This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.
The IP shows suspicious behavior with multiple hits to a single site in a short timeframe, combined with the absence of RDNS and hosting from a known provider. The presence of honeypot hits indicates potential malicious intent.
The supernet (23.106.0.0/16), which this IP belongs to, exhibits coordinated behavior with multiple IPs using similar user agents and engaging in repetitive, low-interaction page visits, suggesting potential automated scraping or bot activity. The presence of DNS mismatches and a lack of legitimate user interaction raises concerns about the legitimacy of the traffic.
Region: England, United Kingdom
City: London
Local time: 2026-07-03 22:43:30