IP Risk Score: 51 / 100

This IP presents a moderate risk and may be associated with automated activity. Moderate behavioral signals suggest possible automated probing or scanning. This assessment is backed by strong and consistent detection signals. The combined signals place this IP in a moderate risk category. Monitoring is recommended, with defensive action considered if activity continues.

Detect suspicious IPs early

What is this IP address?

IP Address: 201.220.12.112

Country: Sint Maarten flag

Sint Maarten (SX)

Region Name: ()

City: Philipsburg

ISP: Smitcoms N.V.

Organization: Smitcoms N.V

Threat level: 51 / 100
Conf. level: 100 / 100

Properties

ASN: AS27781

AS Name: SMITCOMS N.V.

Timezone: America/Lower_Princes

Status: Suspicious

Mobile

Observed Client Profile

OS: Windows (100%)
Device Type: Desktop (100%)
Browser Family: Unknown (100%)
Rendering Engine: Unknown (100%)

Behavioral Indicators

The IP shows signs of automated behavior with a malformed user-agent indicating potential misuse of PowerShell. Lack of JavaScript support and a 404 response on a specific path further suggest probing activity. The absence of RDNS and the mobile user-agent adds to the suspicion.

The supernet (201.220.0.0/16), which this IP belongs to, exhibits behavior indicative of automated scraping, with multiple IPs using similar user agents and accessing the same URLs, suggesting coordinated activity. The lack of matching forward DNS records and the presence of repetitive, low-interaction requests raise concerns about potential misuse of legitimate infrastructure.

JavaScript Support

⚠️ No

User-Agent Samples

Mozilla/5.0 (Windows NT; Windows NT 10.0; en-US) WindowsPowerShell/5.1.19041.5607

Integrate IPIntel into your system

IP Location

Region: , Sint Maarten

City: Philipsburg

Local time: 2026-06-24 14:31:58

Subnet
201.220.12.0/24
Supernet
201.220.0.0/16