Identicon of IP address 149.154.47.38

149.154.47.38

IP Risk Score: 71 / 100

This IP is considered high risk and shows signs of malicious behavior. Strong indicators point to automated scanning or suspicious access attempts. This assessment is backed by strong and consistent detection signals. The combined indicators suggest a high overall security risk. Defensive measures such as rate limiting or blocking are recommended.

Block IPs like this in your system
What is this IP address?
IP Address: 149.154.47.38
Country: United States flag United States (US)
Region Name: North Carolina (NC)
City: Rocky Mount
ISP: Metronet
Organization: Metronet
Threat level: 71 / 100
Conf. level: 100 / 100
Properties
ASN: AS30600
AS Name: Metronet
Timezone: America/New_York
Reverse DNS: 149-154-47-0-38.metronet.net
Status: Critical

Observed Client Profile
  • OS: Linux (100%)
  • Device Type: Desktop (100%)
  • Browser Family: Unknown (100%)
  • Rendering Engine: Unknown (100%)
Behavioral Indicators

The IP shows signs of automated behavior, including a malformed user-agent and lack of JavaScript support. The access pattern is limited but raises concerns due to the 404 response, indicating potential probing activity.

The supernet (149.154.0.0/16), which this IP belongs to, exhibits behavior consistent with automated bot activity, primarily from Telegram's infrastructure, with repetitive low-interaction visits and a common user agent. However, the presence of multiple IPs without matching RDNS and forward DNS raises concerns about potential misuse or spoofing.

JavaScript Support
โš ๏ธ No
User-Agent Samples
  • Opera/8.17.(X11; Linux x86_64; hu-HU) Presto/2.9.171 Version/12.00
Integrate IPIntel into your system

IP Location

Region: North Carolina, United States

City: Rocky Mount

Local time: 2026-06-28 02:48:41


Subnet
149.154.47.0/24
Supernet
149.154.0.0/16