|
52.178.176.146
|
ip
|
All requests (100%) from this IP were flagged as threats, accessing suspicious PHP files, and triggered a critical 'IPBLOCK' deny rule. Its associated...
|
2026-01-07 20:19:47
|
1
|
IE
|
AS8075
|
['akamai.darcherif.fr']
|
['ha.php', '18299.php', 'wakak.php', 'tajj.php', 'ww2.php', 'fso.php', 'ahax.php', 'X7x.php', 'horeg.php', 'f-401.php']
|
{"alert": [], "deny": ["IPBLOCK"]}
|
1.0
|
severity: Severity.critical
|
|
35.231.29.86
|
ip
|
IP is performing extensive WordPress enumeration and bot impersonation, triggered a critical WAF deny rule (IPBLOCK-BURST4-318403), has an exceptional...
|
2026-01-07 15:29:31
|
1
|
US
|
AS396982
|
['akamai.darcherif.fr']
|
['wp1/wp-includes/wlwmanifest.xml', '2018/wp-includes/wlwmanifest.xml', 'wordpress/wp-includes/wlwmanifest.xml', 'news/wp-includes/wlwmanifest.xml', 'media/wp-includes/wlwmanifest.xml', 'sito/wp-includes/wlwmanifest.xml', 'cms/wp-includes/wlwmanifest.xml', 'web/wp-includes/wlwmanifest.xml', 'wp-includes/wlwmanifest.xml', 'test/wp-includes/wlwmanifest.xml']
|
{"alert": ["3904003", "3904006", "3904013", "3904020", "BOT-BROWSER-IMPERSONATOR"], "deny": ["IPBLOCK-BURST4-318403"]}
|
1.0
|
severity: Severity.critical
|
|
52.169.143.103
|
ip
|
All requests (100%) were detected as threats, all accessed suspicious PHP and config files were flagged by WAF, and a critical 'IPBLOCK' deny rule was...
|
2026-01-07 13:59:25
|
1
|
IE
|
AS8075
|
['akamai.darcherif.fr']
|
['ws35.php', 'cc.php', 'third_party/kcfinder/upload.php', 'site/wp-class.php', 'yep.php', 'app/config.php', '1100.php', 'aahana.php', 'X7x.php', 'x.php']
|
{"alert": [], "deny": ["IPBLOCK"]}
|
1.0
|
severity: Severity.critical
|
|
66.249.66.39
|
ip
|
All requests (100%) from this IP were detected as threats, all accessed paths were flagged by WAF, and security alert '3991006' was triggered. Its ass...
|
2026-01-07 11:09:16
|
1
|
US
|
AS15169
|
['www.darcherif.fr']
|
['robots.txt', 'wp-content/themes/highlight/style.min.css', 'wp-includes/js/jquery/jquery-migrate.min.js', 'wp-content/plugins/mesmerize-companion/theme-data/mesmerize/assets/css/companion.bundle.min.css', 'wp-includes/css/dist/block-library/style.min.css']
|
{"alert": ["3991006"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
45.156.128.112
|
ip
|
All accessed paths (100%) were flagged by WAF, detected threat events greatly exceed total requests (35 over 5), and multiple critical security alerts...
|
2026-01-07 01:08:43
|
1
|
NL
|
AS211680
|
['akamai.darcherif.fr']
|
['', 'wp-json', 'favicon.ico', 'login.do']
|
{"alert": ["3904000", "3904004", "3904006", "3904020", "3904036", "3904042", "3904053", "BOT-BROWSER-IMPERSONATOR"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
176.65.148.161
|
ip
|
All requests (100%) from this IP were detected as threats and flagged by WAF, triggering security alert '3990011'. Its associated ASN AS51396 is alrea...
|
2026-01-07 00:48:40
|
1
|
NL
|
AS51396
|
['akamai.darcherif.fr']
|
['', '_next']
|
{"alert": ["3990011"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
46.101.111.185
|
ip
|
All accessed paths were flagged by WAF, detected threat requests exceed total requests, triggered critical 'LFI-ANOMALY' deny rule and 'BOT-BROWSER-IM...
