380
99.0%
50
IP: 44 TLS: 4 ASN: 2
| Entity | Type | Hostnames | Reason | Blocked At | AI Confidence | AI Details |
|---|---|---|---|---|---|---|
| 52.178.176.146 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged as threats, accessing suspicious PHP files, and triggered a critical 'IPBLOCK' deny rule. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2026-01-07 20:19:47 | 100.0% | Critical |
| 35.231.29.86 | IP | akamai.darcherif.fr | IP is performing extensive WordPress enumeration and bot impersonation, triggered a critical WAF deny rule (IPBLOCK-BURST4-318403), has an exceptionally high number of detected threat requests, and belongs to ASN AS396982, which is blocklisted for similar highly malicious activity. | 2026-01-07 15:29:31 | 100.0% | Critical |
| 52.169.143.103 | IP | akamai.darcherif.fr | All requests (100%) were detected as threats, all accessed suspicious PHP and config files were flagged by WAF, and a critical 'IPBLOCK' deny rule was triggered. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity. | 2026-01-07 13:59:25 | 100.0% | Critical |
| 66.249.66.39 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats, all accessed paths were flagged by WAF, and security alert '3991006' was triggered. Its associated ASN (AS15169) and multiple other IPs from the same subnet are already blocklisted for identical malicious activity. | 2026-01-07 11:09:16 | 100.0% | Critical |
| 45.156.128.112 | IP | akamai.darcherif.fr | All accessed paths (100%) were flagged by WAF, detected threat events greatly exceed total requests (35 over 5), and multiple critical security alerts including 'BOT-BROWSER-IMPERSONATOR' were triggered. The associated ASN AS211680 has another IP blocklisted for similar malicious activity. | 2026-01-07 01:08:43 | 100.0% | Critical |
| 176.65.148.161 | IP | akamai.darcherif.fr | All requests (100%) from this IP were detected as threats and flagged by WAF, triggering security alert '3990011'. Its associated ASN AS51396 is already blocklisted for severe malicious activity, indicating high confidence in malicious intent. | 2026-01-07 00:48:40 | 100.0% | Critical |
| 46.101.111.185 | IP | akamai.darcherif.fr | All accessed paths were flagged by WAF, detected threat requests exceed total requests, triggered critical 'LFI-ANOMALY' deny rule and 'BOT-BROWSER-IMPERSONATOR' alert. Its ASN (AS14061) is already blocklisted for similar highly malicious activity. | 2026-01-07 00:38:51 | 100.0% | Critical |
| 159.223.132.86 | IP | akamai.darcherif.fr | All accessed paths were flagged by WAF, detected threat requests exceed total requests, triggered critical 'LFI-ANOMALY' deny rule and 'BOT-BROWSER-IMPERSONATOR' alert. Its ASN (AS14061) is already blocklisted for similar highly malicious activity. | 2026-01-07 00:38:51 | 100.0% | Critical |
| 143.110.217.244 | IP | akamai.darcherif.fr | All accessed paths were flagged by WAF, detected threat requests exceed total requests, triggered critical 'LFI-ANOMALY' deny rule and 'BOT-BROWSER-IMPERSONATOR' alert. Its ASN (AS14061) is already blocklisted for similar highly malicious activity. | 2026-01-07 00:38:51 | 100.0% | Critical |
| 142.93.129.190 | IP | akamai.darcherif.fr | All accessed paths were flagged by WAF, detected threat requests exceed total requests, triggered critical 'LFI-ANOMALY' deny rule and 'BOT-BROWSER-IMPERSONATOR' alert. Its ASN (AS14061) is already blocklisted for similar highly malicious activity. | 2026-01-07 00:38:51 | 100.0% | Critical |
| 213.35.103.47 | IP | akamai.darcherif.fr | IP actively targeting sensitive WordPress admin and login paths, with all accessed paths flagged by WAF. Triggered critical 'IPBLOCK-BURST4' deny rule and 'BOT-BROWSER-IMPERSONATOR' alert. Its ASN (AS31898) is already blocklisted for similar malicious activity. | 2026-01-06 21:28:33 | 100.0% | Critical |
