379
98.0%
50
ASN: 1 IP: 46 TLS: 3
| Entity | Type | Hostnames | Reason | Blocked At | AI Confidence | AI Details |
|---|---|---|---|---|---|---|
| AS215930 | ASN | www.darcherif.fr | High percentage of detected threat requests (50/56), actively targeting 'wp-login.php', and triggered a brute-force WAF alert (3900998). This ASN has multiple IPs previously blocklisted for identical activity. | 2026-01-15 08:10:12 | 100.0% | Critical |
| 2a10:3c0:3:0:1:28:0:3 | IP | akamai.darcherif.fr | Extremely high detected threat requests (18/5), multiple WAF alerts including bot impersonation, indicating severe automated malicious probing. | 2026-01-15 08:10:12 | 95.0% | Critical |
| 104.28.203.60 | IP | akamai.darcherif.fr | All requests (100%) were detected as threats, almost all accessed paths flagged by WAF, triggered a critical 'IPBLOCK-BURST4-318403' deny rule, and its ASN (AS13335) is already blocklisted for identical malicious activity. | 2026-01-14 13:09:09 | 100.0% | Critical |
| 23.180.120.131 | IP | akamai.darcherif.fr | Extremely high ratio of detected threat requests (117/37), all accessed paths flagged by WAF, multiple critical security alerts including 'BOT-BROWSER-IMPERSONATOR', and a critical WAF deny rule 'IPBLOCK-BURST4-318403' triggered. Associated ASN AS53514 is blocklisted for similar highly malicious activity. | 2026-01-14 11:28:57 | 100.0% | Critical |
| 34.123.170.104 | IP | - | Associated with blocklisted ASN AS396982, which has a history of extensive malicious activity. | 2026-01-14 10:08:59 | 90.0% | Critical |
| 34.122.147.229 | IP | - | Associated with blocklisted ASN AS396982, which has a history of extensive malicious activity. | 2026-01-14 10:08:59 | 90.0% | Critical |
| 205.169.39.57 | IP | - | Associated with blocklisted ASN AS3356, which has a history of widespread malicious activity. | 2026-01-14 10:08:59 | 90.0% | Critical |
| 34.1.19.191 | IP | - | AI identified as critical severity with high confidence, despite no recent activity. | 2026-01-14 10:08:59 | 80.0% | Critical |
| 34.116.248.149 | IP | www.darcherif.fr | Detected threat requests, WAF flagged paths, security alerts, and associated with blocklisted ASN AS396982. | 2026-01-14 09:59:06 | 95.0% | Critical |
| 205.169.39.218 | IP | - | Multiple detected threat requests, WAF flagged paths, several security alerts, and associated with blocklisted ASN AS3356. | 2026-01-14 09:59:06 | 95.0% | Critical |
| 68.183.9.16 | IP | akamai.darcherif.fr | Aggressive reconnaissance for sensitive files and API documentation, all requests flagged by WAF, multiple critical security alerts (including bot impersonation), and triggered critical deny rules (LFI-ANOMALY, IPBLOCK-PENALTY-BOX). Associated ASN AS14061 is blocklisted for identical malicious activity. | 2026-01-14 09:49:05 | 100.0% | Critical |
| 165.227.173.41 | IP | www.darcherif.fr | Actively targeting sensitive configuration files (.git/config, .env, info.php) and known exploits (Jira exploit). All requests flagged by WAF, triggered critical deny rules (LFI-ANOMALY, IPBLOCK-PENALTY-BOX). Associated ASN AS14061 is blocklisted for identical malicious activity. | 2026-01-14 09:49:05 | 100.0% | Critical |
| 154.28.229.89 | IP | akamai.darcherif.fr | Extremely high ratio of detected threat requests (54/13), with multiple security alerts including 'BOT-BROWSER-IMPERSONATOR', indicating persistent automated malicious probing and exploit attempts, consistent with other blocklisted entities. | 2026-01-14 09:49:05 | 95.0% | Critical |
| 178.128.207.138 | IP | akamai.darcherif.fr | Aggressive reconnaissance for sensitive files and API documentation, all requests flagged by WAF, multiple critical security alerts (including bot impersonation), and triggered critical deny rules (LFI-ANOMALY, IPBLOCK-PENALTY-BOX). Associated ASN AS14061 is blocklisted for identical malicious activity. | 2026-01-14 09:49:05 | 100.0% | Critical |
