ClearSOC Dashboard - Investigation Workspace

Entity Details

Type: Asn
ASN: AS48090 - TECHOFF SRV LIMITED
Threat Intelligence: Associated with IP 45.148.10.246, which demonstrated extensive probing of sensitive files, had all requests flagged by WAF, and triggered critical deny rules including LFI-ANOMALY and IPBLOCK.

Linked Entities

TLS Fingerprints (18)

3%7ed09afd3ffe9bdf7b Investigate
3%7ede293936a8dc4153 Investigate
3%7e2faa3a9db1c111de Investigate
3%7e6b53d8c79dc9b20e Investigate
3%7ea97fdb0b70d4a7b7 Investigate
3%7e2c022104e7e56fbe Investigate
3%7e8daff85fd50db738 Investigate
3%7e7bcf51bfc0d0b65f Investigate
3%7e7d37a809e7e56fbe Investigate
3%7eaa744a72243fb39f Investigate
3%7e643dc557cbaefec4 Investigate
3%7edf1fada1233fb39f Investigate
3%7e09ae30484e39efc8 Investigate
3%7eab7daa34734d2d1e Investigate
3%7e305534a7233fb39f Investigate
3%7e49105dcd8222ad26 Investigate
3%7e290fb3fb589f1739 Investigate
3%7eeecb81f5f68054f3 Investigate

Hostnames Targeted

Hostname	Request Count
akamai.darcherif.fr	6888
www.darcherif.fr	372
akamai.darcherif.fr:443	4
akamai.darcherif.fr:80	4
	2

Paths Targeted (with Request Counts)

Path	Request Count
/	275
.git/config	255
_sec/cp_challenge/challenge	70
.env	55
mail/jqBootstrapValidation.js	25
cdnjs.cloudflare.com/ajax/libs/jquery-easing/1.4.1/jquery.easing.min.js	25
backend/.env	25
admin/.env	24
mail/contact_me.js	24
mpulse.js	24
scripts.js	24
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	24
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.0/js/all.min.js	24
stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.bundle.min.js	24
.env.save	23
js/scripts.js	22
www.darcherif.fr/wp-includes/js/jquery/jquery.min.js	22
js/mpulse.js	22
phpinfo.php	21
assets/mail/contact_me.js	21
api/.env	21
www.darcherif.fr/wp-content/plugins/mesmerize-companion/theme-data/mesmerize/assets/js/companion.bundle.min.js	20
favicon.ico	20
wp-emoji-release.min.js	20
www.darcherif.fr/wp-includes/js/jquery/jquery-migrate.min.js	20
www.darcherif.fr/wp-content/themes/highlight/assets/js/theme-child.js	18
www.darcherif.fr/wp-content/themes/mesmerize/assets/js/theme.bundle.min.js	17
www.darcherif.fr/wp-includes/js/imagesloaded.min.js	17
config.js	16
assets/mail/jqBootstrapValidation.js	16
www.darcherif.fr/wp-includes/js/masonry.min.js	16
_profiler/phpinfo	16
phpinfo	15
.env.prod	14
wp-config.php	14
.env.bak	13
php_info.php	13
.env.example	13
dev/.env	13
application/.env	12
info	11
aws-config.js	11
aws.config.js	11
config.json	11
.aws/credentials	11
.env.production	11
%22js/mpulse.js%22	10
%22assets/mail/contact_me.js%22	10
.env.backup	9
.git/HEAD	9

🚫

Block

Associated with IP 45.148.10.246, which demonstrated extensive probing of sensitive files, had all requests flagged by WAF, and triggered critical deny rules including LFI-ANOMALY and IPBLOCK.

2025-12-04 12:34:38

Investigation Workspace

Entity: AS48090 (Asn)

Entity Details

Linked Entities

Hostnames Targeted

Paths Targeted (with Request Counts)

Block