Identicon of IP address 131.72.60.65

131.72.60.65

IP Risk Score: 86 / 100

This IP is considered potentially malicious and poses a serious security threat. Activity from this IP is consistent with active and malicious behavior. This assessment is backed by strong and consistent detection signals. The IP represents a severe and confirmed security risk. Immediate blocking or mitigation is strongly recommended.

Protect your system
What is this IP address?
IP Address: 131.72.60.65
Country: Brazil flag Brazil (BR)
Region Name: São Paulo (SP)
City: São Paulo
ISP: Grupohost Comunicacao Multimidia Ltda
Organization: Grupohost Comunicacao Multimidia Ltda
Threat level: 86 / 100
Conf. level: 100 / 100
Properties
ASN: AS53231
AS Name: GRUPOHOST COMUNICACAO MULTIMIDIA LTDA
Timezone: America/Sao_Paulo
Status: Critical

Observed Client Profile
  • OS: Windows (100%)
  • Device Type: Desktop (100%)
  • Browser Family: Unknown (100%)
  • Rendering Engine: Unknown (100%)
Behavioral Indicators

The IP shows signs of automated behavior with a malformed user-agent and no JavaScript support, indicating potential scraping activity. The 403 hits suggest attempts to access restricted content, raising concerns about malicious intent.

The supernet (131.72.0.0/16), which this IP belongs to, exhibits suspicious behavior characterized by repetitive, low-interaction visits across multiple IPs, with a significant overlap in user agents suggesting potential automation. The presence of DNS mismatches and a lack of legitimate bot characteristics raises concerns about coordinated scraping or analytics pollution.

🚷
Blocked Paths
JavaScript Support
⚠️ No
User-Agent Samples
  • Mozilla/5.0 (compatible; MSIE 6.0; Windows NT 6.0; Trident/5.1)
Integrate IPIntel into your system

IP Location

Region: São Paulo, Brazil

City: São Paulo

Local time: 2026-06-24 01:19:36


Subnet
131.72.60.0/24
Supernet
131.72.0.0/16