|
2a02:26f7:c9d0:6406::5
|
ip
|
2026-01-11 14:34:58
|
ignore
|
IP accessed only static assets with no detected threat requests, WAF flags, or security rule hits. Behavior appears benign and does not warrant watchlist monitoring.
|
0.8999999761581421
|
severity: Severity.low
|
|
2a02:26f7:c9d0:6406::5
|
ip
|
2026-01-11 14:24:43
|
ignore
|
Entity shows no malicious activity, detected threat requests are zero, and it is only accessing common benign paths. No current threat detected.
|
0.8999999761581421
|
severity: Severity.low
|
|
2a02:26f7:c9d0:6406::5
|
ip
|
2026-01-11 14:04:36
|
ignore
|
No malicious activity detected: 0 threat requests, no WAF flags, no security rule hits, and benign paths accessed. IP and ASN are not in the blocklist or watchlist.
|
0.8999999761581421
|
severity: Severity.low
|
|
2a02:26f7:c9d0:6406::5
|
ip
|
2026-01-11 13:54:38
|
ignore
|
No malicious activity detected. All requests are for benign static assets (favicons, apple-touch-icons), no WAF flags, and no security rule hits. This entity does not warrant being on a watchlist or blocklist.
|
1.0
|
severity: Severity.low
|
|
2a02:26f7:c9d0:6406::5
|
ip
|
2026-01-11 13:44:29
|
ignore
|
No malicious activity detected; only accessed common web assets, no WAF flags or threat requests.
|
0.8999999761581421
|
severity: Severity.low
|
|
2a02:26f7:c9d0:6406::5
|
ip
|
2026-01-11 13:34:35
|
ignore
|
No malicious activity detected. All requests were for benign static files, with no WAF flags or security rule hits.
|
0.8999999761581421
|
severity: Severity.low
|
|
2a02:26f7:c9d0:6406::5
|
ip
|
2026-01-11 13:24:35
|
ignore
|
No suspicious activity detected. All requests are for benign static assets, no WAF flags or threat detections.
|
1.0
|
severity: Severity.low
|
|
40.160.13.219
|
ip
|
2026-01-11 13:24:35
|
block
|
IP belongs to blocklisted ASN AS16276, known for persistent malicious activity. Accessed a highly obfuscated path, indicating potential malicious probing.
|
0.949999988079071
|
severity: Severity.critical
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-11 09:24:18
|
watchlist
|
IP showed no direct malicious activity or WAF alerts, but accessed hostname 'www.darcherif.fr' is a frequent target of blocklisted IPs. Needs monitoring.
|
0.699999988079071
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-11 09:14:22
|
ignore
|
No detected threat requests, WAF flags, or security rule hits in recent activity. All 25 requests were benign.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-11 09:04:22
|
ignore
|
No suspicious activity or security rule hits detected; accessed only benign static files.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-11 08:54:16
|
ignore
|
No detected threat requests, no WAF flags, and no security rule hits. Associated ASN is not on the blocklist. Entity shows no signs of malicious activity.
|
0.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-11 08:44:19
|
ignore
|
No malicious activity detected; 0% of requests were threats, and no WAF rules were triggered.
|
0.949999988079071
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-11 08:24:17
|
ignore
|
No detected threat requests, no WAF flags, and only accessed standard website resources. Associated ASN is not blocklisted.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-11 08:14:33
|
ignore
|
No malicious activity detected, no WAF flags, no security rule hits, and associated ASN (AS5410) is not blocklisted. All requests are for legitimate web resources.
|
1.0
|
severity: Severity.low
|
|
129.212.226.110
|
ip
|
2026-01-11 08:04:18
|
block
|
Extensive WordPress enumeration and bot impersonation attempts detected, with all requests flagged by WAF, and its associated ASN AS14061 is already blocklisted for highly malicious activity, consistent with other blocklisted IPs from this ASN.
|
1.0
|
severity: Severity.critical
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-11 08:04:18
|
ignore
|
No suspicious activity detected; all requests were legitimate and no WAF flags or security alerts were triggered.
|
1.0
|
severity: Severity.low
|
|
94.26.106.103
|
ip
|
2026-01-11 08:04:18
|
block
|
High percentage of threat requests (83.3%) specifically targeting 'wp-login.php' and 'admin3157', flagged by WAF, and triggered a security alert (3900998) indicative of brute-force attempts.
