379
98.0%
50
IP: 44 TLS: 5 ASN: 1
| Entity | Type | Hostnames | Reason | Blocked At | AI Confidence | AI Details |
|---|---|---|---|---|---|---|
| 45.148.10.159 | IP | akamai.darcherif.fr | All requests (100%) from this IP were detected as threats, targeted sensitive version control system files ('.git/config', '.svn/entries'), and triggered a critical reputation-based WAF deny rule. Its associated ASN (AS48090) is already blocklisted for identical malicious activity. | 2026-01-24 12:06:51 | 100.0% | Critical |
| 205.169.39.3 | IP | www.darcherif.fr | IP belongs to blocklisted ASN AS3356, which has multiple IPs blocklisted for similar malicious activity including accessing highly obfuscated paths. This IP also accessed a highly obfuscated path, indicating malicious probing. | 2026-01-23 15:25:23 | 95.0% | Critical |
| 192.109.200.72 | IP | www.darcherif.fr | Detected WordPress brute-force attempts targeting 'wp-login.php', with the path flagged by WAF and security alert '3900998' triggered. This behavior is consistent with other blocklisted IPs. | 2026-01-23 12:45:14 | 95.0% | Critical |
| 66.249.66.41 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats, all accessed paths were flagged by WAF, and security alert '3991006' was triggered. Its associated ASN (AS15169) is already blocklisted for similar malicious activity. | 2026-01-22 17:03:51 | 100.0% | Critical |
| 66.249.66.1 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats, all accessed paths were flagged by WAF, and security alert '3991006' was triggered. Its associated ASN (AS15169) is already blocklisted for similar malicious activity. | 2026-01-22 17:03:51 | 100.0% | Critical |
| 67.227.1.140 | IP | - | Accessed a highly obfuscated and suspicious path ('TXopfWNANuR3i/si/1SETC7qsZnKc/3cp5fp1mD3Lif4OJ/PD1OGXQoKgE/dTch/U2dsdHkB'), indicating malicious probing and attempted exploitation, consistent with blocklisted entities exhibiting similar behavior. | 2026-01-22 16:24:04 | 95.0% | Critical |
| 4.217.180.34 | IP | akamai.darcherif.fr | All requests (100%) from this IP were detected as threats, all accessed suspicious PHP files were flagged by WAF, and a critical 'IPBLOCK' deny rule was triggered. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity with other IPs showing identical behavior. | 2026-01-22 13:53:29 | 100.0% | Critical |
| 94.26.106.114 | IP | www.darcherif.fr | IP is performing WordPress enumeration and brute-force attempts against 'wp-login.php', with WAF flagging and triggering a security alert, consistent with other blocklisted IPs from the same ASN (AS215607). | 2026-01-22 00:21:50 | 95.0% | Critical |
| 185.193.157.209 | IP | akamai.darcherif.fr | IP is performing extensive WordPress enumeration and bot impersonation, has an exceptionally high number of detected threat requests (95/31), and triggered critical WAF deny rules. Its associated ASN AS62240 is already blocklisted for similar malicious activity. | 2026-01-21 21:01:36 | 100.0% | Critical |
| 3%7e2d6b59b088802a54 | TLS | www.darcherif.fr | All requests (100%) associated with this TLS fingerprint were detected as threats and triggered a critical reputation-based WAF deny rule (REP_1654536), indicating persistent malicious activity. | 2026-01-21 19:11:16 | 100.0% | Critical |
| 20.205.96.233 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged by WAF, accessed suspicious PHP files, and triggered a critical 'IPBLOCK' deny rule. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2026-01-21 18:01:04 | 100.0% | Critical |
| 3%7e9d029ea544b45c6f | TLS | www.darcherif.fr | High percentage (90.9%) of requests associated with this TLS fingerprint were detected as threats and flagged by WAF, triggered security alert '3991006', and included access to a highly obfuscated path, indicating malicious probing or exploit attempts. | 2026-01-21 11:40:28 | 100.0% | Critical |
