193.25.100.74 Fraud Risk

Very high Risk
← Lowest Risk
Highest Risk →
0
Fraud Score: 100
100
IP address ​​193.25.100.74 is operated by ​First Root Vps15 whose ​​web traffic we considerto present a potentially very high​ fraud risk. This IP address is owned by ​​First Root UG (haftungsbeschraenkt) whose web traffic we also considerto present a potentially very high fraud risk. In both cases, non-web traffic may present a different risk or no risk at all. According to our most recent port scan, the IP address points to a server running the SSH server OpenSSH 7.4p1 Debian 10+deb9u7 (protocol 2.0) on port 3389. Scamalytics see high levels of traffic from First Root Vps15 across our global network, ​almost all of which we suspect to be potentially fraudulent. We have no visibility into the web traffic directly from ​193.25.100.74​, and therefore apply a risk score of ​100​/100 based on the overall riskfrom ​First Root Vps15​’s IP addresses where we do have visibility. If you see web traffic from this IP address there is potentially a very high risk that it is criminals engaged in fraudulent activity. Other types of traffic may present a different risk or no risk. The device on​ 193.25.100.74 is operating ​a public proxy, which could be proxying traffic from another geographical location. The geographical location of 193.25.100.74 is in Germany, however the geographical location of the user could be anywhere in the world.
IP Fraud Risk API
{
  "ip":"193.25.100.74",
  "score":"100",
  "risk":"very high"
}
        
Click here for details of our free usage tier, free trial, and pricing information.
Operator
Hostname vps3961.first-root.com
ASN 41108 - HOFFRATH-AS
ISP Name First Root UG (haftungsbeschraenkt)
Organization Name First Root Vps15
Connection type n/a
Location
Country Name Germany
Country Code DE
Region North Rhine-Westphalia
City Düsseldorf
Postal Code 40213
Metro Code n/a
Area Code n/a
Latitude 51.2277
Longitude 6.7735
Port Scan
TCP
139/netbios-ssn
Filtered
TCP
443/ssl/http-proxy
Open
(proxy authentication required)
TCP
3389/ssh
Open
OpenSSH 7.4p1 Debian 10+deb9u7 (protocol 2.0)
TCP
135/msrpc
Filtered
TCP
445/microsoft-ds
Filtered
TCP
25/smtp
Filtered
TCP
7/echo
Filtered
TCP
9/discard
Filtered
TCP
119/nntp
Filtered
TCP
144/news
Filtered
TCP
444/snpp
Filtered
TCP
465/smtps
Filtered
TCP
513/login
Filtered
TCP
514/shell
Filtered
TCP
646/ldp
Filtered
TCP
990/ftps
Filtered
TCP
1028/unknown
Filtered
TCP
2717/pn-requester
Filtered
TCP
4899/radmin
Filtered
TCP
5051/ida-agent
Filtered
TCP
5101/admdog
Filtered
TCP
5432/postgresql
Filtered
TCP
6000/X11
Filtered
TCP
6646/unknown
Filtered
TCP
7070/realserver
Filtered
TCP
8000/http-alt
Filtered
TCP
8009/ajp13
Filtered
TCP
8443/https-alt
Filtered
TCP
9100/jetdirect
Filtered
TCP
49152/msrpc
Open
Microsoft Windows RPC
TCP
49153/msrpc
Open
Microsoft Windows RPC
TCP
49154/msrpc
Open
Microsoft Windows RPC
TCP
49155/msrpc
Open
Microsoft Windows RPC
TCP
49156/msrpc
Open
Microsoft Windows RPC
TCP
49157/msrpc
Open
Microsoft Windows RPC
TCP
22/ssh
Closed
TCP
80/http
Closed
TCP
1723/pptp
Open
DrayTek (Firmware: 1)
TCP
113/ident
Closed
TCP
179/bgp
Filtered
TCP
2000/bandwidth-test
Open
MikroTik bandwidth-test server
TCP
32768/filenet-tms?
Open
TCP
53/domain
Open
ISC BIND no one knows
TCP
111/rpcbind
Open
2-4 (RPC #100000)
TCP
5060/tcpwrapped
Open
TCP
5666/tcpwrapped
Open
TCP
88/kerberos-sec
Closed
Proxies
Anonymizing VPN
No
Tor Exit Node
No
Server
No
Public Proxy
Yes
Web Proxy
No
Search Engine Robot
No
Domain Names
vps3961.first-root.com

IP Address data partner DB-IP.com:

Proxy data sponsored by IP2Proxy:

IMPORTANT: Scamalytics Ltd operate a fraud-detection network with visibility into many millions of internet users per month. We do not have visibility into the entire internet. The statements on this page represent our opinion based on the limited information we have available to us, and specifically only cover web connections made by internet users to websites and applications, not other connections such as server to server connections.