This IP is considered high risk and shows signs of malicious behavior. Strong indicators point to automated scanning or suspicious access attempts. This assessment is backed by strong and consistent detection signals. The combined indicators suggest a high overall security risk. Defensive measures such as rate limiting or blocking are recommended.
The IP exhibits signs of automated behavior, including a non-standard user-agent and lack of JavaScript support. The activity appears to be probing, particularly with a request to an external IP. The absence of RDNS further raises concerns about its legitimacy.
The supernet (103.181.0.0/16), which this IP belongs to, exhibits signs of coordinated automation with repetitive low-interaction visits and a variety of user agents, some of which are commonly associated with legitimate browsers. However, the presence of multiple IPs with mismatched forward DNS and RDNS raises concerns about potential misuse or scraping activities.
Region: Bihar, India
City: Patna
Local time: 2026-07-05 21:48:37