JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 131.196.28.225

131.196.28.225 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 7%: ?

ISP	Smart Serviço de Internet Ltda
Usage Type	Fixed Line ISP
ASN	AS271410
Hostname(s)	225-28-196-131.provedorsmartsp.com.br
Domain Name	provedorsmartsp.com.br
Country	🇧🇷 Brazil
City	Sao Paulo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 131.196.28.225

Whois 131.196.28.225

IP Abuse Reports for 131.196.28.225:

This IP address has been reported a total of 26 times from 11 distinct sources. 131.196.28.225 was first reported on July 28th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-30 17:34:43 (1 month ago)	WARNING: DDoS attack from subnet 131.196.28.0/22 on service https with type SYN flood	DDoS Attack
🇫🇷 Fasetech	2026-04-28 06:39:21 (1 month ago)	SecLedge detected suspicious activity. Score: 121.08. Sensor: T-Pot.	Brute-Force
🇫🇷 Fasetech	2026-04-24 11:26:43 (1 month ago)	SecLedge detected suspicious activity. Score: 121.08. Sensor: T-Pot.	Brute-Force
🇫🇷 Fasetech	2026-04-16 05:20:13 (2 months ago)	SecLedge detected suspicious activity. Score: 121.08. Sensor: T-Pot.	Brute-Force
🇫🇷 Fasetech	2026-04-11 10:01:37 (2 months ago)	SecLedge detected suspicious activity. Score: 121.08. Sensor: T-Pot.	Brute-Force
🇫🇷 Fasetech	2026-04-10 07:24:25 (2 months ago)	SecLedge detected suspicious activity. Score: 121.08. Sensor: T-Pot.	Brute-Force
Anonymous	2026-03-28 03:03:19 (2 months ago)	WARNING: DDoS attack from subnet 131.196.28.0/22 on service https with type SYN flood	DDoS Attack
🇺🇸 aspicer6	2026-03-28 03:00:25 (2 months ago)	Participated in TCP SYN flood / DDoS attack against HTTPS service. Automated IPS detection and ban. ... show more Participated in TCP SYN flood / DDoS attack against HTTPS service. Automated IPS detection and ban. - Spicer Networks NOC show less	DDoS Attack
🇫🇷 Fasetech	2026-03-22 10:30:37 (2 months ago)	SecLedge detected suspicious activity. Score: 121.08. Sensor: T-Pot.	Brute-Force
🇫🇷 Fasetech	2026-03-20 11:55:40 (2 months ago)	SecLedge detected suspicious activity. Score: 121.08. Sensor: T-Pot.	Brute-Force
🇫🇷 Fasetech	2026-03-12 02:45:01 (3 months ago)	SecLedge detected suspicious activity. Score: 121.08. Sensor: T-Pot.	Brute-Force
🇭🇰 pengpeng	2026-03-04 17:30:15 (3 months ago)	monitor: on ser162528253480 \| port: 443 \| ttl: 116 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on ser162528253480 \| port: 443 \| ttl: 116 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-03-04 01:19:43 (3 months ago)	WARNING: DDoS attack from subnet 131.196.28.0/22 on service https with type SYN flood	DDoS Attack
Anonymous	2026-03-02 18:20:47 (3 months ago)	WARNING: DDoS attack from subnet 131.196.28.0/22 on service https with type SYN flood	DDoS Attack
🇦🇺 Anytech	2026-03-01 21:26:05 (3 months ago)	CrowdSec detected: conn-monitor/flood: DDoS attack from subnet 131.196.0.0/16	Brute-Force Web App Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 182.105.123.10

🇧🇾 178.124.221.15

🇧🇷 131.161.249.165

🇫🇷 85.217.140.26

🇵🇱 45.141.233.69

🇰🇷 218.146.163.192

🇺🇸 209.90.232.26

🇧🇪 198.235.24.151

🇺🇸 165.154.218.169

🇹🇼 110.25.109.52

🇺🇸 108.170.28.178

🇳🇱 89.21.67.160

🇯🇵 82.40.35.104

🇸🇪 81.226.129.67

🇷🇴 80.94.92.120

🇩🇪 69.5.169.3

🇺🇸 68.235.62.179

🇯🇵 45.113.82.153

🇹🇼 34.81.221.113

🇩🇪 31.77.156.62