Check an IP Address, Domain Name, Subnet, or ASN

45.138.16.226 was found in our database!

$ whois 45.138.16.226

country·🇵🇱 Poland

city·Warsaw

isp·1337 Services GmbH

asn·AS210558

network·Standard

$ sikker risk 45.138.16.226scoring →

confidence

87%Very High

first_seen·Mar 9, 2026

last_seen·1h ago

sessions·28

events·31

$ sikker protocols 45.138.16.226

HTTP

15 / 17

SMTP

11 / 12

HTTPS

2 / 2

$ sikker summary 45.138.16.226

45.138.16.226 has a threat confidence score of 87%. This IP address from Poland (AS210558, 1337 Services GmbH) has been observed in 28 honeypot sessions targeting HTTP, SMTP, HTTPS protocols. Detected attack patterns include http dotenv file exposure probe. First observed on March 9, 2026, most recently active March 22, 2026.

$ sikker behaviors 45.138.16.226catalog →

highHttp Dotenv File Exposure Probe7x

Identifies HTTP GET requests targeting the /.env file, indicating attempts to access exposed environment configuration files commonly containing application secrets such as database credentials, API keys, and service tokens.

infoHttp Root Path Request3x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

$ sikker primitives 45.138.16.226

http_method_get320 http_path_dotenv7

$ sikker related 45.138.16.226

🇵🇱·More threats fromPoland→AS·More threats from1337 Services GmbH→HTTP·More threats targetingHTTP→SMTP·More threats targetingSMTP→HTTP·More threats targetingHTTPS→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
45.92.1.236	100%	515
193.26.115.13	100%	181
193.26.115.213	68%	557
192.159.99.105	63%	3
45.138.16.48	55%	6

IP Address	Confidence	Events
91.218.202.248	81%	2,335
149.86.227.60	95%	4,803
149.50.107.12	97%	5,264
195.3.221.8	78%	6,552
31.41.84.98	47%	411