Table: Security_events
Displaying rows 96801 - 96850 of 120479 (Page 1937 / 2410)
| Entity | Type | Event time | Action taken | Ai reason | Ai confidence score | Ai details | Event id |
|---|---|---|---|---|---|---|---|
| 2604:a880:400:d1:0:1:4cea:4001 | ip | 2025-07-22 15:25:41 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | e8d7d781-9bcd-4d06-999f-14862202aecc |
| 34.116.246.85 | ip | 2025-07-22 15:25:41 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | c9d2a458-f9eb-4e4b-9cc0-5ec409d15307 |
| 34.116.172.61 | ip | 2025-07-22 15:25:41 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | dfa62106-6c33-4988-9772-4df77e0dac4d |
| 66.249.77.104 | ip | 2025-07-22 15:25:41 | block | Critical malicious activity; all requests flagged by WAF and security alerts. | 0.949999988079071 | severity: Severity.critical | 0845020e-9f80-4e0e-9768-1fe0caceb094 |
| 66.249.68.133 | ip | 2025-07-22 15:25:41 | block | Persistent medium malicious scanning; all requests flagged by WAF (100% threat detection). | 0.8999999761581421 | severity: Severity.medium | d57dfd0b-a654-48ce-91d2-ce05124e9d9e |
| 51.38.105.105 | ip | 2025-07-22 15:25:41 | block | Critical malicious activity; extensive scanning for sensitive files/PHP info; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 479b8a6a-56d8-4be9-92c7-95f5394b31b3 |
| AS211590 | asn | 2025-07-22 15:25:41 | block | Critical malicious activity; 100% threat detection targeting sensitive files/creds/LFI. | 1.0 | severity: Severity.critical | 8aa83699-13a0-48b0-a14d-4328586b8525 |
| AS16276 | asn | 2025-07-22 15:25:41 | block | Critical malicious activity; aggregated traffic with high threat detection, diverse malicious activities. | 1.0 | severity: Severity.critical | 232495ec-bd35-4366-95f5-1be03afe06d7 |
| AS132203 | asn | 2025-07-22 15:25:41 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress; obfuscated paths. | 0.8999999761581421 | severity: Severity.critical | 2fb4935f-9bf4-40fa-887d-358f894c53a7 |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-22 15:25:41 | block | Critical malicious activity; extensive reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 58e62feb-876a-41ce-bde4-eaed8ea19768 |
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 15:25:41 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | 77c21d5f-7893-4104-b648-71369db6a26a |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 15:25:41 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 09f11567-212f-466a-ad4f-df74cadb2b41 |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 15:25:41 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 129fdba6-7905-4d0a-90af-21615c986bb3 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 15:25:41 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | b7a3c44a-eaca-4658-a323-d346a18317c5 |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 15:25:41 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | 94753675-89d7-4475-8c84-d3ecaaabddfb |
| UNKNOWN | tls | 2025-07-22 15:25:41 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | 2ce73f84-5edb-41ae-a3d5-0e540b445f8d |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 15:25:41 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | a59a266d-cf5f-4325-8d83-88b3b0d1f825 |
| 205.169.39.130 | ip | 2025-07-22 15:20:44 | block | Critical malicious activity; triggered IP blocking due to burst activity. | 0.8999999761581421 | severity: Severity.critical | 2cddd220-6430-4c32-becd-46ae70d28065 |
| 216.126.227.20 | ip | 2025-07-22 15:20:44 | block | Critical malicious activity; targeted WordPress paths (wlwmanifest.xml, xmlrpc.php); browser impersonation. | 1.0 | severity: Severity.critical | 6f859bf4-7d93-4546-95fa-82e6742a8e03 |
| 205.169.39.4 | ip | 2025-07-22 15:20:44 | block | Critical malicious activity; high flagged requests, triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 09c1b74d-e47d-4b81-b464-66fee95baa65 |
| 3.92.177.104 | ip | 2025-07-22 15:20:44 | block | Critical malicious activity; targeting WordPress wlwmanifest.xml and xmlrpc.php; WAF IPBLOCK. | 1.0 | severity: Severity.critical | 66642878-bbd9-4ac2-bc44-857faf25137d |
| 2604:a880:400:d1:0:1:4cea:4001 | ip | 2025-07-22 15:20:44 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | a1458b06-d769-4d12-a3a2-7895b7dd508f |
| 34.116.246.85 | ip | 2025-07-22 15:20:44 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | d09a2dcc-0f80-4f45-a2f0-85d53d243209 |
| 34.116.172.61 | ip | 2025-07-22 15:20:44 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 8278ca9b-a865-4e71-b3b1-d220a00ea8a5 |
| 66.249.77.104 | ip | 2025-07-22 15:20:44 | block | Critical malicious activity; all requests flagged by WAF and security alerts. | 0.949999988079071 | severity: Severity.critical | a4eaf6e2-d5fa-4f11-a200-ba195ed5771b |
