|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 23:16:26
|
ignore
|
Entity shows no malicious activity, zero requests, and low AI confidence score.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 23:11:29
|
watchlist
|
Initial observation shows no WAF flags or detected threats across 17 requests, but it is too early to remove from watchlist. AI confidence and severity are low.
|
0.30000001192092896
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 23:06:34
|
watchlist
|
Accessed a common WordPress administrative endpoint (wp-admin/admin-ajax.php) without triggering explicit security alerts, warrants monitoring for potential reconnaissance.
|
0.30000001192092896
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 23:01:27
|
ignore
|
Entity has shown no further activity, zero threat requests, and low initial AI confidence for malicious intent. It can be safely removed from the watchlist.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 22:56:28
|
watchlist
|
Accessed sensitive WordPress admin path 'wp-admin/admin-ajax.php' with low AI confidence and no WAF/security rule hits, warrants continued monitoring.
|
0.6000000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 22:51:30
|
watchlist
|
Accessed common WordPress admin path 'wp-admin/admin-ajax.php' without triggering WAF alerts or threat detections, warrants continued monitoring.
|
0.6000000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 22:46:34
|
ignore
|
No malicious activity detected; accessed a common WordPress path without triggering any security alerts or WAF flags.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 22:41:34
|
ignore
|
No malicious activity detected, zero threat requests, and no WAF flags.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 22:36:33
|
ignore
|
No WAF flags, security rule hits, or detected threat requests. AI confidence and severity are low, indicating benign activity.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 22:31:31
|
watchlist
|
Accessed the WordPress admin-ajax.php path 17 times. While no WAF flags were triggered, this path is commonly targeted for reconnaissance and probing, warranting further monitoring.
|
0.4000000059604645
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 22:26:36
|
ignore
|
Entity accessed a WordPress admin path but exhibited no detected threat requests, WAF flags, or security rule hits. Current behavior is not indicative of malicious activity.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 22:21:41
|
ignore
|
No malicious activity detected; 0 threat requests, no WAF flags, and no security rule hits for accessed WordPress admin path.
|
0.949999988079071
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 22:16:37
|
ignore
|
No detected malicious activity, WAF flags, or security rule hits. Access to 'wp-admin/admin-ajax.php' is common for WordPress installations and not suspicious in isolation.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 22:11:27
|
ignore
|
Entity shows no observed activity or threat detections since being added to the watchlist. No longer deemed suspicious.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 22:06:33
|
watchlist
|
IP accessed a common WordPress attack path ('wp-admin/admin-ajax.php') and AI score suggests medium suspicion, but no WAF flags or explicit threat requests detected yet. Requires further monitoring for evolving behavior.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 22:01:27
|
watchlist
|
Accessed sensitive WordPress administrative path 'wp-admin/admin-ajax.php' without triggering WAF or threat rules, indicating potential reconnaissance.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 21:56:25
|
ignore
|
No new suspicious activity or data observed since being added to watchlist; AI confidence and severity remain low.
|
0.800000011920929
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 21:51:25
|
watchlist
|
Accessed common administrative path (wp-admin/admin-ajax.php) but no WAF alerts, security rule hits, or detected threats. Requires continued monitoring.
|
0.6000000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 21:46:25
|
watchlist
|
Accessed a common WordPress admin path (wp-admin/admin-ajax.php) without triggering WAF alerts, warrants further monitoring.
|
0.6000000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 21:41:35
|
ignore
|
No suspicious or malicious activity detected. All 17 requests were clean, accessing a legitimate WordPress path, and did not trigger WAF or security alerts.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 21:36:27
|
ignore
|
No malicious activity detected since being added to watchlist (0 total requests, 0 threat requests, no WAF hits). The AI confidence score is low, indicating no current threat.
|
0.800000011920929
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 21:31:28
|
watchlist
|
Accessed sensitive WordPress administrative path 'wp-admin/admin-ajax.php', but currently no WAF flags or threat detections. Maintain in watchlist for further monitoring.
|
0.5
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 21:26:30
|
watchlist
|
Accessed sensitive WordPress admin path 'wp-admin/admin-ajax.php'; while no immediate threats were detected, this path is frequently targeted and warrants monitoring for suspicious patterns.
