383
99.0%
50
TLS: 5 IP: 40 ASN: 5
| Entity | Type | Hostnames | Reason | Blocked At | AI Confidence | AI Details |
|---|---|---|---|---|---|---|
| 3%7e2d3399e1bbf557f5 | TLS | www.darcherif.fr | All requests associated with this TLS fingerprint were flagged by WAF, triggered critical LFI-ANOMALY and reputation-based deny rules, and accessed highly suspicious paths indicative of web shell or exploitation attempts. | 2025-12-22 08:06:40 | 100.0% | Critical |
| 138.197.152.229 | IP | www.darcherif.fr | All requests from this IP were flagged by WAF, triggered critical LFI-ANOMALY and reputation-based deny rules, and its associated ASN AS14061 is already blocklisted for highly malicious activity. | 2025-12-22 08:06:40 | 100.0% | Critical |
| 74.7.243.194 | IP | www.darcherif.fr | High percentage of detected threat requests (6/7), multiple paths flagged by WAF including a suspicious obfuscated path, and triggered WAF alert, consistent with the blocklisted ASN AS8075 for persistent malicious activity. | 2025-12-22 03:46:17 | 100.0% | Critical |
| 74.7.175.152 | IP | www.darcherif.fr | All requests (100%) from this IP were flagged by WAF and triggered an alert, consistent with the blocklisted ASN AS8075 for persistent malicious activity. | 2025-12-22 03:46:17 | 100.0% | Critical |
| 213.209.159.151 | IP | akamai.darcherif.fr | All requests targeted highly sensitive configuration and credential files, were flagged by WAF, and triggered critical IPBLOCK-BURST4 deny rules. | 2025-12-21 22:55:50 | 100.0% | Critical |
| AS42821 | ASN | akamai.darcherif.fr | ASN linked to IP 213.209.159.151, which targeted highly sensitive files, was fully flagged by WAF, and triggered critical IPBLOCK-BURST4 deny rules. Blocking the entire ASN is necessary to mitigate persistent threats from this network. | 2025-12-21 22:55:50 | 100.0% | Critical |
| 141.98.11.169 | IP | www.darcherif.fr | High percentage of threat requests (76.9%) targeting 'wp-login.php' and triggering a brute-force alert. This IP's ASN (AS209605) is already blocklisted for similar critical malicious activity. | 2025-12-21 22:25:50 | 100.0% | Critical |
| 103.179.173.163 | IP | www.darcherif.fr | High percentage of detected threat requests (84%) targeting 'wp-login.php' and triggering a brute-force alert. This behavior is consistent with other blocklisted IPs from Vietnam for similar critical malicious activity. | 2025-12-21 21:55:44 | 95.0% | Critical |
| 77.90.185.245 | IP | www.darcherif.fr | High percentage of detected threat requests (87%) targeting 'wp-login.php' and triggering a brute-force alert. This IP's ASN (AS215476) and other IPs within it are already blocklisted for identical critical malicious activity. | 2025-12-21 17:05:27 | 100.0% | Critical |
| 52.172.223.9 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged by WAF and targeted suspicious PHP files, triggering a critical 'IPBLOCK' deny rule. The associated ASN (AS8075) is already blocklisted for persistent malicious activity. | 2025-12-21 11:35:13 | 100.0% | Critical |
| 62.60.131.162 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged as threats, specifically targeting the sensitive '.git/config' path, indicating a high-confidence reconnaissance or exploit attempt. | 2025-12-21 03:14:37 | 100.0% | Critical |
| 193.142.146.65 | IP | www.darcherif.fr | High percentage of detected threat requests (66.67%) specifically targeting 'wp-login.php' and triggering a security alert indicative of brute-force attempts. Another IP from the same ASN (AS213438) has been previously blocklisted for identical malicious activity. | 2025-12-20 19:24:13 | 100.0% | Critical |
| 13.229.199.18 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged as threats and triggered a critical 'IPBLOCK' WAF deny rule. Its associated ASN (AS16509) is already blocklisted for persistent malicious activity. | 2025-12-20 07:23:34 | 100.0% | Critical |
| 3%7e2c022104e7e56fbe | TLS | www.darcherif.fr | TLS fingerprint detected probing 'wp-login.php', triggering a WAF alert (3900998) indicative of brute-force or credential stuffing attempts, consistent with previously blocked malicious activity. | 2025-12-19 11:42:24 | 95.0% | Critical |
| 45.149.173.217 | IP | akamai.darcherif.fr | Extensive WordPress enumeration and bot impersonation detected, triggering multiple WAF alerts and a critical 'IPBLOCK-BURST4' deny rule due to a very high rate of malicious requests. | 2025-12-19 11:22:19 | 100.0% | Critical |
| AS209605 | ASN | - | Multiple IPs from this ASN, including '91.224.92.93' and '91.224.92.99', are consistently performing brute-force and enumeration attacks on 'wp-login.php' and triggering critical WAF alerts. | 2025-12-19 09:42:14 | 100.0% | Critical |
