Check an IP Address, Domain Name, Subnet, or ASN

104.243.32.235 was found in our database!

$ whois 104.243.32.235

country·🇺🇸 United States

city·Piscataway

isp·ReliableSite.Net LLC

asn·AS23470

network·Standard

$ sikker risk 104.243.32.235scoring →

confidence

94%Very High

first_seen·Mar 28, 2026

last_seen·14m ago

sessions·210

events·210

$ sikker protocols 104.243.32.235

HTTP

117 / 117

HTTPS

83 / 83

ELASTICSEARCH

10 / 10

$ sikker summary 104.243.32.235

104.243.32.235 has a threat confidence score of 94%. This IP address from United States (AS23470, ReliableSite.Net LLC) has been observed in 210 honeypot sessions targeting HTTP, HTTPS, ELASTICSEARCH protocols. Detected attack patterns include http dotenv file exposure probe. First observed on March 28, 2026, most recently active April 26, 2026.

$ sikker behaviors 104.243.32.235catalog →

highHttp Dotenv File Exposure Probe1x

Identifies HTTP GET requests targeting the /.env file, indicating attempts to access exposed environment configuration files commonly containing application secrets such as database credentials, API keys, and service tokens.

infoHttp Root Path Request37x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttp Http Method Get31x

HTTP request using GET method.

infoHttp Bad Request Route Probe23x

Identifies HTTP GET requests directly targeting the /bad-request path, indicating automated or manual probing of application error-handling routes rather than legitimate navigation flow.

infoHttps Path Robots Txt1x

HTTPS request to /robots.txt.

$ sikker primitives 104.243.32.235

elastic_http_get_request1239 http_method_get689 elastic_http_bad_request_path_probe97 http_path_bad_request29 elastic_root_path_probe17 https_path_root8 https_path_sse_root_access4 https_path_openapi_json3 elastic_cat_indices_enumeration3 https_path_graphql2 https_path_dotenv_local2 https_path_swagger_json2 https_path_mcp_root_access2 https_path_dotenv_production2 http_path_dotenv1 https_path_dotenv1 https_path_robots_txt1 http_path_dotenv_local1 http_path_api_system_probe1 http_path_dotenv_production1

$ sikker related 104.243.32.235

🇺🇸·More threats fromUnited States→AS·More threats fromReliableSite.Net LLC→HTTP·More threats targetingHTTP→HTTP·More threats targetingHTTPS→ELAS·More threats targetingELASTICSEARCH→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
206.221.176.60	97%	366
104.243.35.94	97%	529
104.243.43.7	91%	253
185.150.191.165	99%	266
104.243.43.19	64%	25

IP Address	Confidence	Events
204.10.175.10	77%	23
73.1.253.194	95%	2,768
104.23.253.53	19%	32
65.49.1.132	100%	1,921
147.135.15.2	98%	3,903