|
34.72.176.129
|
ip
|
2026-03-09 08:10:15
|
ignore
|
Legitimate access to WordPress themes and plugins, no indications of compromise or suspicious activity. Associated with Google Cloud.
|
1.0
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-09 08:10:15
|
ignore
|
Standard browsing activity of a WordPress site, no threats detected by security systems or WAF.
|
1.0
|
severity: Severity.low
|
|
205.169.39.16
|
ip
|
2026-03-09 08:00:04
|
ignore
|
Normal WordPress website access, no suspicious activity, WAF flags, or detected threats.
|
0.8999999761581421
|
severity: Severity.low
|
|
34.72.176.129
|
ip
|
2026-03-09 08:00:04
|
ignore
|
Normal WordPress website access, no suspicious activity, WAF flags, or detected threats.
|
0.8999999761581421
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-09 08:00:04
|
ignore
|
Normal WordPress website access, no suspicious activity, WAF flags, or detected threats.
|
0.8999999761581421
|
severity: Severity.low
|
|
205.169.39.16
|
ip
|
2026-03-09 07:49:53
|
ignore
|
Legitimate CDN IP (Akamai) serving standard website content; no detected threats or WAF alerts.
|
0.8999999761581421
|
severity: Severity.low
|
|
34.72.176.129
|
ip
|
2026-03-09 07:49:53
|
ignore
|
Legitimate IP (Google Cloud) serving standard website content; no detected threats or WAF alerts.
|
0.8999999761581421
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-09 07:49:53
|
ignore
|
Legitimate client IP accessing standard website content; no detected threats or WAF alerts.
|
0.8999999761581421
|
severity: Severity.low
|
|
205.169.39.16
|
ip
|
2026-03-09 07:39:41
|
ignore
|
No suspicious activity detected; observed standard website access patterns, no security rule hits, and no WAF flags.
|
0.8999999761581421
|
severity: Severity.low
|
|
34.72.176.129
|
ip
|
2026-03-09 07:39:41
|
ignore
|
No suspicious activity detected; observed standard website access patterns, no security rule hits, and no WAF flags.
|
0.8999999761581421
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-09 07:39:41
|
ignore
|
No suspicious activity detected; observed standard website access patterns, no security rule hits, and no WAF flags.
|
0.8999999761581421
|
severity: Severity.low
|
|
205.169.39.16
|
ip
|
2026-03-09 07:29:31
|
ignore
|
Legitimate CDN IP (Akamai) serving standard website content; no detected threats, WAF flags, or security rule hits.
|
0.8999999761581421
|
severity: Severity.low
|
|
34.72.176.129
|
ip
|
2026-03-09 07:29:31
|
ignore
|
Legitimate cloud provider IP (Google Cloud) serving standard website content; no detected threats, WAF flags, or security rule hits.
|
0.8999999761581421
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-09 07:29:31
|
ignore
|
Legitimate ISP IP (Comcast) accessing standard website content; no detected threats, WAF flags, or security rule hits.
|
0.8999999761581421
|
severity: Severity.low
|
|
205.169.39.104
|
ip
|
2026-03-09 07:19:20
|
block
|
Multiple detected threat requests and security rule alerts, alongside WAF flagged paths, indicate active malicious activity.
|
0.8999999761581421
|
severity: Severity.critical
|
|
169.150.203.237
|
ip
|
2026-03-09 07:09:11
|
block
|
High volume of detected threat requests, repeated attempts to access WordPress manifest files, WAF denial rules hit, and bot impersonation detected.
|
0.949999988079071
|
severity: Severity.critical
|
|
20.211.123.94
|
ip
|
2026-03-09 07:09:11
|
block
|
Accessed highly suspicious paths indicative of web shell uploads, backdoors, or crypto mining attempts (xmr.php, upload.php, cgi-bin/).
