2.98.81.203 Fraud Risk

High Risk
← Lowest Risk
Highest Risk →
0
Fraud Score: 98
100
IP address 2.98.81.203 is a very high fraud risk. This IP address is owned by TalkTalk who are themselves a low risk ISP. Scamalytics see very high levels of traffic from this IP address across our global network, almost all of which is fraudulent. We apply a risk score of 98/100 to 2.98.81.203, meaning that of the traffic where we have visibility, 98% is suspected to be fraudulent. If you see traffic from this IP address there is a very high risk that it is criminals engaged in fraudulent activity.
Operator
Hostname host-2-98-81-203.as13285.net
ASN 13285 - OPALTELECOM-AS TalkTalk Communications Limited
ISP Name TalkTalk
Organization Name TalkTalk
Connection type dsl
Location
Country Name United Kingdom
Country Code GB
Region England
City Stoke-on-Trent
Postal Code ST6
Metro Code n/a
Area Code n/a
Latitude 53.0792
Longitude -2.1401
Port Scan
TCP
22/ssh
Open
OpenSSH 7.2 (protocol 2.0)
TCP
80/http
Closed
TCP
88/kerberos-sec
Closed
TCP
443/http-proxy
Open
Squid http proxy 3.5.25
TCP
8000/http-proxy
Open
Squid http proxy 3.5.20
TCP
21/ftp
Filtered
TCP
23/telnet
Filtered
TCP
53/domain
Filtered
TCP
139/netbios-ssn
Filtered
TCP
445/microsoft-ds
Filtered
TCP
631/ipp
Filtered
TCP
3389/ms-wbt-server
Open
Microsoft Terminal Service
TCP
1025/http
Open
Talk Talk YouView set-top box http config
TCP
1026/LSA-or-nterm
Closed
TCP
8080/http-proxy
Open
Squid http proxy 3.5.20
TCP
514/shell
Closed
TCP
1723/pptp
Open
cananian (Firmware: 1)
TCP
5000/ssl/http
Open
nginx
TCP
7070/realserver
Closed
TCP
9999/abyss
Closed
TCP
10000/http
Open
MiniServ 1.881 (Webmin httpd)
TCP
26/rsftp
Filtered
TCP
37/time
Filtered
TCP
79/finger
Filtered
TCP
81/hosts2-ns
Filtered
TCP
106/pop3pw
Filtered
TCP
179/bgp
Filtered
TCP
465/smtps
Filtered
TCP
513/login
Filtered
TCP
548/afp
Filtered
TCP
990/ftps
Filtered
TCP
1755/wms
Filtered
TCP
2000/cisco-sccp
Filtered
TCP
3986/mapper-ws_ethd
Filtered
TCP
4899/radmin
Filtered
TCP
5190/aol
Filtered
TCP
5432/postgresql
Filtered
TCP
5800/vnc-http
Filtered
TCP
5900/vnc
Open
RealVNC Enterprise 5.3 or later (protocol 5.0)
TCP
8443/ssl/https-alt
Open
httpd/2.0
TCP
135/msrpc
Open
Microsoft Windows RPC
TCP
8081/http
Open
Tornado httpd 4.5
TCP
49152/msrpc
Open
Microsoft Windows RPC
TCP
49153/msrpc
Open
Microsoft Windows RPC
TCP
49154/msrpc
Open
Microsoft Windows RPC
TCP
49155/msrpc
Open
Microsoft Windows RPC
TCP
49156/msrpc
Open
Microsoft Windows RPC
TCP
554/rtsp
Open
D-Link DCS-2130 or Pelco IDE10DN webcam rtspd
TCP
5666/tcpwrapped
Open
TCP
25/smtp
Open
Kerio Connect smtpd 9.2.8 patch 1
TCP
110/pop3
Open
Kerio Connect pop3d 9.2.8 patch 1
TCP
143/imap
Open
Kerio Connect imapd 9.2.8 patch 1
TCP
5060/sip
Filtered
Proxies
Anonymizing VPN
No
Tor Exit Node
No
Server
No
Public Proxy
No
Web Proxy
No
Domain Names
host-2-98-81-203.as13285.net
host-2-98-81-203.as13285.net

IP address data sponsored by IP2Location

Execution time: 11ms