Investigation Workspace

Entity: 195.178.110.132 (Ip)

Entity Details
Type
Ip
ASN
AS48090 - TECHOFF SRV LIMITED
Threat Intelligence
Actively probing for sensitive configuration files, detected as a bot impersonator, triggered critical LFI and IPBLOCK burst WAF deny rules, and its ASN (AS48090) is already blocklisted for identical malicious activity from other IPs.
Linked Entities
TLS Fingerprints (2)
Hostnames Targeted
Hostname Request Count
akamai.darcherif.fr 204
Paths Targeted (with Request Counts)
Path Request Count
_sec/cp_challenge/challenge 31
/ 11
.git/config 8
.env 6
js/scripts.js 5
js/mpulse.js 5
.env.bak 5
admin/.env 5
%22assets/mail/contact_me.js%22 5
wp-config.php 5
config.js 5
%22js/scripts.js%22 5
%22js/mpulse.js%22 5
assets/mail/contact_me.js 5
assets/mail/jqBootstrapValidation.js 5
aws.config.js 5
.env.save 5
backend/.env 5
aws-config.js 5
%22assets/mail/jqBootstrapValidation.js%22 5
wp-config.php.old 3
.git/HEAD 3
config.php 3
.env.backup 3
config.php.bak 3
phpinfo.php 2
.aws/credentials 2
debugbar/ 2
.aws/config 2
aws-credentials 2
.s3cfg 2
info.php 2
debug/ 2
aws.json 2
test.php 2
_debugbar/ 2
application/config/config.php 1
application/config/database.php 1
assets/1e51c61b47f4935a64a6053620f9ffbce001188a776 1
assets/f877bae447f4935a64a6053620f9ffbce001188a776 1
configuration.php 1
phpmyadmin/config.inc.php 1
wp-config.php.bak 1
wp-config.php.save 1
assets/1a8ed7e347f4935a64a6053620f9ffbce001188a776 1
assets/1207277647f4935a64a6053620f9ffbce001188a776 1
assets/42253d6047f4935a64a6053620f9ffbce001188a776 1
config/database.php 1
admin/config.php 1
config.inc.php 1
🚫

Block

Actively probing for sensitive configuration files, detected as a bot impersonator, triggered critical LFI and IPBLOCK burst WAF deny rules, and its ASN (AS48090) is already blocklisted for identical malicious activity from other IPs.

2026-01-08 15:40:46