739
97.0%
50
IP: 45 TLS: 4 ASN: 1
| Entity | Type | Hostnames | Reason | Blocked At | AI Confidence | AI Details |
|---|---|---|---|---|---|---|
| 205.169.39.49 | IP | www.darcherif.fr | IP belongs to ASN AS3356, which is blocklisted for widespread malicious activity and persistent threats, warranting blocking of all associated IPs. | 2026-01-16 05:40:53 | 100.0% | Critical |
| 43.157.149.188 | IP | www.darcherif.fr | IP is part of ASN AS132203, which is blocklisted for confirmed persistent malicious activity, indicating a high-risk association. | 2026-01-15 19:50:28 | 95.0% | Critical |
| 34.116.155.95 | IP | www.darcherif.fr | IP associated with blocklisted ASN AS396982, which is known for extensive WordPress enumeration and bot impersonation. Detected threat request with WAF flagged suspicious path and triggered security alert '3910002'. | 2026-01-15 13:00:17 | 90.0% | Critical |
| 175.44.42.104 | IP | - | IP with multiple WAF alerts (3910001, 3910006), detected threat requests (2/12), and access to a highly obfuscated path, indicating escalating malicious probing. | 2026-01-15 13:00:17 | 85.0% | Critical |
| 141.98.11.44 | IP | www.darcherif.fr | IP performing WordPress brute-force attempts targeting 'wp-login.php', with high threat request ratio (84.2%), and belonging to ASN AS209605 which is blocklisted for similar critical malicious activity. | 2026-01-15 12:40:10 | 100.0% | Critical |
| 3%7e010387cc36ee791e | TLS | www.darcherif.fr | Associated with an IP accessing a highly obfuscated path, indicating a malicious client fingerprint consistent with previously blocklisted TLS fingerprints. | 2026-01-15 08:20:04 | 95.0% | Critical |
| 2001:bc8:701:51:da5e:d3ff:fe49:a574 | IP | www.darcherif.fr | Accessed a highly obfuscated and suspicious path, strongly indicating malicious probing or attempted exploitation, consistent with previously blocklisted entities. | 2026-01-15 08:20:04 | 95.0% | Critical |
| 34.69.92.175 | IP | www.darcherif.fr | Although no direct malicious activity from this IP, its associated ASN (AS396982) is blocklisted for extensive WordPress enumeration, bot impersonation, and critical WAF deny rules, indicating a high risk. | 2026-01-15 08:10:12 | 90.0% | Critical |
| 2a10:3c0:3:0:1:28:0:5 | IP | akamai.darcherif.fr | Extremely high detected threat requests (26/14), multiple WAF alerts including bot impersonation, and access to suspicious flagged paths ("mcp", "sse"), indicating severe automated malicious probing. | 2026-01-15 08:10:12 | 95.0% | Critical |
| 2a10:3c0:3:0:1:28:0:3 | IP | akamai.darcherif.fr | Extremely high detected threat requests (18/5), multiple WAF alerts including bot impersonation, indicating severe automated malicious probing. | 2026-01-15 08:10:12 | 95.0% | Critical |
| AS215930 | ASN | www.darcherif.fr | High percentage of detected threat requests (50/56), actively targeting 'wp-login.php', and triggered a brute-force WAF alert (3900998). This ASN has multiple IPs previously blocklisted for identical activity. | 2026-01-15 08:10:12 | 100.0% | Critical |
| 208.84.101.102 | IP | akamai.darcherif.fr | High percentage of threat requests (45%), bot impersonation, active WordPress enumeration (wlwmanifest.xml scans), and triggered a critical WAF deny rule (IPBLOCK-BURST4-318403). Associated ASN (AS22295) is also blocklisted. | 2026-01-15 08:10:12 | 100.0% | Critical |
| 104.28.203.60 | IP | akamai.darcherif.fr | All requests (100%) were detected as threats, almost all accessed paths flagged by WAF, triggered a critical 'IPBLOCK-BURST4-318403' deny rule, and its ASN (AS13335) is already blocklisted for identical malicious activity. | 2026-01-14 13:09:09 | 100.0% | Critical |