| 91.92.241.119 | IP | akamai.darcherif.fr | Extremely high number of detected threat requests (64 over 17), numerous WAF flags on all accessed paths, and multiple security alerts including 'BOT-BROWSER-IMPERSONATOR', indicating severe automated malicious activity similar to previously blocklisted IPs. | 2026-01-06 08:37:58 | 100.0% | Critical |
| 65.111.27.46 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats and flagged by WAF, including probing sensitive WordPress paths like 'xmlrpc.php', and triggered security alert '3900999', indicating active malicious probing. | 2026-01-05 20:47:19 | 100.0% | Critical |
| 3%7e5280136f5f66ec7b | TLS | akamai.darcherif.fr www.darcherif.fr | Extremely high threat request ratio (39/15), all accessed paths flagged by WAF including WordPress sensitive paths ('xmlrpc.php', 'wp-login.php'), multiple security alerts (e.g., 'BOT-BROWSER-IMPERSONATOR'), and critical WAF deny rules ('IPBLOCK-PENALTY-BOX', 'PLATFORM-ANOMALY') were triggered. This pattern is consistent with other blocklisted malicious entities. | 2026-01-05 00:05:22 | 100.0% | Critical |
| 74.7.228.51 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats, all accessed paths were flagged by WAF, and it triggered security alert '3991023'. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity with identical behavior. | 2026-01-04 23:15:24 | 100.0% | Critical |
| 152.69.210.5 | IP | akamai.darcherif.fr | The IP is actively targeting sensitive WordPress admin and login paths, with all requests (100%) flagged by WAF and multiple security alerts (including bot impersonation). Its associated ASN (AS31898) is already blocklisted for similar malicious activity from other IPs. | 2026-01-03 05:23:12 | 100.0% | Critical |
| 66.249.66.64 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats and flagged by WAF, triggering security alert '3991006'. Its associated ASN (AS15169) and multiple other IPs from the same subnet are already blocklisted for identical malicious activity. | 2026-01-03 04:23:08 | 100.0% | Critical |
| 104.28.203.58 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged by WAF, accessing suspicious PHP files and WordPress admin paths, and triggered a security alert, indicating active malicious probing or exploitation attempts. | 2026-01-03 01:12:54 | 100.0% | Critical |
| AS13335 | ASN | akamai.darcherif.fr | All requests (100%) associated with this ASN were flagged by WAF, accessing suspicious PHP files and WordPress admin paths, and triggered a security alert, indicating widespread malicious probing or exploitation attempts from this network. | 2026-01-03 01:12:54 | 100.0% | Critical |
| 43.135.145.117 | IP | www.darcherif.fr | High percentage of detected threat requests (40%), WAF-flagged obfuscated paths, and triggered security alert '3900999', consistent with blocklisted ASN AS132203 and correlated TLS fingerprints exhibiting similar critical malicious activity. | 2026-01-02 22:12:51 | 95.0% | Critical |
| 20.205.118.141 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged by WAF, accessed suspicious PHP files and admin paths, and triggered a critical 'IPBLOCK' deny rule. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2026-01-02 19:32:38 | 100.0% | Critical |
| 20.239.67.81 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged by WAF, accessed suspicious PHP files and admin paths, and triggered a critical 'IPBLOCK' deny rule. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2026-01-02 15:02:19 | 100.0% | Critical |
| 205.169.39.22 | IP | akamai.darcherif.fr | IP from blocklisted ASN AS3356, accessing an obfuscated path ('akam/13/2f321ee0'), consistent with other blocklisted IPs from this ASN exhibiting malicious probing. | 2026-01-02 10:42:10 | 95.0% | Critical |
| 141.98.11.52 | IP | www.darcherif.fr | IP is performing WordPress brute-force attempts targeting 'wp-login.php', flagged by WAF and triggered security alert '3900998'. Its associated ASN (AS209605) is already blocklisted for similar critical malicious activity. | 2026-01-02 10:12:10 | 100.0% | Critical |