| 185.177.72.13 | IP | akamai.darcherif.fr | Aggressive probing of sensitive files and admin paths, all requests flagged by WAF, with detected threat requests exceeding total requests, and triggered critical LFI and reputation-based deny rules. Its associated ASN (AS211590) is already blocklisted for persistent and identical severe malicious activity. | 2026-01-21 11:20:27 | 100.0% | Critical |
| 185.177.72.38 | IP | akamai.darcherif.fr | Aggressively probed sensitive configuration and credential files, with all requests flagged by WAF, triggered multiple critical LFI-ANOMALY, IPBLOCK-BURST4, and reputation-based deny rules. Its associated ASN AS211590 is already blocklisted for persistent and identical severe malicious activity. | 2026-01-21 04:09:46 | 100.0% | Critical |
| 2600:3c03::2000:fcff:fe11:a64e | IP | www.darcherif.fr | Accessed a highly obfuscated and suspicious path, consistent with other blocklisted IPs from ASN AS63949 exhibiting similar malicious probing for exploitation. | 2026-01-21 03:09:37 | 95.0% | Critical |
| 185.177.72.49 | IP | www.darcherif.fr | IP with 100% detected threat requests and triggered a critical WAF deny rule (REP_1654536). Its associated ASN (AS211590) is already blocklisted for persistent malicious activity. | 2026-01-21 02:19:33 | 100.0% | Critical |
| 149.102.225.179 | IP | akamai.darcherif.fr | IP exhibiting aggressive WordPress enumeration, bot impersonation, high threat requests (95/31), all accessed paths flagged by WAF, and triggered a critical WAF deny rule (IPBLOCK-BURST4-318403), consistent with other blocklisted IPs from similar malicious campaigns. | 2026-01-21 01:59:39 | 100.0% | Critical |
| AS12322 | ASN | - | ASN associated with blocklisted IP '2a01:e34:ec44:99d0:8c2f:82c6:25b6:fab0', which accessed highly obfuscated and suspicious paths, indicative of malicious probing and consistent with other blocklisted entities from this ASN. | 2026-01-21 01:59:39 | 95.0% | Critical |
| 185.177.72.30 | IP | www.darcherif.fr | IP from blocklisted ASN AS211590, demonstrating aggressive probing of sensitive files and admin paths, all requests flagged by WAF, with detected threat requests exceeding total requests, and triggered critical LFI and reputation-based deny rules. This behavior is consistent with other blocklisted IPs from the same ASN. | 2026-01-21 01:39:33 | 100.0% | Critical |
| 2a09:bac1:76a0:1378::b:2f9 | IP | akamai.darcherif.fr | This IP shows 100% detected threat requests, all accessed paths were flagged by WAF (including suspicious PHP files and WordPress admin paths), and it triggered a critical 'IPBLOCK-BURST4-318403' deny rule. Its associated ASN (AS13335) is already blocklisted for identical widespread malicious activity. | 2026-01-20 17:38:39 | 100.0% | Critical |
| 185.177.72.51 | IP | akamai.darcherif.fr | IP from blocklisted ASN AS211590, demonstrating aggressive probing of sensitive files and admin paths, all requests flagged by WAF, with detected threat requests exceeding total requests, and triggered critical LFI and reputation-based deny rules. This behavior is consistent with other blocklisted IPs from the same ASN. | 2026-01-20 16:48:38 | 100.0% | Critical |
| 185.177.72.23 | IP | www.darcherif.fr | IP from blocklisted ASN AS211590, demonstrating aggressive probing of sensitive files and admin paths, all requests flagged by WAF, with detected threat requests exceeding total requests, and triggered critical LFI and reputation-based deny rules. | 2026-01-20 14:18:28 | 100.0% | Critical |
| 85.11.167.3 | IP | www.darcherif.fr | IP engaged in WordPress brute-force attempts targeting 'wp-login.php', triggered security alert '3900998', and its ASN AS213438 is blocklisted for identical critical malicious activity. | 2026-01-20 07:07:53 | 100.0% | Critical |
| 34.133.255.234 | IP | akamai.darcherif.fr | All requests (100% threat rate) targeted sensitive configuration and credential files (.aws/credentials, .env/.env.bak, phpinfo.php), triggered critical LFI-ANOMALY and reputation-based WAF deny rules, and its associated ASN (AS396982) is already blocklisted for similar severe malicious activity. | 2026-01-19 20:37:16 | 100.0% | Critical |
