Table: Security_events
Displaying rows 96051 - 96100 of 120479 (Page 1922 / 2410)
| Entity | Type | Event time | Action taken | Ai reason | Ai confidence score | Ai details | Event id |
|---|---|---|---|---|---|---|---|
| 2001:bc8:1201:19:46a8:42ff:fe1b:ae29 | ip | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.8500000238418579 | severity: Severity.medium | efc58c20-400c-43e2-8784-464b1ad186aa |
| 216.126.227.20 | ip | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 1.0 | severity: Severity.critical | 07a95d51-671f-45bb-bf85-90c6d137f3c0 |
| 205.169.39.4 | ip | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.8999999761581421 | severity: Severity.critical | 1d279b4e-6961-4d93-8b42-8656716abb90 |
| 3.92.177.104 | ip | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 1.0 | severity: Severity.critical | 35720f30-b82d-43f6-8f2f-ff652eb30176 |
| 2604:a880:400:d1:0:1:4cea:4001 | ip | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.8500000238418579 | severity: Severity.medium | 82e709e0-df46-4f4a-9fea-d8ca8594d50e |
| 34.116.246.85 | ip | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.8500000238418579 | severity: Severity.medium | b5ee5cd4-779e-443c-9d6c-cf851fbfb88b |
| 34.116.172.61 | ip | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.8500000238418579 | severity: Severity.medium | 020d7de1-d477-4568-9a6b-3c01e2734525 |
| 66.249.77.104 | ip | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.949999988079071 | severity: Severity.critical | 162e89aa-a7da-4fe9-a031-46ea8b92c1d7 |
| 66.249.68.133 | ip | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.8999999761581421 | severity: Severity.medium | d0d4edf6-bde6-4586-9f94-3adb451cb6d2 |
| 51.38.105.105 | ip | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.8999999761581421 | severity: Severity.critical | c4752f9d-5a8b-4eef-a451-fadd470866da |
| AS211590 | asn | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 1.0 | severity: Severity.critical | 36d8196c-b377-4b0a-be55-22d69295170a |
| AS16276 | asn | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 1.0 | severity: Severity.critical | ceeee897-4a59-4000-a234-29719c76bec2 |
| AS132203 | asn | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.8999999761581421 | severity: Severity.critical | 783495d7-94a6-435d-8beb-7e107f7b67db |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 1.0 | severity: Severity.critical | a160d53e-76b2-4956-aee6-114f73864b35 |
| 3%7e2faa3a9db1c111de | tls | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 1.0 | severity: Severity.critical | 06ad55fb-4747-44a0-875f-d51c970ca4fd |
| 3%7ede29393936a8dc4153 | tls | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.949999988079071 | severity: Severity.critical | d5873de8-c920-4f4b-9e04-e953d7201175 |
| 3%7ede293936a8dc4153 | tls | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.949999988079071 | severity: Severity.critical | d18a057d-96c3-44cb-b698-7aacbcec59c4 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.8999999761581421 | severity: Severity.critical | 7027f69a-44f9-4a5e-84e4-d1bd40996752 |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.9800000190734863 | severity: Severity.critical | 6b434c0b-46a6-4453-b2d4-29fad8d3f3fe |
| UNKNOWN | tls | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 1.0 | severity: Severity.critical | 6aefc1d4-70de-419d-b832-a3b43d3da818 |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-23 08:21:05 | ignore | Entity previously blocklisted. | 0.8999999761581421 | severity: Severity.critical | 422605bc-bb13-4f12-a49a-0e5146bfbfd2 |
| 157.180.49.118 | ip | 2025-07-23 08:15:59 | watchlist | Persistent medium malicious probing; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 3c4cbf64-e400-4d23-b8dc-88db66dcbf3c |
| 123.6.49.50 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | b9a2dbf7-c3dd-40ed-b2fe-75b80e30e6be |
| 103.207.148.148 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | d1f816d2-3d4e-4141-800c-fc642fceba9b |
| 101.55.81.36 | ip | 2025-07-23 08:15:59 | watchlist | Persistent critical activity targeting sensitive files and web shell paths, indicating exploitation. | 1.0 | severity: Severity.critical | 2230a1e9-4889-4a24-9d47-3bccae645687 |
| 185.177.72.106 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; 100% of requests flagged by WAF, aggressively targeting sensitive configuration and credential files like .env and aws/credentials. This IP is part of AS211590, which is already blocklisted for similar critical threats. | 1.0 | severity: Severity.critical | a9530fc3-a8fa-4e4b-a8b9-e7aebb11c7f3 |
| 185.177.72.104 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; aggressive scanning for .env, phpinfo, .git files. | 1.0 | severity: Severity.critical | 9c4d7038-514a-4028-98f0-bb3debe74ce7 |
