Table: Security_events
Displaying rows 97001 - 97050 of 120479 (Page 1941 / 2410)
| Entity | Type | Event time | Action taken | Ai reason | Ai confidence score | Ai details | Event id |
|---|---|---|---|---|---|---|---|
| 66.249.77.104 | ip | 2025-07-22 14:15:51 | block | Critical malicious activity; all requests flagged by WAF and security alerts. | 0.949999988079071 | severity: Severity.critical | 5d577de1-40cc-425a-9d78-73b41caf7bdc |
| 66.249.68.133 | ip | 2025-07-22 14:15:51 | block | Persistent medium malicious scanning; all requests flagged by WAF (100% threat detection). | 0.8999999761581421 | severity: Severity.medium | 28060aaa-765b-4572-af01-d61314f4e774 |
| 51.38.105.105 | ip | 2025-07-22 14:15:51 | block | Critical malicious activity; extensive scanning for sensitive files/PHP info; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | ad1a908a-ab54-4ff8-9a2d-6c3194081303 |
| AS211590 | asn | 2025-07-22 14:15:51 | block | Critical malicious activity; 100% threat detection targeting sensitive files/creds/LFI. | 1.0 | severity: Severity.critical | 88f613a0-3670-4844-81c2-053492caaf8f |
| AS16276 | asn | 2025-07-22 14:15:51 | block | Critical malicious activity; aggregated traffic with high threat detection, diverse malicious activities. | 1.0 | severity: Severity.critical | a2380dba-04f9-45d8-985b-8428da9374c5 |
| AS132203 | asn | 2025-07-22 14:15:51 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress; obfuscated paths. | 0.8999999761581421 | severity: Severity.critical | 7522a777-3b3f-4223-9ea2-81d526917752 |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-22 14:15:51 | block | Critical malicious activity; extensive reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 5f1d683a-2f8c-4a6e-8d6b-50054c5b4ba5 |
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 14:15:51 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | 0657698f-db0e-4c2e-afb3-a76f964d4321 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 14:15:51 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 671377fe-3f89-4d5b-b4f0-aa8e3581ca8a |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 14:15:51 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | de389afc-7e50-4146-ae30-b2405e3bea83 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 14:15:51 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | 2c67eaa9-d26c-4c7b-9d81-1dd202188c82 |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 14:15:51 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | c2572f7c-fabc-4c54-87de-f5cda3996ca4 |
| UNKNOWN | tls | 2025-07-22 14:15:51 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | f6684104-bd85-4925-b076-30659d1daf3d |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 14:15:51 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | ef4b2173-e401-434d-93e1-362dd463c95c |
| 123.6.49.50 | ip | 2025-07-22 14:15:50 | block | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | b6779b87-fafd-4664-b578-4ba0b65ca3f1 |
| 103.207.148.148 | ip | 2025-07-22 14:15:50 | block | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | 269ef124-0cf9-4803-9db4-f0930b6a542e |
| 101.55.81.36 | ip | 2025-07-22 14:15:50 | block | Persistent critical activity targeting sensitive files and web shell paths, indicating exploitation. | 1.0 | severity: Severity.critical | f7849c01-be99-4b25-867c-afb6741d32f6 |
| 157.180.49.118 | ip | 2025-07-22 14:10:33 | block | Persistent medium malicious probing; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 9c1eb6da-489d-450c-9e47-1e8ba79fd6c1 |
| 123.6.49.50 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | 67450694-256a-41e9-ae08-e9c0bd5b4906 |
| 103.207.148.148 | ip | 2025-07-22 14:10:33 | block | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | e7055f8e-4891-4e35-a430-6f6244ea732a |
| 101.55.81.36 | ip | 2025-07-22 14:10:33 | block | Persistent critical activity targeting sensitive files and web shell paths, indicating exploitation. | 1.0 | severity: Severity.critical | 2baf33ab-8ac1-4861-9c30-117d7a52ad22 |
| 185.177.72.104 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; aggressive scanning for .env, phpinfo, .git files. | 1.0 | severity: Severity.critical | 1fa79051-1bb0-4ff8-8677-902f9408ff40 |
| 178.33.134.25 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; scanning common directories with browser impersonation. | 0.8999999761581421 | severity: Severity.critical | e1a9455a-0027-4877-b277-6b2483a9a473 |
| 185.177.72.144 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; widespread probing for sensitive files/LFI; AS211590 related. | 1.0 | severity: Severity.critical | ab343ff2-d0fe-4aea-85bb-f88c97d27fd0 |
| 185.177.72.12 | ip | 2025-07-22 14:10:33 | block | Critical malicious reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | ac6aa898-575c-4145-bc2d-fc01536bbbb0 |
| 185.177.72.11 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; targeting sensitive credentials, env files, server info. | 1.0 | severity: Severity.critical | 3fca442d-ff07-485a-9fe0-f55e81bc8fb0 |
