Identicon of IP address 23.27.145.80

23.27.145.80

IP Risk Score: 90 / 100

This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.

What is this IP address?
IP Address: 23.27.145.80
Country: United States flag United States (US)
Region Name: California (CA)
City: San Jose
ISP: Ace Data Centers II
Organization: EGN Dedicated Servers - Asia Optimized
Threat level: 90 / 100
Conf. level: 100 / 100
Properties
ASN: AS18779
AS Name: EGIHosting
Timezone: America/Los_Angeles
Status: Critical
Hosting

Observed Client Profile
  • OS: Linux (100%)
  • Device Type: Desktop (100%)
  • Browser Family: Firefox (100%)
  • Rendering Engine: Gecko (100%)
Behavioral Indicators

The IP shows signs of malicious intent with a honeypot hit and is associated with a hosting provider. The lack of RDNS and the absence of JavaScript support further indicate potential evasion tactics. The single access event raises concerns about probing behavior.

The supernet (23.27.0.0/16), which this IP belongs to, exhibits a pattern of low-interaction, repetitive visits primarily from a limited set of user agents, suggesting potential automated scraping behavior. The presence of multiple honeypot hits and the use of proxies across many IPs indicate possible misuse of legitimate infrastructure for non-human traffic generation.

๐Ÿฏ
Honeypot Hit
JavaScript Support
โš ๏ธ No
User-Agent Samples
  • Mozilla/5.0 (X11; Linux i686; rv:109.0) Gecko/20100101 Firefox/120.0

IP Location

Region: California, United States

City: San Jose

Local time: 2026-07-05 04:37:27