| 46.101.1.225 | IP | akamai.darcherif.fr | Aggressive reconnaissance for sensitive files and API documentation, all requests flagged by WAF, multiple critical security alerts (including bot impersonation), and triggered critical deny rules (LFI-ANOMALY, IPBLOCK-PENALTY-BOX). Associated ASN AS14061 is blocklisted for identical malicious activity. | 2026-01-14 09:49:05 | 100.0% | Critical |
| 134.209.25.199 | IP | akamai.darcherif.fr | Aggressive reconnaissance for sensitive files and API documentation, all requests flagged by WAF, multiple critical security alerts (including bot impersonation), and triggered critical deny rules (LFI-ANOMALY, IPBLOCK-PENALTY-BOX). Associated ASN AS14061 is blocklisted for identical malicious activity. | 2026-01-14 09:49:05 | 100.0% | Critical |
| 66.249.66.5 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats, all accessed paths were flagged by WAF, and security alert '3991006' was triggered. Its associated ASN (AS15169) is already blocklisted for identical malicious activity. | 2026-01-13 18:07:57 | 100.0% | Critical |
| 66.249.66.68 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats, all accessed paths were flagged by WAF, and security alert '3991006' was triggered. Its associated ASN (AS15169) is already blocklisted for identical malicious activity. | 2026-01-13 18:07:57 | 100.0% | Critical |
| 66.249.66.164 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats, all accessed paths were flagged by WAF, and security alert '3991006' was triggered. Its associated ASN (AS15169) is already blocklisted for identical malicious activity. | 2026-01-13 18:07:57 | 100.0% | Critical |
| 104.28.224.94 | IP | www.darcherif.fr | All requests from this IP were detected as threats and flagged by WAF, triggering security alert '3991006'. Its associated ASN AS13335 is already blocklisted for similar widespread malicious activity. | 2026-01-13 15:27:48 | 100.0% | Critical |
| 3%7e56c3ba2d23a6c2fe | TLS | www.darcherif.fr | All requests associated with this TLS fingerprint were detected as threats and flagged by WAF, triggering security alert '3991006'. Its behavior is identical to a newly identified malicious IP whose ASN is already blocklisted for similar activity. | 2026-01-13 15:27:48 | 100.0% | Critical |
| 35.196.98.70 | IP | akamai.darcherif.fr | Extensive WordPress enumeration and bot impersonation attempts detected, with all accessed paths flagged by WAF, multiple security alerts, and a critical IPBLOCK deny rule triggered. Its associated ASN AS396982 is already blocklisted for identical malicious activity. | 2026-01-13 08:57:29 | 100.0% | Critical |
| 80.94.92.21 | IP | akamai.darcherif.fr | Extremely high number of detected threat requests (36/6), all accessed paths flagged by WAF, and multiple security alerts including 'BOT-BROWSER-IMPERSONATOR', indicating severe automated malicious probing. | 2026-01-13 08:27:38 | 100.0% | Critical |
| 138.197.136.144 | IP | www.darcherif.fr | Aggressive probing of suspicious PHP files and WordPress admin paths, triggered critical LFI-ANOMALY and reputation-based WAF deny rules, and its ASN (AS14061) is blocklisted for highly malicious activity. | 2026-01-13 08:27:38 | 100.0% | Critical |
| 3%7eff9e7c847339adbd | TLS | www.darcherif.fr | All requests (100%) associated with this TLS fingerprint were detected as threats and flagged by WAF, triggering security alert '3991008', indicating persistent malicious probing. | 2026-01-13 08:27:38 | 100.0% | Critical |
| 34.23.95.230 | IP | akamai.darcherif.fr | Extensive WordPress enumeration and bot impersonation, triggered a critical WAF deny rule (IPBLOCK-BURST4-318403), and its ASN (AS396982) is blocklisted for similar highly malicious activity. | 2026-01-13 08:27:38 | 100.0% | Critical |
