185.117.215.9 Fraud Risk

High Risk
← Lowest Risk
Highest Risk →
0
Fraud Score: 67
100
We consider ​web traffic​ from IP address ​185.117.215.9​ to present a potentially high fraud risk. This IP address is operated by Digineo 23media whose web traffic we ​consider to present a potentially ​low​ fraud risk, and is owned by ​23media GmbH​ whose web traffic we​ consider to present a potentially ​medium​ fraud risk. In each of these cases, non-web traffic may present a different risk or no risk at all. According to our most recent port scan, the IP address points to a server running the SSH server OpenSSH 7.2p2 Ubuntu 4ubuntu2.2 (Ubuntu Linux; protocol 2.0) on port 22. Scamalytics see high levels of web traffic from this IP address across our global network, ​some of which we suspect to be potentially fraudulent. Considering only the web traffic where we have visibility, we apply a risk score of 67​/100 to 185.117.215.9​, which reflects the proportion of this traffic which we suspect to be potentially fraudulent. If you see web traffic from this IP address there is potentially a high risk that it is criminals engaged in fraudulent activity. Other types of traffic may present a different risk or no risk. The device on​ 185.117.215.9 is operating ​a public proxy, which could be proxying traffic from another geographical location. The geographical location of 185.117.215.9 is in Germany, however the geographical location of the user could be anywhere in the world.
IP Fraud Risk API
{
  "ip":"185.117.215.9",
  "score":"67",
  "risk":"high"
}
Click here for details of our free usage tier, free trial, and pricing information.
Operator
Hostname tor3.digineo.de
ASN 47447 - TTM
ISP Name 23media GmbH
Organization Name Digineo 23media
Connection type n/a
Location
Country Name Germany
Country Code DE
Region Hesse
City Frankfurt am Main
Postal Code 60313
Metro Code n/a
Area Code n/a
Latitude 50.1109
Longitude 8.6821
Port Scan
TCP
179/bgp
Filtered
TCP
139/netbios-ssn
Filtered
TCP
3389/ssh
Open
OpenSSH 7.4p1 Debian 10+deb9u4 (protocol 2.0)
TCP
25/smtp
Filtered
TCP
22/ssh
Open
OpenSSH 7.2p2 Ubuntu 4ubuntu2.2 (Ubuntu Linux; protocol 2.0)
TCP
53/domain
Closed
TCP
80/http
Open
nginx 1.10.3 (Ubuntu)
TCP
113/ident
Closed
TCP
443/https
Closed
TCP
21/ftp
Open
ProFTPD
TCP
49152/unknown
Closed
TCP
49153/unknown
Closed
TCP
49154/unknown
Closed
TCP
49155/unknown
Closed
TCP
49156/unknown
Closed
TCP
49157/unknown
Closed
TCP
554/rtsp?
Open
TCP
143/imap
Closed
TCP
587/submission
Closed
TCP
3306/mysql
Closed
TCP
8888/sun-answerbook
Closed
TCP
135/msrpc
Filtered
TCP
445/microsoft-ds
Filtered
TCP
1723/pptp
Filtered
TCP
3128/squid-http
Filtered
TCP
5000/upnp
Filtered
TCP
5009/airport-admin
Filtered
TCP
5051/ida-agent
Filtered
TCP
5060/sip
Filtered
TCP
5101/admdog
Filtered
TCP
5190/aol
Filtered
TCP
5357/http
Open
Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
TCP
5432/postgresql
Filtered
TCP
5631/pcanywheredata
Filtered
TCP
5666/nrpe
Filtered
TCP
5800/vnc-http
Filtered
TCP
5900/vnc
Filtered
TCP
6000/X11
Filtered
TCP
8080/http
Open
SonicWALL firewall http config
TCP
548/afp
Filtered
TCP
6001/X11:1
Filtered
TCP
6646/unknown
Filtered
TCP
7070/realserver
Filtered
TCP
8000/http-alt
Filtered
TCP
8008/http
Filtered
TCP
8009/ajp13
Filtered
TCP
8081/blackice-icecap
Filtered
TCP
646/ldp
Filtered
TCP
2000/bandwidth-test
Open
MikroTik bandwidth-test server
TCP
111/rpcbind
Open
2-4 (RPC #100000)
TCP
23/telnet
Open
TCP
8443/ssl/https-alt?
Open
Proxies
Anonymizing VPN
No
Tor Exit Node
No
Server
No
Public Proxy
Yes
Web Proxy
No
Search Engine Robot
No
Domain Names
tor3.digineo.de

IP Address data partner DB-IP.com:

Proxy data sponsored by IP2Proxy:

IMPORTANT: Scamalytics Ltd operate a fraud-detection network with visibility into many millions of internet users per month. We do not have visibility into the entire internet. The statements on this page represent our opinion based on the limited information we have available to us, and specifically only cover web connections made by internet users to websites and applications, not other connections such as server to server connections.