IP Risk Score: 81 / 100

This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.

Protect your system

What is this IP address?

IP Address: 131.72.27.203

Country: Paraguay flag

Paraguay (PY)

Region Name: Canindeyú (14)

City: Katueté

ISP: Tempus Group S.A.

Organization: Tempus Group S.A

Threat level: 81 / 100
Conf. level: 100 / 100

Properties

ASN: AS52455

AS Name: TEMPUS GROUP S.A.

Timezone: America/Asuncion

Reverse DNS: 131-72-27-203.tempusnet.com.py

Status: Critical

Observed Client Profile

OS: Android (100%)
Device Type: Mobile (100%)
Browser Family: Chrome (100%)
Rendering Engine: Gecko (100%)

Behavioral Indicators

The IP shows signs of potential automated activity, including a botnet detection signal and lack of JavaScript support. The user-agent appears to be a mobile device but may be spoofed. The access pattern is limited, but the botnet detection raises concerns.

The supernet (131.72.0.0/16), which this IP belongs to, exhibits suspicious behavior characterized by repetitive, low-interaction visits across multiple IPs, with a significant overlap in user agents suggesting potential automation. The presence of DNS mismatches and a lack of legitimate bot characteristics raises concerns about coordinated scraping or analytics pollution.

🕸️

Botnet Node

JavaScript Support

⚠️ No

User-Agent Samples

Mozilla/5.0 (Linux; Android 8.0; Pixel 2 Build/OPD3.170816.012) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.8030.1104 Mobile Safari/537.36

Integrate IPIntel into your system

IP Location

Region: Canindeyú, Paraguay

City: Katueté

Local time: 2026-06-24 23:47:55

Subnet
131.72.27.0/24
Supernet
131.72.0.0/16