This IP is considered high risk and shows signs of malicious behavior. Strong indicators point to automated scanning or suspicious access attempts. This assessment is backed by strong and consistent detection signals. The combined indicators suggest a high overall security risk. Defensive measures such as rate limiting or blocking are recommended.
The IP exhibits signs of automated behavior, including access from a proxy and multiple requests in a short time frame. The user-agent appears legitimate but is associated with mobile traffic, which raises questions about the nature of the requests. The lack of RDNS further adds to the suspicion.
The supernet (157.97.0.0/16), which this IP belongs to, exhibits coordinated behavior with multiple IPs utilizing similar user agents and accessing the same site with low interaction, suggesting potential automated scraping. The lack of matching forward DNS and the use of proxies further indicate suspicious activity.
Region: Washington, United States
City: Seattle
Local time: 2026-07-05 01:27:31