|
205.169.39.125
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed part of a malicious subnet, linked to malicious hostname and TLS fingerprint, and accessed obfuscated paths.
|
0.949999988079071
|
severity: Severity.critical
|
|
2001:bc8:1201:19:46a8:42ff:fe1b:ae29
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed persistent malicious IP activity.
|
0.8500000238418579
|
severity: Severity.medium
|
|
2001:bc8:1f90:4:7ec2:55ff:fe9e:8476
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed persistent malicious IP activity.
|
0.8500000238418579
|
severity: Severity.medium
|
|
205.169.39.130
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed persistent malicious IP activity.
|
0.8999999761581421
|
severity: Severity.critical
|
|
216.126.227.20
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed persistent malicious IP activity.
|
1.0
|
severity: Severity.critical
|
|
205.169.39.4
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed persistent malicious IP activity.
|
0.8999999761581421
|
severity: Severity.critical
|
|
217.156.56.11
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed persistent malicious IP activity.
|
0.8999999761581421
|
severity: Severity.critical
|
|
2601:155:80:2a0:de29:81f:6eed:b186
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed persistent malicious IP activity.
|
0.9800000190734863
|
severity: Severity.critical
|
|
216.244.66.244
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed consistent malicious probing observed, triggering WAF alerts.
|
0.800000011920929
|
severity: Severity.medium
|
|
216.73.216.163
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed persistent malicious IP activity.
|
0.8999999761581421
|
severity: Severity.critical
|
|
2604:7c00:18:a:4f37:6f4c:d1bd:f3b5
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed persistent malicious IP activity.
|
1.0
|
severity: Severity.critical
|
|
2604:a880:0:202a::62df:9000
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed persistent malicious IP activity.
|
1.0
|
severity: Severity.critical
|
|
2604:a880:0:202a::bd93:3000
|
ip
|
2025-10-31 11:32:09
|
block
|
Confirmed multiple WAF alerts and deny rules triggered, including bot impersonation and burst activity, with 100% of requests flagged as threats.
|
1.0
|
severity: Severity.critical
|
|
45.153.163.23
|
ip
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious IP activity.
|
0.8999999761581421
|
severity: Severity.critical
|
|
48.210.236.214
|
ip
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious IP activity.
|
1.0
|
severity: Severity.critical
|
|
51.38.105.105
|
ip
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious IP activity.
|
0.8999999761581421
|
severity: Severity.critical
|
|
66.249.66.40
|
ip
|
2025-10-31 11:12:06
|
block
|
Confirmed consistent malicious probing observed, triggering WAF alerts.
|
0.800000011920929
|
severity: Severity.medium
|
|
66.249.68.133
|
ip
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious IP activity.
|
0.8999999761581421
|
severity: Severity.medium
|
|
62.60.130.211
|
ip
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious IP activity.
|
0.9800000190734863
|
severity: Severity.critical
|
|
66.249.70.200
|
ip
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious IP activity.
|
1.0
|
severity: Severity.critical
|
|
66.249.77.104
|
ip
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious IP activity.
|
0.949999988079071
|
severity: Severity.critical
|
|
66.249.69.35
|
ip
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious IP activity.
|
0.949999988079071
|
severity: Severity.critical
|
|
AS8075
|
asn
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected from this ASN.
|
1.0
|
severity: Severity.critical
|
|
AS132203
|
asn
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected from this ASN.
|
0.8999999761581421
|
severity: Severity.critical
|
|
81.17.20.98
|
ip
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious IP activity.
|
0.949999988079071
|
severity: Severity.critical
|
|
AS16276
|
asn
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected from this ASN.
|
1.0
|
severity: Severity.critical
|
|
85.204.70.106
|
ip
|
2025-10-31 11:12:06
|
block
|
Confirmed extensive scanning and attack attempts against sensitive WordPress paths.
|
1.0
|
severity: Severity.critical
|
|
AS211590
|
asn
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected from this ASN.