| 68.155.153.238 | IP | akamai.darcherif.fr | All requests (100%) from this IP were detected as threats, all accessed suspicious PHP files including a 'wp_filemanager.php' exploit were flagged by WAF, and a critical 'IPBLOCK' deny rule was triggered. Its associated ASN (AS8075) is already blocklisted for persistent and identical malicious activity from multiple other IPs. | 2026-01-19 15:37:01 | 100.0% | Critical |
| 47.128.57.40 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats and flagged by WAF, triggering alert '3991023'. Its associated ASN (AS16509) is already blocklisted for persistent malicious activity and identical attack patterns. | 2026-01-18 09:04:33 | 100.0% | Critical |
| 45.149.173.233 | IP | akamai.darcherif.fr | Extensive WordPress enumeration and bot impersonation detected, with a high number of detected threat events (96 events for 32 requests) and a critical WAF deny rule (IPBLOCK-BURST4-318403) triggered. | 2026-01-18 08:14:30 | 100.0% | Critical |
| 3%7e32bee0f5e54580be | TLS | www.darcherif.fr | Associated with IP 2a01:e34:ec44:99d0:8c2f:82c6:25b6:fab0 which accessed a highly obfuscated and suspicious path, indicating a malicious client fingerprint consistent with previously blocklisted TLS fingerprints. | 2026-01-17 15:53:44 | 95.0% | Critical |
| 2a01:e34:ec44:99d0:8c2f:82c6:25b6:fab0 | IP | www.darcherif.fr | Accessed a highly obfuscated and suspicious path (Lk4TRUPUqhrDr/tAn/f7XLQlaR8xY/ri1hVDa9akG7VcaLV9/YyZNWVcPAQ/HAYUASFM/PisB), strongly indicating malicious probing or attempted exploitation, consistent with other blocklisted entities. | 2026-01-17 15:53:44 | 95.0% | Critical |
| 52.167.144.203 | IP | www.darcherif.fr | High percentage of threat requests (83.3%), all accessed paths flagged by WAF, triggered security alert '3991006', and belongs to blocklisted ASN AS8075 which is known for persistent malicious activity and identical attack patterns. | 2026-01-17 15:43:37 | 100.0% | Critical |
| 16.176.147.22 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged as threats, all accessed paths were flagged by WAF, and a critical 'IPBLOCK' deny rule was triggered. Its associated ASN (AS16509) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2026-01-17 11:23:09 | 100.0% | Critical |
| 45.148.10.238 | IP | akamai.darcherif.fr www.darcherif.fr | IP from blocklisted ASN AS48090 performing aggressive reconnaissance, detected bot impersonation, targeted sensitive configuration/credential files (.git/config, .aws/credentials, .env), and triggered a critical LFI-ANOMALY WAF deny rule with a high threat request ratio (11/6). | 2026-01-17 10:13:01 | 100.0% | Critical |
| 4.147.187.31 | IP | akamai.darcherif.fr | All requests (100%) were detected as threats, all accessed suspicious PHP files were flagged by WAF, and a critical 'IPBLOCK' deny rule was triggered. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity with other IPs showing identical behavior. | 2026-01-17 08:43:02 | 100.0% | Critical |
| 40.69.27.251 | IP | akamai.darcherif.fr | All requests (100%) were detected as threats, all accessed suspicious PHP files were flagged by WAF, and a critical 'IPBLOCK' deny rule was triggered. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity with other IPs showing identical behavior. | 2026-01-17 00:02:19 | 100.0% | Critical |
| 45.139.104.168 | IP | akamai.darcherif.fr | Extremely high ratio of detected threat requests (85/25), all accessed paths flagged by WAF, and multiple security alerts including 'BOT-BROWSER-IMPERSONATOR', indicating severe automated malicious probing and exploit attempts. | 2026-01-16 22:52:18 | 100.0% | Critical |
| 185.117.225.139 | IP | akamai.darcherif.fr | Extremely high percentage of detected threat requests (~94.7%), numerous WAF flagged paths, and multiple security alerts ('3990001', '3990011') indicative of severe malicious probing. Furthermore, its associated ASN (AS14618) has other IPs blocklisted for identical critical malicious activity. | 2026-01-16 17:11:44 | 100.0% | Critical |
