This IP presents a moderate risk and may be associated with automated activity. Moderate behavioral signals suggest possible automated probing or scanning. This assessment is backed by strong and consistent detection signals. The combined signals place this IP in a moderate risk category. Monitoring is recommended, with defensive action considered if activity continues.
The IP shows a single access event with a structured user-agent that appears legitimate. However, the lack of RDNS and the hosting provider's association with cloud infrastructure raises some concerns. The behavior is not overtly malicious but warrants monitoring.
The supernet (149.57.0.0/16), which this IP belongs to, exhibits coordinated low-interaction behavior with repetitive one-page visits across multiple IPs, all utilizing the same user agent. The lack of DNS resolution and the presence of honeypot hits suggest potential misuse of legitimate infrastructure, indicating a high likelihood of automated scraping or bot activity.
Region: New York, United States
City: New York
Local time: 2026-07-03 14:20:32