149.102.143.28
IP Risk Score: 100 / 100
This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.
What is this IP address?
Germany (DE)
Conf. level: 100 / 100
Properties
Observed Client Profile
- OS: Unknown (100%)
- Device Type: Desktop (100%)
- Browser Family: Unknown (100%)
- Rendering Engine: Unknown (100%)
Behavioral Indicators
The IP address exhibits highly suspicious behavior with multiple requests to sensitive paths, all resulting in 403/404 responses. The use of a Python-based user-agent indicates automated activity, and the high number of honeypot hits suggests malicious intent. The traffic is consistent and focused on probing for vulnerabilities.
The supernet (149.102.0.0/16), which this IP belongs to, exhibits highly coordinated behavior indicative of automated scraping, with multiple IPs showing repetitive access patterns to specific sites, low interaction, and a prevalence of non-human user agents. The presence of honeypot hits and failed requests further suggests an intent to probe or scrape content, raising concerns about potential misuse of legitimate infrastructure.
JavaScript Support
⚠️ NoUser-Agent Samples
- Python/3.10 aiohttp/3.12.14
IP Location
Region: North Rhine-Westphalia, Germany
City: Düsseldorf
Local time: 2026-06-24 04:02:01