Table: Security_events
Displaying rows 97051 - 97100 of 120479 (Page 1942 / 2410)
| Entity | Type | Event time | Action taken | Ai reason | Ai confidence score | Ai details | Event id |
|---|---|---|---|---|---|---|---|
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 14:10:33 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | fa8c3f90-c479-4b88-adce-edfd4ef66560 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 14:10:33 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 4c3aa28a-1bff-4c14-a1a5-fc5619b7caea |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 14:10:33 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | a8ed6df7-f84c-49de-b5a6-ada98ee81c93 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 14:10:33 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | 7ae5d33d-993d-4f3d-9877-c5ffb6acb44c |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 14:10:33 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | 3c4a9919-c8b9-402d-8736-ab86c75d0b5c |
| UNKNOWN | tls | 2025-07-22 14:10:33 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | 29c37894-008b-463c-8fc2-0c284eb784b3 |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 14:10:33 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | d52d43b4-a3c5-4d70-bf4e-8fa04de13be7 |
| 157.180.49.118 | ip | 2025-07-22 14:06:05 | block | Persistent medium malicious probing; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | d4214876-7e57-44e3-8190-0a1e5a737613 |
| 123.6.49.50 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | 8eb6a280-4504-4fe5-b13c-6cd1e534e5c0 |
| 103.207.148.148 | ip | 2025-07-22 14:06:05 | block | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | 6bdf0a5e-3142-4361-9685-5ea262e53dd0 |
| 101.55.81.36 | ip | 2025-07-22 14:06:05 | block | Persistent critical activity targeting sensitive files and web shell paths, indicating exploitation. | 1.0 | severity: Severity.critical | e349b145-a2c2-4d35-8530-bbdaf7b4ff56 |
| 185.177.72.104 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; aggressive scanning for .env, phpinfo, .git files. | 1.0 | severity: Severity.critical | 9a3577f5-982d-4fff-b132-a227ef68e7d1 |
| 178.33.134.25 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; scanning common directories with browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 0e0fd193-5fc3-4b06-842a-f48f127d0b2b |
| 185.177.72.144 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; widespread probing for sensitive files/LFI; AS211590 related. | 1.0 | severity: Severity.critical | 543381b5-bb9f-4d42-a807-21141538dde5 |
| 185.177.72.12 | ip | 2025-07-22 14:06:05 | block | Critical malicious reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 27ad02ac-8054-4794-9572-dcdc784dd59a |
| 185.177.72.11 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; targeting sensitive credentials, env files, server info. | 1.0 | severity: Severity.critical | 896cdede-495a-40cf-9fc9-ed05f0edbb86 |
| 185.177.72.3 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; targeting sensitive creds/config files; LFI anomalies; AS211590 related. | 1.0 | severity: Severity.critical | a5f48e29-f420-4bb7-9251-903d5d3d0f99 |
| 185.177.72.205 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; attempting cloud creds, env files, config access; LFI. | 1.0 | severity: Severity.critical | 48b1153a-44c1-43f9-bf86-3c04dda5fe9c |
| 185.177.72.204 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; scanning for config files and source code repos. | 1.0 | severity: Severity.critical | 19b3f4ad-8277-44f9-835f-78730f600028 |
| 185.177.72.2 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; targeting sensitive config files; browser impersonation; AS211590 related. | 1.0 | severity: Severity.critical | 8d43be70-4c11-4681-b3be-93e67561e2f4 |
| 195.178.110.161 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; scanning for sensitive JS config, JSON creds, env vars; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 4a66b74e-bb3d-49ed-99dd-67b1c4804c0e |
| 194.50.16.252 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; targeting Spring Boot Actuator with command injection attempts. | 1.0 | severity: Severity.critical | d219d230-2c21-49ee-b2b7-1510490becd4 |
| 2001:4878:8216:510:dddd:b98a:3a76:296c | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; accessed obfuscated path linked to prior critical activity. | 0.949999988079071 | severity: Severity.critical | 4c0d8979-a1b3-4cc7-b8b7-39b20d69b9fd |
| 20.171.207.158 | ip | 2025-07-22 14:06:05 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 7514a272-8974-49c6-882d-9582dde09634 |
| 205.169.39.130 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; triggered IP blocking due to burst activity. | 0.8999999761581421 | severity: Severity.critical | cb907a77-462f-4978-925f-c0bea55afa20 |