|
0.8999999761581421
|
severity: Severity.critical
|
|
205.169.39.16
|
ip
|
2026-03-09 07:09:11
|
ignore
|
No detected threat requests, no WAF flags, and all accessed paths appear legitimate for standard website operation.
|
0.8999999761581421
|
severity: Severity.low
|
|
205.169.39.104
|
ip
|
2026-03-09 07:09:11
|
watchlist
|
Low number of detected threat requests and WAF alerts for potentially suspicious activity, warrants further monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
34.72.176.129
|
ip
|
2026-03-09 07:09:11
|
ignore
|
No detected threat requests, no WAF flags, and all accessed paths appear legitimate for standard website operation.
|
0.8999999761581421
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-09 07:09:11
|
ignore
|
No detected threat requests, no WAF flags, and all accessed paths appear legitimate for standard website operation.
|
0.8999999761581421
|
severity: Severity.low
|
|
205.169.39.16
|
ip
|
2026-03-09 04:18:34
|
ignore
|
No malicious activity detected, no WAF flags, and no security rule hits. Appears to be legitimate traffic.
|
0.8999999761581421
|
severity: Severity.low
|
|
34.72.176.129
|
ip
|
2026-03-09 04:18:34
|
ignore
|
No malicious activity detected, no WAF flags, and no security rule hits. Appears to be legitimate traffic.
|
0.8999999761581421
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-09 04:18:34
|
ignore
|
No malicious activity detected, no WAF flags, and no security rule hits. Appears to be legitimate traffic.
|
0.8999999761581421
|
severity: Severity.low
|
|
73.128.201.25
|
ip
|
2026-03-09 04:18:34
|
block
|
Detected 7 threat requests out of 19 total, triggered multiple WAF flags, and was denied by an 'IPBLOCK-BURST4' security rule indicating suspicious activity or an attempted attack.
|
0.949999988079071
|
severity: Severity.critical
|
|
205.169.39.16
|
ip
|
2026-03-09 00:37:47
|
ignore
|
No suspicious activity detected; requests are consistent with normal website browsing and no WAF alerts or threat requests were recorded.
|
0.8999999761581421
|
severity: Severity.low
|
|
34.72.176.129
|
ip
|
2026-03-09 00:37:47
|
ignore
|
No suspicious activity detected; requests are consistent with normal website browsing and no WAF alerts or threat requests were recorded.
|
0.8999999761581421
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-09 00:37:47
|
ignore
|
No suspicious activity detected; requests are consistent with normal website browsing and no WAF alerts or threat requests were recorded.
|
0.8999999761581421
|
severity: Severity.low
|
|
74.7.227.25
|
ip
|
2026-03-09 00:37:47
|
block
|
High number of WAF alerts (19 out of 20 requests) with rule '3991023' hit, indicating potential malicious scanning or attempted exploitation.
|
0.949999988079071
|
severity: Severity.critical
|
|
205.169.39.16
|
ip
|
2026-03-08 21:47:11
|
ignore
|
No suspicious activity detected; accessed common WordPress paths and security logs show no alerts or denies.
|
1.0
|
severity: Severity.low
|
|
34.72.176.129
|
ip
|
2026-03-08 21:47:11
|
ignore
|
No suspicious activity detected; accessed common WordPress paths and security logs show no alerts or denies.
|
1.0
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-08 21:47:11
|
ignore
|
No suspicious activity detected; accessed common WordPress paths and security logs show no alerts or denies.
|
1.0
|
severity: Severity.low
|
|
153.33.99.33
|
ip
|
2026-03-08 21:37:04
|
block
|
WAF flagged a path ('akam/13/5602dcb8') and security rule '3900999' was alerted, indicating potential malicious activity.
|
0.949999988079071
|
severity: Severity.critical
|
|
205.169.39.16
|
ip
|
2026-03-08 21:37:04
|
ignore
|
No WAF flags, no detected threat requests, and no security rule hits. Traffic appears to be benign.