|
2026-01-07 00:38:51
|
1
|
DE
|
AS14061
|
['akamai.darcherif.fr']
|
['api/swagger.json', 'about', 'server-status', 'server', 'v3/api-docs', 'v2/api-docs', '.env', 'swagger/swagger-ui.html', '.vscode/sftp.json', 'webjars/swagger-ui/index.html']
|
{"alert": ["3000508", "3904001", "3904002", "3904003", "3904006", "3904007", "3904013", "3904053", "3990011", "BOT-BROWSER-IMPERSONATOR", "IPBLOCK-PENALTY-BOX"], "deny": ["LFI-ANOMALY"]}
|
1.0
|
severity: Severity.critical
|
|
159.223.132.86
|
ip
|
All accessed paths were flagged by WAF, detected threat requests exceed total requests, triggered critical 'LFI-ANOMALY' deny rule and 'BOT-BROWSER-IM...
|
2026-01-07 00:38:51
|
1
|
US
|
AS14061
|
['akamai.darcherif.fr']
|
['api/swagger.json', 'about', 'server-status', 'server', 'v3/api-docs', 'v2/api-docs', '.env', 'swagger/swagger-ui.html', '.vscode/sftp.json', 'webjars/swagger-ui/index.html']
|
{"alert": ["3000508", "3904001", "3904002", "3904003", "3904006", "3904007", "3904013", "3904053", "3990011", "BOT-BROWSER-IMPERSONATOR", "IPBLOCK-PENALTY-BOX"], "deny": ["LFI-ANOMALY"]}
|
1.0
|
severity: Severity.critical
|
|
143.110.217.244
|
ip
|
All accessed paths were flagged by WAF, detected threat requests exceed total requests, triggered critical 'LFI-ANOMALY' deny rule and 'BOT-BROWSER-IM...
|
2026-01-07 00:38:51
|
1
|
CA
|
AS14061
|
['akamai.darcherif.fr']
|
['api/swagger.json', 'about', 'server-status', 'server', 'v3/api-docs', 'v2/api-docs', '.env', 'swagger/swagger-ui.html', '.vscode/sftp.json', 'webjars/swagger-ui/index.html']
|
{"alert": ["3000508", "3904001", "3904002", "3904003", "3904006", "3904007", "3904013", "3904053", "3990011", "BOT-BROWSER-IMPERSONATOR", "IPBLOCK-PENALTY-BOX"], "deny": ["LFI-ANOMALY"]}
|
1.0
|
severity: Severity.critical
|
|
142.93.129.190
|
ip
|
All accessed paths were flagged by WAF, detected threat requests exceed total requests, triggered critical 'LFI-ANOMALY' deny rule and 'BOT-BROWSER-IM...
|
2026-01-07 00:38:51
|
1
|
NL
|
AS14061
|
['akamai.darcherif.fr']
|
['api/swagger.json', 'about', 'server-status', 'server', 'v3/api-docs', 'v2/api-docs', '.env', 'swagger/swagger-ui.html', 'webjars/swagger-ui/index.html', '.vscode/sftp.json']
|
{"alert": ["3000508", "3904001", "3904002", "3904003", "3904006", "3904007", "3904013", "3904053", "3990011", "BOT-BROWSER-IMPERSONATOR", "IPBLOCK-PENALTY-BOX"], "deny": ["LFI-ANOMALY"]}
|
1.0
|
severity: Severity.critical
|
|
213.35.103.47
|
ip
|
IP actively targeting sensitive WordPress admin and login paths, with all accessed paths flagged by WAF. Triggered critical 'IPBLOCK-BURST4' deny rule...
|
2026-01-06 21:28:33
|
1
|
SG
|
AS31898
|
['akamai.darcherif.fr']
|
['', 'login', 'wp-admin/', 'admin', 'administrator/', 'register', 'wp-login.php', 'user/login']
|
{"alert": ["3904000", "3904001", "3904004", "3904006", "3904013", "3904023", "3904052", "3904053", "3990001", "BOT-BROWSER-IMPERSONATOR"], "deny": ["IPBLOCK-BURST4-318403"]}
|
1.0
|
severity: Severity.critical
|
|
91.92.241.119
|
ip
|
Extremely high number of detected threat requests (64 over 17), numerous WAF flags on all accessed paths, and multiple security alerts including 'BOT-...