| 91.224.92.93 | IP | www.darcherif.fr | Multiple requests targeting 'wp-login.php', flagged by WAF, triggered brute-force alert '3900998', and associated ASN AS209605 has other IPs blocklisted for similar activity. | 2025-12-19 09:42:14 | 98.0% | Critical |
| 209.38.29.70 | IP | akamai.darcherif.fr | IP from blocklisted ASN AS14061 aggressively attempting Laravel and PHPUnit exploits, command injection, and local file inclusion by targeting sensitive files (.env, .git/config), triggered multiple critical WAF deny rules (CMD-INJECTION-ANOMALY, LFI-ANOMALY), and shows an extremely high number of detected threat requests. | 2025-12-19 08:52:12 | 100.0% | Critical |
| 209.38.88.38 | IP | www.darcherif.fr | IP from blocklisted ASN AS14061 aggressively attempting Laravel and PHPUnit exploits by targeting sensitive files, triggered a critical WAF deny rule, and showed a 100% threat request ratio. | 2025-12-19 07:02:04 | 100.0% | Critical |
| 170.64.219.248 | IP | www.darcherif.fr | IP is aggressively attempting critical exploits (Laravel RCE, PHPUnit RCE, LFI, sensitive file disclosure) and triggered multiple critical WAF deny rules. Its associated ASN (AS14061) is already blocklisted for persistent malicious activity. | 2025-12-19 04:01:53 | 100.0% | Critical |
| 45.135.232.10 | IP | www.darcherif.fr | All requests (100%) from this IP targeted known WordPress exploit paths ('xmlrpc.php', 'wp-login.php') and triggered multiple critical WAF deny rules (IPBLOCK-PENALTY-BOX, PLATFORM-ANOMALY, POLICY-ANOMALY), indicating an active and severe brute-force or enumeration attack. | 2025-12-19 02:11:46 | 100.0% | Critical |
| 34.136.173.106 | IP | www.darcherif.fr | IP belongs to AS396982, which is blocklisted for extensive WordPress enumeration, bot impersonation, and critical WAF deny rules, indicating a high risk of malicious activity. | 2025-12-18 20:11:21 | 95.0% | Critical |
| AS215476 | ASN | www.darcherif.fr | High percentage (88.5%) of detected threat requests originating from this ASN, consistently targeting 'wp-login.php' and triggering security alerts for brute-force attempts. Other IPs within this ASN are already blocklisted for similar persistent malicious activity. | 2025-12-18 20:01:26 | 98.0% | Critical |
| 77.90.185.10 | IP | www.darcherif.fr | High percentage (90%) of detected threat requests targeting 'wp-login.php', triggering security alerts indicative of brute-force attempts. Associated ASN AS215476 also shows high malicious activity and has other IPs blocklisted for similar behavior. | 2025-12-18 20:01:26 | 95.0% | Critical |
| 170.64.167.148 | IP | akamai.darcherif.fr | IP from blocklisted ASN AS14061 aggressively attempting Laravel and PHPUnit exploits, command injection, and local file inclusion by targeting sensitive files (.env, .git/config), triggering multiple critical WAF deny rules (CMD-INJECTION-ANOMALY, LFI-ANOMALY), and showing a very high threat request ratio (101/11). | 2025-12-18 13:31:04 | 100.0% | Critical |
| 114.119.146.15 | IP | www.darcherif.fr | All requests (100%) were detected as threats, including probing 'wp-login.php', and the associated ASN (AS136907) is already blocklisted for similar malicious activity. | 2025-12-18 03:30:22 | 100.0% | Critical |
| 185.177.72.8 | IP | akamai.darcherif.fr | IP from blocklisted ASN AS211590, demonstrating bot-browser impersonation, multiple WAF alerts, and an exceptionally high number of detected threat requests (50 out of 17), indicating persistent malicious probing and automated attacks. | 2025-12-17 23:50:15 | 100.0% | Critical |
| 34.187.144.195 | IP | akamai.darcherif.fr | Extensive WordPress enumeration, bot impersonation, and high detected threat requests (127/27). Triggered critical WAF deny rule 'IPBLOCK-BURST4-318403' and associated ASN (AS396982) is blocklisted for similar activity. | 2025-12-17 17:09:52 | 100.0% | Critical |
| 34.105.63.134 | IP | akamai.darcherif.fr | IP performing extensive WordPress enumeration and bot impersonation, triggering critical WAF deny rules (IPBLOCK-BURST4-318403) and multiple bot alerts. Behavior is consistent with blocklisted ASN AS396982. | 2025-12-17 14:19:47 | 100.0% | Critical |
| AS396982 | ASN | www.darcherif.fr akamai.darcherif.fr | Associated IPs within this ASN are performing extensive WordPress enumeration and bot impersonation, triggering critical WAF deny rules like 'IPBLOCK-BURST4-318403', and demonstrating a very high threat request ratio. | 2025-12-17 11:39:36 | 100.0% | Critical |
