Check an IP Address, Domain Name, Subnet, or ASN

139.144.31.213 was found in our database!

$ whois 139.144.31.213

country·🇺🇸 United States

city·Atlanta

isp·Akamai Connected Cloud

asn·AS63949

network·Standard

$ sikker risk 139.144.31.213scoring →

confidence

61%High

first_seen·Feb 27, 2026

last_seen·1h ago

sessions·24

events·24

$ sikker protocols 139.144.31.213

HTTPS

12 / 12

ELASTICSEARCH

6 / 6

HTTP

3 / 3

RDP

2 / 2

REDIS

1 / 1

$ sikker summary 139.144.31.213

139.144.31.213 has a threat confidence score of 61%. This IP address from United States (AS63949, Akamai Connected Cloud) has been observed in 24 honeypot sessions targeting HTTPS, ELASTICSEARCH, HTTP, RDP, REDIS protocols. First observed on February 27, 2026, most recently active March 26, 2026.

$ sikker behaviors 139.144.31.213catalog →

infoHttp Root Path Request1x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

infoRedis Info Command Invocation1x

Identifies execution of the Redis INFO command (case-insensitive), which retrieves server configuration, version, memory usage, and runtime statistics. This behavior reflects service interrogation and environment fingerprinting activity. While INFO can be used legitimately by administrators, it is also commonly observed during automated scanning and pre-exploitation reconnaissance of exposed Redis instances.

infoHttps Direct Bad Request Endpoint Access1x

Identifies direct HTTPS requests to the /bad-request path, indicating manual or automated probing of error-handling routes rather than normal application flow.

$ sikker primitives 139.144.31.213

elastic_http_get_request19 elastic_http_bad_request_path_probe12 elastic_root_path_probe7 http_method_get2 https_path_root2 redis_info_uppercase1 https_path_bad_request1

$ sikker related 139.144.31.213

🇺🇸·More threats fromUnited States→AS·More threats fromAkamai Connected Cloud→HTTP·More threats targetingHTTPS→ELAS·More threats targetingELASTICSEARCH→HTTP·More threats targetingHTTP→RDP·More threats targetingRDP→REDI·More threats targetingREDIS→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
45.79.128.205	92%	1,775
172.104.11.51	94%	2,060
172.236.228.202	92%	1,836
45.79.181.251	93%	1,830
172.235.40.131	96%	1,965

IP Address	Confidence	Events
92.118.39.63	100%	57,620
45.61.184.223	99%	13,571
157.254.223.75	95%	953
194.187.179.179	16%	5
194.187.179.51	27%	1