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#24 2024-09-27 21:30:35 event 1745923 GET 410 bytes 545

ann sfp 40 label sensitive_file

Request Probe for environment/secret file (.env)

/.env.txt

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

sensitive_file

rule

sfp:file:env

conf

92.00

details

Request targeted a .env-style file (often contains secrets). Snippet='/.env.txt'

More (full fields + snapshot) expand

url

/.env.txt

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Probe for environment/secret file (.env)

details

Request targeted a .env-style file (often contains secrets). Snippet='/.env.txt'

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#25 2024-09-27 21:30:34 event 1745922 GET 301 bytes 169

ann base label observed

Request event observed

/.env.txt

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.env.txt

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#26 2024-09-27 21:30:34 event 1745921 GET 410 bytes 545

ann base label observed

Request event observed

/.env~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.env~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#27 2024-09-27 21:30:34 event 1745922 GET 301 bytes 169

ann sfp 40 label sensitive_file

Request Probe for environment/secret file (.env)

/.env.txt

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

sensitive_file

rule

sfp:file:env

conf

92.00

details

Request targeted a .env-style file (often contains secrets). Snippet='/.env.txt'

More (full fields + snapshot) expand

url

/.env.txt

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Probe for environment/secret file (.env)

details

Request targeted a .env-style file (often contains secrets). Snippet='/.env.txt'

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#28 2024-09-27 21:30:34 event 1745921 GET 410 bytes 545

ann sfp 16 label sensitive_file

Request Probe for backup/editor artifact

/.env~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

sensitive_file

rule

sfp:file:backup_artifact

conf

70.00

details

Request path contains a common backup/editor artifact extension/suffix. Snippet='/.env~'

More (full fields + snapshot) expand

url

/.env~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Probe for backup/editor artifact

details

Request path contains a common backup/editor artifact extension/suffix. Snippet='/.env~'

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#29 2024-09-27 21:30:33 event 1745920 GET 301 bytes 169

ann base label observed

Request event observed

/.env~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.env~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#30 2024-09-27 21:30:33 event 1745920 GET 301 bytes 169

ann sfp 16 label sensitive_file

Request Probe for backup/editor artifact

/.env~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

sensitive_file

rule

sfp:file:backup_artifact

conf

70.00

details

Request path contains a common backup/editor artifact extension/suffix. Snippet='/.env~'

More (full fields + snapshot) expand

url

/.env~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Probe for backup/editor artifact

details

Request path contains a common backup/editor artifact extension/suffix. Snippet='/.env~'

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#31 2024-09-27 21:30:32 event 1745919 GET 410 bytes 545

ann base label observed

Request event observed

/.env

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.env

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#32 2024-09-27 21:30:32 event 1745918 GET 301 bytes 169

ann base label observed

Request event observed

/.env

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.env

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#33 2024-09-27 21:30:32 event 1745919 GET 410 bytes 545

ann sfp 40 label sensitive_file

Request Probe for environment/secret file (.env)

/.env

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

sensitive_file

rule

sfp:file:env

conf

92.00

details

Request targeted a .env-style file (often contains secrets). Snippet='/.env'

More (full fields + snapshot) expand

url

/.env

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Probe for environment/secret file (.env)

details

Request targeted a .env-style file (often contains secrets). Snippet='/.env'

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#34 2024-09-27 21:30:32 event 1745918 GET 301 bytes 169

ann sfp 40 label sensitive_file

Request Probe for environment/secret file (.env)

/.env

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

sensitive_file

rule

sfp:file:env

conf

92.00

details

Request targeted a .env-style file (often contains secrets). Snippet='/.env'

More (full fields + snapshot) expand

url

/.env

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Probe for environment/secret file (.env)

details

Request targeted a .env-style file (often contains secrets). Snippet='/.env'

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#35 2024-09-27 21:30:31 event 1745917 GET 404 bytes 5534

ann base label observed

Request event observed

/wp-config.php.save

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/wp-config.php.save

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#36 2024-09-27 21:30:31 event 1745917 GET 404 bytes 5534

ann sfp 16 label sensitive_file

Request Probe for backup/editor artifact

/wp-config.php.save

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

sensitive_file

rule

sfp:file:backup_artifact

conf

70.00

details

Request path contains a common backup/editor artifact extension/suffix. Snippet='/wp-config.php.save'

More (full fields + snapshot) expand

url

/wp-config.php.save

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Probe for backup/editor artifact

details

Request path contains a common backup/editor artifact extension/suffix. Snippet='/wp-config.php.save'

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#37 2024-09-27 21:30:31 event 1745917 GET 404 bytes 5534

ann trav 34 label trav

Request Path traversal / LFI indicator detected

/wp-config.php.save

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

trav

rule

trav:sensitive_target

conf

95.00

details

Detected explicit traversal/LFI mechanics (dotdot segments, encoded traversal, local file / stream wrappers, or sensitive file targets). This annotator intentionally does not fire on mere URL depth or on traversal-ish parameter names without mechanics.