| 23.180.120.131 | IP | akamai.darcherif.fr | Extremely high ratio of detected threat requests (117/37), all accessed paths flagged by WAF, multiple critical security alerts including 'BOT-BROWSER-IMPERSONATOR', and a critical WAF deny rule 'IPBLOCK-BURST4-318403' triggered. Associated ASN AS53514 is blocklisted for similar highly malicious activity. | 2026-01-14 11:28:57 | 100.0% | Critical |
| 34.122.147.229 | IP | - | Associated with blocklisted ASN AS396982, which has a history of extensive malicious activity. | 2026-01-14 10:08:59 | 90.0% | Critical |
| 34.1.19.191 | IP | - | AI identified as critical severity with high confidence, despite no recent activity. | 2026-01-14 10:08:59 | 80.0% | Critical |
| 205.169.39.57 | IP | - | Associated with blocklisted ASN AS3356, which has a history of widespread malicious activity. | 2026-01-14 10:08:59 | 90.0% | Critical |
| 34.123.170.104 | IP | - | Associated with blocklisted ASN AS396982, which has a history of extensive malicious activity. | 2026-01-14 10:08:59 | 90.0% | Critical |
| 34.116.248.149 | IP | www.darcherif.fr | Detected threat requests, WAF flagged paths, security alerts, and associated with blocklisted ASN AS396982. | 2026-01-14 09:59:06 | 95.0% | Critical |
| 205.169.39.218 | IP | - | Multiple detected threat requests, WAF flagged paths, several security alerts, and associated with blocklisted ASN AS3356. | 2026-01-14 09:59:06 | 95.0% | Critical |
| 165.227.173.41 | IP | www.darcherif.fr | Actively targeting sensitive configuration files (.git/config, .env, info.php) and known exploits (Jira exploit). All requests flagged by WAF, triggered critical deny rules (LFI-ANOMALY, IPBLOCK-PENALTY-BOX). Associated ASN AS14061 is blocklisted for identical malicious activity. | 2026-01-14 09:49:05 | 100.0% | Critical |
| 68.183.9.16 | IP | akamai.darcherif.fr | Aggressive reconnaissance for sensitive files and API documentation, all requests flagged by WAF, multiple critical security alerts (including bot impersonation), and triggered critical deny rules (LFI-ANOMALY, IPBLOCK-PENALTY-BOX). Associated ASN AS14061 is blocklisted for identical malicious activity. | 2026-01-14 09:49:05 | 100.0% | Critical |
| 134.209.25.199 | IP | akamai.darcherif.fr | Aggressive reconnaissance for sensitive files and API documentation, all requests flagged by WAF, multiple critical security alerts (including bot impersonation), and triggered critical deny rules (LFI-ANOMALY, IPBLOCK-PENALTY-BOX). Associated ASN AS14061 is blocklisted for identical malicious activity. | 2026-01-14 09:49:05 | 100.0% | Critical |
| 46.101.1.225 | IP | akamai.darcherif.fr | Aggressive reconnaissance for sensitive files and API documentation, all requests flagged by WAF, multiple critical security alerts (including bot impersonation), and triggered critical deny rules (LFI-ANOMALY, IPBLOCK-PENALTY-BOX). Associated ASN AS14061 is blocklisted for identical malicious activity. | 2026-01-14 09:49:05 | 100.0% | Critical |
| 178.128.207.138 | IP | akamai.darcherif.fr | Aggressive reconnaissance for sensitive files and API documentation, all requests flagged by WAF, multiple critical security alerts (including bot impersonation), and triggered critical deny rules (LFI-ANOMALY, IPBLOCK-PENALTY-BOX). Associated ASN AS14061 is blocklisted for identical malicious activity. | 2026-01-14 09:49:05 | 100.0% | Critical |
| 154.28.229.89 | IP | akamai.darcherif.fr | Extremely high ratio of detected threat requests (54/13), with multiple security alerts including 'BOT-BROWSER-IMPERSONATOR', indicating persistent automated malicious probing and exploit attempts, consistent with other blocklisted entities. | 2026-01-14 09:49:05 | 95.0% | Critical |
