User: EarthLike

Automated scanner probing for sensitive configuration and credential files. 60 HTTP 404 requests in approximately 1 minute. Targeted paths include environment files, WordPress config variants, PHP info pages, cloud credentials, and application secrets. Sample paths: /.aws/credentials, /.env.backup, /.env.old, /wp-config.php.old, /wp-config.php.txt, /wp-config.php~, /secrets.json, /config.json, /application.yml, /application.properties, /appsettings.json, /docker/.env, /laravel/.env, /storage/logs/laravel.log, /wp-content/debug.log, /actuator/env. Consistent with an automated vulnerability scanner or credential harvester targeting common misconfigurations.

41 distinct 404 responses observed within ~1 minute from this IP, indicates automated probing of non-existent endpoints and likely reconnaissance. Requests triggered repeated 404s across many paths.