Table: Security_events
Displaying rows 97651 - 97700 of 120479 (Page 1954 / 2410)
| Entity | Type | Event time | Action taken | Ai reason | Ai confidence score | Ai details | Event id |
|---|---|---|---|---|---|---|---|
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 11:35:16 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | 0e461c38-aa16-45d2-97fe-dbf649cf610c |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 11:35:16 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | e6c12c8b-2377-48da-9b85-c9d336042cf8 |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 11:35:16 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | c251b479-20fa-4d3b-8c4a-387ba2bc290d |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 11:35:16 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | 45cab6f7-092a-4a62-abec-5490e1a4af8a |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 11:35:16 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | 87dc13e3-4824-48ca-b921-558fbd5028dd |
| UNKNOWN | tls | 2025-07-22 11:35:16 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | a348c5ae-eca5-4570-ab1d-e59293b6f610 |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 11:35:16 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 9fcbb0c8-000e-4f85-b18d-04ee091141c2 |
| 157.180.49.118 | ip | 2025-07-22 11:30:18 | block | Persistent medium malicious probing; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | b0a13475-e314-45ba-b657-44c338000396 |
| 123.6.49.50 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | a7787f57-fb17-42d7-a76b-4f18bfa23146 |
| 103.207.148.148 | ip | 2025-07-22 11:30:18 | block | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | b96a31a1-d193-483d-af60-1337c524174e |
| 101.55.81.36 | ip | 2025-07-22 11:30:18 | block | Persistent critical activity targeting sensitive files and web shell paths, indicating exploitation. | 1.0 | severity: Severity.critical | 673c6d89-5a25-4450-b1f9-91750f71cfee |
| 185.177.72.104 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; aggressive scanning for .env, phpinfo, .git files. | 1.0 | severity: Severity.critical | b9b27876-c4fb-44da-bce7-af2850832740 |
| 178.33.134.25 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; scanning common directories with browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 455946d1-784f-4e36-a914-4376d4909a21 |
| 185.177.72.144 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; widespread probing for sensitive files/LFI; AS211590 related. | 1.0 | severity: Severity.critical | 2df54065-715e-432e-9243-28b70ab7a7c8 |
| 185.177.72.12 | ip | 2025-07-22 11:30:18 | block | Critical malicious reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | b857095f-7fbb-4fec-a279-bb960bca7b2a |
| 185.177.72.11 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; targeting sensitive credentials, env files, server info. | 1.0 | severity: Severity.critical | f012c571-c32f-467e-bf24-cc5fc0c168dc |
| 185.177.72.3 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; targeting sensitive creds/config files; LFI anomalies; AS211590 related. | 1.0 | severity: Severity.critical | e921bc92-53ab-4038-8810-7dabc96c38bb |
| 185.177.72.205 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; attempting cloud creds, env files, config access; LFI. | 1.0 | severity: Severity.critical | 2d809bef-62e6-4509-93be-c9a5941b315f |
| 185.177.72.204 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; scanning for config files and source code repos. | 1.0 | severity: Severity.critical | c8a9c570-8473-45a2-8055-294d3fac885d |
| 185.177.72.2 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; targeting sensitive config files; browser impersonation; AS211590 related. | 1.0 | severity: Severity.critical | 9ee8bf54-bc86-45e8-9bbf-91f8faab7aea |
| 195.178.110.161 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; scanning for sensitive JS config, JSON creds, env vars; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 5d764240-5445-40ed-8265-2ced514b1131 |
| 194.50.16.252 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; targeting Spring Boot Actuator with command injection attempts. | 1.0 | severity: Severity.critical | fb6b4be7-c0e8-4849-aea1-e1d091b1d9b0 |
| 2001:4878:8216:510:dddd:b98a:3a76:296c | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; accessed obfuscated path linked to prior critical activity. | 0.949999988079071 | severity: Severity.critical | 7af476de-8f18-4285-bcff-98ae993d123a |
| 20.171.207.158 | ip | 2025-07-22 11:30:18 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 3d83ef85-ca39-4891-a7f0-238189834883 |