|
2026-01-06 08:37:58
|
1
|
DE
|
AS214943
|
['akamai.darcherif.fr']
|
['mail/jqBootstrapValidation.js', 'cdnjs.cloudflare.com/ajax/libs/jquery-easing/1.4.1/jquery.easing.min.js', 'stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.bundle.min.js', 'scripts.js', 'mail/contact_me.js', 'cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.0/js/all.min.js']
|
{"alert": ["3904000", "3904001", "3904005", "3904007", "3904020", "3904021", "3904023", "3904036", "3904037", "BOT-BROWSER-IMPERSONATOR"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
65.111.27.46
|
ip
|
All requests (100%) from this IP were detected as threats and flagged by WAF, including probing sensitive WordPress paths like 'xmlrpc.php', and trigg...
|
2026-01-05 20:47:19
|
1
|
DE
|
AS200373
|
['www.darcherif.fr']
|
['', 'index.php/category/industry-4-0/', 'index.php/wp-json/', 'index.php/comments/feed/', 'index.php/feed/', 'akam/13/77e5f7a6', 'akam/13/pixel_77e5f7a6', 'index.php/category/cybersecurity/', 'xmlrpc.php', 'index.php/wp-json/wp/v2/pages/25']
|
{"alert": ["3900999"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
3%7e5280136f5f66ec7b
|
tls
|
Extremely high threat request ratio (39/15), all accessed paths flagged by WAF including WordPress sensitive paths ('xmlrpc.php', 'wp-login.php'), mul...
|
2026-01-05 00:05:22
|
1
|
US
|
N/A
|
['akamai.darcherif.fr', 'www.darcherif.fr']
|
['', 'assets/mail/contact_me.js', 'assets/mail/jqBootstrapValidation.js', 'js/scripts.js', 'js/mpulse.js', 'xmlrpc.php', 'wp-login.php']
|
{"alert": ["3000136", "3904003", "3904004", "3904006", "3904025", "3904042", "3904053", "BOT-BROWSER-IMPERSONATOR"], "deny": ["IPBLOCK-PENALTY-BOX", "PLATFORM-ANOMALY"]}
|
1.0
|
severity: Severity.critical
|
|
74.7.228.51
|
ip
|
All requests (100%) from this IP were detected as threats, all accessed paths were flagged by WAF, and it triggered security alert '3991023'. Its asso...
|
2026-01-04 23:15:24
|
1
|
US
|
AS8075
|
['www.darcherif.fr']
|
['robots.txt']
|
{"alert": ["3991023"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
152.69.210.5
|
ip
|
The IP is actively targeting sensitive WordPress admin and login paths, with all requests (100%) flagged by WAF and multiple security alerts (includin...
|
2026-01-03 05:23:12
|
1
|
SG
|
AS31898
|
['akamai.darcherif.fr']
|
['', 'login', 'wp-admin/', 'admin', 'administrator/', 'register', 'wp-login.php', 'user/login']
|
{"alert": ["3904000", "3904001", "3904004", "3904006", "3904013", "3904020", "3904023", "3904052", "3904053", "3990001", "BOT-BROWSER-IMPERSONATOR"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
66.249.66.64
|
ip
|
All requests (100%) from this IP were detected as threats and flagged by WAF, triggering security alert '3991006'. Its associated ASN (AS15169) and mu...
|
2026-01-03 04:23:08
|
1
|
US
|
AS15169
|
['www.darcherif.fr']
|
['wp-includes/js/imagesloaded.min.js', 'wp-includes/js/masonry.min.js', 'wp-content/plugins/mesmerize-companion/theme-data/mesmerize/assets/js/companion.bundle.min.js', 'wp-includes/js/jquery/jquery-migrate.min.js', 'wp-includes/css/dist/block-library/style.min.css', 'wp-content/themes/highlight/assets/js/theme-child.js']
|
{"alert": ["3991006"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
104.28.203.58
|
ip
|
All requests (100%) from this IP were flagged by WAF, accessing suspicious PHP files and WordPress admin paths, and triggered a security alert, indica...
|
2026-01-03 01:12:54
|
1
|
US
|
AS13335
|
['akamai.darcherif.fr']
|
['chosen.php', 'dex.php', 'akcc.php', 'file2.php', 'wp-admin/css/index.php', 'zwso.php', 'ahax.php', 'bolt.php', 'wp-content/themes/style.php', 'wp-admin/txets.php']
|
{"alert": ["3990001"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
AS13335
|
asn
|
All requests (100%) associated with this ASN were flagged by WAF, accessing suspicious PHP files and WordPress admin paths, and triggered a security a...
