Check an IP Address, Domain Name, Subnet, or ASN

45.83.220.209 was found in our database!

$ whois 45.83.220.209

country·🇸🇪 Sweden

city·Malmo

isp·31173 Services AB

asn·AS39351

network·Standard

$ sikker risk 45.83.220.209scoring →

confidence

78%High

first_seen·Feb 27, 2026

last_seen·27d ago

sessions·35

events·35

$ sikker protocols 45.83.220.209

HTTP

20 / 20

RTSP

7 / 7

HTTPS

4 / 4

SSH

2 / 2

SMTP

2 / 2

$ sikker summary 45.83.220.209

45.83.220.209 has a threat confidence score of 78%. This IP address from Sweden (AS39351, 31173 Services AB) has been observed in 35 honeypot sessions targeting HTTP, RTSP, HTTPS, SSH, SMTP protocols. Detected attack patterns include https dotenv environment file exposure probe. First observed on February 27, 2026, most recently active March 23, 2026.

$ sikker behaviors 45.83.220.209catalog →

highHttps Dotenv Environment File Exposure Probe1x

Identifies an HTTPS request targeting a .env file in the web root or application directory. Access attempts to /.env indicate automated scanning for exposed environment configuration files that may contain application secrets, database credentials, API keys, or cloud tokens. This probe is commonly associated with opportunistic internet-wide scanning for misconfigured web deployments.

lowRtsp Options Probe1x

Client sends RTSP OPTIONS requests to check supported methods and confirm that an RTSP service is exposed, then disconnects without attempting authentication or stream setup. This pattern is typically associated with automated reconnaissance or internet-wide scanning rather than active stream access.

infoHttps Root Path Request3x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

infoHttp Root Path Request2x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

$ sikker primitives 45.83.220.209

rtsp_options3 rtsp_describe3 https_path_root3 http_method_get2 http_path_dotenv1 https_path_dotenv1

$ sikker related 45.83.220.209

🇸🇪·More threats fromSweden→AS·More threats from31173 Services AB→HTTP·More threats targetingHTTP→RTSP·More threats targetingRTSP→HTTP·More threats targetingHTTPS→SSH·More threats targetingSSH→SMTP·More threats targetingSMTP→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
193.32.127.196	72%	186
185.65.133.139	83%	3
185.195.233.145	67%	3
193.32.249.163	72%	159
141.98.253.14	62%	4

IP Address	Confidence	Events
185.246.128.133	78%	13,162
81.227.223.23	31%	57
185.246.130.20	86%	1,947
78.67.161.64	49%	467
217.211.208.125	33%	67