| 205.169.39.130 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; triggered IP blocking due to burst activity. | 0.8999999761581421 | severity: Severity.critical | 78f776ff-aa52-48ea-b50a-98ea1c7a075a |
| 2001:bc8:1f90:4:7ec2:55ff:fe9e:8476 | ip | 2025-07-22 11:30:18 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 55a0f5fc-a56b-4da0-b961-a0d605b90ad7 |
| 2001:bc8:1201:19:46a8:42ff:fe1b:ae29 | ip | 2025-07-22 11:30:18 | block | Persistent medium malicious activity; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | d0c9037a-f5d7-46f7-8f6f-3f959b93f41b |
| 216.126.227.20 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; targeted WordPress paths (wlwmanifest.xml, xmlrpc.php); browser impersonation. | 1.0 | severity: Severity.critical | ffd18043-5158-4ec1-8f05-51ce782b4179 |
| 205.169.39.4 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; high flagged requests, triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | baa87e6d-3807-4d53-954a-d3ea7727d667 |
| 3.92.177.104 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; targeting WordPress wlwmanifest.xml and xmlrpc.php; WAF IPBLOCK. | 1.0 | severity: Severity.critical | f3c67471-05c6-4e57-9f4f-5f1226f2ccbd |
| 2604:a880:400:d1:0:1:4cea:4001 | ip | 2025-07-22 11:30:18 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 628437fa-2485-4d0f-b52f-5dd9f581b717 |
| 51.38.105.105 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; extensive scanning for sensitive files/PHP info; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | f71e7633-8044-4dce-b837-5dccbff6cd1e |
| 34.116.246.85 | ip | 2025-07-22 11:30:18 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | d2295c99-7bc2-4cef-a73d-0b41d0079b77 |
| 34.116.172.61 | ip | 2025-07-22 11:30:18 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 2ccdf83a-7314-41b3-b234-af75bcb43550 |
| 66.249.77.104 | ip | 2025-07-22 11:30:18 | block | Critical malicious activity; all requests flagged by WAF and security alerts. | 0.949999988079071 | severity: Severity.critical | f4d04159-e403-446c-8b59-a3def979434b |
| 66.249.68.133 | ip | 2025-07-22 11:30:18 | block | Persistent medium malicious scanning; all requests flagged by WAF (100% threat detection). | 0.8999999761581421 | severity: Severity.medium | f0220d4c-8c8d-41a8-a1c5-22c4117c1098 |
| AS211590 | asn | 2025-07-22 11:30:18 | block | Critical malicious activity; 100% threat detection targeting sensitive files/creds/LFI. | 1.0 | severity: Severity.critical | 93d18ef7-2507-41ed-995a-39dcda1fdf50 |
| AS16276 | asn | 2025-07-22 11:30:18 | block | Critical malicious activity; aggregated traffic with high threat detection, diverse malicious activities. | 1.0 | severity: Severity.critical | 7119c34b-8752-4a41-b800-d52acfd15e55 |
| AS132203 | asn | 2025-07-22 11:30:18 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress; obfuscated paths. | 0.8999999761581421 | severity: Severity.critical | 275a9a7e-5c7f-4f33-b7cb-152dfd5f4ca7 |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-22 11:30:18 | block | Critical malicious activity; extensive reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 7f3c5463-b7c9-445d-91ef-fda1992e5379 |
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 11:30:18 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | cb4180e8-876a-4dc4-9cd6-10d8021b5234 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 11:30:18 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 77121bd5-9203-41a1-b3bd-5917e009ebbc |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 11:30:18 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 224d6307-b8d8-4bc8-bf7b-01db90b301c4 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 11:30:18 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | ac77fb9f-610b-45d3-987a-d24cb2625ac2 |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 11:30:18 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | ec5b3fa1-f659-4d0b-88cc-89cfde0248dd |
| UNKNOWN | tls | 2025-07-22 11:30:18 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | bf0d1d33-3090-413a-b3e9-7edbd060fca8 |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 11:30:18 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 094b48ae-c250-4f77-8e95-547485a6d192 |
| 157.180.49.118 | ip | 2025-07-22 11:25:20 | block | Persistent medium malicious probing; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 14e2e91c-3b5f-4193-8ce7-4dc421d3dd99 |
| 123.6.49.50 | ip | 2025-07-22 11:25:20 | block | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | 4406bc8e-3852-494a-9a9d-142c234e62cb |
| 103.207.148.148 | ip | 2025-07-22 11:25:20 | block | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | 54ee3a99-a587-477e-a188-7b026ca1562e |