|
0.5
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 21:21:33
|
ignore
|
No malicious activity detected, zero WAF flags, and access to a common WordPress path is not indicative of a threat.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 21:16:26
|
ignore
|
No activity detected since being added to watchlist, and initial AI confidence score was low.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 21:11:26
|
watchlist
|
Accessed common WordPress admin path, but no WAF flags or security rule hits detected, and AI confidence remains low.
|
0.30000001192092896
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 21:06:27
|
watchlist
|
Accessed a common WordPress admin path (wp-admin/admin-ajax.php); however, no WAF alerts or threat detections were triggered. Requires continued monitoring for suspicious patterns.
|
0.30000001192092896
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 21:01:26
|
ignore
|
No detected threat requests or WAF alerts, and a low AI confidence score indicates no current malicious activity.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:56:28
|
watchlist
|
Accessed commonly targeted WordPress administrative path 'wp-admin/admin-ajax.php' without triggering WAF rules. Requires monitoring for further suspicious activity.
|
0.30000001192092896
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:51:24
|
ignore
|
Entity shows no malicious activity, zero requests, and low AI confidence/severity, indicating it no longer poses a threat.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:46:25
|
watchlist
|
Entity shows minimal activity with no WAF flags or security rule hits. Continued monitoring is prudent due to access to a sensitive WordPress path and low AI confidence.
|
0.30000001192092896
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:41:30
|
watchlist
|
Accessed a common WordPress administrative path (wp-admin/admin-ajax.php) multiple times (17 requests) without WAF flags, suggesting potential reconnaissance or bot activity, warrants monitoring.
|
0.30000001192092896
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:36:24
|
ignore
|
No malicious activity or WAF hits observed since being added to the watchlist; previous AI confidence score of 0.6 likely outdated or based on ephemeral signals.
|
0.800000011920929
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:31:26
|
watchlist
|
Entity currently in watchlist with medium severity and moderate AI confidence, requiring continued monitoring. No new activity or information provided to change its status.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:26:24
|
watchlist
|
Entity remains on watchlist due to medium AI confidence score and severity, awaiting further data.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:21:24
|
watchlist
|
Entity remains in watchlist due to moderate AI confidence and medium severity; no new data to warrant a change in status.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:16:37
|
watchlist
|
Entity identified with medium AI confidence (0.6), suggesting potential risk. Although no requests are logged, continued monitoring is warranted based on initial intelligence.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:11:29
|
watchlist
|
Entity accessed a commonly targeted WordPress path and has a medium AI confidence score, but lacks explicit WAF alerts or threat detections for the current observation period. Further monitoring is required.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:06:25
|
watchlist
|
Accessed a sensitive WordPress administrative path (wp-admin/admin-ajax.php) which is commonly abused, but no WAF alerts or threat requests were detected. Needs continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:01:23
|
ignore
|
No further activity, total requests remain zero, and no security rule hits detected since being added to watchlist.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:56:26
|
watchlist
|
Entity is on watchlist with medium AI-detected severity but has not recorded any traffic or WAF hits, requiring continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:51:25
|
watchlist
|
Entity remains under observation in watchlist with no new activity detected. Confidence and severity remain at medium.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:46:26
|
watchlist
|
Accessed a sensitive WordPress admin path, but no WAF alerts or detected threat requests yet. Requires further monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:41:28
|
watchlist
|
Accessed a common WordPress attack vector (wp-admin/admin-ajax.php); warrants further monitoring due to potential probing activity.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:36:29
|
ignore
|
Entity shows no recent activity, total requests, or detected threat requests since being added to watchlist, indicating it may no longer be a threat or was a false positive.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:31:28
|
watchlist
|
AI assessment indicates medium severity with moderate confidence (0.7), despite no recent observed malicious activity. Retain for continued monitoring.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:26:22
|
watchlist
|
Entity is new to the watchlist with an initial medium AI confidence score, requiring further monitoring for activity.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:21:24
|
watchlist
|
Initial suspicious activity detected by AI, but no active malicious traffic observed yet. Needs continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:16:30
|
watchlist
|
No new malicious activity detected in current observation window. Maintaining watchlist status based on prior medium severity assessment.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:11:22
|
watchlist
|
Entity remains in watchlist due to medium severity and moderate AI confidence score, requiring continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|