|
2026-01-03 01:12:54
|
1
|
US
|
AS13335
|
['akamai.darcherif.fr']
|
['chosen.php', 'dex.php', 'akcc.php', 'file2.php', 'wp-admin/css/index.php', 'zwso.php', 'ahax.php', 'bolt.php', 'wp-content/themes/style.php', 'wp-admin/txets.php']
|
{"alert": ["3990001"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
43.135.145.117
|
ip
|
High percentage of detected threat requests (40%), WAF-flagged obfuscated paths, and triggered security alert '3900999', consistent with blocklisted A...
|
2026-01-02 22:12:51
|
1
|
US
|
AS132203
|
['www.darcherif.fr']
|
['akam/13/pixel_1e557262', 'akam/13/pixel_16f1d0d0']
|
{"alert": ["3900999"], "deny": []}
|
0.949999988079071
|
severity: Severity.critical
|
|
20.205.118.141
|
ip
|
All requests (100%) from this IP were flagged by WAF, accessed suspicious PHP files and admin paths, and triggered a critical 'IPBLOCK' deny rule. Its...
|
2026-01-02 19:32:38
|
1
|
HK
|
AS8075
|
['akamai.darcherif.fr']
|
['admin/function.php', 'css/colors/blue/index.php', 'thai.php', 'htaccess.php', 'zwso.php', 'wp-admin/maint/admin.php', 'aqw.php', 'x.php', 'blurbs15.php', 'wp-signin.php']
|
{"alert": [], "deny": ["IPBLOCK"]}
|
1.0
|
severity: Severity.critical
|
|
20.239.67.81
|
ip
|
All requests (100%) from this IP were flagged by WAF, accessed suspicious PHP files and admin paths, and triggered a critical 'IPBLOCK' deny rule. Its...
|
2026-01-02 15:02:19
|
1
|
HK
|
AS8075
|
['akamai.darcherif.fr']
|
['sx.php', 'ha.php', 'plugins/Cache/footer.php', 'admin/function.php', 'css/colors/blue/index.php', 'htaccess.php', 'zwso.php', 'lv.php', 'wp-admin/maint/admin.php', 'x.php']
|
{"alert": [], "deny": ["IPBLOCK"]}
|
1.0
|
severity: Severity.critical
|
|
205.169.39.22
|
ip
|
IP from blocklisted ASN AS3356, accessing an obfuscated path ('akam/13/2f321ee0'), consistent with other blocklisted IPs from this ASN exhibiting mali...
|
2026-01-02 10:42:10
|
1
|
US
|
AS3356
|
['', 'akamai.darcherif.fr']
|
[]
|
{"alert": [], "deny": []}
|
0.949999988079071
|
severity: Severity.critical
|
|
141.98.11.52
|
ip
|
IP is performing WordPress brute-force attempts targeting 'wp-login.php', flagged by WAF and triggered security alert '3900998'. Its associated ASN (A...
|
2026-01-02 10:12:10
|
1
|
LT
|
AS209605
|
['www.darcherif.fr']
|
['wp-login.php']
|
{"alert": ["3900998"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
104.197.69.115
|
ip
|
Triggered critical WAF deny rule 'IPBLOCK-BURST4-318403' and associated ASN AS396982 is already blocklisted for similar malicious activity, indicating...
|
2026-01-02 06:42:08
|
1
|
US
|
AS396982
|
['', 'akamai.darcherif.fr']
|
['assets/mail/contact_me.js', 'js/scripts.js', 'assets/mail/jqBootstrapValidation.js', 'assets/img/portfolio/submarine.png', 'assets/img/portfolio/safe.png']
|
{"alert": [], "deny": ["IPBLOCK-BURST4-318403"]}
|
1.0
|
severity: Severity.critical
|
|
205.169.39.126
|
ip
|
Triggered critical WAF deny rule 'IPBLOCK-BURST4-318403' and multiple alerts. Associated ASN AS3356 has multiple blocklisted IPs showing similar malic...
