Check an IP Address, Domain Name, Subnet, or ASN

59.52.100.77 was found in our database!

$ whois 59.52.100.77

country·🇨🇳 China

isp·Chinanet

asn·AS4134

network·Standard

$ sikker risk 59.52.100.77scoring →

confidence

34%Low

first_seen·Jan 30, 2026

last_seen·2h ago

sessions·3

events·5

$ sikker protocols 59.52.100.77

DOCKER

1 / 3

HTTPS

1 / 1

REDIS

1 / 1

$ sikker summary 59.52.100.77

59.52.100.77 has a threat confidence score of 34%. This IP address from China (AS4134, Chinanet) has been observed in 3 honeypot sessions targeting DOCKER, HTTPS, REDIS protocols. First observed on January 30, 2026, most recently active March 28, 2026.

$ sikker behaviors 59.52.100.77catalog →

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

infoDocker Invalid Protocol Probe1x

Client repeatedly sends GET requests to the /bad-request Docker API endpoint, indicating malformed or incompatible traffic against the Docker daemon. This pattern is typically associated with generic internet scanning or tools attempting HTTP interaction without speaking the proper Docker API protocol.

$ sikker primitives 59.52.100.77

docker_get_method3 docker_bad_request_uri3 https_path_root1 redis_command_http_host_header_port_63791

$ sikker related 59.52.100.77

🇨🇳·More threats fromChina→AS·More threats fromChinanet→DOCK·More threats targetingDOCKER→HTTP·More threats targetingHTTPS→REDI·More threats targetingREDIS→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
221.228.10.226	93%	1,334
113.88.242.8	75%	150
222.185.236.166	53%	184
183.145.108.234	89%	191
220.178.8.154	94%	513

IP Address	Confidence	Events
118.178.98.98	84%	15,107
115.220.0.238	100%	210
94.231.206.248	74%	198
180.76.98.164	100%	785
112.46.213.169	59%	11