Table: Security_events
Displaying rows 97351 - 97400 of 120479 (Page 1948 / 2410)
| Entity | Type | Event time | Action taken | Ai reason | Ai confidence score | Ai details | Event id |
|---|---|---|---|---|---|---|---|
| 195.178.110.161 | ip | 2025-07-22 13:15:47 | block | Critical malicious activity; scanning for sensitive JS config, JSON creds, env vars; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | f2f32a5c-83e7-42f0-bf27-214b8e77c098 |
| 194.50.16.252 | ip | 2025-07-22 13:15:47 | block | Critical malicious activity; targeting Spring Boot Actuator with command injection attempts. | 1.0 | severity: Severity.critical | 8e76763f-a595-4ee3-95f2-b1da8dc39f3b |
| 2001:4878:8216:510:dddd:b98a:3a76:296c | ip | 2025-07-22 13:15:47 | block | Critical malicious activity; accessed obfuscated path linked to prior critical activity. | 0.949999988079071 | severity: Severity.critical | 2d0d2a01-70f9-4351-8504-4e220eaeeb6e |
| 20.171.207.158 | ip | 2025-07-22 13:15:47 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 229f1fa8-3b45-4634-aed3-44e0e0751c62 |
| 205.169.39.130 | ip | 2025-07-22 13:15:47 | block | Critical malicious activity; triggered IP blocking due to burst activity. | 0.8999999761581421 | severity: Severity.critical | cf5213de-4b38-4d4a-bba0-b95725feb763 |
| 2001:bc8:1f90:4:7ec2:55ff:fe9e:8476 | ip | 2025-07-22 13:15:47 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 58de97bc-ad5c-4054-b77b-c678431d792f |
| 2001:bc8:1201:19:46a8:42ff:fe1b:ae29 | ip | 2025-07-22 13:15:47 | block | Persistent medium malicious activity; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | bf52b84e-e6d0-4078-9ebf-cd01e0623431 |
| 216.126.227.20 | ip | 2025-07-22 13:15:47 | block | Critical malicious activity; targeted WordPress paths (wlwmanifest.xml, xmlrpc.php); browser impersonation. | 1.0 | severity: Severity.critical | bdf3cd92-35b9-492e-89bf-33683044e183 |
| 205.169.39.4 | ip | 2025-07-22 13:15:47 | block | Critical malicious activity; high flagged requests, triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 6b54a112-ec73-485b-a632-32524927292d |
| 3.92.177.104 | ip | 2025-07-22 13:15:47 | block | Critical malicious activity; targeting WordPress wlwmanifest.xml and xmlrpc.php; WAF IPBLOCK. | 1.0 | severity: Severity.critical | e50b8734-f1e6-4136-b7c5-c8ca0a532017 |
| 2604:a880:400:d1:0:1:4cea:4001 | ip | 2025-07-22 13:15:47 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 701f78ca-471f-4e76-b470-0c0cd1b87f8b |
| 34.116.246.85 | ip | 2025-07-22 13:15:47 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | b058545f-fab4-4d31-b3c9-0f14254ab312 |
| 34.116.172.61 | ip | 2025-07-22 13:15:47 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 80e1c459-3908-4bdf-8633-77246329ef19 |
| 66.249.77.104 | ip | 2025-07-22 13:15:47 | block | Critical malicious activity; all requests flagged by WAF and security alerts. | 0.949999988079071 | severity: Severity.critical | 525c566d-e85f-4b4f-ab41-4eaaded7541b |
| 66.249.68.133 | ip | 2025-07-22 13:15:47 | block | Persistent medium malicious scanning; all requests flagged by WAF (100% threat detection). | 0.8999999761581421 | severity: Severity.medium | 63641a11-8750-4a4e-b8b8-7a2a73c4d706 |
| 51.38.105.105 | ip | 2025-07-22 13:15:47 | block | Critical malicious activity; extensive scanning for sensitive files/PHP info; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | ab728eb6-aad7-4203-8f7a-fc033223f63c |
| AS211590 | asn | 2025-07-22 13:15:47 | block | Critical malicious activity; 100% threat detection targeting sensitive files/creds/LFI. | 1.0 | severity: Severity.critical | 4034edd3-97af-4189-a482-2b0dfbdef7ed |
| AS16276 | asn | 2025-07-22 13:15:47 | block | Critical malicious activity; aggregated traffic with high threat detection, diverse malicious activities. | 1.0 | severity: Severity.critical | f7374630-1252-42a0-81dc-68b999b1b4e8 |
| AS132203 | asn | 2025-07-22 13:15:47 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress; obfuscated paths. | 0.8999999761581421 | severity: Severity.critical | 43b758d0-d6a0-4fd5-b491-227bf3e88a20 |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-22 13:15:47 | block | Critical malicious activity; extensive reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 7e877753-a0df-41fa-9aac-f258c36298e4 |
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 13:15:47 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | 4ba97181-2577-4e0c-a33d-92cf03577206 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 13:15:47 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | a3aaf642-3a15-4eab-962d-73ca1e571dba |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 13:15:47 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | f09117fa-e3fe-4ae3-9f33-b087625a99d7 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 13:15:47 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | b06d3c6b-5a64-4b0f-bfc9-d0deff10190e |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 13:15:47 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | 85c57897-24a2-4306-81f1-91e8aa999d8d |
