This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.
The IP exhibits suspicious behavior with no JavaScript support and is associated with a proxy. The user-agent appears to be a standard browser but may be spoofed. The activity includes a POST request to an API endpoint, which raises concerns about potential scraping or automated interaction.
The supernet (213.232.0.0/16), which this IP belongs to, exhibits highly coordinated behavior indicative of automated scraping attempts, primarily targeting a specific site with repeated login attempts and low interaction page visits. The use of identical user agents across multiple IPs, combined with a high number of honeypot hits, suggests a malicious intent to exploit vulnerabilities, despite some legitimate infrastructure indicators.
Region: New York, United States
City: New York
Local time: 2026-07-05 05:08:31