|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 20:01:23
|
ignore
|
No further activity, total requests remain zero, and no security rule hits detected since being added to watchlist.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:56:26
|
watchlist
|
Entity is on watchlist with medium AI-detected severity but has not recorded any traffic or WAF hits, requiring continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:51:25
|
watchlist
|
Entity remains under observation in watchlist with no new activity detected. Confidence and severity remain at medium.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:46:26
|
watchlist
|
Accessed a sensitive WordPress admin path, but no WAF alerts or detected threat requests yet. Requires further monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:41:28
|
watchlist
|
Accessed a common WordPress attack vector (wp-admin/admin-ajax.php); warrants further monitoring due to potential probing activity.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:36:29
|
ignore
|
Entity shows no recent activity, total requests, or detected threat requests since being added to watchlist, indicating it may no longer be a threat or was a false positive.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:31:28
|
watchlist
|
AI assessment indicates medium severity with moderate confidence (0.7), despite no recent observed malicious activity. Retain for continued monitoring.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:26:22
|
watchlist
|
Entity is new to the watchlist with an initial medium AI confidence score, requiring further monitoring for activity.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:21:24
|
watchlist
|
Initial suspicious activity detected by AI, but no active malicious traffic observed yet. Needs continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:16:30
|
watchlist
|
No new malicious activity detected in current observation window. Maintaining watchlist status based on prior medium severity assessment.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:11:22
|
watchlist
|
Entity remains in watchlist due to medium severity and moderate AI confidence score, requiring continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:06:26
|
watchlist
|
Entity initially flagged with medium severity, no new activity detected since being added to the watchlist. Retaining for continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 19:01:24
|
watchlist
|
Entity already in watchlist. No WAF alerts or detected threat requests in the latest observation, despite accessing a sensitive WordPress path, maintaining current threat assessment.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 18:56:25
|
watchlist
|
Accessed sensitive WordPress wp-admin/admin-ajax.php endpoint, which is often targeted by bots and attackers. No WAF alerts or threat requests detected yet.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 18:51:27
|
ignore
|
No activity or security rule hits detected since the entity was added to the watchlist, indicating it is no longer a threat.
|
0.949999988079071
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 18:46:23
|
watchlist
|
IP accessed wp-admin/admin-ajax.php, a commonly targeted path, but no WAF alerts or threat requests were detected. AI confidence score is medium.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 18:41:27
|
watchlist
|
Accessed sensitive WordPress administrative path 'wp-admin/admin-ajax.php'. No WAF flags or security rule hits detected, warrants further monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 18:36:40
|
ignore
|
No suspicious activity detected, no WAF flags, and associated ASN is not on the blocklist.
|
0.949999988079071
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 18:31:24
|
ignore
|
No malicious activity detected since being added to watchlist, low confidence, and zero detected threat requests.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 18:26:23
|
watchlist
|
Accessed suspicious WordPress path 'wp-admin/admin-ajax.php' but no WAF alerts or high confidence threat detected. Requires continued monitoring.
|
0.30000001192092896
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 18:21:28
|
watchlist
|
Accessed a common WordPress administration path (wp-admin/admin-ajax.php) without triggering WAF alerts or threat detections, warranting further observation for potential reconnaissance.
|
0.30000001192092896
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 18:16:22
|
ignore
|
No malicious activity detected since being added to the watchlist, zero requests and no WAF hits observed.
|
0.800000011920929
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 18:11:27
|
watchlist
|
Accessed sensitive WordPress admin path 'wp-admin/admin-ajax.php', a common target for reconnaissance, but no WAF alerts or threat detections were triggered, warranting continued monitoring.
|
0.5
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 18:06:40
|
watchlist
|
Accessed sensitive WordPress administrative path 'wp-admin/admin-ajax.php' from a new IP. No WAF flags, but further observation is recommended for potential reconnaissance.
|
0.5
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 18:01:27
|
ignore
|
No observed malicious activity, total requests, or WAF alerts since being added to watchlist. Initial AI confidence score of 0.6 is insufficient without supporting behavioral data.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 17:56:25
|
watchlist
|
Accessed a commonly targeted WordPress admin path (wp-admin/admin-ajax.php) with medium AI confidence, but no WAF flags or threat requests detected yet. Further monitoring is required.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 17:51:23
|
watchlist
|
Accessed common WordPress attack vector path 'wp-admin/admin-ajax.php'. No WAF flags or threat requests yet, but warrants further monitoring for suspicious activity.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 17:46:29
|
ignore
|
No threat requests detected, no WAF flags, and low AI confidence (0.4) and severity, suggesting no active malicious intent from this IP.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 17:41:33
|
watchlist
|
Accessed a sensitive WordPress admin path (wp-admin/admin-ajax.php) without triggering WAF rules; warrants further monitoring for suspicious patterns.
