Check an IP Address, Domain Name, Subnet, or ASN

152.32.239.15 was found in our database!

$ whois 152.32.239.15

country·🇭🇰 Hong Kong

city·Hong Kong

isp·UCLOUD INFORMATION TECHNOLOGY HK LIMITED

asn·AS135377

network·Standard

$ sikker risk 152.32.239.15scoring →

confidence

71%High

first_seen·Jan 29, 2026

last_seen·34m ago

sessions·130

events·158

$ sikker protocols 152.32.239.15

HTTPS

51 / 51

SIP

39 / 39

FTP

3 / 17

HTTP

8 / 13

IMAP

10 / 10

RDP

9 / 9

SSH

6 / 9

RTSP

3 / 9

TELNET

1 / 1

$ sikker summary 152.32.239.15

152.32.239.15 has a threat confidence score of 71%. This IP address from Hong Kong (AS135377, UCLOUD INFORMATION TECHNOLOGY HK LIMITED) has been observed in 130 honeypot sessions targeting HTTPS, SIP, FTP, HTTP, IMAP and 4 other protocols. First observed on January 29, 2026, most recently active March 23, 2026.

$ sikker behaviors 152.32.239.15catalog →

lowRtsp Stream Enumeration1x

Client requests RTSP OPTIONS followed by DESCRIBE to query supported methods and retrieve stream metadata, but does not proceed to session setup or playback. This pattern is commonly associated with automated scanning or reconnaissance activity checking for exposed cameras or media services.

infoHttps Root Path Request3x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

infoHttp Bad Request Route Probe1x

Identifies HTTP GET requests directly targeting the /bad-request path, indicating automated or manual probing of application error-handling routes rather than legitimate navigation flow.

infoHttps Direct Bad Request Endpoint Access1x

Identifies direct HTTPS requests to the /bad-request path, indicating manual or automated probing of error-handling routes rather than normal application flow.

$ sikker primitives 152.32.239.15

https_path_root3 ftp_set_utf81 rtsp_options1 rtsp_describe1 ftp_user_probe1 http_method_get1 ftp_session_quit1 ftp_set_binary_mode1 ftp_password_attempt1 http_path_bad_request1 https_path_bad_request1 ftp_feature_list_request1 ftp_machine_list_directory1 ftp_enter_extended_passive_mode1

$ sikker related 152.32.239.15

🇭🇰·More threats fromHong Kong→AS·More threats fromUCLOUD INFORMATION TECHNOLOGY HK LIMITED→HTTP·More threats targetingHTTPS→SIP·More threats targetingSIP→FTP·More threats targetingFTP→HTTP·More threats targetingHTTP→IMAP·More threats targetingIMAP→RDP·More threats targetingRDP→SSH·More threats targetingSSH→RTSP·More threats targetingRTSP→TELN·More threats targetingTELNET→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
152.32.225.94	90%	24
101.36.107.233	100%	763
165.154.22.88	98%	34
152.32.235.96	96%	383
165.154.24.138	85%	14

IP Address	Confidence	Events
172.110.223.64	98%	9,498
152.32.128.212	96%	23
43.154.222.15	97%	876
172.110.223.65	96%	1,116
103.143.238.222	97%	2,586