Check an IP Address, Domain Name, Subnet, or ASN

152.32.141.9 was found in our database!

$ whois 152.32.141.9

country·🇳🇬 Nigeria

city·Lagos

isp·UCLOUD INFORMATION TECHNOLOGY HK LIMITED

asn·AS135377

network·Standard

$ sikker risk 152.32.141.9scoring →

confidence

74%High

first_seen·Jan 23, 2026

last_seen·2h ago

sessions·110

events·201

$ sikker protocols 152.32.141.9

HTTPS

51 / 107

FTP

9 / 24

SSH

12 / 21

RDP

9 / 9

RTSP

3 / 9

SMTP

4 / 9

HTTP

8 / 8

SIP

7 / 7

SMB

5 / 5

IMAP

2 / 2

$ sikker summary 152.32.141.9

152.32.141.9 has a threat confidence score of 74%. This IP address from Nigeria (AS135377, UCLOUD INFORMATION TECHNOLOGY HK LIMITED) has been observed in 110 honeypot sessions targeting HTTPS, FTP, SSH, RDP, RTSP and 5 other protocols. First observed on January 23, 2026, most recently active March 24, 2026.

$ sikker behaviors 152.32.141.9catalog →

lowRtsp Stream Enumeration1x

Client requests RTSP OPTIONS followed by DESCRIBE to query supported methods and retrieve stream metadata, but does not proceed to session setup or playback. This pattern is commonly associated with automated scanning or reconnaissance activity checking for exposed cameras or media services.

infoHttp Bad Request Route Probe2x

Identifies HTTP GET requests directly targeting the /bad-request path, indicating automated or manual probing of application error-handling routes rather than legitimate navigation flow.

infoHttp Root Path Request1x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

$ sikker primitives 152.32.141.9

ftp_set_utf83 ftp_user_probe3 http_method_get3 ftp_session_quit3 ftp_set_binary_mode3 ftp_password_attempt3 ftp_feature_list_request3 ftp_enter_extended_passive_mode3 ftp_help_request2 smtp_ehlo_greeting2 http_path_bad_request2 ftp_system_type_request2 ftp_machine_list_directory2 smtp_quit_session_termination2 imap_logout1 rtsp_options1 rtsp_describe1 https_path_root1 imap_capability_probe1

$ sikker related 152.32.141.9

🇳🇬·More threats fromNigeria→AS·More threats fromUCLOUD INFORMATION TECHNOLOGY HK LIMITED→HTTP·More threats targetingHTTPS→FTP·More threats targetingFTP→SSH·More threats targetingSSH→RDP·More threats targetingRDP→RTSP·More threats targetingRTSP→SMTP·More threats targetingSMTP→HTTP·More threats targetingHTTP→SIP·More threats targetingSIP→SMB·More threats targetingSMB→IMAP·More threats targetingIMAP→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
152.32.183.231	77%	97
118.193.33.71	94%	69
152.32.130.174	96%	33
45.43.63.34	96%	1,633
152.32.247.233	79%	9

IP Address	Confidence	Events
129.222.206.129	66%	2
41.203.65.118	40%	284
165.154.10.187	70%	92
154.118.4.27	44%	6
102.88.137.80	100%	3,005