|
2026-01-02 06:42:08
|
1
|
US
|
AS3356
|
['', 'akamai.darcherif.fr']
|
['akam/13/pixel_6bfa9280', 'assets/img/portfolio/safe.png']
|
{"alert": ["3910001", "3910002", "3910004"], "deny": ["IPBLOCK-BURST4-318403"]}
|
1.0
|
severity: Severity.critical
|
|
AS3356
|
asn
|
Multiple IPs within this ASN exhibit malicious behavior, including triggering critical WAF deny rules like 'IPBLOCK-BURST4-318403' and accessing suspi...
|
2026-01-02 06:42:08
|
1
|
US
|
AS3356
|
['', 'akamai.darcherif.fr']
|
['assets/mail/contact_me.js', 'js/scripts.js', 'assets/mail/jqBootstrapValidation.js', 'assets/img/portfolio/submarine.png', 'assets/img/portfolio/safe.png', 'akam/13/pixel_6bfa9280']
|
{"alert": ["3910001", "3910002", "3910004"], "deny": ["IPBLOCK-BURST4-318403"]}
|
1.0
|
severity: Severity.critical
|
|
35.79.222.149
|
ip
|
IP 35.79.222.149 targeted highly sensitive configuration files (e.g., .env) with all requests flagged by WAF and triggered multiple critical deny rule...
|
2026-01-02 01:31:44
|
1
|
JP
|
AS16509
|
['www.darcherif.fr']
|
['.env.old', 'staging/config.env', 'app/.env.bak', 'service/.env', 'API/.env.dev', 'service/.env.local', 'bot/.env', 'web/.env.dist', 'cms/.env.bak', 'default/.env']
|
{"alert": ["3000120", "3000508", "3904000", "3904006", "3904013", "3904028", "3904042", "3904055"], "deny": ["BOT-BROWSER-IMPERSONATOR", "IPBLOCK-BURST4-128987", "IPBLOCK-PENALTY-BOX", "LFI-ANOMALY"]}
|
1.0
|
severity: Severity.critical
|
|
194.36.25.27
|
ip
|
High percentage of detected threat requests (76.9%) including access to a highly obfuscated path, and triggered security alert '3900999', indicating p...
|
2026-01-01 23:11:35
|
1
|
DE
|
AS43357
|
['', 'www.darcherif.fr']
|
['wp-content/themes/mesmerize/assets/fonts/fontawesome-webfont.woff2', 'wp-includes/js/imagesloaded.min.js', 'akam/13/1f6e30', 'favicon.ico', 'wp-includes/js/masonry.min.js', 'wp-content/plugins/mesmerize-companion/theme-data/mesmerize/assets/js/companion.bundle.min.js', 'wp-content/themes/mesmerize/assets/js/theme.bundle.min.js', 'wp-content/themes/highlight/assets/images/hero-1.jpg', 'wp-content/plugins/mesmerize-companion/theme-data/mesmerize/assets/css/companion.bundle.min.css', 'wp-content/themes/highlight/assets/js/theme-child.js']
|
{"alert": ["3900999"], "deny": []}
|
0.949999988079071
|
severity: Severity.critical
|
|
141.98.11.189
|
ip
|
IP is performing WordPress brute-force attempts targeting 'wp-login.php', which was flagged by WAF and triggered security alert '3900998'. Its associa...
|
2026-01-01 22:01:23
|
1
|
LT
|
AS209605
|
['www.darcherif.fr']
|
['wp-login.php']
|
{"alert": ["3900998"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
91.224.92.182
|
ip
|
IP performed a WordPress brute-force attempt targeting 'wp-login.php', which was flagged by WAF and triggered security alert '3900998'. Its associated...
|
2026-01-01 21:51:19
|
1
|
LT
|
AS209605
|
['www.darcherif.fr']
|
['wp-login.php']
|
{"alert": ["3900998"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
35.215.69.228
|
ip
|
IP belongs to blocklisted ASN AS15169, which is associated with threatening requests and burst attacks. This IP also accessed a highly obfuscated and ...
|
2026-01-01 10:30:51
|
1
|
US
|
AS15169
|
['', 'www.darcherif.fr']
|
[]
|
{"alert": [], "deny": []}
|
0.949999988079071
|
severity: Severity.critical
|
|
161.118.250.104
|
ip
|
Actively targeting sensitive WordPress admin and login paths, 100% of requests flagged by WAF with critical deny rules (IPBLOCK-BURST4, REP_1654544), ...
