Table: Security_events
Displaying rows 97851 - 97900 of 120479 (Page 1958 / 2410)
| Entity | Type | Event time | Action taken | Ai reason | Ai confidence score | Ai details | Event id |
|---|---|---|---|---|---|---|---|
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 10:50:24 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | b7d6b585-aaef-4520-ad8b-a80fc8807330 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 10:50:24 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 3446a78f-1e8e-4ff4-8d5c-4385c5940806 |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 10:50:24 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | 0c83db87-5bc6-4210-8ab3-bb76f8006ff7 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 10:50:24 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | ae1aae97-2bad-40f3-90cb-73cbd10aa20d |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 10:50:24 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | 3253ce78-4f0f-442c-8a25-9aa0699e1ddd |
| UNKNOWN | tls | 2025-07-22 10:50:24 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | e07012f0-1202-4969-8bce-2b3ded2fb06f |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 10:50:24 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 8cb26da8-4c91-4432-b99d-65a93e0ada0d |
| 157.180.49.118 | ip | 2025-07-22 10:10:05 | block | Persistent medium malicious probing; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 2acd00a3-10f1-49f1-8842-a9af15f7669e |
| 123.6.49.50 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; all requests flagged by WAF with multiple rule hits. | 0.8999999761581421 | severity: Severity.critical | ee9916cb-a162-4d7b-88d6-75a9b542f01d |
| 103.207.148.148 | ip | 2025-07-22 10:10:05 | block | Critical malicious probing for sensitive config/env files; browser impersonation detected. | 0.949999988079071 | severity: Severity.critical | 7fc1c6c5-2062-48fa-be31-b438bd37e759 |
| 101.55.81.36 | ip | 2025-07-22 10:10:05 | block | Persistent critical activity targeting sensitive files and web shell paths, indicating exploitation. | 1.0 | severity: Severity.critical | d9f52889-188c-48aa-ab75-c1710c17b8bb |
| 185.177.72.104 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; aggressive scanning for .env, phpinfo, .git files. | 1.0 | severity: Severity.critical | 160f499c-271f-4b86-bf26-ed771b45c206 |
| 178.33.134.25 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; scanning common directories with browser impersonation. | 0.8999999761581421 | severity: Severity.critical | 2cc7a791-4adb-434f-94a7-8224a496e522 |
| 185.177.72.144 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; widespread probing for sensitive files/LFI; AS211590 related. | 1.0 | severity: Severity.critical | 4debaadb-925d-4619-bd89-58eec7b71e44 |
| 185.177.72.12 | ip | 2025-07-22 10:10:05 | block | Critical malicious reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | a36f814b-566d-450c-a6bf-88047bf5adcb |
| 185.177.72.11 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; targeting sensitive credentials, env files, server info. | 1.0 | severity: Severity.critical | 34dac9f1-de98-497d-b4b4-9807475d39e5 |
| 185.177.72.3 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; targeting sensitive creds/config files; LFI anomalies; AS211590 related. | 1.0 | severity: Severity.critical | 6c56d3b0-bd50-4301-9505-888b63758097 |
| 185.177.72.205 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; attempting cloud creds, env files, config access; LFI. | 1.0 | severity: Severity.critical | cdf4f4b7-a002-454d-b793-344157d8db84 |
| 185.177.72.204 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; scanning for config files and source code repos. | 1.0 | severity: Severity.critical | 51994684-0741-4441-9424-aeef812ff5e4 |
| 185.177.72.2 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; targeting sensitive config files; browser impersonation; AS211590 related. | 1.0 | severity: Severity.critical | 08c2351f-0958-4a6a-a905-743ca0a374a0 |
| 195.178.110.161 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; scanning for sensitive JS config, JSON creds, env vars; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | a9784214-1b2b-4d0c-b69e-e2d500ecd8f2 |
| 194.50.16.252 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; targeting Spring Boot Actuator with command injection attempts. | 1.0 | severity: Severity.critical | dff437f7-e298-4f23-a042-cd24e2fd6649 |
| 2001:4878:8216:510:dddd:b98a:3a76:296c | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; accessed obfuscated path linked to prior critical activity. | 0.949999988079071 | severity: Severity.critical | 0490e3f9-f691-49ba-a7e0-d0ec8dccfeab |
| 20.171.207.158 | ip | 2025-07-22 10:10:05 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 4e594e0c-893c-46a9-bc77-eb95437a625a |
| 205.169.39.130 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; triggered IP blocking due to burst activity. | 0.8999999761581421 | severity: Severity.critical | 82181e1c-f2a9-4680-8735-c343f23d503a |
| 2001:bc8:1f90:4:7ec2:55ff:fe9e:8476 | ip | 2025-07-22 10:10:05 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | bfdd5b2f-a065-4420-95e4-cf6dcb557e01 |
