Looking up IP
Check an IP Address, Domain Name, Subnet, or ASN
64.89.163.50 has a threat confidence score of 81%. This IP address from United Kingdom (AS401626, Netiface America, Inc.) has been observed in 11 honeypot sessions targeting HTTPS protocols. Detected attack patterns include https dotenv environment file exposure probe. First observed on March 23, 2026, most recently active March 27, 2026.
Identifies an HTTPS request targeting a .env file in the web root or application directory. Access attempts to /.env indicate automated scanning for exposed environment configuration files that may contain application secrets, database credentials, API keys, or cloud tokens. This probe is commonly associated with opportunistic internet-wide scanning for misconfigured web deployments.