This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.
The IP has triggered a honeypot hit, indicating potential malicious intent. It shows a single access event with a common user-agent, but the lack of JavaScript support and the hosting infrastructure raise significant concerns about automated behavior.
The supernet (185.239.0.0/16), which this IP belongs to, exhibits behavior indicative of automated scraping or bot activity, with multiple IPs utilizing similar user agents and engaging in repetitive, low-interaction visits to the same target. The presence of DNS mismatches and a lack of legitimate forward DNS resolution further raises suspicions of coordinated stealth automation.
Region: North Rhine-Westphalia, Germany
City: Münster
District: Hiltrup
Local time: 2026-07-04 00:37:36