Check an IP Address, Domain Name, Subnet, or ASN

44.220.188.225 was found in our database!

$ whois 44.220.188.225

country·🇺🇸 United States

city·Ashburn

isp·Amazon.com, Inc.

asn·AS14618

network·Standard

$ sikker risk 44.220.188.225scoring →

confidence

60%High

first_seen·Feb 2, 2026

last_seen·1h ago

sessions·33

events·37

$ sikker protocols 44.220.188.225

HTTPS

21 / 21

POSTGRES

5 / 5

HTTP

2 / 4

MONGODB

1 / 3

SSH

1 / 1

RTSP

1 / 1

MSSQL

1 / 1

ELASTICSEARCH

1 / 1

$ sikker summary 44.220.188.225

44.220.188.225 has a threat confidence score of 60%. This IP address from United States (AS14618, Amazon.com, Inc.) has been observed in 33 honeypot sessions targeting HTTPS, POSTGRES, HTTP, MONGODB, SSH and 3 other protocols. First observed on February 2, 2026, most recently active April 30, 2026.

$ sikker behaviors 44.220.188.225catalog →

lowRtsp Options Probe1x

Client sends RTSP OPTIONS requests to check supported methods and confirm that an RTSP service is exposed, then disconnects without attempting authentication or stream setup. This pattern is typically associated with automated reconnaissance or internet-wide scanning rather than active stream access.

infoHttp Root Path Request2x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttp Http Method Get1x

HTTP request using GET method.

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

$ sikker primitives 44.220.188.225

mongodb_buildinfo3 elastic_http_get_request3 http_method_get2 rtsp_options1 https_path_root1 elastic_root_path_probe1

$ sikker related 44.220.188.225

🇺🇸·More threats fromUnited States→AS·More threats fromAmazon.com, Inc.→HTTP·More threats targetingHTTPS→POST·More threats targetingPOSTGRES→HTTP·More threats targetingHTTP→MONG·More threats targetingMONGODB→SSH·More threats targetingSSH→RTSP·More threats targetingRTSP→MSSQ·More threats targetingMSSQL→ELAS·More threats targetingELASTICSEARCH→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
18.215.234.114	93%	519
3.227.192.235	63%	2,695
98.80.4.58	39%	23
18.97.26.33	44%	15
98.89.3.242	71%	58

IP Address	Confidence	Events
192.187.111.242	95%	18
66.42.81.173	97%	27
209.59.219.79	96%	21
108.61.23.238	81%	5
198.235.24.76	99%	441