| 178.33.134.25 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; scanning common directories with browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 4db730a1-d374-4da9-933c-2717c7b0a3bf |
| 185.177.72.16 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; 100% of requests flagged by WAF, aggressively targeting sensitive configuration and credential files like .env and aws/credentials, coupled with LFI attempts. This IP is part of AS211590, which is already blocklisted for similar critical threats. | 1.0 | severity: Severity.critical | 01f31d98-fed2-4112-a067-6f28c4f211b6 |
| 185.177.72.144 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; widespread probing for sensitive files/LFI; AS211590 related. | 1.0 | severity: Severity.critical | d3d3e7bb-b94b-4a14-b61b-20d928b8a846 |
| 185.177.72.12 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | e08855c3-18c9-4eff-9668-0bb2098e6214 |
| 185.177.72.11 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; targeting sensitive credentials, env files, server info. | 1.0 | severity: Severity.critical | 5865a2d6-5b9c-4440-9edd-e826c75262b3 |
| 185.177.72.3 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; targeting sensitive creds/config files; LFI anomalies; AS211590 related. | 1.0 | severity: Severity.critical | ee59ac88-02fc-445c-a8db-4175b5609994 |
| 185.177.72.205 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; attempting cloud creds, env files, config access; LFI. | 1.0 | severity: Severity.critical | 4e5134b9-d1c2-4e34-9084-ea300d459b8f |
| 185.177.72.204 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; scanning for config files and source code repos. | 1.0 | severity: Severity.critical | a4adea48-002b-4697-8c68-abefe86bc2db |
| 185.177.72.2 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; targeting sensitive config files; browser impersonation; AS211590 related. | 1.0 | severity: Severity.critical | 9b890954-a670-4b8c-b57e-3012f4bbbf3c |
| 195.178.110.161 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; scanning for sensitive JS config, JSON creds, env vars; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | e6110e94-94c6-41af-a832-f6e3dec8c154 |
| 194.50.16.252 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; targeting Spring Boot Actuator with command injection attempts. | 1.0 | severity: Severity.critical | 6f4a60c6-e848-464c-a1b7-db0675ee340e |
| 2001:4878:8216:510:dddd:b98a:3a76:296c | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; accessed obfuscated path linked to prior critical activity. | 0.949999988079071 | severity: Severity.critical | 042929ab-4d56-4833-b8e0-a6a7f180764c |
| 20.171.207.158 | ip | 2025-07-23 08:15:59 | watchlist | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 26461cda-7352-44da-ac3b-289d6f04105f |
| 205.169.39.130 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; triggered IP blocking due to burst activity. | 0.8999999761581421 | severity: Severity.critical | 129de63e-a2dd-4089-8e6b-e8cfbee99605 |
| 2001:bc8:1f90:4:7ec2:55ff:fe9e:8476 | ip | 2025-07-23 08:15:59 | watchlist | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | c9c5ed71-13d4-4b7d-942e-348c73a4095a |
| 2001:bc8:1201:19:46a8:42ff:fe1b:ae29 | ip | 2025-07-23 08:15:59 | watchlist | Persistent medium malicious activity; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 0f777af2-0989-4c65-a362-d1ba754e6dc3 |
| 216.126.227.20 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; targeted WordPress paths (wlwmanifest.xml, xmlrpc.php); browser impersonation. | 1.0 | severity: Severity.critical | 060c8c70-7e03-4fff-8f62-60144ebae8bd |
| 205.169.39.4 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; high flagged requests, triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 0ea132df-db25-4138-9685-1aff31543588 |
| 3.92.177.104 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; targeting WordPress wlwmanifest.xml and xmlrpc.php; WAF IPBLOCK. | 1.0 | severity: Severity.critical | da9b7ce5-c6b5-46b8-bf69-ac725dd98c32 |
| 2604:a880:400:d1:0:1:4cea:4001 | ip | 2025-07-23 08:15:59 | watchlist | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | d44ce75a-7133-4d77-baaf-ce42b461bdfb |
| 34.116.246.85 | ip | 2025-07-23 08:15:59 | watchlist | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 4f3e070b-f0d8-4321-878b-7128b20258a1 |
| 34.116.172.61 | ip | 2025-07-23 08:15:59 | watchlist | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | a0ffcb0e-a769-4549-b25f-12d27b6678ea |
| 66.249.77.104 | ip | 2025-07-23 08:15:59 | watchlist | Critical malicious activity; all requests flagged by WAF and security alerts. | 0.949999988079071 | severity: Severity.critical | d2a93ad7-8cc6-484a-a99d-bdd9d0f11795 |