| 66.249.66.5 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats, all accessed paths were flagged by WAF, and security alert '3991006' was triggered. Its associated ASN (AS15169) is already blocklisted for identical malicious activity. | 2026-01-13 18:07:57 | 100.0% | Critical |
| 66.249.66.68 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats, all accessed paths were flagged by WAF, and security alert '3991006' was triggered. Its associated ASN (AS15169) is already blocklisted for identical malicious activity. | 2026-01-13 18:07:57 | 100.0% | Critical |
| 66.249.66.164 | IP | www.darcherif.fr | All requests (100%) from this IP were detected as threats, all accessed paths were flagged by WAF, and security alert '3991006' was triggered. Its associated ASN (AS15169) is already blocklisted for identical malicious activity. | 2026-01-13 18:07:57 | 100.0% | Critical |
| 104.28.224.94 | IP | www.darcherif.fr | All requests from this IP were detected as threats and flagged by WAF, triggering security alert '3991006'. Its associated ASN AS13335 is already blocklisted for similar widespread malicious activity. | 2026-01-13 15:27:48 | 100.0% | Critical |
| 3%7e56c3ba2d23a6c2fe | TLS | www.darcherif.fr | All requests associated with this TLS fingerprint were detected as threats and flagged by WAF, triggering security alert '3991006'. Its behavior is identical to a newly identified malicious IP whose ASN is already blocklisted for similar activity. | 2026-01-13 15:27:48 | 100.0% | Critical |
| 35.196.98.70 | IP | akamai.darcherif.fr | Extensive WordPress enumeration and bot impersonation attempts detected, with all accessed paths flagged by WAF, multiple security alerts, and a critical IPBLOCK deny rule triggered. Its associated ASN AS396982 is already blocklisted for identical malicious activity. | 2026-01-13 08:57:29 | 100.0% | Critical |
| 3%7eff9e7c847339adbd | TLS | www.darcherif.fr | All requests (100%) associated with this TLS fingerprint were detected as threats and flagged by WAF, triggering security alert '3991008', indicating persistent malicious probing. | 2026-01-13 08:27:38 | 100.0% | Critical |
| 138.197.136.144 | IP | www.darcherif.fr | Aggressive probing of suspicious PHP files and WordPress admin paths, triggered critical LFI-ANOMALY and reputation-based WAF deny rules, and its ASN (AS14061) is blocklisted for highly malicious activity. | 2026-01-13 08:27:38 | 100.0% | Critical |
| 80.94.92.21 | IP | akamai.darcherif.fr | Extremely high number of detected threat requests (36/6), all accessed paths flagged by WAF, and multiple security alerts including 'BOT-BROWSER-IMPERSONATOR', indicating severe automated malicious probing. | 2026-01-13 08:27:38 | 100.0% | Critical |
| 34.23.95.230 | IP | akamai.darcherif.fr | Extensive WordPress enumeration and bot impersonation, triggered a critical WAF deny rule (IPBLOCK-BURST4-318403), and its ASN (AS396982) is blocklisted for similar highly malicious activity. | 2026-01-13 08:27:38 | 100.0% | Critical |
| 45.156.129.67 | IP | akamai.darcherif.fr | High number of detected threat requests (7/5), all accessed paths flagged by WAF, and multiple security alerts including 'BOT-BROWSER-IMPERSONATOR'. Associated ASN (AS211680) has other IPs blocklisted for similar malicious activity. | 2026-01-12 08:16:11 | 100.0% | Critical |
| 80.94.92.9 | IP | akamai.darcherif.fr | Extremely high number of detected threat requests (30/5), all accessed paths flagged by WAF, and multiple security alerts including 'BOT-BROWSER-IMPERSONATOR', indicating severe automated malicious probing and exploit attempts. | 2026-01-12 08:16:11 | 100.0% | Critical |
| 40.160.13.219 | IP | www.darcherif.fr | IP belongs to blocklisted ASN AS16276, known for persistent malicious activity. Accessed a highly obfuscated path, indicating potential malicious probing. | 2026-01-11 13:24:35 | 95.0% | Critical |