| 2001:bc8:1201:19:46a8:42ff:fe1b:ae29 | ip | 2025-07-22 10:10:05 | block | Persistent medium malicious activity; all requests flagged by WAF. | 0.8500000238418579 | severity: Severity.medium | 1287254a-78f5-454b-92df-42995e7f4921 |
| 216.126.227.20 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; targeted WordPress paths (wlwmanifest.xml, xmlrpc.php); browser impersonation. | 1.0 | severity: Severity.critical | 87f0a850-36e8-467f-ac9b-b6cfb932af63 |
| 205.169.39.4 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; high flagged requests, triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | aacee568-51a6-4a48-b23a-d7870639f996 |
| 3.92.177.104 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; targeting WordPress wlwmanifest.xml and xmlrpc.php; WAF IPBLOCK. | 1.0 | severity: Severity.critical | 0a0ea479-de80-4424-8d39-973f10c90da9 |
| 2604:a880:400:d1:0:1:4cea:4001 | ip | 2025-07-22 10:10:05 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 18049bd5-3808-41c6-8b5c-18083a7c23ca |
| 51.38.105.105 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; extensive scanning for sensitive files/PHP info; browser impersonation. | 0.8999999761581421 | severity: Severity.critical | d2cbb91c-2427-4c2f-a1af-659487d83d03 |
| 34.116.246.85 | ip | 2025-07-22 10:10:05 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | e602fbd3-2bad-4229-b725-ad8de2574800 |
| 34.116.172.61 | ip | 2025-07-22 10:10:05 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | 28dfad85-1774-4c2a-bda0-3f004da21944 |
| 66.249.77.104 | ip | 2025-07-22 10:10:05 | block | Critical malicious activity; all requests flagged by WAF and security alerts. | 0.949999988079071 | severity: Severity.critical | 52a2c30f-1cdc-41b5-b068-bf5671012c86 |
| 66.249.68.133 | ip | 2025-07-22 10:10:05 | block | Persistent medium malicious scanning; all requests flagged by WAF (100% threat detection). | 0.8999999761581421 | severity: Severity.medium | 1ffa5d08-86cc-45da-ad45-f8b5694f0b9e |
| AS211590 | asn | 2025-07-22 10:10:05 | block | Critical malicious activity; 100% threat detection targeting sensitive files/creds/LFI. | 1.0 | severity: Severity.critical | 14f57bf6-4589-4c47-bd4d-bfda8e55f7c1 |
| AS16276 | asn | 2025-07-22 10:10:05 | block | Critical malicious activity; aggregated traffic with high threat detection, diverse malicious activities. | 1.0 | severity: Severity.critical | 094ac165-8535-4ce5-aa05-37cc23e2b496 |
| AS132203 | asn | 2025-07-22 10:10:05 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress; obfuscated paths. | 0.8999999761581421 | severity: Severity.critical | 7d725532-bd09-4a4a-85c0-8d9c2fb077ef |
| 3%7e7bcf51bfc0d0b65f | tls | 2025-07-22 10:10:05 | block | Critical malicious activity; extensive reconnaissance for sensitive app configs/creds; LFI attempts. | 1.0 | severity: Severity.critical | 0e045442-a009-4371-96c7-24c34b12f78e |
| 3%7e2faa3a9db1c111de | tls | 2025-07-22 10:10:05 | block | Critical malicious activity; high volume 100% flagged requests targeting WordPress/sensitive configs/obfuscated paths. | 1.0 | severity: Severity.critical | c62036c8-f21c-4d56-b70c-db2b8dd47032 |
| 3%7ede29393936a8dc4153 | tls | 2025-07-22 10:10:05 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | f81369bb-e013-4771-860b-bc14de6aadfd |
| 3%7ede293936a8dc4153 | tls | 2025-07-22 10:10:05 | block | Critical malicious activity; all requests flagged by WAF; targeting WordPress endpoints; obfuscated paths; browser impersonation. | 0.949999988079071 | severity: Severity.critical | b3d9a63a-52b3-450e-8f34-f812f407e5f2 |
| 3%7ebaae1457ad64ff16 | tls | 2025-07-22 10:10:05 | block | Critical malicious activity; all requests flagged by WAF; obfuscated paths; reconnaissance. | 0.8999999761581421 | severity: Severity.critical | 60f6a12a-f4f8-4b92-9816-83046df599fa |
| 3%7ea97fdb0b70d4a7b7 | tls | 2025-07-22 10:10:05 | block | Critical malicious activity; 100% flagged; aggressive scanning for sensitive files/creds/phpinfo; browser impersonation. | 0.9800000190734863 | severity: Severity.critical | 3203e72a-4daa-4812-9d41-21a765909cf2 |
| UNKNOWN | tls | 2025-07-22 10:10:05 | block | Critical malicious activity; comprehensive/aggressive attacks: sensitive file probing, WordPress exploits, web shell probing, LFI. | 1.0 | severity: Severity.critical | bb5bfab1-d5b6-4c3d-92ba-78956154f7d9 |
| 3%7ee35ec11fcbea7346 | tls | 2025-07-22 10:10:05 | block | Critical malicious activity; very high flagged requests, obfuscated paths; triggered IP blocking by burst. | 0.8999999761581421 | severity: Severity.critical | 8170bdda-979a-447b-9743-98614e1bb0a3 |
| 2001:4878:8216:510:dddd:b98a:3a76:296c | ip | 2025-07-22 10:05:21 | block | Critical malicious activity; accessed obfuscated path linked to prior critical activity. | 0.949999988079071 | severity: Severity.critical | b9fa2d13-659c-40dd-bf61-80c3e91a164a |
| 205.169.39.130 | ip | 2025-07-22 10:05:21 | block | Critical malicious activity; triggered IP blocking due to burst activity. | 0.8999999761581421 | severity: Severity.critical | 8cf67784-64d6-48f3-b114-a22bdc88411b |
| 2001:bc8:1f90:4:7ec2:55ff:fe9e:8476 | ip | 2025-07-22 10:05:21 | block | Persistent medium malicious activity; all requests flagged by WAF; obfuscated paths. | 0.8500000238418579 | severity: Severity.medium | d1e8fb34-2277-477a-b843-b853a2e3f574 |