129.153.94.60
IP Risk Score: 84 / 100
This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.
What is this IP address?
United States (US)
Conf. level: 100 / 100
Properties
Observed Client Profile
- OS: iOS (40%)
- Device Type: Mobile (60%)
- Browser Family: Firefox (40%)
- Rendering Engine: WebKit (60%)
Behavioral Indicators
The IP shows suspicious behavior with multiple attempts to access restricted areas (login, admin, register) resulting in 403 responses. The absence of JavaScript support and the use of a cloud hosting provider indicate potential automated probing. The user-agents, while appearing legitimate, are associated with a cloud infrastructure, raising further concerns about the intent behind the access.
The supernet (129.153.0.0/16), which this IP belongs to, shows signs of coordinated automation with multiple IPs exhibiting repetitive low-interaction behavior, primarily targeting the same site with a mix of user agents. The lack of RDNS resolution and forward DNS matches raises suspicion about the legitimacy of the traffic, suggesting potential scraping or bot activity.
JavaScript Support
โ ๏ธ NoUser-Agent Samples
- Mozilla/5.0 (Macintosh; Intel Mac OS X 13_5_1) AppleWebKit/605.1.15 Safari/605.1.15
- Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/117.0
- Mozilla/5.0 (Android 13; Mobile; rv:117.0) Gecko/117.0 Firefox/117.0
- Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 Mobile/15E148
- Mozilla/5.0 (iPhone; CPU iPhone OS 17_4_1 like Mac OS X) AppleWebKit/605.1.15 Mobile/15E148
IP Location
Region: Arizona, United States
City: Phoenix
Local time: 2026-06-22 17:23:00