IP Risk Score: 74 / 100

This IP is considered high risk and shows signs of malicious behavior. Strong indicators point to automated scanning or suspicious access attempts. This assessment is backed by strong and consistent detection signals. The combined indicators suggest a high overall security risk. Defensive measures such as rate limiting or blocking are recommended.

Block IPs like this in your system

What is this IP address?

IP Address: 38.255.104.193

Country: Peru flag

Peru (PE)

Region Name: Arequipa (ARE)

City: Arequipa

ISP: YOTTALAN

Threat level: 74 / 100
Conf. level: 100 / 100

Properties

ASN: AS272836

AS Name: CALA SERVICIOS INTEGRALES E.I.R.L.

Timezone: America/Lima

Status: Critical

Observed Client Profile

OS: Windows (100%)
Device Type: Desktop (100%)
Browser Family: Chrome (100%)
Rendering Engine: Gecko (100%)

Behavioral Indicators

The IP shows signs of potential automated behavior, including a lack of JavaScript support and a structured user-agent that may be spoofed. The access pattern is limited, but the absence of RDNS raises concerns about its legitimacy.

The supernet (38.255.0.0/16), which this IP belongs to, exhibits coordinated behavior with multiple IPs utilizing similar user agents and engaging in repetitive, low-interaction visits to specific pages, suggesting potential automated scraping or bot activity. The lack of matching forward DNS records raises concerns about the legitimacy of the traffic.

JavaScript Support

⚠️ No

User-Agent Samples

Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.127 Safari/537.36

Integrate IPIntel into your system

IP Location

Region: Arequipa, Peru

City: Arequipa

Local time: 2026-06-22 03:37:57

Subnet
38.255.104.0/24
Supernet
38.255.0.0/16