| 45.156.129.67 | IP | akamai.darcherif.fr | High number of detected threat requests (7/5), all accessed paths flagged by WAF, and multiple security alerts including 'BOT-BROWSER-IMPERSONATOR'. Associated ASN (AS211680) has other IPs blocklisted for similar malicious activity. | 2026-01-12 08:16:11 | 100.0% | Critical |
| 80.94.92.9 | IP | akamai.darcherif.fr | Extremely high number of detected threat requests (30/5), all accessed paths flagged by WAF, and multiple security alerts including 'BOT-BROWSER-IMPERSONATOR', indicating severe automated malicious probing and exploit attempts. | 2026-01-12 08:16:11 | 100.0% | Critical |
| 40.160.13.219 | IP | www.darcherif.fr | IP belongs to blocklisted ASN AS16276, known for persistent malicious activity. Accessed a highly obfuscated path, indicating potential malicious probing. | 2026-01-11 13:24:35 | 95.0% | Critical |
| 94.26.106.103 | IP | www.darcherif.fr | High percentage of threat requests (83.3%) specifically targeting 'wp-login.php' and 'admin3157', flagged by WAF, and triggered a security alert (3900998) indicative of brute-force attempts. | 2026-01-11 08:04:18 | 95.0% | Critical |
| 129.212.226.110 | IP | akamai.darcherif.fr | Extensive WordPress enumeration and bot impersonation attempts detected, with all requests flagged by WAF, and its associated ASN AS14061 is already blocklisted for highly malicious activity, consistent with other blocklisted IPs from this ASN. | 2026-01-11 08:04:18 | 100.0% | Critical |
| 185.177.72.60 | IP | akamai.darcherif.fr | Actively probed sensitive configuration and credential files with all requests flagged by WAF, triggered critical LFI-ANOMALY and reputation-based deny rules. Its ASN (AS211590) is blocklisted for persistent malicious activity, with other IPs from this ASN exhibiting identical severe malicious behavior. | 2026-01-10 07:03:00 | 100.0% | Critical |
| 45.148.10.158 | IP | www.darcherif.fr | Aggressively probed sensitive configuration and credential files, with all requests flagged by WAF, triggered critical LFI-ANOMALY and reputation-based deny rules, and belongs to blocklisted ASN AS48090 which has other IPs exhibiting identical severe malicious behavior. | 2026-01-10 06:33:02 | 100.0% | Critical |
| 4.241.228.159 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged by WAF, accessed suspicious PHP files and WordPress admin paths, and triggered a critical 'IPBLOCK' deny rule. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2026-01-10 05:12:52 | 100.0% | Critical |
| 185.177.72.61 | IP | www.darcherif.fr | Actively probing for sensitive configuration and credential files, with all requests flagged by WAF, triggered critical LFI and reputation-based deny rules, and belongs to a blocklisted ASN with other IPs exhibiting identical severe malicious behavior. | 2026-01-10 03:02:41 | 100.0% | Critical |
| 185.209.196.229 | IP | www.darcherif.fr | Accessed highly suspicious '.suspected' web shell paths, indicating critical web shell upload or exploitation attempts. | 2026-01-09 21:42:26 | 95.0% | Critical |
| 195.24.236.78 | IP | www.darcherif.fr | IP attempted to access highly suspicious paths like 'plugins/content/apismtp/apismtp.php.suspected' and 'wp-content/plugins/apikey/apikey.php.suspected', strongly indicating web shell upload or exploitation attempts, despite no immediate WAF flags. | 2026-01-09 17:22:03 | 90.0% | Critical |
| 217.113.194.103 | IP | www.darcherif.fr | All requests (100%) were detected as threats and flagged by WAF, triggering security alert '3991020'. This behavior is consistent with other blocklisted IPs from the same ASN (AS210743). | 2026-01-09 11:51:43 | 100.0% | Critical |
