Investigation Workspace

Entity: 45.148.10.238 (Ip)

Entity Details
Type
Ip
ASN
AS48090 - TECHOFF SRV LIMITED
Threat Intelligence
IP from blocklisted ASN AS48090 performing aggressive reconnaissance, detected bot impersonation, targeted sensitive configuration/credential files (.git/config, .aws/credentials, .env), and triggered a critical LFI-ANOMALY WAF deny rule with a high threat request ratio (11/6).
Linked Entities
TLS Fingerprints (2)
Hostnames Targeted
Hostname Request Count
www.darcherif.fr 33
akamai.darcherif.fr 16
Paths Targeted (with Request Counts)
Path Request Count
.git/config 17
aws.env 4
.env 4
.aws/credentials 3
wp-emoji-release.min.js 3
www.darcherif.fr/index.php 3
www.darcherif.fr/wp-content/plugins/mesmerize-companion/theme-data/mesmerize/assets/js/companion.bundle.min.js 2
www.darcherif.fr/wp-includes/js/jquery/jquery.min.js 2
www.darcherif.fr/wp-content/themes/mesmerize/assets/js/theme.bundle.min.js 2
www.darcherif.fr/wp-includes/js/jquery/jquery-migrate.min.js 2
www.darcherif.fr/xmlrpc.php 2
www.darcherif.fr/wp-includes/js/masonry.min.js 2
/ 1
www.darcherif.fr/wp-content/themes/highlight/assets/js/theme-child.js 1
www.darcherif.fr/wp-includes/js/imagesloaded.min.js 1
🚫

Block

IP from blocklisted ASN AS48090 performing aggressive reconnaissance, detected bot impersonation, targeted sensitive configuration/credential files (.git/config, .aws/credentials, .env), and triggered a critical LFI-ANOMALY WAF deny rule with a high threat request ratio (11/6).

2026-01-17 10:13:01