Check an IP Address, Domain Name, Subnet, or ASN

152.32.135.81 was found in our database!

$ whois 152.32.135.81

country·🇭🇰 Hong Kong

city·Hong Kong

isp·UCLOUD INFORMATION TECHNOLOGY HK LIMITED

asn·AS135377

network·Standard

$ sikker risk 152.32.135.81scoring →

confidence

86%Very High

first_seen·Jan 22, 2026

last_seen·10h ago

sessions·263

events·341

$ sikker protocols 152.32.135.81

HTTPS

134 / 161

HTTP

44 / 64

SIP

34 / 41

FTP

3 / 19

RDP

18 / 18

IMAP

14 / 14

TR069

4 / 12

SSH

6 / 6

RTSP

6 / 6

$ sikker summary 152.32.135.81

152.32.135.81 has a threat confidence score of 86%. This IP address from Hong Kong (AS135377, UCLOUD INFORMATION TECHNOLOGY HK LIMITED) has been observed in 263 honeypot sessions targeting HTTPS, HTTP, SIP, FTP, RDP and 4 other protocols. First observed on January 22, 2026, most recently active April 20, 2026.

$ sikker behaviors 152.32.135.81catalog →

mediumSip Request Uri Sip Nm2x

SIP request using sip:nm as the Request-URI, a malformed or placeholder target commonly observed in SIP scanning and fuzzing activity rather than legitimate client behavior.

lowRtsp Stream Enumeration2x

Client requests RTSP OPTIONS followed by DESCRIBE to query supported methods and retrieve stream metadata, but does not proceed to session setup or playback. This pattern is commonly associated with automated scanning or reconnaissance activity checking for exposed cameras or media services.

infoHttp Http Method Get1x

HTTP request using GET method.

infoHttp Fetch Robots Txt1x

HTTP GET request to /robots.txt.

infoHttp Root Path Request1x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

$ sikker primitives 152.32.135.81

http_method_get5 sip_request_uri_sip_nm3 rtsp_options2 rtsp_describe2 http_robots_txt_path_probe2 imap_logout1 ftp_set_utf81 ftp_user_probe1 https_path_root1 ftp_session_quit1 ftp_set_binary_mode1 ftp_password_attempt1 imap_capability_probe1 ftp_feature_list_request1 https_favicon_ico_request1 ftp_machine_list_directory1 ftp_enter_extended_passive_mode1

$ sikker related 152.32.135.81

🇭🇰·More threats fromHong Kong→AS·More threats fromUCLOUD INFORMATION TECHNOLOGY HK LIMITED→HTTP·More threats targetingHTTPS→HTTP·More threats targetingHTTP→SIP·More threats targetingSIP→FTP·More threats targetingFTP→RDP·More threats targetingRDP→IMAP·More threats targetingIMAP→TR06·More threats targetingTR069→SSH·More threats targetingSSH→RTSP·More threats targetingRTSP→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
36.255.220.44	100%	257
45.43.55.121	100%	143
152.32.188.71	96%	1,949
123.58.212.9	96%	7,259
128.1.38.169	100%	1,170

IP Address	Confidence	Events
43.251.227.179	72%	110
154.64.250.144	96%	2,728
47.76.130.255	83%	53,162
103.143.238.222	96%	3,680
152.32.188.71	96%	1,949