Check an IP Address, Domain Name, Subnet, or ASN

152.32.225.108 was found in our database!

$ whois 152.32.225.108

country·🇭🇰 Hong Kong

city·Hong Kong

isp·UCLOUD INFORMATION TECHNOLOGY HK LIMITED

asn·AS135377

network·Standard

$ sikker risk 152.32.225.108scoring →

confidence

73%High

first_seen·Jan 27, 2026

last_seen·1h ago

sessions·57

events·108

$ sikker protocols 152.32.225.108

FTP

9 / 41

SIP

13 / 24

HTTPS

17 / 17

RTSP

6 / 12

RDP

9 / 9

SSH

3 / 5

$ sikker summary 152.32.225.108

152.32.225.108 has a threat confidence score of 73%. This IP address from Hong Kong (AS135377, UCLOUD INFORMATION TECHNOLOGY HK LIMITED) has been observed in 57 honeypot sessions targeting FTP, SIP, HTTPS, RTSP, RDP and 1 other protocols. First observed on January 27, 2026, most recently active March 22, 2026.

$ sikker behaviors 152.32.225.108catalog →

lowRtsp Stream Enumeration2x

Client requests RTSP OPTIONS followed by DESCRIBE to query supported methods and retrieve stream metadata, but does not proceed to session setup or playback. This pattern is commonly associated with automated scanning or reconnaissance activity checking for exposed cameras or media services.

lowFtp Extended Passive Mlsd Listing1x

FTP session where the client negotiates binary transfer mode, enters extended passive mode (EPSV), and issues an MLSD command to retrieve a machine-readable directory listing.

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

infoHttps Direct Bad Request Endpoint Access1x

Identifies direct HTTPS requests to the /bad-request path, indicating manual or automated probing of error-handling routes rather than normal application flow.

$ sikker primitives 152.32.225.108

ftp_set_utf83 ftp_user_probe3 ftp_set_binary_mode3 ftp_password_attempt3 ftp_feature_list_request3 ftp_machine_list_directory3 ftp_enter_extended_passive_mode3 rtsp_options2 rtsp_describe2 ftp_session_quit2 https_path_root1 ftp_help_request1 https_path_bad_request1 ftp_system_type_request1

$ sikker related 152.32.225.108

🇭🇰·More threats fromHong Kong→AS·More threats fromUCLOUD INFORMATION TECHNOLOGY HK LIMITED→FTP·More threats targetingFTP→SIP·More threats targetingSIP→HTTP·More threats targetingHTTPS→RTSP·More threats targetingRTSP→RDP·More threats targetingRDP→SSH·More threats targetingSSH→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
165.154.6.69	100%	604
152.32.132.230	95%	351
152.32.157.173	66%	93
165.154.24.138	77%	8
152.32.133.122	87%	19

IP Address	Confidence	Events
47.242.13.10	85%	3,588
172.110.223.64	98%	9,005
152.32.133.122	87%	19
103.80.27.251	75%	114
172.110.223.49	97%	19,824