ClearSOC Dashboard - Investigation Workspace

Entity Details

Type: Ip
ASN: AS210558 - 1337 Services GmbH
Threat Intelligence: IP accessed highly suspicious web shell paths ending in '.php.suspected', strongly indicating web shell upload or exploitation attempts. This is critical malicious probing.

Linked Entities

TLS Fingerprints (1)

3%7e2faa3a9db1c111de Investigate

Hostnames Targeted

Hostname	Request Count
www.darcherif.fr	5

Paths Targeted (with Request Counts)

Path	Request Count
/	1
plugins/content/apismtp/apismtp.php.suspected	1
wp-content/plugins/apikey/apikey.php	1
wp-content/plugins/apikey/apikey.php.suspected	1
plugins/content/apismtp/apismtp.php	1

🚫

Block

IP accessed highly suspicious web shell paths ending in '.php.suspected', strongly indicating web shell upload or exploitation attempts. This is critical malicious probing.

2026-02-10 23:58:52

Investigation Workspace

Entity: 2.58.56.55 (Ip)

Entity Details

Linked Entities

Hostnames Targeted

Paths Targeted (with Request Counts)

Block