Check an IP Address, Domain Name, Subnet, or ASN

73.85.38.37 was found in our database!

$ whois 73.85.38.37

country·🇺🇸 United States

city·Lake Worth

isp·Comcast Cable Communications, LLC

asn·AS7922

network·Standard

$ sikker risk 73.85.38.37scoring →

confidence

64%High

first_seen·Apr 16, 2026

last_seen·6h ago

sessions·8

events·8

$ sikker protocols 73.85.38.37

HTTP

8 / 8

$ sikker summary 73.85.38.37

73.85.38.37 has a threat confidence score of 64%. This IP address from United States (AS7922, Comcast Cable Communications, LLC) has been observed in 8 honeypot sessions targeting HTTP protocols. Detected attack patterns include http dotenv file exposure probe. First observed on April 16, 2026, most recently active April 30, 2026.

$ sikker behaviors 73.85.38.37catalog →

highHttp Dotenv File Exposure Probe1x

Identifies HTTP GET requests targeting the /.env file, indicating attempts to access exposed environment configuration files commonly containing application secrets such as database credentials, API keys, and service tokens.

infoHttp Http Method Get2x

HTTP request using GET method.

infoHttp Root Path Request2x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

$ sikker primitives 73.85.38.37

http_method_get4 http_path_dotenv2

$ sikker related 73.85.38.37

🇺🇸·More threats fromUnited States→AS·More threats fromComcast Cable Communications, LLC→HTTP·More threats targetingHTTP→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
174.166.110.133	92%	13
66.229.116.200	98%	47
76.124.3.157	40%	166
50.187.155.130	68%	566
73.170.63.58	99%	247

IP Address	Confidence	Events
130.51.23.107	98%	3,752
18.116.101.220	100%	55,862
45.148.9.8	95%	484
184.105.139.67	100%	3,008
172.235.40.131	98%	2,383