Check an IP Address, Domain Name, Subnet, or ASN

152.32.209.62 was found in our database!

$ whois 152.32.209.62

country·🇭🇰 Hong Kong

city·Hong Kong

isp·UCLOUD INFORMATION TECHNOLOGY HK LIMITED

asn·AS135377

network·Standard

$ sikker risk 152.32.209.62scoring →

confidence

80%Very High

first_seen·Jan 20, 2026

last_seen·5d ago

sessions·121

events·198

$ sikker protocols 152.32.209.62

HTTPS

60 / 93

HTTP

35 / 58

RTSP

9 / 21

SMTP

4 / 9

FTP

6 / 6

IMAP

2 / 6

SIP

5 / 5

$ sikker summary 152.32.209.62

152.32.209.62 has a threat confidence score of 80%. This IP address from Hong Kong (AS135377, UCLOUD INFORMATION TECHNOLOGY HK LIMITED) has been observed in 121 honeypot sessions targeting HTTPS, HTTP, RTSP, SMTP, FTP and 2 other protocols. First observed on January 20, 2026, most recently active March 17, 2026.

$ sikker behaviors 152.32.209.62catalog →

lowRtsp Stream Enumeration3x

Client requests RTSP OPTIONS followed by DESCRIBE to query supported methods and retrieve stream metadata, but does not proceed to session setup or playback. This pattern is commonly associated with automated scanning or reconnaissance activity checking for exposed cameras or media services.

lowFtp Extended Passive Mlsd Listing2x

FTP session where the client negotiates binary transfer mode, enters extended passive mode (EPSV), and issues an MLSD command to retrieve a machine-readable directory listing.

infoHttps Root Path Request3x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

infoHttp Root Path Request2x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

$ sikker primitives 152.32.209.62

smtp_ehlo_greeting6 smtp_quit_session_termination6 rtsp_options3 rtsp_describe3 http_method_get3 https_path_root3 ftp_set_utf82 ftp_user_probe2 ftp_help_request2 ftp_set_binary_mode2 ftp_password_attempt2 ftp_system_type_request2 ftp_feature_list_request2 ftp_machine_list_directory2 ftp_enter_extended_passive_mode2 imap_logout1 ftp_session_quit1 imap_capability_probe1

$ sikker related 152.32.209.62

🇭🇰·More threats fromHong Kong→AS·More threats fromUCLOUD INFORMATION TECHNOLOGY HK LIMITED→HTTP·More threats targetingHTTPS→HTTP·More threats targetingHTTP→RTSP·More threats targetingRTSP→SMTP·More threats targetingSMTP→FTP·More threats targetingFTP→IMAP·More threats targetingIMAP→SIP·More threats targetingSIP→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
45.194.70.254	76%	156
165.154.6.42	53%	2
23.91.96.70	100%	647
101.36.106.89	84%	243
45.249.246.120	100%	180

IP Address	Confidence	Events
43.99.84.148	88%	3,202
83.229.127.217	99%	334
123.1.189.199	51%	8
194.187.178.168	27%	10
172.110.223.44	99%	36,478