|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:10:59
|
watchlist
|
Initial observation indicates suspicious behavior with medium severity, requiring continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:06:01
|
watchlist
|
Accessed sensitive WordPress admin path 'wp-admin/admin-ajax.php' with medium AI confidence, requires further monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 20:01:03
|
watchlist
|
Access to WordPress administrative path (wp-admin/admin-ajax.php) without triggering WAF or security rules. This pattern could indicate reconnaissance or automated enumeration, warranting further observation.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:56:04
|
ignore
|
No recent activity, total requests, or detected threats since being added to the watchlist; initial suspicion is not corroborated.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:51:01
|
watchlist
|
Accessing sensitive WordPress path 'wp-admin/admin-ajax.php' with medium AI confidence, but no explicit WAF flags or threat requests detected yet. Requires further monitoring.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:46:00
|
watchlist
|
Accessed sensitive WordPress administrative path 'wp-admin/admin-ajax.php' without triggering WAF or security rules, warrants further monitoring.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:41:17
|
ignore
|
Traffic from this IP shows no detected threats, WAF flags, or security rule hits, indicating benign activity.
|
1.0
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:36:03
|
ignore
|
Entity accessed a common administrative path but showed no detected threat requests, WAF flags, or security rule hits over 17 requests, and has a low AI confidence score for malicious activity.
|
0.8500000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:31:07
|
watchlist
|
Accessed common WordPress administration path repeatedly (17 requests) without explicit WAF alerts, indicating potential reconnaissance or automated probing that warrants monitoring.
|
0.5
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:26:00
|
ignore
|
Entity has no recorded traffic or detected threats since being added to the watchlist, indicating inactivity or false positive.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:21:02
|
watchlist
|
IP accessed sensitive WordPress admin path 'wp-admin/admin-ajax.php' 17 times; AI score indicates medium suspicion, but no WAF alerts or threat requests detected yet.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:16:00
|
watchlist
|
Accessed sensitive WordPress path 'wp-admin/admin-ajax.php' which is often targeted, but no WAF alerts or threat requests were detected. Requires continued monitoring.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:11:00
|
ignore
|
No recent traffic or detected threats observed for this entity despite being on the watchlist.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:05:59
|
watchlist
|
Entity remains under observation due to suspicious behavior with medium AI confidence.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 19:01:00
|
watchlist
|
Entity remains on watchlist due to existing medium confidence threat score, awaiting further activity for re-evaluation.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 18:56:00
|
watchlist
|
Ongoing monitoring due to initial suspicious behavior, no new activity observed to change status.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 18:51:02
|
watchlist
|
Entity continues to exhibit suspicious behavior, warrants continued monitoring.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 18:46:00
|
watchlist
|
AI flagged as medium severity, but no active traffic or WAF hits observed in the current period, requires further monitoring.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 18:41:00
|
watchlist
|
Entity shows suspicious behavior with medium confidence and severity, requiring continued monitoring in the watchlist.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 18:36:05
|
watchlist
|
Accessed a common WordPress attack path (wp-admin/admin-ajax.php) without triggering WAF or security rules, indicating potential reconnaissance.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 18:31:00
|
watchlist
|
Accessed common WordPress admin path (wp-admin/admin-ajax.php) without triggering WAF alerts; requires further monitoring for suspicious patterns.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 18:26:00
|
ignore
|
Entity has shown no further malicious activity since being added to the watchlist. No requests, threat detections, or WAF flags recorded.
|
0.75
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 18:21:04
|
watchlist
|
Entity remains in watchlist with medium confidence and severity. No traffic requests recorded since initial addition, warranting continued monitoring.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 18:16:01
|
watchlist
|
Continued access to sensitive WordPress admin path without explicit threat detection, requiring further monitoring.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 18:11:06
|
watchlist
|
Accessed common WordPress admin path 'wp-admin/admin-ajax.php' without triggering WAF or security rules; warrants further monitoring for suspicious patterns.
|
0.6499999761581421
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 18:06:16
|
ignore
|
No malicious activity detected, zero threat requests, and no WAF flags. Access to common WordPress path is not inherently suspicious.
|
0.949999988079071
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 18:00:59
|
ignore
|
No activity or detected threats since being added to watchlist; initial AI confidence and severity were low.
