IP Risk Score: 82 / 100

This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.

Protect your system

What is this IP address?

IP Address: 94.156.14.7

Country: Bulgaria flag

Bulgaria (BG)

Region Name: Sofia-Capital (22)

City: Sofia

ISP: Datacamp Limited

Organization: Internet Utilities Europe and Asia Limited

Threat level: 82 / 100
Conf. level: 100 / 100

Properties

ASN: AS212238

AS Name: Datacamp Limited

Timezone: Europe/Sofia

Status: Critical

Hosting

Proxy

Observed Client Profile

OS: Windows (100%)
Device Type: Desktop (100%)
Browser Family: Chrome (100%)
Rendering Engine: Gecko (100%)

Behavioral Indicators

The IP shows suspicious behavior with multiple requests to various paths, including access to admin-like endpoints resulting in 404 errors. The presence of honeypot hits indicates potential malicious intent. Additionally, the traffic originates from a hosting provider, raising concerns about automation and scraping activity.

The supernet (94.156.0.0/16), which this IP belongs to, exhibits coordinated behavior indicative of automated scraping, with multiple IPs utilizing similar user agents and accessing the same site repetitively. The presence of honeypot hits and DNS mismatches raises concerns about potential misuse of legitimate infrastructure.

🍯

Honeypot Hit

📡

Scanner

JavaScript Support

✓ Yes

User-Agent Samples

Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36 Edg/137.0.0.0

Integrate IPIntel into your system

IP Location

Region: Sofia-Capital, Bulgaria

City: Sofia

Local time: 2026-06-22 21:41:02

Subnet
94.156.14.0/24
Supernet
94.156.0.0/16