Check an IP Address, Domain Name, Subnet, or ASN

94.250.255.10 was found in our database!

$ whois 94.250.255.10

country·🇷🇺 Russia

isp·JSC IOT

asn·AS29182

network·Standard

$ sikker risk 94.250.255.10scoring →

confidence

89%Very High

first_seen·Feb 15, 2026

last_seen·19d ago

sessions·696

events·696

$ sikker protocols 94.250.255.10

HTTP

478 / 478

HTTPS

218 / 218

$ sikker summary 94.250.255.10

94.250.255.10 has a threat confidence score of 89%. This IP address from Russia (AS29182, JSC IOT) has been observed in 696 honeypot sessions targeting HTTP, HTTPS protocols. Detected attack patterns include https dotenv environment file exposure probe. First observed on February 15, 2026, most recently active March 1, 2026.

$ sikker behaviors 94.250.255.10catalog →

highHttps Dotenv Environment File Exposure Probe1x

Identifies an HTTPS request targeting a .env file in the web root or application directory. Access attempts to /.env indicate automated scanning for exposed environment configuration files that may contain application secrets, database credentials, API keys, or cloud tokens. This probe is commonly associated with opportunistic internet-wide scanning for misconfigured web deployments.

infoHttp Bad Request Route Probe9x

Identifies HTTP GET requests directly targeting the /bad-request path, indicating automated or manual probing of application error-handling routes rather than legitimate navigation flow.

infoHttp Root Path Request1x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

$ sikker primitives 94.250.255.10

http_method_get15 http_path_bad_request9 https_path_root6 https_path_bad_request3 https_path_dotenv1

$ sikker related 94.250.255.10

🇷🇺·More threats fromRussia→AS·More threats fromJSC IOT→HTTP·More threats targetingHTTP→HTTP·More threats targetingHTTPS→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
91.107.127.19	81%	4
188.120.239.7	30%	2
217.28.220.146	83%	8
62.109.26.13	37%	1
92.63.106.184	51%	4

IP Address	Confidence	Events
92.101.135.161	58%	1
81.29.142.100	100%	27,347
178.214.247.115	32%	128
193.148.54.6	15%	13
212.220.122.228	25%	73