|
0.800000011920929
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 17:56:00
|
watchlist
|
Accessed sensitive WordPress path, but no WAF flags or security rule hits detected, and AI confidence is low. Needs continued monitoring.
|
0.4000000059604645
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 17:51:02
|
watchlist
|
Accessed sensitive WordPress admin path without triggering WAF or security rules; requires further monitoring for potential malicious activity.
|
0.4000000059604645
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 17:46:03
|
ignore
|
No recent malicious activity detected; zero total requests and zero detected threat requests since being added to the watchlist.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 17:41:03
|
watchlist
|
Accessed a common WordPress admin path (wp-admin/admin-ajax.php) which is often targeted for reconnaissance or attacks, but no WAF flags or explicit threat detections were recorded. Medium AI confidence suggests continued monitoring.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 17:36:01
|
watchlist
|
Accessed common WordPress admin path 'wp-admin/admin-ajax.php' with multiple requests, warrants further monitoring for suspicious patterns despite no WAF flags.
|
0.6000000238418579
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 17:31:06
|
ignore
|
Entity has recorded no traffic and no security rule hits since being added to the watchlist, indicating no detected malicious activity.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 17:25:58
|
watchlist
|
Entity still exhibits suspicious behavior with medium confidence, warrants continued monitoring.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 17:20:58
|
watchlist
|
Ongoing suspicious behavior with medium AI confidence. Further monitoring required.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 17:16:00
|
watchlist
|
Entity maintains suspicious behavior with medium AI confidence; no new data to alter status.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 17:11:02
|
watchlist
|
Entity remains suspicious with medium AI severity, but no active malicious traffic has been observed yet to warrant blocking.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 17:06:04
|
watchlist
|
Entity was added to watchlist based on AI-detected suspicious behavior; no new traffic or threat indications have been observed since its last evaluation to warrant a change in status.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 17:01:01
|
watchlist
|
Entity remains on watchlist based on initial medium severity AI assessment; no new activity observed to justify further action or removal.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 16:56:02
|
watchlist
|
Initial threat intelligence indicated medium severity, but no current activity has been observed. Keeping in watchlist for continued monitoring.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 16:51:01
|
watchlist
|
Accessed sensitive WordPress admin path 'wp-admin/admin-ajax.php' with medium AI confidence, but no explicit threat detections yet. Requires further monitoring.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 16:46:07
|
watchlist
|
Accessed 'wp-admin/admin-ajax.php', a common target for WordPress attacks, warranting further monitoring for suspicious patterns despite no WAF flags.
|
0.699999988079071
|
severity: Severity.medium
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 16:41:01
|
ignore
|
No further malicious activity or traffic observed since being added to the watchlist. Initial low confidence and severity were not substantiated.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 16:36:02
|
watchlist
|
Entity accessed sensitive WordPress admin paths multiple times (17 requests to wp-admin/admin-ajax.php) with a low AI confidence score and no WAF flags, requires continued monitoring.
|
0.6000000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 16:31:04
|
watchlist
|
Accessed a common WordPress administration path (wp-admin/admin-ajax.php). While no WAF alerts or threats were detected, this path is frequently used for reconnaissance and enumeration, warranting continued monitoring for suspicious patterns.
|
0.6000000238418579
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 16:26:01
|
ignore
|
No suspicious activity detected since being added to the watchlist.
|
0.8999999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 16:16:02
|
watchlist
|
Initial AI analysis indicates low severity and access to a commonly targeted WordPress path, but no WAF alerts or detected threats currently observed to warrant a block.
|
0.6499999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 16:11:02
|
watchlist
|
Accessed sensitive WordPress admin path 'wp-admin/admin-ajax.php' without triggering WAF alerts or threat detections. Requires further monitoring for potential reconnaissance or automated activity.
|
0.6499999761581421
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 16:06:10
|
ignore
|
No malicious activity or WAF alerts detected across 17 requests, including access to a common WordPress path. Entity and associated ASN are not found on any existing blocklists.
|
0.949999988079071
|
severity: Severity.low
|
|
2001:861:5860:e460:5175:54ff:bf15:b615
|
ip
|
2025-10-31 16:00:59
|
ignore
|
No malicious activity detected and zero requests observed since being added to watchlist.
|
0.8999999761581421
|
severity: Severity.low
|