|
2026-01-01 08:50:41
|
1
|
SG
|
AS31898
|
['akamai.darcherif.fr']
|
['', 'login', 'admin', 'wp-admin/', 'administrator/', 'register', 'wp-login.php', 'user/login']
|
{"alert": [], "deny": ["IPBLOCK-BURST4-318403", "REP_1654544"]}
|
1.0
|
severity: Severity.critical
|
|
2607:9000:7000:35:198:44:133:150
|
ip
|
Accessed a highly obfuscated and suspicious path ('nUgzRQGQiVNp_UhOzggZItsrtwk/uzV1bNt3t53Dz2V9JY/NncmY3J3Bw/FR/cfdjtBZG8'), strongly indicating malic...
|
2025-12-31 17:29:53
|
1
|
US
|
AS11878
|
['', 'www.darcherif.fr']
|
[]
|
{"alert": [], "deny": []}
|
0.949999988079071
|
severity: Severity.critical
|
|
3%7e03c384726f922644
|
tls
|
Very high percentage of detected threat requests (~87%), all accessed paths flagged by WAF, and triggered security alert '3991017', indicating highly ...
|
2025-12-31 11:49:33
|
1
|
NL
|
N/A
|
['', 'www.darcherif.fr']
|
['wp-content/themes/highlight/style.min.css', 'wp-includes/js/jquery/jquery-migrate.min.js', 'wp-content/themes/highlight/assets/js/theme-child.js', 'wp-includes/js/imagesloaded.min.js', 'wp-content/themes/mesmerize/assets/css/theme.bundle.min.css', 'wp-content/uploads/2020/05/ConferenceIndiaCropped.png', 'wp-content/themes/mesmerize/assets/js/theme.bundle.min.js', 'wp-content/themes/highlight/assets/images/hero-2.jpg', 'wp-content/plugins/mesmerize-companion/theme-data/mesmerize/assets/css/companion.bundle.min.css', 'wp-content/uploads/2020/01/Czech-Republic-operation-Temelin-Nuclear-Power-Plant-2003-1024x669.jpg']
|
{"alert": ["3991017"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
144.217.135.240
|
ip
|
Very high percentage of detected threat requests (~88.9%), all accessed paths flagged by WAF, and its associated ASN (AS16276) is already blocklisted ...
|
2025-12-31 11:49:33
|
1
|
NL
|
AS16276
|
['', 'www.darcherif.fr']
|
['wp-content/themes/highlight/style.min.css', 'wp-includes/js/jquery/jquery-migrate.min.js', 'wp-content/themes/highlight/assets/js/theme-child.js', 'wp-includes/js/imagesloaded.min.js', 'wp-content/themes/mesmerize/assets/css/theme.bundle.min.css', 'wp-content/uploads/2020/05/ConferenceIndiaCropped.png', 'wp-content/themes/mesmerize/assets/js/theme.bundle.min.js', 'wp-content/themes/highlight/assets/images/hero-2.jpg', 'wp-content/plugins/mesmerize-companion/theme-data/mesmerize/assets/css/companion.bundle.min.css', 'wp-content/uploads/2020/01/Czech-Republic-operation-Temelin-Nuclear-Power-Plant-2003-1024x669.jpg']
|
{"alert": ["3991017"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
149.56.150.7
|
ip
|
All requests (100%) from this IP were detected as threats and flagged by WAF, triggering a security alert. Its associated ASN (AS16276) is already blo...
|
2025-12-31 09:19:19
|
1
|
CA
|
AS16276
|
['www.darcherif.fr']
|
['ads.txt', 'index.php/2023/04/27/ddos-what-is-it-how-does-it-work-and-how-to-be-protected/', '.well-known/security.txt', 'index.php/author/admin3157/', 'security.txt', 'llms.txt', 'index.php/category/cybersecurity/', 'index.php/2020/01/24/industry-4-0-threat-landscape/', 'sitemap.xml', 'index.php/2020/01/24/industry-4-0-corrupted-smart-factories-examples/']
|
{"alert": ["3991017"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
3%7e265cf3d41dd8d729
|
tls
|
All requests (100%) associated with this TLS fingerprint were detected as threats and flagged by WAF, triggering a security alert, indicating highly m...
