Identicon of IP address 159.224.146.1

159.224.146.1

IP Risk Score: 81 / 100

This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.

What is this IP address?
IP Address: 159.224.146.1
Country: Ukraine flag Ukraine (UA)
Region Name: Kyiv City (30)
City: Kyiv
ISP: Triolan
Threat level: 81 / 100
Conf. level: 100 / 100
Properties
ASN: AS13188
AS Name: CONTENT DELIVERY NETWORK LTD
Timezone: Europe/Kyiv
Reverse DNS: 1.146.224.159.triolan.net
Status: Critical

Observed Client Profile
  • OS: iOS (100%)
  • Device Type: Mobile (100%)
  • Browser Family: Chrome (100%)
  • Rendering Engine: Gecko (100%)
Behavioral Indicators

The IP shows signs of automated behavior with a botnet detection flag and lacks JavaScript support. The user-agent appears to be spoofed, indicating potential evasion tactics. The access pattern is limited but concerning due to the botnet association.

The supernet (159.224.0.0/16), which this IP belongs to, exhibits low interaction behavior with repetitive visits to a limited number of pages, suggesting potential automated scraping activity. The use of identical user agents across multiple IPs, along with DNS mismatches, raises concerns about coordinated stealth automation.

πŸ•ΈοΈ
Botnet Node
JavaScript Support
⚠️ No
User-Agent Samples
  • Mozilla/5.0 (iPhone; CPU iPhone OS 11_0 like Mac OS X) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.5865.1867 Mobile Safari/537.36

IP Location

Region: Kyiv City, Ukraine

City: Kyiv

Local time: 2026-07-04 15:53:11