ClearSOC Dashboard - Investigation Workspace

Entity Details

Type: Ip
ASN: AS198953 - Proton66 OOO
Threat Intelligence: All requests (100%) from this IP targeted known WordPress exploit paths ('xmlrpc.php', 'wp-login.php') and triggered multiple critical WAF deny rules (IPBLOCK-PENALTY-BOX, PLATFORM-ANOMALY, POLICY-ANOMALY), indicating an active and severe brute-force or enumeration attack.

Linked Entities

TLS Fingerprints (1)

3%7e5280136f5f66ec7b Investigate

Hostnames Targeted

Hostname	Request Count
www.darcherif.fr	80

Paths Targeted (with Hostname Counts)

Path	Distinct Hostnames
wp-login.php	1
xmlrpc.php	1

🚫

Block

All requests (100%) from this IP targeted known WordPress exploit paths ('xmlrpc.php', 'wp-login.php') and triggered multiple critical WAF deny rules (IPBLOCK-PENALTY-BOX, PLATFORM-ANOMALY, POLICY-ANOMALY), indicating an active and severe brute-force or enumeration attack.

2025-12-19 02:11:46

Investigation Workspace

Entity: 45.135.232.10 (Ip)

Entity Details

Linked Entities

Hostnames Targeted

Paths Targeted (with Hostname Counts)

Block