|
2025-12-31 09:19:19
|
1
|
CA
|
N/A
|
['www.darcherif.fr']
|
['ads.txt', 'index.php/2023/04/27/ddos-what-is-it-how-does-it-work-and-how-to-be-protected/', '.well-known/security.txt', 'index.php/author/admin3157/', 'security.txt', 'llms.txt', 'index.php/category/cybersecurity/', 'index.php/2020/01/24/industry-4-0-threat-landscape/', 'sitemap.xml', 'index.php/2020/01/24/industry-4-0-corrupted-smart-factories-examples/']
|
{"alert": ["3991017"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
45.142.154.66
|
ip
|
Extremely high number of detected threat events (29) across all 5 requests, all accessed paths flagged by WAF, and multiple critical security alerts i...
|
2025-12-30 16:18:31
|
1
|
US
|
AS9465
|
['akamai.darcherif.fr']
|
['', 'assets/mail/jqBootstrapValidation.js', 'js/scripts.js', 'favicon.ico', 'js/mpulse.js']
|
{"alert": ["3904003", "3904005", "3904006", "3904007", "3904020", "3904036", "BOT-BROWSER-IMPERSONATOR"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
152.32.192.241
|
ip
|
Extremely high number of detected threat events (50) across all 9 requests, all accessed paths flagged by WAF, and multiple critical security alerts i...
|
2025-12-30 16:18:31
|
1
|
HK
|
AS135377
|
['akamai.darcherif.fr']
|
['', 'assets/mail/jqBootstrapValidation.js', 'js/scripts.js', 'favicon.ico', 'js/mpulse.js']
|
{"alert": ["3904003", "3904005", "3904006", "3904007", "3904020", "3904036", "BOT-BROWSER-IMPERSONATOR"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
217.113.194.106
|
ip
|
All requests (100%) from this IP were detected as threats and flagged by WAF, triggering security alert '3991020'. This IP belongs to ASN AS210743, wh...
|
2025-12-30 12:58:19
|
1
|
FR
|
AS210743
|
['www.darcherif.fr']
|
['index.php/tag/iot/feed/', 'index.php/tag/cps/feed/', 'index.php/comments/feed/', 'index.php/category/non-classe/feed/', 'index.php/tag/cyber-security/']
|
{"alert": ["3991020"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
74.7.241.140
|
ip
|
All requests (100%) from this IP were detected as threats and flagged by WAF, triggering security alert '3991023'. Its associated ASN (AS8075) is alre...
|
2025-12-28 22:16:07
|
1
|
US
|
AS8075
|
['www.darcherif.fr']
|
['robots.txt']
|
{"alert": ["3991023"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
74.7.175.135
|
ip
|
All requests from this IP were detected as threats, all accessed paths were flagged by WAF, and a critical 'IPBLOCK' deny rule was triggered. Its asso...
|
2025-12-28 21:35:59
|
1
|
US
|
AS8075
|
['akamai.darcherif.fr']
|
['robots.txt']
|
{"alert": [], "deny": ["IPBLOCK"]}
|
1.0
|
severity: Severity.critical
|
|
3%7eCDC2EF7588B03762
|
tls
|
High percentage (~61%) of detected threat requests and all accessed paths were flagged by WAF, triggering security alert '3900999', indicating persist...
|
2025-12-28 10:25:23
|
1
|
US
|
N/A
|
['', 'www.darcherif.fr']
|
['wp-content/plugins/mesmerize-companion/theme-data/mesmerize/assets/js/companion.bundle.min.js', 'wp-content/uploads/2020/01/Czech-Republic-operation-Temelin-Nuclear-Power-Plant-2003-1536x1003.jpg', 'wp-includes/js/jquery/jquery-migrate.min.js', 'wp-content/themes/highlight/assets/js/theme-child.js', 'wp-includes/js/imagesloaded.min.js', 'akam/13/276c59a4', 'wp-content/uploads/2020/05/ConferenceIndiaCropped.png', 'wp-content/themes/mesmerize/assets/js/theme.bundle.min.js', 'wp-content/themes/highlight/assets/images/hero-2.jpg', 'wp-content/plugins/mesmerize-companion/theme-data/mesmerize/assets/css/companion.bundle.min.css']
|
{"alert": ["3900999"], "deny": []}
|
0.949999988079071
|
severity: Severity.critical
|
|
154.242.193.88
|
ip
|
Extremely high percentage (88%) of detected threat requests and all accessed paths were flagged by WAF, triggering security alert '3900999', indicatin...