| 66.249.68.133 | ip | 2025-07-22 15:20:44 | block | Persistent medium malicious scanning; all requests flagged by WAF (100% threat detection). | 0.8999999761581421 | severity: Severity.medium | b5c32205-5cc1-4e94-9b5f-8a1d4b48cc4a |
| 51.38.105.105 | ip | 2025-07-22 15:20:44 | block | Critical malicious activity; extensive scanning for sensitive files/PHP info; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | daed64e2-c4f8-4062-9cab-25f65b10c6fd |
| AS211590 | asn | 2025-07-22 15:20:44 | block | Critical malicious activity; 100% threat detection targeting sensitive files/creds/LFI. | 1.0 | severity: Severity.critical | 2b114eed-f883-45f3-9b2a-a6cf59a26dee |
| AS16276 | asn | 2025-07-22 15:20:44 | block | Critical malicious activity; aggregated traffic with high threat detection, diverse malicious activities. | 1.0 | severity: Severity.critical | 358e9d79-d21b-4e85-b319-51c8529e3ba5 |
| AS132203 | asn | 2025-07-22 15:20:44 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress; obfuscated paths. | 0.8999999761581421 | severity: Severity.critical | d8635ba3-4134-4d57-ad62-264cadfef5d5 |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-22 15:20:44 | block | Critical malicious activity; extensive reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | e8d4699a-eb6c-4cef-b469-5fa0ef803a38 |
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 15:20:44 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | f4fcf4dd-624b-42fc-b2c4-89170e12b993 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 15:20:44 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 175b0acc-137b-4e3c-881d-7a8ae688f7c0 |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 15:20:44 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 3f5dd879-d6f0-49d9-8f6a-36919e581ec6 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 15:20:44 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | ce9f09ae-8186-43b5-9256-e57a798bb826 |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 15:20:44 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | 1205d786-ab83-4d8d-ac82-3b0779a5e631 |
| UNKNOWN | tls | 2025-07-22 15:20:44 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | 6afc7c0b-a05b-4073-816f-9d81c91983b7 |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 15:20:44 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 42c6b8ed-ad58-49b9-bed1-e1697dbac153 |
| 157.180.49.118 | ip | 2025-07-22 15:20:43 | block | Persistent medium malicious probing; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | df107d57-675d-421a-9c20-30d9258699f4 |
| 123.6.49.50 | ip | 2025-07-22 15:20:43 | block | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | 98b36476-37d4-42ef-8670-9f6b1baae3a6 |
| 103.207.148.148 | ip | 2025-07-22 15:20:43 | block | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | 13425170-4b8c-47ff-be38-a6f25e0b3577 |
| 101.55.81.36 | ip | 2025-07-22 15:20:43 | block | Persistent critical activity targeting sensitive files and web shell paths, indicating exploitation. | 1.0 | severity: Severity.critical | 12004af0-5621-45ac-a322-6071e552cac7 |
| 185.177.72.104 | ip | 2025-07-22 15:20:43 | block | Critical malicious activity; aggressive scanning for .env, phpinfo, .git files. | 1.0 | severity: Severity.critical | 1fa3675b-1d2e-4a8b-85d8-7ecd9c77215f |
| 178.33.134.25 | ip | 2025-07-22 15:20:43 | block | Critical malicious activity; scanning common directories with browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 1b5f4dea-f2c0-4957-9c3d-99eb4ff4a31e |
| 185.177.72.144 | ip | 2025-07-22 15:20:43 | block | Critical malicious activity; widespread probing for sensitive files/LFI; AS211590 related. | 1.0 | severity: Severity.critical | d5a4630c-5bf1-43b8-a302-d1704575a3ff |
| 185.177.72.12 | ip | 2025-07-22 15:20:43 | block | Critical malicious reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 5914e663-2da3-432f-aa55-7442978adbf5 |
| 185.177.72.11 | ip | 2025-07-22 15:20:43 | block | Critical malicious activity; targeting sensitive credentials, env files, server info. | 1.0 | severity: Severity.critical | 53109cea-89c1-4f6b-9179-8b30f1258f20 |
| 185.177.72.3 | ip | 2025-07-22 15:20:43 | block | Critical malicious activity; targeting sensitive creds/config files; LFI anomalies; AS211590 related. | 1.0 | severity: Severity.critical | 6177b321-8500-4ca1-a260-a07b2d065aa5 |
| 185.177.72.205 | ip | 2025-07-22 15:20:43 | block | Critical malicious activity; attempting cloud creds, env files, config access; LFI. | 1.0 | severity: Severity.critical | 2c2ca39d-f38f-453c-8bf8-a4c67bad1927 |
| 185.177.72.204 | ip | 2025-07-22 15:20:43 | block | Critical malicious activity; scanning for config files and source code repos. | 1.0 | severity: Severity.critical | cca357c5-0f03-4f53-bdce-b82c8737cd4f |