Identicon of IP address 213.232.120.94

213.232.120.94

IP Risk Score: 79 / 100

This IP is considered high risk and shows signs of malicious behavior. Strong indicators point to automated scanning or suspicious access attempts. This assessment is backed by strong and consistent detection signals. The combined indicators suggest a high overall security risk. Defensive measures such as rate limiting or blocking are recommended.

What is this IP address?
IP Address: 213.232.120.94
Country: France flag France (FR)
Region Name: Île-de-France (IDF)
City: Paris
ISP: Finegroupservers
Organization: Fine Group Servers Solutions LLC
Threat level: 79 / 100
Conf. level: 100 / 100
Properties
ASN: AS59651
AS Name: AS QualityNetwork
Timezone: Europe/Paris
Status: Critical

Observed Client Profile
  • OS: Linux (100%)
  • Device Type: Desktop (100%)
  • Browser Family: Chrome (100%)
  • Rendering Engine: Gecko (100%)
Behavioral Indicators

The IP has exhibited suspicious behavior with multiple access attempts to admin paths, including a login attempt with valid credentials. The presence of honeypot hits and lack of JavaScript support further indicate potential malicious intent. The user-agent appears structured but may be spoofed given the context.

The supernet (213.232.0.0/16), which this IP belongs to, exhibits highly coordinated behavior indicative of automated scraping attempts, primarily targeting a specific site with repeated login attempts and low interaction page visits. The use of identical user agents across multiple IPs, combined with a high number of honeypot hits, suggests a malicious intent to exploit vulnerabilities, despite some legitimate infrastructure indicators.

🍯
Honeypot Hit
JavaScript Support
⚠️ No
User-Agent Samples
  • Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36

IP Location

Region: Île-de-France, France

City: Paris

Local time: 2026-07-05 10:20:17