Identicon of IP address 208.91.189.38

208.91.189.38

IP Risk Score: 87 / 100

This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.

Protect your system
What is this IP address?
IP Address: 208.91.189.38
Country: United States flag United States (US)
Region Name: Arizona (AZ)
City: Phoenix
ISP: Internet Utilities NA LLC
Organization: StealthRDP
Threat level: 87 / 100
Conf. level: 100 / 100
Properties
ASN: AS14315
AS Name: 1GSERVERS, LLC
Timezone: America/Phoenix
Reverse DNS: hosted-by.stealthrdp.com
Status: Critical
Hosting

Observed Client Profile
  • OS: Windows (100%)
  • Device Type: Desktop (100%)
  • Browser Family: Unknown (100%)
  • Rendering Engine: WebKit (100%)
Behavioral Indicators

The IP shows signs of suspicious behavior with a single POST request containing potentially malicious payload data. The lack of JavaScript support and the use of a hosting service raise concerns about automated activity. The access pattern is unusual for a legitimate user.

JavaScript Support
โš ๏ธ No
User-Agent Samples
  • Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
Integrate IPIntel into your system

IP Location

Region: Arizona, United States

City: Phoenix

Local time: 2026-06-23 21:42:06


Subnet
208.91.189.0/24
Supernet
208.91.0.0/16