Check an IP Address, Domain Name, Subnet, or ASN

66.132.195.61 was found in our database!

$ whois 66.132.195.61

country·🇺🇸 United States

network·Standard

$ sikker risk 66.132.195.61scoring →

confidence

84%Very High

first_seen·Mar 22, 2026

last_seen·1h ago

sessions·69

events·69

$ sikker protocols 66.132.195.61

HTTP

45 / 45

HTTPS

8 / 8

SMTP

6 / 6

TELNET

3 / 3

DOCKER

2 / 2

ELASTICSEARCH

2 / 2

FTP

1 / 1

SIP

1 / 1

SSH

1 / 1

$ sikker summary 66.132.195.61

66.132.195.61 has a threat confidence score of 84%. This IP address from United States has been observed in 69 honeypot sessions targeting HTTP, HTTPS, SMTP, TELNET, DOCKER and 4 other protocols. First observed on March 22, 2026, most recently active March 26, 2026.

$ sikker behaviors 66.132.195.61catalog →

infoHttp Root Path Request20x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttp Bad Request Route Probe7x

Identifies HTTP GET requests directly targeting the /bad-request path, indicating automated or manual probing of application error-handling routes rather than legitimate navigation flow.

infoFtp Tls Upgrade1x

FTP session where the client issues AUTH TLS to upgrade the connection to Transport Layer Security. This reflects protocol-level encryption negotiation prior to further interaction.

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

$ sikker primitives 66.132.195.61

http_method_get28 docker_get_method10 http_path_bad_request8 docker_bad_request_uri6 elastic_http_get_request6 elastic_root_path_probe2 elastic_nodes_enumeration2 elastic_cluster_stats_request2 ftp_auth_tls1 https_path_root1 smtp_ehlo_greeting1 sip_call_id_alphanumeric_entropy1 smtp_ehlo_censys_scanner_identifier1

$ sikker related 66.132.195.61

🇺🇸·More threats fromUnited States→HTTP·More threats targetingHTTP→HTTP·More threats targetingHTTPS→SMTP·More threats targetingSMTP→TELN·More threats targetingTELNET→DOCK·More threats targetingDOCKER→ELAS·More threats targetingELASTICSEARCH→FTP·More threats targetingFTP→SIP·More threats targetingSIP→SSH·More threats targetingSSH→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
208.110.64.186	96%	2,668
3.132.26.232	100%	12,638
74.208.184.139	97%	27
35.202.9.133	87%	1,613
45.61.184.223	99%	15,235