185.147.214.252 Fraud Risk

High Risk
← Lowest Risk
Highest Risk →
0
Fraud Score: 86
100
IP address 185.147.214.252 is a high fraud risk. This IP address is owned by Highwinds Network Group, Inc. who are themselves a high risk ISP. Scamalytics see low levels of traffic from this IP address across our global network, most of which is fraudulent. We apply a risk score of 86/100 to 185.147.214.252, meaning that of the traffic where we have visibility, 86% is suspected to be fraudulent. If you see traffic from this IP address there is a high risk that it is criminals engaged in fraudulent activity. 185.147.214.252 is operating an anonymising VPN, which is likely to be proxying traffic from another geographical location. The geographical location of 185.147.214.252 is in Spain, however the geographical location of the user could be anywhere in the world.
Operator
Hostname bpx-mad1.reliablehosting.com
ASN 33438 - HIGHWINDS2 - Highwinds Network Group, Inc.
ISP Name Highwinds Network Group, Inc.
Organization Name n/a
Connection type n/a
Location
Country Name Spain
Country Code ES
Region Madrid
City Madrid
Postal Code 28001
Metro Code n/a
Area Code n/a
Latitude 40.4168
Longitude -3.7038
Port Scan
TCP
26/rsftp
Filtered
TCP
135/msrpc
Open
Microsoft Windows RPC
TCP
139/netbios-ssn
Open
Microsoft Windows netbios-ssn
TCP
445/microsoft-ds
Open
Microsoft Windows Server 2008 R2 - 2012 microsoft-ds
TCP
631/ipp
Filtered
TCP
1028/unknown
Filtered
TCP
1029/ms-lsa
Filtered
TCP
3389/ms-wbt-server
Open
Microsoft Terminal Service
TCP
5060/sip
Filtered
TCP
8008/http
Filtered
TCP
8009/ajp13
Filtered
TCP
9100/jetdirect
Filtered
TCP
49152/msrpc
Open
Microsoft Windows RPC
TCP
49153/msrpc
Open
Microsoft Windows RPC
TCP
49154/msrpc
Open
Microsoft Windows RPC
TCP
49155/msrpc
Open
Microsoft Windows RPC
TCP
49156/msrpc
Open
Microsoft Windows RPC
TCP
49157/msrpc
Open
Microsoft Windows RPC
TCP
25/smtp
Filtered
TCP
22/ssh
Filtered
TCP
5666/tcpwrapped
Open
TCP
111/rpcbind
Open
2-4 (RPC #100000)
TCP
80/http
Open
nginx
TCP
443/openvpn
Open
OpenVPN
TCP
995/pop3s?
Open
TCP
1723/pptp
Open
cananian (Firmware: 1)
TCP
53/tcpwrapped
Open
TCP
110/pop3?
Open
TCP
2000/cisco-sccp
Filtered
TCP
8888/http
Open
Apache httpd
TCP
646/ldp
Filtered
TCP
144/news
Filtered
TCP
3986/mapper-ws_ethd
Filtered
TCP
4899/radmin
Filtered
TCP
5432/postgresql
Filtered
TCP
32768/filenet-tms
Filtered
TCP
465/smtps
Closed
TCP
587/submission
Closed
TCP
8080/http-proxy?
Open
TCP
8081/blackice-icecap?
Open
TCP
8443/https-alt?
Open
TCP
179/tcpwrapped
Open
TCP
389/ldap
Filtered
TCP
1720/h323q931
Filtered
TCP
554/rtsp?
Open
TCP
5357/http
Open
Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
TCP
8000/http-proxy
Open
Squid http proxy 3.5.20
Proxies
Anonymizing VPN
Yes
Tor Exit Node
No
Server
No
Public Proxy
No
Web Proxy
No
Search Engine Robot
No
Domain Names
bpx-mad1.reliablehosting.com

IP address data sponsored by IP2Location

Execution time: 377ms