| 104.197.69.115 | IP | akamai.darcherif.fr | Triggered critical WAF deny rule 'IPBLOCK-BURST4-318403' and associated ASN AS396982 is already blocklisted for similar malicious activity, indicating active threat. | 2026-01-02 06:42:08 | 100.0% | Critical |
| 205.169.39.126 | IP | akamai.darcherif.fr | Triggered critical WAF deny rule 'IPBLOCK-BURST4-318403' and multiple alerts. Associated ASN AS3356 has multiple blocklisted IPs showing similar malicious activity. | 2026-01-02 06:42:08 | 100.0% | Critical |
| AS3356 | ASN | akamai.darcherif.fr | Multiple IPs within this ASN exhibit malicious behavior, including triggering critical WAF deny rules like 'IPBLOCK-BURST4-318403' and accessing suspicious paths, indicating persistent and widespread threat activity from this network. | 2026-01-02 06:42:08 | 100.0% | Critical |
| 35.79.222.149 | IP | www.darcherif.fr | IP 35.79.222.149 targeted highly sensitive configuration files (e.g., .env) with all requests flagged by WAF and triggered multiple critical deny rules including LFI-ANOMALY, IPBLOCK-BURST4, and BOT-BROWSER-IMPERSONATOR. Its associated ASN (AS16509) is already blocklisted for persistent malicious activity, with many other IPs from this ASN also blocklisted for identical severe behavior. | 2026-01-02 01:31:44 | 100.0% | Critical |
| 194.36.25.27 | IP | www.darcherif.fr | High percentage of detected threat requests (76.9%) including access to a highly obfuscated path, and triggered security alert '3900999', indicating persistent malicious probing or automated attacks. | 2026-01-01 23:11:35 | 95.0% | Critical |
| 141.98.11.189 | IP | www.darcherif.fr | IP is performing WordPress brute-force attempts targeting 'wp-login.php', which was flagged by WAF and triggered security alert '3900998'. Its associated ASN (AS209605) is already blocklisted for similar critical malicious activity. | 2026-01-01 22:01:23 | 100.0% | Critical |
| 91.224.92.182 | IP | www.darcherif.fr | IP performed a WordPress brute-force attempt targeting 'wp-login.php', which was flagged by WAF and triggered security alert '3900998'. Its associated ASN (AS209605) is already blocklisted for similar critical malicious activity. | 2026-01-01 21:51:19 | 100.0% | Critical |
| 35.215.69.228 | IP | www.darcherif.fr | IP belongs to blocklisted ASN AS15169, which is associated with threatening requests and burst attacks. This IP also accessed a highly obfuscated and suspicious path, indicating malicious probing. | 2026-01-01 10:30:51 | 95.0% | Critical |
| 161.118.250.104 | IP | akamai.darcherif.fr | Actively targeting sensitive WordPress admin and login paths, 100% of requests flagged by WAF with critical deny rules (IPBLOCK-BURST4, REP_1654544), and associated ASN AS31898 is already blocklisted for similar malicious activity. | 2026-01-01 08:50:41 | 100.0% | Critical |
| 2607:9000:7000:35:198:44:133:150 | IP | www.darcherif.fr | Accessed a highly obfuscated and suspicious path ('nUgzRQGQiVNp_UhOzggZItsrtwk/uzV1bNt3t53Dz2V9JY/NncmY3J3Bw/FR/cfdjtBZG8'), strongly indicating malicious probing or attempted exploitation, consistent with other blocklisted entities showing similar behavior. | 2025-12-31 17:29:53 | 95.0% | Critical |
| 3%7e03c384726f922644 | TLS | www.darcherif.fr | Very high percentage of detected threat requests (~87%), all accessed paths flagged by WAF, and triggered security alert '3991017', indicating highly malicious activity. This TLS fingerprint's behavior is consistent with other blocklisted entities from the same malicious campaign. | 2025-12-31 11:49:33 | 100.0% | Critical |
| 144.217.135.240 | IP | www.darcherif.fr | Very high percentage of detected threat requests (~88.9%), all accessed paths flagged by WAF, and its associated ASN (AS16276) is already blocklisted for persistent malicious activity. Consistent with other blocklisted entities showing similar behavior. | 2025-12-31 11:49:33 | 100.0% | Critical |
| 149.56.150.7 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats and flagged by WAF, triggering a security alert. Its associated ASN (AS16276) is already blocklisted for persistent malicious activity. | 2025-12-31 09:19:19 | 100.0% | Critical |