| 185.177.72.67 | IP | akamai.darcherif.fr | IP is aggressively probing for sensitive configuration and credential files, with all requests flagged by WAF, triggering critical 'LFI-ANOMALY' and reputation-based deny rules. Its associated ASN AS211590 is already blocklisted for persistent malicious activity, with other IPs from this ASN exhibiting identical severe malicious behavior. | 2026-01-09 10:21:40 | 100.0% | Critical |
| 3%7e9b3e34567f4e1910 | TLS | www.darcherif.fr akamai.darcherif.fr | All requests (100%) associated with this TLS fingerprint targeted highly sensitive configuration files and triggered critical LFI-ANOMALY and reputation-based WAF deny rules. | 2026-01-09 10:01:37 | 100.0% | Critical |
| 205.169.39.200 | IP | akamai.darcherif.fr | Triggered critical WAF deny rule 'IPBLOCK-BURST4-318403' and multiple alerts. Associated ASN AS3356 has multiple blocklisted IPs showing similar malicious activity, including accessing suspicious obfuscated paths. | 2026-01-09 07:51:34 | 100.0% | Critical |
| 205.169.39.8 | IP | akamai.darcherif.fr | Triggered critical WAF deny rule 'IPBLOCK-BURST4-318403' and has a high percentage of detected threat requests. Associated ASN AS3356 is blocklisted for similar activity, indicating a persistent threat from this network. | 2026-01-09 07:51:34 | 100.0% | Critical |
| 185.177.72.69 | IP | www.darcherif.fr | IP is aggressively probing for sensitive configuration and credential files, with all requests flagged by WAF, triggering critical 'LFI-ANOMALY' and reputation-based deny rules. Its associated ASN AS211590 is already blocklisted for persistent malicious activity. | 2026-01-08 22:51:10 | 100.0% | Critical |
| 195.178.110.54 | IP | www.darcherif.fr akamai.darcherif.fr | IP belongs to blocklisted ASN AS48090, shows a high ratio of detected threat requests (22/10), and triggered multiple critical WAF alerts including 'BOT-BROWSER-IMPERSONATOR' for suspicious probing. | 2026-01-08 17:20:49 | 100.0% | Critical |
| 4.190.211.79 | IP | akamai.darcherif.fr | All requests were detected as threats, targeted known malicious PHP files including a 'wp_filemanager.php' exploit, triggered a critical 'IPBLOCK' WAF deny rule, and its ASN (AS8075) is already blocklisted for persistent and identical malicious activity from multiple other IPs. | 2026-01-08 15:40:46 | 100.0% | Critical |
| 195.178.110.132 | IP | akamai.darcherif.fr | Actively probing for sensitive configuration files, detected as a bot impersonator, triggered critical LFI and IPBLOCK burst WAF deny rules, and its ASN (AS48090) is already blocklisted for identical malicious activity from other IPs. | 2026-01-08 15:40:46 | 100.0% | Critical |
| 13.55.232.71 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged as threats, all accessed paths were flagged by WAF, and a critical 'IPBLOCK' deny rule was triggered. Its associated ASN (AS16509) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2026-01-08 09:00:18 | 100.0% | Critical |
| 52.64.60.91 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged as threats, all accessed paths were flagged by WAF, and a critical 'IPBLOCK' deny rule was triggered. Its associated ASN (AS16509) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2026-01-08 06:20:12 | 100.0% | Critical |
| 141.98.11.120 | IP | www.darcherif.fr | IP is performing WordPress brute-force attempts targeting 'wp-login.php', flagged by WAF and triggered security alert '3900998'. Its associated ASN (AS209605) is already blocklisted for similar critical malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2026-01-07 21:29:48 | 100.0% | Critical |
| 52.178.176.146 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged as threats, accessing suspicious PHP files, and triggered a critical 'IPBLOCK' deny rule. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2026-01-07 20:19:47 | 100.0% | Critical |