|
1.0
|
severity: Severity.critical
|
|
3%7e2faa3a9db1c111de
|
tls
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected using this TLS fingerprint.
|
1.0
|
severity: Severity.critical
|
|
3%7e7bcf51bfc0d0b65f
|
tls
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected using this TLS fingerprint.
|
1.0
|
severity: Severity.critical
|
|
3%7e788289bd73e01aa4
|
tls
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected using this TLS fingerprint.
|
1.0
|
severity: Severity.critical
|
|
3%7ea97fdb0b70d4a7b7
|
tls
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected using this TLS fingerprint.
|
0.9800000190734863
|
severity: Severity.critical
|
|
3%7ede8d6a84fab8672b
|
tls
|
2025-10-31 11:12:06
|
block
|
Confirmed common malicious client fingerprint associated with suspicious access patterns and reconnaissance.
|
0.949999988079071
|
severity: Severity.critical
|
|
3%7ede293936a8dc4153
|
tls
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected using this TLS fingerprint.
|
0.949999988079071
|
severity: Severity.critical
|
|
3%7ebaae1457ad64ff16
|
tls
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected using this TLS fingerprint.
|
0.8999999761581421
|
severity: Severity.critical
|
|
3%7ede29393936a8dc4153
|
tls
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected using this TLS fingerprint.
|
0.949999988079071
|
severity: Severity.critical
|
|
3%7ee35ec11fcbea7346
|
tls
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected using this TLS fingerprint.
|
0.8999999761581421
|
severity: Severity.critical
|
|
UNKNOWN
|
tls
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected using an unknown TLS fingerprint.
|
1.0
|
severity: Severity.critical
|
|
3%7efe38c35477967146
|
tls
|
2025-10-31 11:12:06
|
block
|
Confirmed persistent malicious activity detected using this TLS fingerprint.
|
0.9800000190734863
|
severity: Severity.critical
|
|
101.55.81.36
|
ip
|
2025-10-31 11:12:05
|
block
|
Confirmed persistent malicious IP activity.
|
1.0
|
severity: Severity.critical
|
|
103.207.148.148
|
ip
|
2025-10-31 11:12:05
|
block
|
Confirmed persistent malicious IP activity.
|
0.949999988079071
|
severity: Severity.critical
|
|
141.98.11.115
|
ip
|
2025-10-31 11:12:05
|
block
|
Confirmed highly malicious automated activity and bot impersonation.
|
1.0
|
severity: Severity.critical
|
|
123.6.49.50
|
ip
|
2025-10-31 11:12:05
|
block
|
Confirmed persistent malicious IP activity.
|
0.8999999761581421
|
severity: Severity.critical
|
|
172.190.142.176
|
ip
|
2025-10-31 11:12:05
|
block
|
Confirmed persistent malicious IP activity.
|
1.0
|
severity: Severity.critical
|
|
172.192.3.69
|
ip
|
2025-10-31 11:12:05
|
block
|
Confirmed suspicious PHP file probing, WAF deny rule triggered, and associated ASN is blocked.
|
1.0
|
severity: Severity.critical
|
|
185.177.72.104
|
ip
|
2025-10-31 11:12:05
|
block
|
Confirmed persistent malicious IP activity.
|
1.0
|
severity: Severity.critical
|
|
157.180.49.118
|
ip
|
2025-10-31 11:12:05
|
block
|
Confirmed persistent malicious IP activity.
|
0.8500000238418579
|
severity: Severity.medium
|
|
178.33.134.25
|
ip
|
2025-10-31 11:12:05
|
block
|
Confirmed persistent malicious IP activity.
|
0.8999999761581421
|
severity: Severity.critical
|
|
185.177.72.106
|
ip
|
2025-10-31 11:12:05
|
block
|
Confirmed persistent malicious IP activity.
|
1.0
|
severity: Severity.critical
|
|
185.177.72.107
|
ip
|
2025-10-31 11:12:05
|
block
|
Confirmed persistent malicious IP activity.
|
1.0
|
severity: Severity.critical
|