Table: Security_events
Displaying rows 96251 - 96300 of 120479 (Page 1926 / 2410)
| Entity | Type | Event time | Action taken | Ai reason | Ai confidence score | Ai details | Event id |
|---|---|---|---|---|---|---|---|
| 185.177.72.3 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 1.0 | severity: Severity.critical | 5a86461f-e392-4f65-b528-077a014224fd |
| 185.177.72.205 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 1.0 | severity: Severity.critical | eadd465a-7369-4973-8427-9331e241a759 |
| 185.177.72.204 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 1.0 | severity: Severity.critical | 817d383a-5ea7-4d22-bd6f-c79212b3c0a4 |
| 185.177.72.2 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 1.0 | severity: Severity.critical | bf2b2e70-6986-4144-a747-6261e53b42ac |
| 195.178.110.161 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8999999761581421 | severity: Severity.critical | a5dec7a8-253c-46b5-95b5-27998e746be4 |
| 194.50.16.252 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 1.0 | severity: Severity.critical | b7599e98-b2be-417a-805f-51769c1be66f |
| 2001:4878:8216:510:dddd:b98a:3a76:296c | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.949999988079071 | severity: Severity.critical | ddef8931-258c-4249-af23-fa6f4e458715 |
| 20.171.207.158 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8500000238418579 | severity: Severity.medium | ebae16f5-b1f0-4b03-b62b-93a5730b6193 |
| 205.169.39.130 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8999999761581421 | severity: Severity.critical | 9681ed36-9e91-4f47-a96e-4eb61f33d170 |
| 2001:bc8:1f90:4:7ec2:55ff:fe9e:8476 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8500000238418579 | severity: Severity.medium | 55646c65-419b-4aa1-9f75-14855aabc5df |
| 2001:bc8:1201:19:46a8:42ff:fe1b:ae29 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8500000238418579 | severity: Severity.medium | eca359b8-92e0-47a9-9461-6dc049dd795b |
| 216.126.227.20 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 1.0 | severity: Severity.critical | 20dffc2e-a1d9-4d60-99b0-7ae2d87c2dd2 |
| 205.169.39.4 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8999999761581421 | severity: Severity.critical | e18b5a47-ce53-436f-862a-dea3a6e0f943 |
| 3.92.177.104 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 1.0 | severity: Severity.critical | 4ba2abd1-9bda-4aaa-94e3-8196abe26fa5 |
| 2604:a880:400:d1:0:1:4cea:4001 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8500000238418579 | severity: Severity.medium | 9245e6ae-aa0c-491b-9839-268b3be3ec8f |
| 34.116.246.85 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8500000238418579 | severity: Severity.medium | c2d9f374-eec1-429c-84a6-b1ccf550cbbc |
| 34.116.172.61 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8500000238418579 | severity: Severity.medium | c59b8b18-d3cf-4903-b586-abf4da06de02 |
| 66.249.77.104 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.949999988079071 | severity: Severity.critical | 72c12568-dc17-474e-ac94-3abd2223d919 |
| 66.249.68.133 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8999999761581421 | severity: Severity.medium | d9647d7d-315e-418f-8526-cb5519a6c33b |
| 51.38.105.105 | ip | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8999999761581421 | severity: Severity.critical | 90622c74-64d6-4590-b4ef-b205b25ce4ae |
| AS211590 | asn | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 1.0 | severity: Severity.critical | e78d4ac3-e562-4773-8278-0fb6fee60df8 |
| AS16276 | asn | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 1.0 | severity: Severity.critical | 4dbecdf9-c8ee-4f96-8170-57cdf3367d40 |
| AS132203 | asn | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8999999761581421 | severity: Severity.critical | 1a5e5f1b-d150-4705-b860-cacaead05ff1 |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 1.0 | severity: Severity.critical | 6b87e827-6647-492b-b321-e19d8950bfcb |
| 3%7e2faa3a9db1c111de | tls | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 1.0 | severity: Severity.critical | 6e0148af-6d71-4d40-987a-defee2cfaf61 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.949999988079071 | severity: Severity.critical | 6c9c5d95-bba8-4c2a-9197-cd52102a8099 |
| 3%7ede293936a8dc4153 | tls | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.949999988079071 | severity: Severity.critical | 13b9fd09-bcc8-4d48-88ae-c090963e8e33 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8999999761581421 | severity: Severity.critical | 3e1d12f0-78bb-4ee1-b0b1-b2f94ae99232 |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.9800000190734863 | severity: Severity.critical | ffcfd7a9-fa26-423d-ae1a-8eda4b79bcb1 |
