Table: Security_events
Displaying rows 96651 - 96700 of 120479 (Page 1934 / 2410)
| Entity | Type | Event time | Action taken | Ai reason | Ai confidence score | Ai details | Event id |
|---|---|---|---|---|---|---|---|
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 17:13:34 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | b655c49f-3398-44dd-8889-e8731eebafa1 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 17:13:34 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 77a778a3-28c1-4a94-a62f-5e9a0c7012ba |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 17:13:34 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 229790a8-c832-4e4d-b997-e39c716299f2 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 17:13:34 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | b3d42922-8810-4627-af1e-7632ad55923a |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 17:13:34 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | 2249a2a5-2033-459c-ba8b-45827e7d4bce |
| UNKNOWN | tls | 2025-07-22 17:13:34 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | 5d9404cd-c2aa-48d8-bb49-d9e50d82af36 |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 17:13:34 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | ab18d4b1-6810-40b1-b288-9782fd2a6886 |
| 157.180.49.118 | ip | 2025-07-22 15:46:25 | block | Persistent medium malicious probing; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 3dee759d-c0ef-46e2-8c8c-66f492d19cda |
| 123.6.49.50 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | 4d1563c8-f2de-466d-bcaf-60457c555d63 |
| 103.207.148.148 | ip | 2025-07-22 15:46:25 | block | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | 26531815-a9d7-41c1-b9aa-e9f6ac7e5a68 |
| 101.55.81.36 | ip | 2025-07-22 15:46:25 | block | Persistent critical activity targeting sensitive files and web shell paths, indicating exploitation. | 1.0 | severity: Severity.critical | 56b0484f-7344-47cf-82f6-3a4b12b01671 |
| 185.177.72.104 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; aggressive scanning for .env, phpinfo, .git files. | 1.0 | severity: Severity.critical | 3eb0e8cb-88ae-41cf-8bb2-2071d2c98486 |
| 178.33.134.25 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; scanning common directories with browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 788a875b-4c69-4ff1-8554-362e38e6d439 |
| 185.177.72.144 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; widespread probing for sensitive files/LFI; AS211590 related. | 1.0 | severity: Severity.critical | d7827f59-3987-4671-8bfb-74b7a532723b |
| 185.177.72.12 | ip | 2025-07-22 15:46:25 | block | Critical malicious reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 2383e7e2-afc2-4b88-9101-a5aa126232ff |
| 185.177.72.11 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; targeting sensitive credentials, env files, server info. | 1.0 | severity: Severity.critical | 77571308-e2d5-4400-8a3e-c31f7366d95d |
| 185.177.72.3 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; targeting sensitive creds/config files; LFI anomalies; AS211590 related. | 1.0 | severity: Severity.critical | 7eda6ad6-8484-4b82-96e7-45ce69dc54b5 |
| 185.177.72.205 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; attempting cloud creds, env files, config access; LFI. | 1.0 | severity: Severity.critical | 678f8d03-fff7-4770-ac36-f9d8b13e9487 |
| 185.177.72.204 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; scanning for config files and source code repos. | 1.0 | severity: Severity.critical | b1c445aa-8b08-43ff-ae0d-e089bf199843 |
| 185.177.72.2 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; targeting sensitive config files; browser impersonation; AS211590 related. | 1.0 | severity: Severity.critical | 465cc31f-8e47-407c-b011-ce87c7fe7831 |
| 195.178.110.161 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; scanning for sensitive JS config, JSON creds, env vars; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 03e39ed7-13e3-4d88-9f9e-68e19119bead |
| 194.50.16.252 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; targeting Spring Boot Actuator with command injection attempts. | 1.0 | severity: Severity.critical | 68df13a7-33fc-4372-893a-985ac110ccbf |
| 2001:4878:8216:510:dddd:b98a:3a76:296c | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; accessed obfuscated path linked to prior critical activity. | 0.949999988079071 | severity: Severity.critical | 5c3383fb-ba90-4f9c-b1b8-9f9923b97c7d |
| 20.171.207.158 | ip | 2025-07-22 15:46:25 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 2b4e8f7d-657e-4ce8-bb5c-fe513e989080 |
