Significant Threat
This IP address has been flagged with a high threat level of 8/10 based on 43,462 reports collected across 20 automated honeypot sources between August 2025 and February 2026. The dominant threat activity involves general hacking attempts, specifically connection attempts to honeypot traps and Dionaea malware and exploit behaviors commonly associated with automated vulnerability scanning and exploitation toolkits. Although activity frequency is reported as minimal in recent intervals, the cumulative report volume and sustained reporting window indicate persistent automated attack infrastructure originating from Amazon Web Services cloud hosting infrastructure in the United States.
High-volume honeypot targeting suggests this IP is part of automated scanning campaigns that systematically probe networks for vulnerable services across the internet. Dionaea activity specifically indicates attempts to deliver or interact with malware delivery mechanisms. While the host may be operating as a cloud attack platform, the scale and consistency of reports strongly correlate with compromised or rented cloud infrastructure commonly used in botnet or scanning operations, posing risks to any exposed services regardless of whether the intended targets are production systems or additional honeypots.
Site operators should implement network-level blocking for this IP range at perimeter firewalls or intrusion prevention systems. Keep all systems and services updated with current security patches to reduce vulnerability exposure to the types of exploitation attempts this IP has been observed conducting. Deploy or enhance honeypot or network detection systems to identify similar scanning patterns, and consider reporting the activity to the hosting provider to contribute to broader takedown efforts of malicious cloud infrastructure.
ZA 
IE 
GB 
SC 
RO