Check an IP Address, Domain Name, Subnet, or ASN

74.0.42.13 was found in our database!

$ whois 74.0.42.13

country·🇳🇱 The Netherlands

city·Eindhoven

isp·Layer7 Technologies Inc

asn·AS40662

network·Standard

$ sikker risk 74.0.42.13scoring →

confidence

97%Very High

first_seen·Jan 26, 2026

last_seen·1h ago

first_reported·Mar 4, 2026

last_reported·Mar 16, 2026

sessions·1,478

events·2,214

reports·2

$ sikker protocols 74.0.42.13

HTTP

985 / 1,475 / 2r

SSH

493 / 739

$ sikker summary 74.0.42.13

74.0.42.13 has a threat confidence score of 97%. This IP address from The Netherlands (AS40662, Layer7 Technologies Inc) has been observed in 1,478 honeypot sessions and reported 2 times targeting HTTP, SSH protocols. Detected attack patterns include http dotenv file exposure probe. First observed on January 26, 2026, most recently active April 28, 2026.

$ sikker behaviors 74.0.42.13catalog →

highHttp Dotenv File Exposure Probe5x

Identifies HTTP GET requests targeting the /.env file, indicating attempts to access exposed environment configuration files commonly containing application secrets such as database credentials, API keys, and service tokens.

infoHttp Root Path Request14x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttp Http Method Get13x

HTTP request using GET method.

$ sikker primitives 74.0.42.13

ssh_password_authenthication.124 http_method_get19 http_phpunit_eval_stdin_php_path_access7 http_path_dotenv5

$ sikker reports 74.0.42.13submit →

Showing 2 of 2 reports from 1 contributor

Reporter	Date	Category	Protocol	Comment
User	Mar 16, 2026, 01:29	Brute Force	HTTP	SikkerGuard: 8 blocked packets
User	Mar 4, 2026, 23:11	Brute Force	HTTP	SikkerGuard: 8 blocked packets

$ sikker related 74.0.42.13

🇳🇱·More threats fromThe Netherlands→AS·More threats fromLayer7 Technologies Inc→HTTP·More threats targetingHTTP→SSH·More threats targetingSSH→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
31.57.201.204	85%	20
31.57.201.154	95%	51
74.0.42.180	57%	3
74.0.48.166	61%	75
74.0.42.221	66%	96

IP Address	Confidence	Events
204.76.203.206	92%	34,637
45.148.10.192	100%	44,827
45.8.17.210	75%	149
93.174.93.12	97%	14,127
212.30.37.139	75%	160