| 74.7.243.201 | IP | www.darcherif.fr | High percentage of detected threat requests (75%) including suspicious and obfuscated paths, triggered WAF alert '3991023', and associated ASN AS8075 is blocklisted for persistent malicious activity. | 2025-12-17 10:39:34 | 100.0% | Critical |
| 91.224.92.99 | IP | www.darcherif.fr | Detected brute-force or credential stuffing attempts targeting 'wp-login.php', with WAF flagging the path and triggering security alert '3900998'. Associated ASN (AS209605) has other IPs blocklisted for similar WordPress enumeration and bot activity. | 2025-12-17 10:09:33 | 95.0% | Critical |
| 66.249.66.200 | IP | - | All requests (100%) from this IP were detected as threats and flagged by WAF, triggering security alert 3991006. The associated ASN (AS15169) is already blocklisted for similar malicious activity. | 2025-12-17 08:49:40 | 95.0% | Critical |
| 66.249.66.32 | IP | - | All requests (100%) from this IP were detected as threats and flagged by WAF, triggering security alert 3991006. The associated ASN (AS15169) is already blocklisted for similar malicious activity. | 2025-12-17 08:49:40 | 95.0% | Critical |
| 3%7e643dc557cbaefec4 | TLS | - | All requests (100%) from this TLS fingerprint were detected as threats and flagged by WAF, triggering security alert 3990011, indicating highly malicious activity. | 2025-12-17 08:49:40 | 95.0% | Critical |
| 54.206.119.170 | IP | akamai.darcherif.fr | All requests (100%) were flagged as threats and triggered a critical 'IPBLOCK' WAF deny rule. | 2025-12-17 08:29:42 | 100.0% | Critical |
| 194.180.49.171 | IP | akamai.darcherif.fr | Aggressively targeted highly sensitive configuration and information files, triggering critical WAF deny rules including IPBLOCK-BURST4, LFI-ANOMALY, and reputation-based blocking. | 2025-12-17 08:29:42 | 100.0% | Critical |
| 16.16.253.36 | IP | akamai.darcherif.fr | All requests (100%) were flagged as threats and triggered a critical 'IPBLOCK' WAF deny rule. | 2025-12-17 08:29:42 | 100.0% | Critical |
| 3%7e0e32d71b0a15c3f7 | TLS | akamai.darcherif.fr | All requests (100%) associated with this TLS fingerprint were detected as threats and triggered a critical 'IPBLOCK' WAF deny rule. | 2025-12-17 08:29:42 | 100.0% | Critical |
| 3.139.75.95 | IP | akamai.darcherif.fr | All requests (100%) were flagged as threats and triggered a critical 'IPBLOCK' WAF deny rule. | 2025-12-17 08:29:42 | 100.0% | Critical |
| 34.75.103.206 | IP | akamai.darcherif.fr | Extensive WordPress enumeration and bot impersonation attempts detected, triggering multiple WAF alerts and a critical 'IPBLOCK-BURST4' deny rule. | 2025-12-17 08:29:42 | 100.0% | Critical |
| 104.252.191.81 | IP | akamai.darcherif.fr | High number of detected threat requests and multiple WAF alerts, including 'BOT-BROWSER-IMPERSONATOR', indicating automated malicious probing and exploit attempts. | 2025-12-17 08:29:42 | 95.0% | Critical |
| 103.4.251.192 | IP | akamai.darcherif.fr | High number of detected threat requests and multiple WAF alerts, including 'BOT-BROWSER-IMPERSONATOR', indicating automated malicious probing and exploit attempts. | 2025-12-17 08:29:42 | 95.0% | Critical |
| 13.54.76.125 | IP | akamai.darcherif.fr | All requests (100%) were flagged as threats and triggered a critical 'IPBLOCK' WAF deny rule. | 2025-12-17 08:29:42 | 100.0% | Critical |
| 3%7e855c4ab9f9b8672b | TLS | www.darcherif.fr | All requests (100%) associated with this TLS fingerprint were detected as threats, targeted 'wp-login.php', and triggered a critical 'IPBLOCK-PENALTY-BOX' WAF deny rule, indicating a severe brute-force or credential stuffing attempt. | 2025-12-16 17:38:34 | 100.0% | Critical |
| 54.71.96.232 | IP | www.darcherif.fr | Associated with ASN AS16509, which is already blocklisted for persistent malicious activity and triggering critical WAF deny rules. This IP also generated a WAF alert. | 2025-12-16 17:28:39 | 95.0% | Critical |
| 114.119.159.62 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats and flagged by WAF, triggering a security alert. | 2025-12-16 16:48:34 | 100.0% | Critical |
| AS136907 | ASN | www.darcherif.fr | All requests (100%) from this ASN were detected as threats and flagged by WAF, triggering a security alert. | 2025-12-16 16:48:34 | 100.0% | Critical |
| 114.119.149.66 | IP | - | All requests (100%) from this IP were detected as threats and flagged by WAF. | 2025-12-16 16:38:53 | 90.0% | Critical |
| 74.7.242.54 | IP | - | Extremely high percentage of detected threat requests (97.7%) and all accessed paths flagged by WAF. | 2025-12-16 16:38:53 | 95.0% | Critical |