More (full fields + snapshot) expand

url

/wp-config.php.save

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Path traversal / LFI indicator detected

details

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#38 2024-09-27 21:30:29 event 1745916 GET 301 bytes 169

ann base label observed

Request event observed

/wp-config.php.save

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/wp-config.php.save

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#39 2024-09-27 21:30:29 event 1745916 GET 301 bytes 169

ann sfp 16 label sensitive_file

Request Probe for backup/editor artifact

/wp-config.php.save

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

sensitive_file

rule

sfp:file:backup_artifact

conf

70.00

details

Request path contains a common backup/editor artifact extension/suffix. Snippet='/wp-config.php.save'

More (full fields + snapshot) expand

url

/wp-config.php.save

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Probe for backup/editor artifact

details

Request path contains a common backup/editor artifact extension/suffix. Snippet='/wp-config.php.save'

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#40 2024-09-27 21:30:29 event 1745916 GET 301 bytes 169

ann trav 34 label trav

Request Path traversal / LFI indicator detected

/wp-config.php.save

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

trav

rule

trav:sensitive_target

conf

95.00

details

More (full fields + snapshot) expand

url

/wp-config.php.save

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Path traversal / LFI indicator detected

details

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#41 2024-09-27 21:30:28 event 1745915 GET 404 bytes 5535

ann base label observed

Request event observed

/wp-config.php~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/wp-config.php~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#42 2024-09-27 21:30:28 event 1745915 GET 404 bytes 5535

ann sfp 16 label sensitive_file

Request Probe for backup/editor artifact

/wp-config.php~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

sensitive_file

rule

sfp:file:backup_artifact

conf

70.00

details

Request path contains a common backup/editor artifact extension/suffix. Snippet='/wp-config.php~'

More (full fields + snapshot) expand

url

/wp-config.php~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Probe for backup/editor artifact

details

Request path contains a common backup/editor artifact extension/suffix. Snippet='/wp-config.php~'

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#43 2024-09-27 21:30:28 event 1745915 GET 404 bytes 5535

ann trav 34 label trav

Request Path traversal / LFI indicator detected

/wp-config.php~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

trav

rule

trav:sensitive_target

conf

95.00

details

More (full fields + snapshot) expand

url

/wp-config.php~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Path traversal / LFI indicator detected

details

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#44 2024-09-27 21:30:26 event 1745914 GET 301 bytes 169

ann base label observed

Request event observed

/wp-config.php~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/wp-config.php~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#45 2024-09-27 21:30:26 event 1745914 GET 301 bytes 169

ann sfp 16 label sensitive_file

Request Probe for backup/editor artifact

/wp-config.php~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

sensitive_file

rule

sfp:file:backup_artifact

conf

70.00

details

Request path contains a common backup/editor artifact extension/suffix. Snippet='/wp-config.php~'

More (full fields + snapshot) expand

url

/wp-config.php~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Probe for backup/editor artifact

details

Request path contains a common backup/editor artifact extension/suffix. Snippet='/wp-config.php~'

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#46 2024-09-27 21:30:26 event 1745914 GET 301 bytes 169

ann trav 34 label trav

Request Path traversal / LFI indicator detected

/wp-config.php~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

Annotation facts

label

trav

rule

trav:sensitive_target

conf

95.00

details

More (full fields + snapshot) expand

url

/wp-config.php~

referer

Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.6.1000 Chrome/30.0.1599.101 Safari/537.36

summary

Path traversal / LFI indicator detected

details

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#47 2024-09-27 21:28:35 event 1745911 GET 404 bytes 5533

ann base label observed

Request event observed

/.vscode/.remote-sync.json

referer

Mozilla/5.0 (Windows NT 10.0; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.vscode/.remote-sync.json

referer

Mozilla/5.0 (Windows NT 10.0; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#48 2024-09-27 21:28:32 event 1745909 GET 301 bytes 169

ann base label observed

Request event observed

/.vscode/.remote-sync.json

referer

Mozilla/5.0 (Windows NT 10.0; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/.vscode/.remote-sync.json

referer

Mozilla/5.0 (Windows NT 10.0; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#49 2024-09-27 21:28:31 event 1745908 GET 404 bytes 5536

ann base label observed

Request event observed

/ftp-sync.json

referer

Mozilla/5.0 (Windows NT 10.0; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/ftp-sync.json

referer

Mozilla/5.0 (Windows NT 10.0; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

#50 2024-09-27 21:28:29 event 1745907 GET 301 bytes 169

ann base label observed

Request event observed

/ftp-sync.json

referer

Mozilla/5.0 (Windows NT 10.0; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0

Annotation facts

label

observed

rule

base_observed

conf

—

details

—

More (full fields + snapshot) expand

url

/ftp-sync.json

referer

Mozilla/5.0 (Windows NT 10.0; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0

summary

event observed

details

—

subnet

67.220.85.0/24

asn

63023 — GTHost

geo

United States, New York, New York

org

objx.net

Log Explorer

Annotated access events

Confirm Action