Check an IP Address, Domain Name, Subnet, or ASN

45.119.211.254 was found in our database!

$ whois 45.119.211.254

country·🇺🇸 United States

city·Chicago

isp·DataWagon LLC

asn·AS27176

network·Standard

$ sikker risk 45.119.211.254scoring →

confidence

85%Very High

first_seen·Apr 5, 2026

last_seen·13d ago

sessions·45

events·45

$ sikker protocols 45.119.211.254

HTTPS

45 / 45

$ sikker summary 45.119.211.254

45.119.211.254 has a threat confidence score of 85%. This IP address from United States (AS27176, DataWagon LLC) has been observed in 45 honeypot sessions targeting HTTPS protocols. Detected attack patterns include https dotenv environment file exposure probe. First observed on April 5, 2026, most recently active April 6, 2026.

$ sikker behaviors 45.119.211.254catalog →

highHttps Dotenv Environment File Exposure Probe2x

Identifies an HTTPS request targeting a .env file in the web root or application directory. Access attempts to /.env indicate automated scanning for exposed environment configuration files that may contain application secrets, database credentials, API keys, or cloud tokens. This probe is commonly associated with opportunistic internet-wide scanning for misconfigured web deployments.

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

$ sikker primitives 45.119.211.254

https_path_dotenv2 https_path_root1 https_path_dotenv_local1

$ sikker related 45.119.211.254

🇺🇸·More threats fromUnited States→AS·More threats fromDataWagon LLC→HTTP·More threats targetingHTTPS→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
155.94.139.220	100%	169
104.192.3.74	28%	1
23.95.217.65	40%	24
172.81.130.68	80%	35
104.192.1.66	99%	216

IP Address	Confidence	Events
43.162.109.139	96%	5,723
146.88.240.72	46%	647
170.205.31.254	99%	11,987
173.239.213.13	82%	2,234
209.222.101.54	99%	66,773