| 185.177.72.3 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; targeting sensitive creds/config files; LFI anomalies; AS211590 related. | 1.0 | severity: Severity.critical | 718d8bcc-121a-43ed-b899-77a60d1f65d0 |
| 185.177.72.205 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; attempting cloud creds, env files, config access; LFI. | 1.0 | severity: Severity.critical | ba59ffa6-c524-414c-a2c4-958b23980fc0 |
| 185.177.72.204 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; scanning for config files and source code repos. | 1.0 | severity: Severity.critical | d9e8397b-8bcc-4045-b58d-e828d5a1e9fd |
| 185.177.72.2 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; targeting sensitive config files; browser impersonation; AS211590 related. | 1.0 | severity: Severity.critical | 7b83c81d-75b0-4efd-9c6b-fdfc1c81b6dc |
| 195.178.110.161 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; scanning for sensitive JS config, JSON creds, env vars; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | a7522810-7a5b-43c6-b677-6105269e1796 |
| 194.50.16.252 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; targeting Spring Boot Actuator with command injection attempts. | 1.0 | severity: Severity.critical | 8860e656-83db-44d6-a7ce-1bd48765e41b |
| 2001:4878:8216:510:dddd:b98a:3a76:296c | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; accessed obfuscated path linked to prior critical activity. | 0.949999988079071 | severity: Severity.critical | dcb5eb96-c6df-44bd-9e8d-a996642cdb11 |
| 20.171.207.158 | ip | 2025-07-22 14:10:33 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | abbead7a-8e89-4803-897f-2ad6ddb387a8 |
| 205.169.39.130 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; triggered IP blocking due to burst activity. | 0.8999999761581421 | severity: Severity.critical | 6881babc-f874-4fd0-9bf1-787c1c524b88 |
| 2001:bc8:1f90:4:7ec2:55ff:fe9e:8476 | ip | 2025-07-22 14:10:33 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 42ef762c-a8ea-40fa-9ff4-f9351b8cc0ae |
| 2001:bc8:1201:19:46a8:42ff:fe1b:ae29 | ip | 2025-07-22 14:10:33 | block | Persistent medium malicious activity; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 2f084e89-c2bc-48d1-973a-a83d68dfce79 |
| 216.126.227.20 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; targeted WordPress paths (wlwmanifest.xml, xmlrpc.php); browser impersonation. | 1.0 | severity: Severity.critical | 04ca7ac4-bfbc-4ede-a7f0-e88497c5c3d1 |
| 205.169.39.4 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; high flagged requests, triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | defaf5fa-ba41-4d4a-9f5d-7c4fdc849148 |
| 3.92.177.104 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; targeting WordPress wlwmanifest.xml and xmlrpc.php; WAF IPBLOCK. | 1.0 | severity: Severity.critical | b8dbca92-48bc-42c9-97a3-43c436340b45 |
| 2604:a880:400:d1:0:1:4cea:4001 | ip | 2025-07-22 14:10:33 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 95586e05-3f8c-434b-9d8f-851fc0962e52 |
| 34.116.246.85 | ip | 2025-07-22 14:10:33 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 43827526-ceab-4b0a-9311-19ac81423655 |
| 34.116.172.61 | ip | 2025-07-22 14:10:33 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 9cd98e09-687e-49c0-8e79-ce3a553785dd |
| 66.249.77.104 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; all requests flagged by WAF and security alerts. | 0.949999988079071 | severity: Severity.critical | c0598edb-22cb-4cf7-9cb2-5c23c728cfc6 |
| 66.249.68.133 | ip | 2025-07-22 14:10:33 | block | Persistent medium malicious scanning; all requests flagged by WAF (100% threat detection). | 0.8999999761581421 | severity: Severity.medium | f290995d-5513-402c-adc3-5bde101c22ea |
| 51.38.105.105 | ip | 2025-07-22 14:10:33 | block | Critical malicious activity; extensive scanning for sensitive files/PHP info; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | e6208856-ebdd-4580-ad26-bd00a97bfce6 |
| AS211590 | asn | 2025-07-22 14:10:33 | block | Critical malicious activity; 100% threat detection targeting sensitive files/creds/LFI. | 1.0 | severity: Severity.critical | d0f26810-c499-431d-894e-49c97cf7ab6b |
| AS16276 | asn | 2025-07-22 14:10:33 | block | Critical malicious activity; aggregated traffic with high threat detection, diverse malicious activities. | 1.0 | severity: Severity.critical | e109d13c-0d16-4b52-8f4a-74df41ef2431 |
| AS132203 | asn | 2025-07-22 14:10:33 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress; obfuscated paths. | 0.8999999761581421 | severity: Severity.critical | a5d51943-22ee-4c0e-9474-d725e41694f4 |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-22 14:10:33 | block | Critical malicious activity; extensive reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | d91c93ec-292a-4f7f-b6e1-43a07f1cfd5f |