| 94.26.106.103 | IP | www.darcherif.fr | High percentage of threat requests (83.3%) specifically targeting 'wp-login.php' and 'admin3157', flagged by WAF, and triggered a security alert (3900998) indicative of brute-force attempts. | 2026-01-11 08:04:18 | 95.0% | Critical |
| 129.212.226.110 | IP | akamai.darcherif.fr | Extensive WordPress enumeration and bot impersonation attempts detected, with all requests flagged by WAF, and its associated ASN AS14061 is already blocklisted for highly malicious activity, consistent with other blocklisted IPs from this ASN. | 2026-01-11 08:04:18 | 100.0% | Critical |
| 185.177.72.60 | IP | akamai.darcherif.fr | Actively probed sensitive configuration and credential files with all requests flagged by WAF, triggered critical LFI-ANOMALY and reputation-based deny rules. Its ASN (AS211590) is blocklisted for persistent malicious activity, with other IPs from this ASN exhibiting identical severe malicious behavior. | 2026-01-10 07:03:00 | 100.0% | Critical |
| 45.148.10.158 | IP | www.darcherif.fr | Aggressively probed sensitive configuration and credential files, with all requests flagged by WAF, triggered critical LFI-ANOMALY and reputation-based deny rules, and belongs to blocklisted ASN AS48090 which has other IPs exhibiting identical severe malicious behavior. | 2026-01-10 06:33:02 | 100.0% | Critical |
| 4.241.228.159 | IP | akamai.darcherif.fr | All requests (100%) from this IP were flagged by WAF, accessed suspicious PHP files and WordPress admin paths, and triggered a critical 'IPBLOCK' deny rule. Its associated ASN (AS8075) is already blocklisted for persistent malicious activity, with multiple other IPs from this ASN also blocklisted for identical behavior. | 2026-01-10 05:12:52 | 100.0% | Critical |
| 185.177.72.61 | IP | www.darcherif.fr | Actively probing for sensitive configuration and credential files, with all requests flagged by WAF, triggered critical LFI and reputation-based deny rules, and belongs to a blocklisted ASN with other IPs exhibiting identical severe malicious behavior. | 2026-01-10 03:02:41 | 100.0% | Critical |
| 185.209.196.229 | IP | www.darcherif.fr | Accessed highly suspicious '.suspected' web shell paths, indicating critical web shell upload or exploitation attempts. | 2026-01-09 21:42:26 | 95.0% | Critical |
| 195.24.236.78 | IP | www.darcherif.fr | IP attempted to access highly suspicious paths like 'plugins/content/apismtp/apismtp.php.suspected' and 'wp-content/plugins/apikey/apikey.php.suspected', strongly indicating web shell upload or exploitation attempts, despite no immediate WAF flags. | 2026-01-09 17:22:03 | 90.0% | Critical |
| 217.113.194.103 | IP | www.darcherif.fr | All requests (100%) were detected as threats and flagged by WAF, triggering security alert '3991020'. This behavior is consistent with other blocklisted IPs from the same ASN (AS210743). | 2026-01-09 11:51:43 | 100.0% | Critical |
| 185.177.72.67 | IP | akamai.darcherif.fr | IP is aggressively probing for sensitive configuration and credential files, with all requests flagged by WAF, triggering critical 'LFI-ANOMALY' and reputation-based deny rules. Its associated ASN AS211590 is already blocklisted for persistent malicious activity, with other IPs from this ASN exhibiting identical severe malicious behavior. | 2026-01-09 10:21:40 | 100.0% | Critical |
| 3%7e9b3e34567f4e1910 | TLS | www.darcherif.fr akamai.darcherif.fr | All requests (100%) associated with this TLS fingerprint targeted highly sensitive configuration files and triggered critical LFI-ANOMALY and reputation-based WAF deny rules. | 2026-01-09 10:01:37 | 100.0% | Critical |