Investigation Workspace

Entity: 45.135.232.178 (Ip)

Entity Details
Type
Ip
ASN
AS198953 - Proton66 OOO
Threat Intelligence
IP is performing WordPress enumeration and brute-force attacks, targeting 'xmlrpc.php' and 'wp-login.php'. All accessed paths were flagged by WAF, and critical WAF deny rules 'IPBLOCK-PENALTY-BOX' and 'POLICY-ANOMALY' were triggered. This behavior is identical to another blocklisted IP (45.135.232.10) from the same ASN.
Linked Entities
TLS Fingerprints (1)
Hostnames Targeted
Hostname Request Count
www.darcherif.fr 82
Paths Targeted (with Hostname Counts)
Path Distinct Hostnames
author/wadminw 1
author/admin/ 1
wp-login.php 1
author/root 1
xmlrpc.php 1
wp-json/wp/v2/users/ 1
author/baxc454urj/ 1
index.php/author/admin3157/ 1
🚫

Block

IP is performing WordPress enumeration and brute-force attacks, targeting 'xmlrpc.php' and 'wp-login.php'. All accessed paths were flagged by WAF, and critical WAF deny rules 'IPBLOCK-PENALTY-BOX' and 'POLICY-ANOMALY' were triggered. This behavior is identical to another blocklisted IP (45.135.232.10) from the same ASN.

2025-12-26 01:11:58