136.144.42.109
IP Risk Score: 87 / 100
This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.
What is this IP address?
United States (US)
Conf. level: 100 / 100
Properties
Observed Client Profile
- OS: macOS (100%)
- Device Type: Desktop (100%)
- Browser Family: Firefox (100%)
- Rendering Engine: Gecko (100%)
Behavioral Indicators
The IP shows signs of suspicious activity, including a honeypot hit and access to a sensitive file path with a 404 response. The use of a proxy and lack of JavaScript support further indicate potential malicious intent. The user-agent appears to be spoofed, raising concerns about the legitimacy of the access.
The supernet (136.144.0.0/16), which this IP belongs to, exhibits coordinated behavior indicative of automated scraping or scanning activities, primarily targeting specific endpoints with repetitive requests and a high incidence of 404 responses. The use of proxy IPs and identical user agents across multiple addresses suggests a stealthy operation, likely aimed at data extraction or vulnerability probing.
JavaScript Support
โ ๏ธ NoUser-Agent Samples
- Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0
IP Location
Region: District of Columbia, United States
City: Washington
Local time: 2026-06-25 13:21:43