This IP is considered high risk and shows signs of malicious behavior. Strong indicators point to automated scanning or suspicious access attempts. This assessment is backed by strong and consistent detection signals. The combined indicators suggest a high overall security risk. Defensive measures such as rate limiting or blocking are recommended.
The IP exhibits signs of potential automated activity, including access from a hosting provider with no reverse DNS. The user-agent appears to be a standard browser but lacks JavaScript support, which raises concerns about its authenticity. The single access event and proxy usage further contribute to the suspicion.
The supernet (23.27.0.0/16), which this IP belongs to, exhibits a pattern of low-interaction, repetitive visits primarily from a limited set of user agents, suggesting potential automated scraping behavior. The presence of multiple honeypot hits and the use of proxies across many IPs indicate possible misuse of legitimate infrastructure for non-human traffic generation.
Region: California, United States
City: San Jose
Local time: 2026-07-05 02:30:02