|
2025-12-28 10:25:23
|
1
|
DZ
|
AS36947
|
['', 'www.darcherif.fr']
|
['wp-includes/js/jquery/jquery-migrate.min.js', 'wp-content/uploads/2020/01/Czech-Republic-operation-Temelin-Nuclear-Power-Plant-2003-1536x1003.jpg', 'wp-content/themes/highlight/assets/js/theme-child.js', 'wp-includes/js/imagesloaded.min.js', 'wp-content/themes/mesmerize/assets/css/theme.bundle.min.css', 'akam/13/276c59a4', 'wp-content/uploads/2020/05/ConferenceIndiaCropped.png', 'wp-content/themes/mesmerize/assets/js/theme.bundle.min.js', 'wp-content/themes/highlight/assets/images/hero-2.jpg', 'wp-content/plugins/mesmerize-companion/theme-data/mesmerize/assets/css/companion.bundle.min.css']
|
{"alert": ["3900999"], "deny": []}
|
0.949999988079071
|
severity: Severity.critical
|
|
20.24.203.163
|
ip
|
All requests (100%) from this IP were flagged by WAF, accessed suspicious PHP files, and triggered a critical 'IPBLOCK' deny rule. Its associated ASN ...
|
2025-12-28 08:55:23
|
1
|
HK
|
AS8075
|
['akamai.darcherif.fr']
|
['pNRzcP6wtYy.php', 'pu8.php', 'click.php', 'cc.php', 'hehe.php', 'sx.php', 'vanda.php', 'asd.php', 'x.php', 'doelr.php']
|
{"alert": [], "deny": ["IPBLOCK"]}
|
1.0
|
severity: Severity.critical
|
|
23.180.120.244
|
ip
|
Aggressively targeted highly sensitive configuration files (.env, .env.example) and PHP information disclosure paths (phpinfo, info). All requests tri...
|
2025-12-28 06:15:11
|
1
|
FR
|
AS53514
|
['www.darcherif.fr']
|
['.env.development', 'app/.env', '.env.production', 'application/.env', 'phpinfo', '_profiler/phpinfo', 'info', '.env.example', 'sendgrid.env', '.env']
|
{"alert": ["3000508"], "deny": ["LFI-ANOMALY", "REP_1654536"]}
|
1.0
|
severity: Severity.critical
|
|
52.169.163.135
|
ip
|
All requests (100%) from this IP were flagged by WAF, accessed suspicious PHP files, and triggered a critical 'IPBLOCK' deny rule. Its associated ASN ...
|
2025-12-28 02:04:53
|
1
|
IE
|
AS8075
|
['akamai.darcherif.fr']
|
['wolv.php', 'Okxob.php', 'just2.php', '1aa.php', 'cwsd.php', 'akp.php', 'zwso.php', 'ahax.php', 'ea3f.php', 'doc.php']
|
{"alert": [], "deny": ["IPBLOCK"]}
|
1.0
|
severity: Severity.critical
|
|
74.7.242.31
|
ip
|
IP from blocklisted ASN AS8075 with 100% threat requests, all paths flagged by WAF, and triggered security alert '3991023', indicating persistent mali...
|
2025-12-28 00:04:41
|
1
|
US
|
AS8075
|
['www.darcherif.fr']
|
['index.php/2020/01/24/', '2020/', '2020/01/24/', '2020/01/', 'index.php/2020/', 'index.php/2020/01/']
|
{"alert": ["3991023"], "deny": []}
|
1.0
|
severity: Severity.critical
|
|
74.7.244.24
|
ip
|
IP from blocklisted ASN AS8075 with 100% threat requests, all paths flagged by WAF, and triggered security alert '3991023', indicating persistent mali...
|
2025-12-28 00:04:41
|
1
|
US
|
AS8075
|
['www.darcherif.fr']
|
['robots.txt']
|
{"alert": ["3991023"], "deny": []}
|
1.0
|
severity: Severity.critical
|