Check an IP Address, Domain Name, Subnet, or ASN

135.237.127.71 was found in our database!

$ whois 135.237.127.71

country·🇺🇸 United States

city·Washington

isp·Microsoft Corporation

asn·AS8075

network·Standard

$ sikker risk 135.237.127.71scoring →

confidence

78%High

first_seen·Jan 22, 2026

last_seen·40m ago

first_reported·Mar 13, 2026

last_reported·10d ago

sessions·124

events·170

reports·1

$ sikker protocols 135.237.127.71

HTTPS

44 / 57

HTTP

8 / 17

TELNET

12 / 16

SIP

6 / 14

IMAP

10 / 12

SMTP

8 / 12

ELASTICSEARCH

10 / 10

SSH

4 / 6

DOCKER

2 / 6

POSTGRES

5 / 5 / 1r

SMB

4 / 4

REDIS

4 / 4

MONGODB

4 / 4

FTP

2 / 2

MSSQL

1 / 1

$ sikker summary 135.237.127.71

135.237.127.71 has a threat confidence score of 78%. This IP address from United States (AS8075, Microsoft Corporation) has been observed in 124 honeypot sessions and reported 1 times targeting HTTPS, HTTP, TELNET, SIP, IMAP and 10 other protocols. First observed on January 22, 2026, most recently active March 23, 2026.

$ sikker behaviors 135.237.127.71catalog →

infoHttps Root Path Request4x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

infoHttp Root Path Request3x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttp Bad Request Route Probe1x

Identifies HTTP GET requests directly targeting the /bad-request path, indicating automated or manual probing of application error-handling routes rather than legitimate navigation flow.

$ sikker primitives 135.237.127.71

elastic_http_get_request13 elastic_http_bad_request_path_probe8 http_method_get4 https_path_root4 elastic_root_path_probe2 redis_mglndd_client_identifier_tag2 docker_get_method1 http_path_bad_request1 sip_call_id_token_at_ip1

$ sikker reports 135.237.127.71submit →

Showing 1 of 1 report from 1 contributor

Reporter	Date	Category	Protocol	Comment
User	Mar 13, 2026, 12:01	Brute Force	POSTGRES	SikkerGuard: 2 blocked packets

$ sikker related 135.237.127.71

Report IP WHOIS Lookup →

IP Address	Confidence	Events
13.94.117.127	77%	221
20.163.33.220	82%	191
20.221.60.108	63%	92
20.102.112.104	82%	2,452
13.86.113.214	69%	94

IP Address	Confidence	Events
162.254.3.130	86%	17,995
185.218.138.19	97%	6,618
5.253.86.23	97%	5,557
92.118.39.95	100%	82,457
45.131.194.105	85%	4,375