| 205.169.39.130 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; triggered IP blocking due to burst activity. | 0.8999999761581421 | severity: Severity.critical | 8ed02e7f-915b-44b4-a1c7-2e66aec483d1 |
| 2001:bc8:1f90:4:7ec2:55ff:fe9e:8476 | ip | 2025-07-22 15:46:25 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 0c65732a-4723-4324-895a-f71f9ed766f1 |
| 2001:bc8:1201:19:46a8:42ff:fe1b:ae29 | ip | 2025-07-22 15:46:25 | block | Persistent medium malicious activity; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | ffe4c0f3-7108-4bcd-9552-b9d0d642a7e2 |
| 216.126.227.20 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; targeted WordPress paths (wlwmanifest.xml, xmlrpc.php); browser impersonation. | 1.0 | severity: Severity.critical | 97d3584e-59e4-486f-80b7-6014244eade7 |
| 205.169.39.4 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; high flagged requests, triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | b16d0b01-7a0d-4043-b2ba-8a164b7b7db8 |
| 3.92.177.104 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; targeting WordPress wlwmanifest.xml and xmlrpc.php; WAF IPBLOCK. | 1.0 | severity: Severity.critical | a5d0ba83-3107-4879-9885-aa9e4c31c055 |
| 2604:a880:400:d1:0:1:4cea:4001 | ip | 2025-07-22 15:46:25 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | b2faf764-16f0-4b55-afbe-d225938dac05 |
| 34.116.246.85 | ip | 2025-07-22 15:46:25 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | ba0f46e8-3722-432c-8e8b-7f7c5f6bebfa |
| 34.116.172.61 | ip | 2025-07-22 15:46:25 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 4a09267d-fb2e-4f24-b0c1-c468e2c0167e |
| 66.249.77.104 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; all requests flagged by WAF and security alerts. | 0.949999988079071 | severity: Severity.critical | 4a028581-777e-4d91-afa8-355b40697bd8 |
| 66.249.68.133 | ip | 2025-07-22 15:46:25 | block | Persistent medium malicious scanning; all requests flagged by WAF (100% threat detection). | 0.8999999761581421 | severity: Severity.medium | 7e6ac29c-7a48-4c48-9a85-5ba056b80d79 |
| 51.38.105.105 | ip | 2025-07-22 15:46:25 | block | Critical malicious activity; extensive scanning for sensitive files/PHP info; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | d50cceb7-c53c-446f-bdb4-328f1792f9e3 |
| AS211590 | asn | 2025-07-22 15:46:25 | block | Critical malicious activity; 100% threat detection targeting sensitive files/creds/LFI. | 1.0 | severity: Severity.critical | 6839cb3a-978f-4d67-9c5a-3ff42704e843 |
| AS16276 | asn | 2025-07-22 15:46:25 | block | Critical malicious activity; aggregated traffic with high threat detection, diverse malicious activities. | 1.0 | severity: Severity.critical | abc4d7f8-6e35-4970-aba0-e33aa34a74ae |
| AS132203 | asn | 2025-07-22 15:46:25 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress; obfuscated paths. | 0.8999999761581421 | severity: Severity.critical | 65524958-13d7-426f-98f2-62a71e1d09b7 |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-22 15:46:25 | block | Critical malicious activity; extensive reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | fe9d4524-dcd2-447c-a130-c5d54b598798 |
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 15:46:25 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | 46307f1f-1822-4473-a3da-560c333d2df8 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 15:46:25 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | fe4d12a0-53bb-4f3a-8460-7a3d803ba7fc |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 15:46:25 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 40f08f85-7315-4537-960c-789286895387 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 15:46:25 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | 7d2c37a2-f686-402b-8c63-e5ab65923853 |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 15:46:25 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | c927a250-0e52-49f9-8c67-08e9dc0ed88a |
| UNKNOWN | tls | 2025-07-22 15:46:25 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | 56134150-913c-498c-9102-2f32e2c6d611 |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 15:46:25 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 0b10c0e3-1177-4f1a-9779-371be58c8140 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 15:40:52 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | ef6d8bdb-a9cf-4570-863a-d549c1906fc3 |
| UNKNOWN | tls | 2025-07-22 15:40:52 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | b48a2bf2-4987-46ae-8829-1b74f5fac801 |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 15:40:52 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 0dc53925-7495-4ac1-bd26-dd1577bf20ff |