IP Risk Score: 68 / 100

This IP is considered high risk and shows signs of malicious behavior. Strong indicators point to automated scanning or suspicious access attempts. This assessment is backed by strong and consistent detection signals. The combined indicators suggest a high overall security risk. Defensive measures such as rate limiting or blocking are recommended.

Block IPs like this in your system

What is this IP address?

IP Address: 135.136.134.54

Country: Netherlands flag

Netherlands (NL)

Region Name: North Holland (NH)

City: Amsterdam

ISP: Krixe Pte. Ltd.

Threat level: 68 / 100
Conf. level: 100 / 100

Properties

ASN: AS213122

AS Name: Hyonix

Timezone: Europe/Amsterdam

Status: Critical

Observed Client Profile

OS: Linux (100%)
Device Type: Desktop (100%)
Browser Family: Firefox (100%)
Rendering Engine: Gecko (100%)

Behavioral Indicators

The IP shows signs of potential automated activity with a single access event to a specific resource resulting in a 404 status. The user-agent appears to be a legitimate browser but lacks JavaScript support, which is indicative of bot behavior. The absence of RDNS and the nature of the access raise concerns about the intent behind the request.

The supernet (135.136.0.0/16), which this IP belongs to, exhibits suspicious behavior characterized by low-interaction, repetitive visits primarily to a limited number of sites, with multiple IPs using identical or crawler-like user agents. The presence of honeypot hits and the use of internal site scanners further indicate potential automated scraping or bot activity, raising concerns about coordinated stealth automation.

JavaScript Support

⚠️ No

User-Agent Samples

Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0

Integrate IPIntel into your system

IP Location

Region: North Holland, Netherlands

City: Amsterdam

Local time: 2026-06-24 14:49:30

Subnet
135.136.134.0/24
Supernet
135.136.0.0/16