|
0.8999999761581421
|
severity: Severity.low
|
|
34.72.176.129
|
ip
|
2026-03-08 21:37:04
|
ignore
|
No WAF flags, no detected threat requests, and no security rule hits. Traffic appears to be benign.
|
0.8999999761581421
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-08 21:37:04
|
ignore
|
No WAF flags, no detected threat requests, and no security rule hits. Traffic appears to be benign.
|
0.8999999761581421
|
severity: Severity.low
|
|
205.169.39.16
|
ip
|
2026-03-08 21:26:56
|
ignore
|
No suspicious activity detected; access patterns are consistent with normal website browsing, including CDN usage. No WAF flags or security rule hits recorded.
|
0.8999999761581421
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-08 21:26:56
|
ignore
|
No suspicious activity detected; access patterns are consistent with normal WordPress website browsing. No WAF flags or security rule hits recorded.
|
0.8999999761581421
|
severity: Severity.low
|
|
205.169.39.16
|
ip
|
2026-03-08 21:16:48
|
ignore
|
No suspicious activity detected; observed standard web traffic consistent with CDN usage. Entity is not currently in watchlist.
|
0.949999988079071
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-08 21:16:48
|
ignore
|
No suspicious activity detected; observed standard WordPress site access. Entity is not currently in watchlist.
|
0.949999988079071
|
severity: Severity.low
|
|
205.169.39.16
|
ip
|
2026-03-08 21:06:41
|
ignore
|
Observed normal web browsing activity accessing website assets, without any detected threats or security rule violations.
|
0.8999999761581421
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-08 21:06:41
|
ignore
|
Legitimate access to a WordPress site with common paths, no security alerts triggered.
|
0.8999999761581421
|
severity: Severity.low
|
|
205.169.39.16
|
ip
|
2026-03-08 20:56:32
|
ignore
|
No malicious activity detected. Accessing standard web assets, no WAF flags or security rule hits.
|
0.8999999761581421
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-08 20:56:32
|
ignore
|
No malicious activity detected. Accessing typical WordPress files, no WAF flags or security rule hits.
|
0.8999999761581421
|
severity: Severity.low
|
|
205.169.39.16
|
ip
|
2026-03-08 20:46:26
|
ignore
|
No suspicious activity detected. The IP exhibits normal web traffic patterns, accesses standard web assets, has no WAF flags, no security rule hits, and zero detected threat requests. It is associated with a legitimate CDN hostname.
|
1.0
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-08 20:46:26
|
ignore
|
No suspicious activity detected. The IP exhibits normal web traffic patterns, accesses common WordPress-related paths, has no WAF flags, no security rule hits, and zero detected threat requests.
|
1.0
|
severity: Severity.low
|
|
205.169.39.16
|
ip
|
2026-03-08 19:26:00
|
ignore
|
No malicious activity detected; appears to be a legitimate CDN IP accessing normal website assets with no WAF flags or security rule hits.
|
0.8999999761581421
|
severity: Severity.low
|
|
62.216.67.111
|
ip
|
2026-03-08 19:26:00
|
ignore
|
Legitimate access to WordPress site assets; no security incidents detected, WAF flags, or security rule hits.
|
0.8999999761581421
|
severity: Severity.low
|
|
91.92.242.199
|
ip
|
2026-03-08 19:26:00
|
block
|
Repeated attempts to access 'wp-login.php', high number of detected threat requests (9/13), and WAF flagging with a security alert, strongly indicating a brute-force or credential stuffing attack.
|
0.949999988079071
|
severity: Severity.critical
|
|
205.169.39.16
|
ip
|
2026-03-08 14:14:22
|
ignore
|
No suspicious activity detected; accessed paths are consistent with legitimate web browsing and static asset retrieval. No WAF flags, threat requests, or security rule hits were recorded.
|
0.949999988079071
|
severity: Severity.low
|