| 2001:bc8:1f90:4:7ec2:55ff:fe9e:8476 | ip | 2025-07-22 14:06:05 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 2f856ab1-3565-439d-bd1c-ff834c285cf0 |
| 2001:bc8:1201:19:46a8:42ff:fe1b:ae29 | ip | 2025-07-22 14:06:05 | block | Persistent medium malicious activity; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 53157832-01da-46ba-8806-084e558e9729 |
| 216.126.227.20 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; targeted WordPress paths (wlwmanifest.xml, xmlrpc.php); browser impersonation. | 1.0 | severity: Severity.critical | 0698036e-2a7f-4c0b-a29d-20340da06c14 |
| 205.169.39.4 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; high flagged requests, triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 022ac425-6a61-4c1f-a1de-3c5175c29819 |
| 3.92.177.104 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; targeting WordPress wlwmanifest.xml and xmlrpc.php; WAF IPBLOCK. | 1.0 | severity: Severity.critical | 8c775fb3-0f76-4e2b-a67a-368a3b1fca66 |
| 2604:a880:400:d1:0:1:4cea:4001 | ip | 2025-07-22 14:06:05 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | b1b97d00-cbe7-4143-9f40-70d1b6b7a065 |
| 34.116.246.85 | ip | 2025-07-22 14:06:05 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 29759ed8-8042-48f4-ab71-aad0bf07f6b8 |
| 34.116.172.61 | ip | 2025-07-22 14:06:05 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 9bfbabd0-48fb-4d80-bd46-07ab0f1d154c |
| 66.249.77.104 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; all requests flagged by WAF and security alerts. | 0.949999988079071 | severity: Severity.critical | c70221a2-9855-4665-8c25-8c63f42fd7e8 |
| 66.249.68.133 | ip | 2025-07-22 14:06:05 | block | Persistent medium malicious scanning; all requests flagged by WAF (100% threat detection). | 0.8999999761581421 | severity: Severity.medium | c88971a1-b65b-46aa-9b3d-fec37d18ff71 |
| 51.38.105.105 | ip | 2025-07-22 14:06:05 | block | Critical malicious activity; extensive scanning for sensitive files/PHP info; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 43cf46b9-6328-487e-a310-c69781439d78 |
| AS211590 | asn | 2025-07-22 14:06:05 | block | Critical malicious activity; 100% threat detection targeting sensitive files/creds/LFI. | 1.0 | severity: Severity.critical | b3b04429-e983-4259-8621-2edbf151e690 |
| AS16276 | asn | 2025-07-22 14:06:05 | block | Critical malicious activity; aggregated traffic with high threat detection, diverse malicious activities. | 1.0 | severity: Severity.critical | cdb3d996-0f3f-44eb-902a-d7168e27f6c4 |
| AS132203 | asn | 2025-07-22 14:06:05 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress; obfuscated paths. | 0.8999999761581421 | severity: Severity.critical | 535eb23b-2a61-43a4-82c2-40165ae9540f |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-22 14:06:05 | block | Critical malicious activity; extensive reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 50a86e8a-f5fe-431c-9d63-e492df295ff5 |
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 14:06:05 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | 49f3f1dc-c04d-4cd1-a377-d29b7e2a4014 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 14:06:05 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 9dd16b24-1585-42cd-b877-4ab78af79664 |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 14:06:05 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 4bfb9a77-8162-4889-b81c-0a625b98bd19 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 14:06:05 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | 60c4439c-7529-4968-91d4-46f182575e3f |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 14:06:05 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | e522b758-096c-483d-a648-0203a0eaf6a8 |
| UNKNOWN | tls | 2025-07-22 14:06:05 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | 7ffd41f3-1091-4ab1-9c19-b9cf9c1c08bc |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 14:06:05 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 49a19037-d733-46c0-a5f6-7ff50b9ba009 |
| 185.177.72.104 | ip | 2025-07-22 13:55:36 | block | Critical malicious activity; aggressive scanning for .env, phpinfo, .git files. | 1.0 | severity: Severity.critical | ef3b50cf-8919-4d59-a329-fb7491e1e0a5 |
| 178.33.134.25 | ip | 2025-07-22 13:55:36 | block | Critical malicious activity; scanning common directories with browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 197248c8-a6d0-4e15-b9fd-e18f4cf584d5 |
| 185.177.72.144 | ip | 2025-07-22 13:55:36 | block | Critical malicious activity; widespread probing for sensitive files/LFI; AS211590 related. | 1.0 | severity: Severity.critical | 53b310bb-dbb3-4ab9-842f-3562cb29bcf3 |