| 3%7e265cf3d41dd8d729 | TLS | www.darcherif.fr | All requests (100%) associated with this TLS fingerprint were detected as threats and flagged by WAF, triggering a security alert, indicating highly malicious activity. | 2025-12-31 09:19:19 | 100.0% | Critical |
| 45.142.154.66 | IP | akamai.darcherif.fr | Extremely high number of detected threat events (29) across all 5 requests, all accessed paths flagged by WAF, and multiple critical security alerts including 'BOT-BROWSER-IMPERSONATOR', indicating severe automated malicious probing and exploit attempts. | 2025-12-30 16:18:31 | 100.0% | Critical |
| 152.32.192.241 | IP | akamai.darcherif.fr | Extremely high number of detected threat events (50) across all 9 requests, all accessed paths flagged by WAF, and multiple critical security alerts including 'BOT-BROWSER-IMPERSONATOR', indicating severe automated malicious probing and exploit attempts. | 2025-12-30 16:18:31 | 100.0% | Critical |
| 217.113.194.106 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats and flagged by WAF, triggering security alert '3991020'. This IP belongs to ASN AS210743, which has other IPs blocklisted for identical malicious activity. | 2025-12-30 12:58:19 | 100.0% | Critical |
| 74.7.241.140 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats and flagged by WAF, triggering security alert '3991023'. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2025-12-28 22:16:07 | 100.0% | Critical |
| 74.7.175.135 | IP | akamai.darcherif.fr | All requests from this IP were detected as threats, all accessed paths were flagged by WAF, and a critical 'IPBLOCK' deny rule was triggered. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2025-12-28 21:35:59 | 100.0% | Critical |
| 3%7eCDC2EF7588B03762 | TLS | www.darcherif.fr | High percentage (~61%) of detected threat requests and all accessed paths were flagged by WAF, triggering security alert '3900999', indicating persistent malicious probing or automated attacks, similar to correlated IP activity. | 2025-12-28 10:25:23 | 95.0% | Critical |
| 154.242.193.88 | IP | www.darcherif.fr | Extremely high percentage (88%) of detected threat requests and all accessed paths were flagged by WAF, triggering security alert '3900999', indicating persistent malicious probing or automated attacks. | 2025-12-28 10:25:23 | 95.0% | Critical |
| 20.24.203.163 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged by WAF, accessed suspicious PHP files, and triggered a critical 'IPBLOCK' deny rule. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2025-12-28 08:55:23 | 100.0% | Critical |
| 23.180.120.244 | IP | www.darcherif.fr | Aggressively targeted highly sensitive configuration files (.env, .env.example) and PHP information disclosure paths (phpinfo, info). All requests triggered critical WAF deny rules, specifically 'LFI-ANOMALY' and a reputation-based block ('REP_1654536'). The ratio of detected threat requests (32) to total requests (21) is extremely high, indicating severe malicious probing and exploitation attempts, consistent with previously blocklisted IPs. | 2025-12-28 06:15:11 | 100.0% | Critical |
| 52.169.163.135 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged by WAF, accessed suspicious PHP files, and triggered a critical 'IPBLOCK' deny rule. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2025-12-28 02:04:53 | 100.0% | Critical |
| 74.7.242.31 | IP | www.darcherif.fr | IP from blocklisted ASN AS8075 with 100% threat requests, all paths flagged by WAF, and triggered security alert '3991023', indicating persistent malicious probing. | 2025-12-28 00:04:41 | 100.0% | Critical |
| 74.7.244.24 | IP | www.darcherif.fr | IP from blocklisted ASN AS8075 with 100% threat requests, all paths flagged by WAF, and triggered security alert '3991023', indicating persistent malicious probing. | 2025-12-28 00:04:41 | 100.0% | Critical |