Check an IP Address, Domain Name, Subnet, or ASN

64.225.47.37 was found in our database!

$ whois 64.225.47.37

country·🇺🇸 United States

city·Santa Clara

isp·DigitalOcean, LLC

asn·AS14061

network·Standard

$ sikker risk 64.225.47.37scoring →

confidence

65%High

first_seen·Feb 27, 2026

last_seen·1h ago

sessions·26

events·26

$ sikker protocols 64.225.47.37

HTTPS

11 / 11

HTTP

6 / 6

SIP

4 / 4

RDP

3 / 3

FTP

1 / 1

MONGODB

1 / 1

$ sikker summary 64.225.47.37

64.225.47.37 has a threat confidence score of 65%. This IP address from United States (AS14061, DigitalOcean, LLC) has been observed in 26 honeypot sessions targeting HTTPS, HTTP, SIP, RDP, FTP and 1 other protocols. First observed on February 27, 2026, most recently active March 26, 2026.

$ sikker behaviors 64.225.47.37catalog →

mediumFtp Authenticated Session Establishment1x

FTP session where a client probes for valid usernames, attempts authentication, switches to ASCII mode, and enters passive mode without performing explicit file listing or transfer operations. This reflects a completed login and session setup sequence, often observed during credential validation or preparatory access prior to further activity.

infoHttp Root Path Request2x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

$ sikker primitives 64.225.47.37

https_path_root6 http_method_get3 ftp_user_probe1 ftp_set_ascii_mode1 ftp_password_attempt1 ftp_enter_passive_mode1 https_request_path_my_policy1

$ sikker related 64.225.47.37

🇺🇸·More threats fromUnited States→AS·More threats fromDigitalOcean, LLC→HTTP·More threats targetingHTTPS→HTTP·More threats targetingHTTP→SIP·More threats targetingSIP→RDP·More threats targetingRDP→FTP·More threats targetingFTP→MONG·More threats targetingMONGODB→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
143.198.64.227	38%	20
165.22.218.119	79%	10,271
206.189.84.29	78%	243
206.189.58.8	100%	381
68.183.239.46	84%	494

IP Address	Confidence	Events
92.118.39.63	100%	58,471
198.235.24.29	85%	166
143.198.64.227	38%	20
198.143.149.250	96%	13,665
208.3.195.65	100%	102,691