|
0.949999988079071
|
severity: Severity.critical
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 11:23:13
|
ignore
|
No malicious activity detected, zero WAF flags, and no security rule hits. All requests appear benign.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 11:13:11
|
ignore
|
No detected threat requests, no WAF flags, and no security rule hits indicate benign browsing activity.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 11:03:09
|
ignore
|
No malicious activity detected: 0/25 requests were flagged as threats, no WAF alerts or deny rules were triggered, and accessed paths appear benign.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 10:53:12
|
ignore
|
No detected threat requests, no WAF flags, and all accessed paths appear legitimate.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 10:43:11
|
ignore
|
No malicious activity detected, no WAF flags, and no threat requests observed over 25 total requests. Associated ASN is not blocklisted.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 10:33:10
|
ignore
|
No suspicious activity detected; zero threat requests, no WAF flags, and no security rule hits. All accessed paths are consistent with normal, benign browsing of a WordPress site.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 10:23:12
|
ignore
|
No suspicious activity detected; accessed only common benign website resources, zero WAF flags, and zero threat requests.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 10:13:07
|
ignore
|
No malicious activity detected. All requests were to legitimate web application paths, with no WAF flags or security rule hits.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 10:03:08
|
ignore
|
No malicious activity detected; zero detected threat requests, no WAF flags, and no security rule hits. All accessed paths are benign website assets.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 09:53:08
|
ignore
|
No detected threat requests, no WAF flags, and no security rule hits. All accessed paths are benign.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 09:43:06
|
ignore
|
No detected threat requests, no WAF flags, and normal access patterns observed for this IP.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 09:33:05
|
ignore
|
No WAF flags, zero detected threat requests, and no security rule hits. All accessed paths are legitimate site resources, indicating benign activity.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 09:23:09
|
ignore
|
No detected threat requests, WAF flags, or security rule hits. Entity exhibits normal browsing behavior accessing standard website resources.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 09:13:11
|
ignore
|
No malicious activity detected: zero WAF flags, zero threat requests, and no security rule hits. All accessed paths are consistent with normal website browsing.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 09:03:04
|
ignore
|
No malicious activity detected: 0 out of 25 requests were identified as threats, no WAF flags, and no security rule alerts or denies were triggered.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 08:53:07
|
ignore
|
No detected threat requests, WAF flags, or security rule hits. All observed activity is consistent with normal web traffic for a WordPress site.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 08:43:06
|
ignore
|
No suspicious activity detected; all requests appear legitimate, with no WAF flags or security rule hits recorded.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 08:33:06
|
ignore
|
No detected threat requests, WAF flags, or security rule hits, indicating benign activity.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 08:23:05
|
ignore
|
No malicious activity detected, zero threat requests, no WAF flags, and only accessed standard website assets.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 08:13:01
|
ignore
|
No suspicious activity detected: 0/25 requests flagged as threats, no WAF flags, and no security rule hits.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 08:03:02
|
ignore
|
No malicious activity detected: 0 threat requests, no WAF flags, and no security rule hits. ASN AS5410 is not blocklisted.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 07:53:02
|
ignore
|
No malicious activity or suspicious patterns detected; all requests are benign and no WAF rules were triggered.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 07:43:08
|
ignore
|
No malicious activity detected across 25 requests, with no WAF flags or security rule hits, and its ASN (AS5410) is not blocklisted.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 07:33:03
|
ignore
|
No malicious activity detected; all requests were benign, and no WAF flags or security rule hits were observed.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 07:23:00
|
ignore
|
No malicious activity detected, no WAF flags, and zero threat requests out of 25 total requests.
|
0.949999988079071
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 07:12:59
|
ignore
|
No malicious activity detected, no WAF flags, no security rule hits, and the associated ASN is not blocklisted. All accessed paths are benign.
|
1.0
|
severity: Severity.low
|
|
185.177.72.60
|
ip
|
2026-01-10 07:03:00
|
block
|
Actively probed sensitive configuration and credential files with all requests flagged by WAF, triggered critical LFI-ANOMALY and reputation-based deny rules. Its ASN (AS211590) is blocklisted for persistent malicious activity, with other IPs from this ASN exhibiting identical severe malicious behavior.
|
1.0
|
severity: Severity.critical
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 07:03:00
|
ignore
|
No malicious activity detected, no WAF flags, and only accessed standard WordPress files.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 06:52:57
|
ignore
|
No malicious activity detected: 0 out of 25 requests were flagged by WAF, no security rules were triggered (alerts or denies), and all accessed paths are typical for a benign website visitor.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 06:42:57
|
ignore
|
No detected threat requests, no WAF flags, and no security rule hits. All accessed paths are common WordPress and theme assets. The associated ASN is not blocklisted.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:e520:bae1:233b:c9d2
|
ip
|
2026-01-10 06:33:02
|
ignore
|
No malicious activity detected, no WAF flags, no threat requests, and only seen once accessing legitimate website resources. Initial low confidence score is no longer justified.
|
0.8999999761581421
|
severity: Severity.low
|
|
45.148.10.158
|
ip
|
2026-01-10 06:33:02
|
block
|
Aggressively probed sensitive configuration and credential files, with all requests flagged by WAF, triggered critical LFI-ANOMALY and reputation-based deny rules, and belongs to blocklisted ASN AS48090 which has other IPs exhibiting identical severe malicious behavior.
|
1.0
|
severity: Severity.critical
|