Check an IP Address, Domain Name, Subnet, or ASN

74.0.48.190 was found in our database!

$ whois 74.0.48.190

country·🇳🇱 The Netherlands

city·Eindhoven

isp·Layer7 Technologies Inc

asn·AS40662

network·Standard

$ sikker risk 74.0.48.190scoring →

confidence

98%Very High

first_seen·Feb 21, 2026

last_seen·Feb 27, 2026

sessions·81

events·81

$ sikker protocols 74.0.48.190

HTTPS

81 / 81

$ sikker summary 74.0.48.190

74.0.48.190 has a threat confidence score of 98%. This IP address from The Netherlands (AS40662, Layer7 Technologies Inc) has been observed in 81 honeypot sessions targeting HTTPS protocols. Detected attack patterns include https dotenv environment file exposure probe. First observed on February 21, 2026, most recently active February 27, 2026.

$ sikker behaviors 74.0.48.190catalog →

highHttps Dotenv Environment File Exposure Probe66x

Identifies an HTTPS request targeting a .env file in the web root or application directory. Access attempts to /.env indicate automated scanning for exposed environment configuration files that may contain application secrets, database credentials, API keys, or cloud tokens. This probe is commonly associated with opportunistic internet-wide scanning for misconfigured web deployments.

$ sikker primitives 74.0.48.190

https_path_dotenv67

$ sikker related 74.0.48.190

🇳🇱·More threats fromThe Netherlands→AS·More threats fromLayer7 Technologies Inc→HTTP·More threats targetingHTTPS→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
74.0.42.13	97%	2,214
31.57.201.204	85%	20
31.57.201.154	95%	51
74.0.42.180	57%	3
74.0.48.166	61%	75

IP Address	Confidence	Events
172.71.102.7	8%	6
104.23.168.86	12%	5
104.23.170.96	12%	5
45.148.10.192	100%	44,931
172.70.47.138	12%	5