| 37.77.150.123 | IP | www.darcherif.fr | High percentage of detected threat requests (83.3%), all accessed paths ('xmlrpc.php', 'wp-login.php') flagged by WAF, and triggered critical WAF deny rules ('IPBLOCK-PENALTY-BOX', 'PLATFORM-ANOMALY'), indicating active WordPress enumeration/brute-force attempts. This behavior is consistent with other blocklisted IPs from Russia. | 2026-01-16 14:41:30 | 100.0% | Critical |
| 209.38.65.47 | IP | akamai.darcherif.fr | All accessed paths flagged by WAF, extremely high number of detected threat events (34) compared to total requests (6), multiple critical security alerts including 'BOT-BROWSER-IMPERSONATOR', and its associated ASN AS14061 is already blocklisted for identical malicious activity. | 2026-01-16 12:41:19 | 100.0% | Critical |
| 2a10:3c0:100:0:1:38:0:5 | IP | akamai.darcherif.fr | High percentage of detected threat requests (~90.9%), multiple WAF flagged paths (mcp, sse), and an associated ASN (AS211680) is already blocklisted for similar severe malicious activity. | 2026-01-16 12:01:16 | 100.0% | Critical |
| 3%7e91b41c1481268bfe | TLS | akamai.darcherif.fr | All requests (100%) were detected as threats, all accessed paths were flagged by WAF including highly sensitive '.git/HEAD', and a security alert (3990001) was triggered, indicating severe malicious probing and exploitation attempts. | 2026-01-16 12:01:16 | 100.0% | Critical |
| 205.169.39.49 | IP | www.darcherif.fr | IP belongs to ASN AS3356, which is blocklisted for widespread malicious activity and persistent threats, warranting blocking of all associated IPs. | 2026-01-16 05:40:53 | 100.0% | Critical |
| 43.157.149.188 | IP | www.darcherif.fr | IP is part of ASN AS132203, which is blocklisted for confirmed persistent malicious activity, indicating a high-risk association. | 2026-01-15 19:50:28 | 95.0% | Critical |
| 34.116.155.95 | IP | www.darcherif.fr | IP associated with blocklisted ASN AS396982, which is known for extensive WordPress enumeration and bot impersonation. Detected threat request with WAF flagged suspicious path and triggered security alert '3910002'. | 2026-01-15 13:00:17 | 90.0% | Critical |
| 175.44.42.104 | IP | - | IP with multiple WAF alerts (3910001, 3910006), detected threat requests (2/12), and access to a highly obfuscated path, indicating escalating malicious probing. | 2026-01-15 13:00:17 | 85.0% | Critical |
| 141.98.11.44 | IP | www.darcherif.fr | IP performing WordPress brute-force attempts targeting 'wp-login.php', with high threat request ratio (84.2%), and belonging to ASN AS209605 which is blocklisted for similar critical malicious activity. | 2026-01-15 12:40:10 | 100.0% | Critical |
| 2001:bc8:701:51:da5e:d3ff:fe49:a574 | IP | www.darcherif.fr | Accessed a highly obfuscated and suspicious path, strongly indicating malicious probing or attempted exploitation, consistent with previously blocklisted entities. | 2026-01-15 08:20:04 | 95.0% | Critical |
| 3%7e010387cc36ee791e | TLS | www.darcherif.fr | Associated with an IP accessing a highly obfuscated path, indicating a malicious client fingerprint consistent with previously blocklisted TLS fingerprints. | 2026-01-15 08:20:04 | 95.0% | Critical |
| 2a10:3c0:3:0:1:28:0:5 | IP | akamai.darcherif.fr | Extremely high detected threat requests (26/14), multiple WAF alerts including bot impersonation, and access to suspicious flagged paths ("mcp", "sse"), indicating severe automated malicious probing. | 2026-01-15 08:10:12 | 95.0% | Critical |
| 208.84.101.102 | IP | akamai.darcherif.fr | High percentage of threat requests (45%), bot impersonation, active WordPress enumeration (wlwmanifest.xml scans), and triggered a critical WAF deny rule (IPBLOCK-BURST4-318403). Associated ASN (AS22295) is also blocklisted. | 2026-01-15 08:10:12 | 100.0% | Critical |
| 2a10:3c0:3:0:1:28:0:3 | IP | akamai.darcherif.fr | Extremely high detected threat requests (18/5), multiple WAF alerts including bot impersonation, indicating severe automated malicious probing. | 2026-01-15 08:10:12 | 95.0% | Critical |