| UNKNOWN | tls | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 1.0 | severity: Severity.critical | 0588d5ad-be9c-4b43-ba02-4582a59ebce2 |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-23 07:55:59 | ignore | Entity is already present in the blocklist and should be removed from watchlists. | 0.8999999761581421 | severity: Severity.critical | a472be3b-83c0-49de-8b25-6b50291cd4f9 |
| 157.180.49.118 | ip | 2025-07-23 07:35:52 | block | Persistent medium malicious probing; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 6f3db131-fed1-4b86-b89c-a8e81848dda3 |
| 123.6.49.50 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | e870b8a8-51ff-4d5d-b2ae-a956b45df677 |
| 103.207.148.148 | ip | 2025-07-23 07:35:52 | block | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | fe28ee2b-eaf9-4a4b-9269-c5f580f3e146 |
| 101.55.81.36 | ip | 2025-07-23 07:35:52 | block | Persistent critical activity targeting sensitive files and web shell paths, indicating exploitation. | 1.0 | severity: Severity.critical | 0af092a1-6b8b-45c1-86da-2ee01a1934b8 |
| 185.177.72.106 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; 100% of requests flagged by WAF, aggressively targeting sensitive configuration and credential files like .env and aws/credentials. This IP is part of AS211590, which is already blocklisted for similar critical threats. | 1.0 | severity: Severity.critical | 64a342de-d8b5-47a7-b9e4-9ba61ca65b1d |
| 185.177.72.104 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; aggressive scanning for .env, phpinfo, .git files. | 1.0 | severity: Severity.critical | 48319498-38b7-4707-bc1c-7ff230b98b4d |
| 178.33.134.25 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; scanning common directories with browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 0e35318c-b4c7-4f71-9d95-49753bd39d4b |
| 185.177.72.16 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; 100% of requests flagged by WAF, aggressively targeting sensitive configuration and credential files like .env and aws/credentials, coupled with LFI attempts. This IP is part of AS211590, which is already blocklisted for similar critical threats. | 1.0 | severity: Severity.critical | 51844df5-26de-4f94-aa91-4124d2258fd4 |
| 185.177.72.144 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; widespread probing for sensitive files/LFI; AS211590 related. | 1.0 | severity: Severity.critical | bc1794f4-66ca-425c-9323-8ee49e61ed4d |
| 185.177.72.12 | ip | 2025-07-23 07:35:52 | block | Critical malicious reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 952e0364-c659-4568-8b51-51fa02ff055c |
| 185.177.72.11 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; targeting sensitive credentials, env files, server info. | 1.0 | severity: Severity.critical | 3954e1f5-9427-4527-b3fc-0e1fee998a80 |
| 185.177.72.3 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; targeting sensitive creds/config files; LFI anomalies; AS211590 related. | 1.0 | severity: Severity.critical | 0e861caa-a04f-4793-9fe1-ee57908a7f78 |
| 185.177.72.205 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; attempting cloud creds, env files, config access; LFI. | 1.0 | severity: Severity.critical | e6e440fe-19a6-45b5-acbb-bd2a5ab5a17d |
| 185.177.72.204 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; scanning for config files and source code repos. | 1.0 | severity: Severity.critical | 2d7461c2-0783-49e0-a2aa-0d286187eb0d |
| 185.177.72.2 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; targeting sensitive config files; browser impersonation; AS211590 related. | 1.0 | severity: Severity.critical | 06f28bb7-eecc-4c48-8fbb-9ddc49105aae |
| 195.178.110.161 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; scanning for sensitive JS config, JSON creds, env vars; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | da09a116-8bbc-41ea-b029-fb143f8c7099 |
| 194.50.16.252 | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; targeting Spring Boot Actuator with command injection attempts. | 1.0 | severity: Severity.critical | 5f15bb0c-9760-408f-b826-5aa6ce68b4fb |
| 2001:4878:8216:510:dddd:b98a:3a76:296c | ip | 2025-07-23 07:35:52 | block | Critical malicious activity; accessed obfuscated path linked to prior critical activity. | 0.949999988079071 | severity: Severity.critical | 763602a9-3e6c-41dd-b51e-a55d4a87b83e |
| 20.171.207.158 | ip | 2025-07-23 07:35:52 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 422d9610-ccd9-4de6-960f-236418624bb1 |