|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 23:26:03
|
watchlist
|
IP accessed WordPress admin path, AI score is medium, but no security rule hits or threat requests detected yet. Requires continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 23:21:05
|
watchlist
|
Accessed sensitive WordPress admin-ajax.php path with no WAF flags or security rule hits, warrants further monitoring for suspicious patterns.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 23:16:11
|
ignore
|
Entity in watchlist shows no recorded activity or threat detections since being added.
|
0.800000011920929
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 23:11:05
|
watchlist
|
Entity remains on watchlist due to initial medium severity and confidence score; no new activity detected to alter its status.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 23:06:01
|
watchlist
|
No new malicious activity or WAF alerts detected for this entity; keeping in watchlist for continued monitoring based on previous medium AI confidence.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 23:01:06
|
watchlist
|
AI previously flagged with medium confidence; however, no new explicit threat requests or WAF/security rule hits detected during current monitoring.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 22:56:04
|
watchlist
|
Accessed a sensitive WordPress admin path (wp-admin/admin-ajax.php) without triggering WAF or security rules, suggesting potential reconnaissance.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 22:51:03
|
ignore
|
Entity exhibits low AI confidence score and no detected threat requests or WAF rule hits, suggesting it is benign.
|
0.800000011920929
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 22:46:04
|
watchlist
|
Accessed sensitive WordPress admin path 'wp-admin/admin-ajax.php' with 17 requests, but no WAF flags or security alerts triggered. Requires further monitoring.
|
0.4000000059604645
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 22:41:04
|
ignore
|
No recorded activity or detected threats since being added to the watchlist, indicating it is no longer suspicious.
|
0.949999988079071
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 22:36:02
|
watchlist
|
Entity shows suspicious behavior with medium confidence and severity, requiring continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 22:31:10
|
watchlist
|
Entity continues to exhibit suspicious access patterns to sensitive paths (wp-admin/admin-ajax.php) with a medium AI confidence score, warranting continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 22:26:03
|
watchlist
|
Accessed a common WordPress administrative endpoint (wp-admin/admin-ajax.php) without triggering WAF or security rules, indicating potential reconnaissance or early-stage probing.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 22:21:03
|
ignore
|
No malicious activity detected (0 total requests, 0 detected threat requests) since being added to watchlist. Initial AI score of 0.65 without observed activity is insufficient to maintain watchlist status.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 22:16:05
|
watchlist
|
Accessed common WordPress admin path (wp-admin/admin-ajax.php) but no WAF alerts or explicit threat detections currently. AI indicates medium severity. Further monitoring required.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 22:11:05
|
watchlist
|
Repeated access to 'wp-admin/admin-ajax.php' without triggering WAF alerts, suggesting potential reconnaissance or automated behavior requiring further monitoring.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 22:06:13
|
ignore
|
No malicious activity detected, no WAF flags, and accessed a common WordPress path.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 22:01:06
|
ignore
|
No security rule hits, WAF flags, or detected threat requests observed since being added to watchlist, indicating benign activity.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 21:56:04
|
watchlist
|
Accessed sensitive WordPress admin AJAX path (wp-admin/admin-ajax.php) without triggering WAF alerts or security rules, indicating potential reconnaissance or early stage malicious activity requiring further monitoring.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 21:51:02
|
ignore
|
Entity shows no recent activity since being added to the watchlist. No further suspicious behavior observed.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 21:46:02
|
watchlist
|
Accessed common WordPress attack path 'wp-admin/admin-ajax.php' without triggering WAF or security rules; requires continued monitoring.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 21:41:05
|
watchlist
|
Repeated access to sensitive WordPress admin path 'wp-admin/admin-ajax.php' (17 requests) without WAF alerts suggests reconnaissance or suspicious automated activity.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 21:36:00
|
ignore
|
No new malicious activity detected since being added to watchlist; entity shows no current threat indications.