|
0.4000000059604645
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 17:36:34
|
ignore
|
No WAF alerts or deny rules triggered, zero detected threat requests, and not found on existing blocklist or watchlist.
|
0.949999988079071
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 17:31:22
|
ignore
|
No activity detected, 0 total requests, 0 threat requests, and no security rule hits since being added to watchlist. Low AI confidence score (0.4) indicates no current threat.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 17:26:23
|
watchlist
|
Insufficient new evidence to block or remove. Entity shows low confidence and low severity, with no WAF flags or security rule hits, but accessed a common admin path.
|
0.4000000059604645
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 17:21:29
|
watchlist
|
Accessed 'wp-admin/admin-ajax.php' 17 times, a path commonly targeted in WordPress scans, but without triggering any WAF alerts or detected threats. Requires further monitoring.
|
0.4000000059604645
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 17:16:23
|
ignore
|
No new malicious activity or requests detected since first seen, and low initial AI confidence.
|
0.800000011920929
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 17:11:21
|
watchlist
|
Entity remains on watchlist with low confidence and severity based on initial detection; no new data to warrant a change in status.
|
0.4000000059604645
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 17:06:22
|
watchlist
|
Entity shows low confidence suspicious behavior (accessed wp-admin/admin-ajax.php) but no WAF flags or detected threat requests yet. Requires continued monitoring.
|
0.4000000059604645
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 17:01:32
|
watchlist
|
Accessed sensitive WordPress 'wp-admin/admin-ajax.php' path; however, no WAF rules were triggered and zero threat requests were detected. Requires further monitoring for suspicious patterns.
|
0.4000000059604645
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 16:56:29
|
ignore
|
No malicious activity detected by WAF or security rules, and associated ASN is not on the blocklist.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 16:51:23
|
ignore
|
No malicious activity detected and zero requests since being added to watchlist, indicating it is no longer a threat.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 16:46:21
|
watchlist
|
Accessed a common WordPress attack path (wp-admin/admin-ajax.php) but without WAF flags, maintaining low suspicion.
|
0.30000001192092896
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 16:41:22
|
watchlist
|
Accessed a common WordPress attack vector (wp-admin/admin-ajax.php) without immediate WAF flags. Further monitoring is advised.
|
0.30000001192092896
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 16:36:30
|
ignore
|
No suspicious activity detected; zero WAF flags or threat requests, and associated ASN is not on blocklist.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 16:31:24
|
ignore
|
No WAF flags or security rule hits detected, and AI confidence score for malicious activity is low despite accessing a common WordPress administrative path. The entity does not exhibit sufficient suspicious behavior to remain on the watchlist.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 16:26:33
|
watchlist
|
Accessed a sensitive WordPress administration path (wp-admin/admin-ajax.php) which is a common target for enumeration and attacks, warrants monitoring despite no immediate WAF flags.
|
0.30000001192092896
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 16:21:40
|
ignore
|
No detected threat requests, WAF flags, or security rule hits. Observed activity (access to wp-admin/admin-ajax.php) is consistent with normal WordPress operation and shows no malicious intent.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 16:16:35
|
ignore
|
No suspicious activity, WAF alerts, or security rule hits detected. Entity shows legitimate traffic to a common WordPress path.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 16:11:36
|
ignore
|
No evidence of malicious activity detected; accessed a common WordPress path without triggering WAF rules or threat alerts, and its ASN is not present in the blocklist.
|
0.949999988079071
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 16:06:25
|
ignore
|
No WAF flags or security rule hits detected, no reported threat requests, and low AI confidence score, indicating no persistent malicious activity.
|
0.8500000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 16:01:27
|
watchlist
|
Accessed the WordPress admin-ajax.php endpoint, a common target for reconnaissance or exploits, but no WAF alerts or threat detections were triggered. Further monitoring is required.
|
0.3499999940395355
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-11-01 15:56:26
|
ignore
|
No malicious activity detected since being added to watchlist (0 total requests, 0 detected threat requests, no WAF flags).
|
0.949999988079071
|
severity: Severity.low
|