This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.
The IP address exhibits suspicious behavior consistent with automated scanning, including multiple 404 requests for sensitive files. The user-agent indicates a programmatic access method, and the lack of JavaScript support further suggests non-human interaction. The traffic originates from a known proxy service, heightening the risk level.
The supernet (213.232.0.0/16), which this IP belongs to, exhibits highly coordinated behavior indicative of automated scraping attempts, primarily targeting a specific site with repeated login attempts and low interaction page visits. The use of identical user agents across multiple IPs, combined with a high number of honeypot hits, suggests a malicious intent to exploit vulnerabilities, despite some legitimate infrastructure indicators.
Region: North Holland, The Netherlands
City: Amsterdam
Local time: 2026-06-29 12:50:27