This IP is considered high risk and shows signs of malicious behavior. Strong indicators point to automated scanning or suspicious access attempts. This assessment is backed by strong and consistent detection signals. The combined indicators suggest a high overall security risk. Defensive measures such as rate limiting or blocking are recommended.
The IP shows signs of potential automated activity, including a malformed user-agent and lack of JavaScript support. The access pattern is limited but raises concerns due to botnet detection. The absence of RDNS further complicates the assessment.
The supernet (103.110.0.0/16), which this IP belongs to, exhibits suspicious behavior characterized by multiple IPs with non-matching forward DNS and RDNS, suggesting potential stealth automation or scraping activities. The presence of a single low-frequency access event with a unique user agent further indicates possible misuse of legitimate infrastructure.
Region: Uttar Pradesh, India
City: Kanpur
Local time: 2026-07-05 18:27:30