| UNKNOWN | tls | 2025-07-22 13:15:47 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | 12ea0109-c3d0-406b-83b6-1bd375b830bf |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 13:15:47 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 1ab10120-fc2b-4c4e-9c7a-5ca6e9a59ffd |
| 34.116.246.85 | ip | 2025-07-22 13:10:31 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 4bf03883-8e96-400f-881b-3d8084a4c71f |
| 66.249.77.104 | ip | 2025-07-22 13:10:31 | block | Critical malicious activity; all requests flagged by WAF and security alerts. | 0.949999988079071 | severity: Severity.critical | 1a8f4f8a-47df-4544-b0c2-ad5258206039 |
| 66.249.68.133 | ip | 2025-07-22 13:10:31 | block | Persistent medium malicious scanning; all requests flagged by WAF (100% threat detection). | 0.8999999761581421 | severity: Severity.medium | 4d1a7557-5633-4097-adf3-40e6c21dbcd7 |
| 51.38.105.105 | ip | 2025-07-22 13:10:31 | block | Critical malicious activity; extensive scanning for sensitive files/PHP info; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 883958a5-bbde-4f2a-a65a-86f229a92adc |
| AS211590 | asn | 2025-07-22 13:10:31 | block | Critical malicious activity; 100% threat detection targeting sensitive files/creds/LFI. | 1.0 | severity: Severity.critical | 9429804a-0fe6-4ed6-bbf0-48f806f03898 |
| AS16276 | asn | 2025-07-22 13:10:31 | block | Critical malicious activity; aggregated traffic with high threat detection, diverse malicious activities. | 1.0 | severity: Severity.critical | 286b6b66-771b-46c6-ae9e-e47e5c554d13 |
| AS132203 | asn | 2025-07-22 13:10:31 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress; obfuscated paths. | 0.8999999761581421 | severity: Severity.critical | ea68038e-5518-4a3f-aad2-544a5555fe9c |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-22 13:10:31 | block | Critical malicious activity; extensive reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 7e2652aa-b30f-41e5-b03a-ffee02c1a6be |
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 13:10:31 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | 2cb5efeb-ff70-4137-accf-12b294bd0925 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 13:10:31 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 7c394b92-b0f5-40d4-8655-0ce1b91f3308 |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 13:10:31 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 031c9dc4-5147-41f9-801d-df83b306597b |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 13:10:31 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | 782fec96-4439-4e7a-9bfe-d6d641fe4ad7 |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 13:10:31 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | a6175aae-55cd-412b-8308-18b8a697dfe6 |
| UNKNOWN | tls | 2025-07-22 13:10:31 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | 1be9e102-a7ee-41cf-8ae4-35eebe8f88de |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 13:10:31 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 99d0cbca-3cd2-45e3-adeb-49debb4da36c |
| 157.180.49.118 | ip | 2025-07-22 13:10:30 | block | Persistent medium malicious probing; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 5cead617-cd91-48b5-a220-5e57a7386ac5 |
| 123.6.49.50 | ip | 2025-07-22 13:10:30 | block | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | 849c6489-0a08-409d-8e63-69cbe9c0c6fb |
| 103.207.148.148 | ip | 2025-07-22 13:10:30 | block | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | 19a84e3c-8758-40aa-8e76-2d425ae2f6af |
| 101.55.81.36 | ip | 2025-07-22 13:10:30 | block | Persistent critical activity targeting sensitive files and web shell paths, indicating exploitation. | 1.0 | severity: Severity.critical | 495650b8-13a1-4c86-ad54-ab3ce6d13eac |
| 185.177.72.104 | ip | 2025-07-22 13:10:30 | block | Critical malicious activity; aggressive scanning for .env, phpinfo, .git files. | 1.0 | severity: Severity.critical | 44dfbde2-0bc5-4258-8a9b-77ca1f2f6723 |
| 178.33.134.25 | ip | 2025-07-22 13:10:30 | block | Critical malicious activity; scanning common directories with browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 9cb337f4-7b7b-4ada-addc-f6a7cf3c87d9 |
| 185.177.72.144 | ip | 2025-07-22 13:10:30 | block | Critical malicious activity; widespread probing for sensitive files/LFI; AS211590 related. | 1.0 | severity: Severity.critical | 388d930b-9faf-4a53-9951-fb7d8470002f |
| 185.177.72.12 | ip | 2025-07-22 13:10:30 | block | Critical malicious reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 7da42661-09b0-406c-9fcc-0767fa03881c |