Table: Security_events
Displaying rows 97451 - 97500 of 120479 (Page 1950 / 2410)
| Entity | Type | Event time | Action taken | Ai reason | Ai confidence score | Ai details | Event id |
|---|---|---|---|---|---|---|---|
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 13:05:34 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | 7a2abecd-af56-466e-a26c-97f96fe47745 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 13:05:34 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 5a28640b-4d51-4d74-aedd-318bfac4f844 |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 13:05:34 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | c693a0f8-deb5-4a7a-abe5-f7447bc728ad |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 13:05:34 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | 046135f6-4dc4-4d5a-8b3b-f88a54e36932 |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 13:05:34 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | 534a584a-543a-4bf5-a0c8-425f58f3da51 |
| UNKNOWN | tls | 2025-07-22 13:05:34 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | 7a872e77-0ee9-465d-b760-375d24e03474 |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 13:05:34 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 642be056-edfa-406f-b3e6-3a461cec9cae |
| UNKNOWN | tls | 2025-07-22 12:30:30 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | 5db2a35a-3c0d-4003-bfb8-56862b6c6cd5 |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 12:30:30 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 7360ef5e-1bc5-409b-af03-35cdf17d32f3 |
| 157.180.49.118 | ip | 2025-07-22 12:30:29 | block | Persistent medium malicious probing; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 61ec1a43-dbef-4f4c-91f5-c741c1e55e54 |
| 123.6.49.50 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | e54a9497-b00e-4aa2-bee5-aaf2499daf65 |
| 103.207.148.148 | ip | 2025-07-22 12:30:29 | block | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | 92c94e73-ccec-4193-ade0-7b701437d3fd |
| 101.55.81.36 | ip | 2025-07-22 12:30:29 | block | Persistent critical activity targeting sensitive files and web shell paths, indicating exploitation. | 1.0 | severity: Severity.critical | 930866f6-1d76-485c-b278-fc7fa2c239dc |
| 185.177.72.104 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; aggressive scanning for .env, phpinfo, .git files. | 1.0 | severity: Severity.critical | a6253233-abc5-46ac-ba55-f00930baa235 |
| 178.33.134.25 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; scanning common directories with browser impersonation. | 0.8999999761581421 | severity: Severity.critical | d20fd34b-bb7c-4427-814d-976966f608b5 |
| 185.177.72.144 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; widespread probing for sensitive files/LFI; AS211590 related. | 1.0 | severity: Severity.critical | e165fb80-50e5-4ebe-b8db-574b844c3ac2 |
| 185.177.72.12 | ip | 2025-07-22 12:30:29 | block | Critical malicious reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 34791b27-b8dd-4b03-a572-3c90c2ea0ce8 |
| 185.177.72.11 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; targeting sensitive credentials, env files, server info. | 1.0 | severity: Severity.critical | 81932971-c1c4-4a2a-b094-db33992d4d46 |
| 185.177.72.3 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; targeting sensitive creds/config files; LFI anomalies; AS211590 related. | 1.0 | severity: Severity.critical | 796c9892-5561-44f4-af34-82ecde303e2e |
| 185.177.72.205 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; attempting cloud creds, env files, config access; LFI. | 1.0 | severity: Severity.critical | 7cfbe390-bc35-47c6-80a3-15c9e4c886fa |
| 185.177.72.204 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; scanning for config files and source code repos. | 1.0 | severity: Severity.critical | 95cd186e-b124-4350-8577-6618d9d4f91e |
| 185.177.72.2 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; targeting sensitive config files; browser impersonation; AS211590 related. | 1.0 | severity: Severity.critical | 41d15b16-e388-4f39-a849-5bfebacfdda8 |
| 195.178.110.161 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; scanning for sensitive JS config, JSON creds, env vars; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 973daf19-c458-48da-98f9-416685cb03f3 |
| 194.50.16.252 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; targeting Spring Boot Actuator with command injection attempts. | 1.0 | severity: Severity.critical | f73d6ce9-d88c-41ad-99a3-5dac093ec2ae |
| 2001:4878:8216:510:dddd:b98a:3a76:296c | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; accessed obfuscated path linked to prior critical activity. | 0.949999988079071 | severity: Severity.critical | c29c8d03-7950-45e7-bb61-a334c1ca592d |