|
0.8500000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 21:31:01
|
watchlist
|
Initial AI assessment indicates medium severity; no new activity detected since last review.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 21:26:00
|
watchlist
|
Entity remains in watchlist with current AI confidence and medium severity, awaiting further data.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 21:21:00
|
watchlist
|
No new data to change current watchlist status; maintaining observation.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 21:16:05
|
watchlist
|
Accessed sensitive WordPress path 'wp-admin/admin-ajax.php' but without triggering WAF alerts or explicit threat detections; medium AI confidence and severity suggest continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 21:11:04
|
watchlist
|
Accessed a commonly abused WordPress administrative path multiple times without triggering WAF alerts or explicit threat detections; warrants further monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 21:06:02
|
ignore
|
Entity shows no malicious activity (0 requests, 0 threats) since being added to watchlist, and initial detection had low confidence and severity.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 21:01:03
|
watchlist
|
Accessed a common WordPress attack vector path (wp-admin/admin-ajax.php) without triggering WAF alerts or explicit threat detections, moderate AI confidence, warrants continued monitoring.
|
0.6000000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:56:06
|
watchlist
|
Accessed sensitive WordPress administrative path (wp-admin/admin-ajax.php) without triggering WAF alerts or security rule hits. Further monitoring is required for suspicious patterns.
|
0.6000000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:51:06
|
ignore
|
No detected threat requests, WAF flags, or security rule hits observed since being added to watchlist. AI confidence score is low.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:46:04
|
watchlist
|
Accessed a common WordPress administrative path (wp-admin/admin-ajax.php) with no immediate WAF flags, suggesting potential reconnaissance.
|
0.6000000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:41:03
|
ignore
|
No recent activity or detected threats observed since being added to watchlist, indicating the threat is no longer active or was a false positive.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:36:02
|
watchlist
|
Entity remains in watchlist due to initial suspicious behavior and medium AI confidence, but no new malicious activity detected.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:31:01
|
watchlist
|
Initial observation shows medium AI confidence, but no malicious activity detected yet. Retaining for further monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:26:00
|
watchlist
|
No new malicious activity detected, maintaining watchlist status based on previous medium severity score.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:21:01
|
watchlist
|
No new malicious activity or threat requests observed since first seen, maintaining watchlist status for continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:15:59
|
watchlist
|
Entity remains in watchlist due to medium severity suspicious behavior and moderate AI confidence, requires continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:10:59
|
watchlist
|
Initial observation indicates suspicious behavior with medium severity, requiring continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:06:01
|
watchlist
|
Accessed sensitive WordPress admin path 'wp-admin/admin-ajax.php' with medium AI confidence, requires further monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:01:03
|
watchlist
|
Access to WordPress administrative path (wp-admin/admin-ajax.php) without triggering WAF or security rules. This pattern could indicate reconnaissance or automated enumeration, warranting further observation.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:56:04
|
ignore
|
No recent activity, total requests, or detected threats since being added to the watchlist; initial suspicion is not corroborated.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:51:01
|
watchlist
|
Accessing sensitive WordPress path 'wp-admin/admin-ajax.php' with medium AI confidence, but no explicit WAF flags or threat requests detected yet. Requires further monitoring.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:46:00
|
watchlist
|
Accessed sensitive WordPress administrative path 'wp-admin/admin-ajax.php' without triggering WAF or security rules, warrants further monitoring.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:41:17
|
ignore
|
Traffic from this IP shows no detected threats, WAF flags, or security rule hits, indicating benign activity.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:36:03
|
ignore
|
Entity accessed a common administrative path but showed no detected threat requests, WAF flags, or security rule hits over 17 requests, and has a low AI confidence score for malicious activity.
|
0.8500000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:31:07
|
watchlist
|
Accessed common WordPress administration path repeatedly (17 requests) without explicit WAF alerts, indicating potential reconnaissance or automated probing that warrants monitoring.
|
0.5
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:26:00
|
ignore
|
Entity has no recorded traffic or detected threats since being added to the watchlist, indicating inactivity or false positive.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:21:02
|
watchlist
|
IP accessed sensitive WordPress admin path 'wp-admin/admin-ajax.php' 17 times; AI score indicates medium suspicion, but no WAF alerts or threat requests detected yet.
|
0.699999988079071
|
severity: Severity.medium
|