ClearSOC Dashboard - Investigation Workspace

Entity Details

Type: Ip
ASN: AS212238 - Datacamp Limited
Threat Intelligence: Highly malicious activity detected: numerous WAF flags for WordPress enumeration attempts ('wlwmanifest.xml'), a very high number of detected threat requests (102 vs 31 total requests), multiple security alerts including 'BOT-BROWSER-IMPERSONATOR', and a 'deny' rule hit ('IPBLOCK-BURST4-318403'). This indicates a sophisticated automated attack or bot activity.

Linked Entities

TLS Fingerprints (1)

3%7e2891d83539e8d2fd Investigate

Hostnames Targeted

Hostname	Request Count
akamai.darcherif.fr	54

Paths Targeted (with Request Counts)

Path	Request Count
_sec/cp_challenge/challenge	12
/	6
xmlrpc.php	2
wp/wp-includes/wlwmanifest.xml	2
website/wp-includes/wlwmanifest.xml	2
site/wp-includes/wlwmanifest.xml	2
shop/wp-includes/wlwmanifest.xml	2
news/wp-includes/wlwmanifest.xml	2
media/wp-includes/wlwmanifest.xml	2
sito/wp-includes/wlwmanifest.xml	2
cms/wp-includes/wlwmanifest.xml	2
wp-includes/wlwmanifest.xml	2
blog/wp-includes/wlwmanifest.xml	2
2019/wp-includes/wlwmanifest.xml	2
wp2/wp-includes/wlwmanifest.xml	2
wp1/wp-includes/wlwmanifest.xml	2
2018/wp-includes/wlwmanifest.xml	2
wordpress/wp-includes/wlwmanifest.xml	2
web/wp-includes/wlwmanifest.xml	2
test/wp-includes/wlwmanifest.xml	2

🚫

Block

Highly malicious activity detected: numerous WAF flags for WordPress enumeration attempts ('wlwmanifest.xml'), a very high number of detected threat requests (102 vs 31 total requests), multiple security alerts including 'BOT-BROWSER-IMPERSONATOR', and a 'deny' rule hit ('IPBLOCK-BURST4-318403'). This indicates a sophisticated automated attack or bot activity.

2026-03-01 08:07:54

Investigation Workspace

Entity: 169.150.203.202 (Ip)

Entity Details

Linked Entities

Hostnames Targeted

Paths Targeted (with Request Counts)

Block