IP Risk Score: 81 / 100

This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.

Protect your system

What is this IP address?

IP Address: 45.9.156.105

Country: Bulgaria flag

Bulgaria (BG)

Region Name: Sofia-Capital (22)

City: Sofia

ISP: MAXKO d.o.o.

Organization: MAXKO d.o.o

Threat level: 81 / 100
Conf. level: 100 / 100

Properties

ASN: AS211619

AS Name: MAXKO d.o.o.

Timezone: Europe/Sofia

Reverse DNS: vps19832.maxko-hosting.net

Status: Critical

Proxy

Tor

Observed Client Profile

OS: Windows (100%)
Device Type: Desktop (100%)
Browser Family: Chrome (100%)
Rendering Engine: Gecko (100%)

Behavioral Indicators

The IP exhibits strong indicators of automated behavior, including lack of JavaScript support and use of a proxy. The user-agent appears to be spoofed, and the access pattern suggests potential scraping activity.

The supernet (45.9.0.0/16), which this IP belongs to, exhibits suspicious behavior characterized by repetitive, low-interaction visits with a mix of legitimate and potentially malicious automation. The presence of multiple IPs using similar user agents and a significant number of requests from IPs with mismatched DNS records raises concerns about coordinated scraping or bot activity.

JavaScript Support

⚠️ No

User-Agent Samples

Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36

Integrate IPIntel into your system

IP Location

Region: Sofia-Capital, Bulgaria

City: Sofia

District: Old City Center

Local time: 2026-06-28 08:48:23

Subnet
45.9.156.0/24
Supernet
45.9.0.0/16