JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 131.196.28.196

131.196.28.196 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 10%: ?

10%

ISP	Smart Serviço de Internet Ltda
Usage Type	Fixed Line ISP
ASN	AS271410
Hostname(s)	196-28-196-131.provedorsmartsp.com.br
Domain Name	provedorsmartsp.com.br
Country	🇧🇷 Brazil
City	Sao Paulo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 131.196.28.196

Whois 131.196.28.196

IP Abuse Reports for 131.196.28.196:

This IP address has been reported a total of 17 times from 6 distinct sources. 131.196.28.196 was first reported on November 25th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Fasetech	2026-05-24 15:58:38 (1 week ago)	SecLedge detected suspicious activity. Score: 97.56. Sensor: T-Pot.	Brute-Force
🇫🇷 Fasetech	2026-05-11 06:48:43 (3 weeks ago)	SecLedge detected suspicious activity. Score: 97.56. Sensor: T-Pot.	Brute-Force
Anonymous	2026-04-30 17:44:49 (1 month ago)	WARNING: DDoS attack from subnet 131.196.28.0/22 on service https with type SYN flood	DDoS Attack
🇫🇷 Fasetech	2026-04-12 14:03:24 (1 month ago)	SecLedge detected suspicious activity. Score: 97.56. Sensor: T-Pot.	Brute-Force
🇫🇷 Fasetech	2026-04-10 05:51:33 (1 month ago)	SecLedge detected suspicious activity. Score: 97.56. Sensor: T-Pot.	Brute-Force
Anonymous	2026-03-28 02:56:45 (2 months ago)	WARNING: DDoS attack from subnet 131.196.28.0/22 on service https with type SYN flood	DDoS Attack
🇫🇷 Fasetech	2026-03-27 02:14:49 (2 months ago)	SecLedge detected suspicious activity. Score: 97.56. Sensor: T-Pot.	Brute-Force
🇭🇰 pengpeng	2026-03-04 16:53:05 (3 months ago)	monitor: on ser162528253480 \| port: 443 \| ttl: 120 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on ser162528253480 \| port: 443 \| ttl: 120 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-03-04 14:07:41 (3 months ago)	WARNING: DDoS attack from subnet 131.196.28.0/22 on service https with type SYN flood	DDoS Attack
🇫🇷 Fasetech	2026-03-03 16:12:25 (3 months ago)	SecLedge detected suspicious activity. Score: 88.68. Sensor: T-Pot.	Brute-Force
Anonymous	2026-03-02 18:30:33 (3 months ago)	WARNING: DDoS attack from subnet 131.196.28.0/22 on service https with type SYN flood	DDoS Attack
🇦🇺 Anytech	2026-03-01 22:31:59 (3 months ago)	CrowdSec detected: conn-monitor/flood: DDoS attack from subnet 131.196.0.0/16	Brute-Force Web App Attack
🇩🇪 yuki	2026-02-25 13:46:21 (3 months ago)	Blocked by UFW on vps [443/tcp] \| SPT: 55303 \| TTL: 124 \| LEN: 52 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on vps [443/tcp] \| SPT: 55303 \| TTL: 124 \| LEN: 52 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-02-23 14:44:56 (3 months ago)	WARNING: DDoS attack from subnet 131.196.28.0/22 on service https with type SYN stealth flood	DDoS Attack
🇦🇺 Anytech	2026-02-23 14:41:15 (3 months ago)	CrowdSec detected: conn-monitor/flood: DDoS attack from subnet 131.196.0.0/16	Brute-Force Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.141.32.143

🇧🇷 200.155.66.2

🇰🇷 118.37.214.187

🇳🇱 77.83.39.185

🇵🇰 72.255.18.49

🇺🇸 2a03:2880:16ff:49::

🇺🇸 2a03:2880:16ff:f::

🇺🇸 216.73.161.167

🇺🇸 208.84.100.215

🇫🇷 198.244.62.93

🇺🇸 173.239.211.132

🇸🇬 161.118.216.12

🇩🇪 141.11.250.227

🇨🇳 139.210.168.18

🇨🇳 122.13.25.186

🇨🇳 111.26.96.111

🇺🇸 104.36.50.21

🇹🇼 101.13.1.58

🇮🇷 94.74.165.5

🇳🇱 89.187.174.104