| 20.171.207.158 | ip | 2025-07-22 12:30:29 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 3dbf2242-7755-4f4b-8b33-a4a737aeac73 |
| 205.169.39.130 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; triggered IP blocking due to burst activity. | 0.8999999761581421 | severity: Severity.critical | 1c693dac-584c-409c-a076-c3df9cf12a47 |
| 2001:bc8:1f90:4:7ec2:55ff:fe9e:8476 | ip | 2025-07-22 12:30:29 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | f548c7ce-96ea-4a12-b4a8-7bc5bd0c2b84 |
| 2001:bc8:1201:19:46a8:42ff:fe1b:ae29 | ip | 2025-07-22 12:30:29 | block | Persistent medium malicious activity; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 7547266d-58b6-489a-8ed0-26e79c5eaf7c |
| 216.126.227.20 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; targeted WordPress paths (wlwmanifest.xml, xmlrpc.php); browser impersonation. | 1.0 | severity: Severity.critical | 15cfc011-1c24-4ae2-982a-110c370c512b |
| 205.169.39.4 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; high flagged requests, triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 0d129866-dd95-4abe-9d28-402952f48c9b |
| 3.92.177.104 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; targeting WordPress wlwmanifest.xml and xmlrpc.php; WAF IPBLOCK. | 1.0 | severity: Severity.critical | 79867cea-b833-46e2-a66e-72bb49260029 |
| 2604:a880:400:d1:0:1:4cea:4001 | ip | 2025-07-22 12:30:29 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 94336f1a-38b4-46e1-bd2a-a17f4a2dc584 |
| 51.38.105.105 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; extensive scanning for sensitive files/PHP info; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | ef08b41a-fdb2-4041-bda9-2184a650cabe |
| 34.116.246.85 | ip | 2025-07-22 12:30:29 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | ce2c3c10-8096-46af-a010-56f5fb6b1b76 |
| 34.116.172.61 | ip | 2025-07-22 12:30:29 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | ca1c7e9c-ed1f-4275-88d3-a90c673bf317 |
| 66.249.77.104 | ip | 2025-07-22 12:30:29 | block | Critical malicious activity; all requests flagged by WAF and security alerts. | 0.949999988079071 | severity: Severity.critical | 35b9739d-50ec-40a2-a3e0-99dacb5612ba |
| 66.249.68.133 | ip | 2025-07-22 12:30:29 | block | Persistent medium malicious scanning; all requests flagged by WAF (100% threat detection). | 0.8999999761581421 | severity: Severity.medium | eea07de1-c36d-4af4-90e0-159e37740daa |
| AS211590 | asn | 2025-07-22 12:30:29 | block | Critical malicious activity; 100% threat detection targeting sensitive files/creds/LFI. | 1.0 | severity: Severity.critical | 35e03675-0f80-4cf8-8c82-e1d0f1e8bc42 |
| AS16276 | asn | 2025-07-22 12:30:29 | block | Critical malicious activity; aggregated traffic with high threat detection, diverse malicious activities. | 1.0 | severity: Severity.critical | 01df95bb-b44c-4e6a-abcf-1233d59bb18a |
| AS132203 | asn | 2025-07-22 12:30:29 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress; obfuscated paths. | 0.8999999761581421 | severity: Severity.critical | a5713f1f-1d34-4525-b71d-ba8f45120662 |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-22 12:30:29 | block | Critical malicious activity; extensive reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 77de2726-97ab-403c-b90e-ba8fcba9b3ea |
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 12:30:29 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | e5d5f5b7-4c98-456c-8fee-2e169be333ad |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 12:30:29 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 226ae573-addd-4a7c-9440-3a24eb785b18 |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 12:30:29 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 13a7e40a-5abe-403e-a041-867f3e30e3b6 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 12:30:29 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | 83d01bc7-1be5-4fa3-9c0e-f6afaa0c709b |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 12:30:29 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | 8de84c17-802c-49ef-b6a5-ddb4ce560796 |
| 157.180.49.118 | ip | 2025-07-22 12:25:32 | block | Persistent medium malicious probing; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | c05f67af-5bdf-46b4-ac12-25471a7dd930 |
| 123.6.49.50 | ip | 2025-07-22 12:25:32 | block | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | 78bf99a2-e32d-419e-b372-2c1dbf775a48 |
| 103.207.148.148 | ip | 2025-07-22 12:25:32 | block | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | 67b10aab-d5dd-4615-9ed2-3611fc4bc4c3 |