ClearSOC Dashboard - Investigation Workspace

Entity Details

Type: Asn
ASN: AS198953 - Proton66 OOO
Threat Intelligence: Suspicious activity detected from AS198953 including WAF flags on xmlrpc.php, multiple detected threat requests, and a 'PLATFORM-ANOMALY' security rule hit from a high-risk geographical location (RU).

Linked Entities

TLS Fingerprints (2)

3%7e5280136f5f66ec7b Investigate
3%7e2891d83539e8d2fd Investigate

Hostnames Targeted

Hostname	Request Count
www.darcherif.fr	546
akamai.darcherif.fr	21

Paths Targeted (with Request Counts)

Path	Request Count
xmlrpc.php	125
wp-login.php	71
/	9
_sec/cp_challenge/challenge	5
wp-includes/	3
wp-content/uploads/2026/03/	3
wp-includes/block-bindings/	2
wp-content/uploads/2024/01/	2
wp-content/uploads/2024/	2
wp-content/uploads/2022/03/	2
wp-admin/includes/	2
wp-content/uploads/2022/11/	2
wp-content/uploads/2025/07/	2
wp-content/uploads/2025/09/	2
wp-content/uploads/2022/	2
wp-content/uploads/2025/05/	2
wp-content/uploads/2025/04/	2
wp-content/uploads/2022/08/	2
wp-content/uploads/2026/01/	2
wp-content/themes/highlight/images/	2
wp-content/uploads/2024/07/	2
wp-content/uploads/2022/12/	2
wp-content/uploads/2022/01/	2
wp-content/uploads/2025/	2
wp-content/uploads/2024/02/	2
wp-content/uploads/2026/	2
wp-content/uploads/2023/	2
wp-content/uploads/2022/05/	2
wp-content/uploads/2024/10/	2
wp-content/uploads/2025/01/	2
wp-content/uploads/2025/03/	2
wp-content/uploads/2025/08/	2
wp-content/uploads/2023/01/	2
wp-content/uploads/2024/08/	2
wp-content/uploads/2024/09/	2
wp-content/uploads/2022/06/	2
wp-content/uploads/2024/03/	2
wp-content/uploads/2025/12/	2
wp-content/uploads/2025/02/	2
wp-content/uploads/2024/05/	2
wp-content/uploads/2024/12/	2
wp-content/uploads/2025/06/	2
wp-content/uploads/2022/09/	2
wp-content/uploads/2022/02/	2
wp-content/uploads/2022/10/	2
wp-content/uploads/2023/02/	2
wp-content/uploads/2024/11/	2
wp-content/uploads/2025/10/	2
wp-content/uploads/2024/06/	2
wp-content/uploads/2024/04/	2

🚫

Block

Suspicious activity detected from AS198953 including WAF flags on xmlrpc.php, multiple detected threat requests, and a 'PLATFORM-ANOMALY' security rule hit from a high-risk geographical location (RU).

2026-03-07 08:23:27

Investigation Workspace

Entity: AS198953 (Asn)

Entity Details

Linked Entities

Hostnames Targeted

Paths Targeted (with Request Counts)

Block