Investigation Workspace

Entity: 36.81.233.175 (Ip)

Entity Details
Type
Ip
ASN
AS7713 - PT Telekomunikasi Indonesia
Threat Intelligence
Repeated attempts to access sensitive system files (.aws/credentials, .env/.env.bak, phpinfo) and exploitation attempts via Local File Inclusion (LFI) anomaly. All requests were flagged by WAF and multiple critical security rules were triggered, indicating malicious reconnaissance and attack.
Linked Entities
TLS Fingerprints (1)
Hostnames Targeted
Hostname Request Count
akamai.darcherif.fr 18
Paths Targeted (with Request Counts)
Path Request Count
/ 4
test.php 2
index.php 2
phpinfo.php 2
.aws/credentials 2
_profiler/phpinfo 2
.env/.env.bak 1
js/scripts.js 1
js/mpulse.js 1
assets/mail/contact_me.js 1
🚫

Block

Repeated attempts to access sensitive system files (.aws/credentials, .env/.env.bak, phpinfo) and exploitation attempts via Local File Inclusion (LFI) anomaly. All requests were flagged by WAF and multiple critical security rules were triggered, indicating malicious reconnaissance and attack.

2026-02-18 01:28:49