Check an IP Address, Domain Name, Subnet, or ASN

66.228.35.42 was found in our database!

$ whois 66.228.35.42

country·🇺🇸 United States

city·Cedar Knolls

isp·Akamai Connected Cloud

asn·AS63949

network·Standard

$ sikker risk 66.228.35.42scoring →

confidence

65%High

first_seen·Feb 27, 2026

last_seen·1h ago

sessions·127

events·127

$ sikker protocols 66.228.35.42

REDIS

39 / 39

MONGODB

39 / 39

SMTP

21 / 21

IMAP

12 / 12

SIP

8 / 8

RDP

5 / 5

ELASTICSEARCH

2 / 2

HTTPS

1 / 1

$ sikker summary 66.228.35.42

66.228.35.42 has a threat confidence score of 65%. This IP address from United States (AS63949, Akamai Connected Cloud) has been observed in 127 honeypot sessions targeting REDIS, MONGODB, SMTP, IMAP, SIP and 3 other protocols. First observed on February 27, 2026, most recently active March 27, 2026.

$ sikker behaviors 66.228.35.42catalog →

mediumRdp Nla Ntlm Authentication Attempt1x

Identifies RDP clients attempting authentication using Network Level Authentication (NLA) with the NTLM challenge-response protocol. This occurs during the CredSSP negotiation phase before a remote desktop session is established and indicates an active credential authentication attempt against the RDP service

$ sikker primitives 66.228.35.42

elastic_http_get_request18 elastic_http_bad_request_path_probe12 elastic_root_path_probe3 rdp_nla_ntlm_auth1 elastic_nodes_enumeration1

$ sikker related 66.228.35.42

🇺🇸·More threats fromUnited States→AS·More threats fromAkamai Connected Cloud→REDI·More threats targetingREDIS→MONG·More threats targetingMONGODB→SMTP·More threats targetingSMTP→IMAP·More threats targetingIMAP→SIP·More threats targetingSIP→RDP·More threats targetingRDP→ELAS·More threats targetingELASTICSEARCH→HTTP·More threats targetingHTTPS→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
172.105.128.12	92%	1,916
45.79.128.205	92%	1,792
172.236.228.218	90%	1,870
172.236.228.193	97%	1,882
192.155.90.220	94%	1,876

IP Address	Confidence	Events
208.3.195.65	100%	106,930
13.222.38.67	64%	33
13.222.168.56	73%	23
104.234.32.234	69%	687
52.23.231.33	58%	35