45.139.177.68
IP Risk Score: 73 / 100
This IP is considered high risk and shows signs of malicious behavior. Strong indicators point to automated scanning or suspicious access attempts. This assessment is backed by strong and consistent detection signals. The combined indicators suggest a high overall security risk. Defensive measures such as rate limiting or blocking are recommended.
What is this IP address?
Russia (RU)
Conf. level: 100 / 100
Properties
Observed Client Profile
- OS: Unknown (100%)
- Device Type: Desktop (100%)
- Browser Family: Unknown (100%)
- Rendering Engine: Unknown (100%)
Behavioral Indicators
The IP exhibits strong indicators of automated behavior, including the use of a Python-based user-agent commonly associated with scraping. The absence of RDNS and lack of JavaScript support further suggest non-human activity. Given the single event and the nature of the user-agent, this traffic is highly suspicious.
The supernet (45.139.0.0/16), which this IP belongs to, exhibits suspicious behavior characterized by repetitive low-interaction visits, a mix of legitimate and automated user agents, and multiple instances of accessing sensitive endpoints like '.env' files. The presence of honeypot hits and 404 errors suggests potential scanning or scraping activities, indicating a coordinated effort that raises concerns about malicious intent.
JavaScript Support
โ ๏ธ NoUser-Agent Samples
- Python/3.11 aiohttp/3.11.11
IP Location
Region: Moscow, Russia
City: Moscow
Local time: 2026-06-24 21:31:49