201.28.135.246 Fraud Risk

Very high Risk
← Lowest Risk
Highest Risk →
0
Fraud Score: 100
100
We consider ​web traffic​ from IP address ​201.28.135.246​ to present a potentially very high fraud risk. This IP address is operated by TELEF�NICA BRASIL S.A whose web traffic we ​consider to present a potentially ​low​ fraud risk, and is owned by ​Vivo​ whose web traffic we​ also consider to present a potentially ​low​ fraud risk. In each of these cases, non-web traffic may present a different risk or no risk at all. According to our most recent port scan, the IP address points to a server running the proxy server httpd/2.0 on port 8080, as well as the SSH server OpenSSH 7.4 (protocol 2.0) on port 22. Scamalytics see high levels of web traffic from this IP address across our global network, ​almost all of which we suspect to be potentially fraudulent. Considering only the web traffic where we have visibility, we apply a risk score of 100​/100 to 201.28.135.246​, which reflects the proportion of this traffic which we suspect to be potentially fraudulent. If you see web traffic from this IP address there is potentially a very high risk that it is criminals engaged in fraudulent activity. Other types of traffic may present a different risk or no risk.
IP Fraud Risk API
{
  "ip":"201.28.135.246",
  "score":"100",
  "risk":"very high"
}
        
Click here for details of our free usage tier, free trial, and pricing information.
Operator
Hostname 201-28-135-246.customer.tdatabrasil.net.br
ASN 10429 - Telefonica Data S.A.
ISP Name Vivo
Organization Name TELEF�NICA BRASIL S.A
Connection type n/a
Location
Country Name Brazil
Country Code BR
Region São Paulo
City São Paulo
Postal Code 01000-000
Metro Code n/a
Area Code n/a
Latitude -23.5505
Longitude -46.6333
Port Scan
TCP
21/ftp
Open
TCP
22/ssh
Open
OpenSSH 7.4 (protocol 2.0)
TCP
25/smtp
Open
Postfix smtpd
TCP
80/http
Open
Apache httpd 2.4.6 ((CentOS) OpenSSL/1.0.2k-fips mod_wsgi/3.4 Python/2.7.5)
TCP
110/pop3
Open
Dovecot pop3d
TCP
143/imap
Open
Dovecot imapd
TCP
443/ssl/http
Open
Apache httpd 2.4.6 ((CentOS) OpenSSL/1.0.2k-fips mod_wsgi/3.4 Python/2.7.5)
TCP
587/smtp
Open
Postfix smtpd
TCP
993/ssl/imap
Open
Dovecot imapd
TCP
995/ssl/pop3
Open
Dovecot pop3d
TCP
5000/http
Open
nginx
TCP
53/domain
Open
MikroTik RouterOS named or OpenDNS Updater
TCP
1720/h323q931
Filtered
TCP
1723/pptp
Open
MikroTik (Firmware: 1)
TCP
2000/bandwidth-test
Open
MikroTik bandwidth-test server
TCP
6000/ssl
Open
Microsoft SChannel TLS
TCP
6001/X11:1
Filtered
TCP
554/rtsp
Filtered
TCP
8888/sun-answerbook
Filtered
TCP
139/microsoft-ds
Open
TCP
445/microsoft-ds
Open
TCP
23/telnet
Filtered
TCP
135/msrpc
Filtered
TCP
646/ldp
Filtered
TCP
8000/ipcam
Open
Hikvision IPCam control port
TCP
179/bgp
Filtered
TCP
8081/http
Open
Microsoft IIS httpd 8.5
TCP
10000/http
Open
MiniServ 1.941 (Webmin httpd)
TCP
113/ident
Closed
TCP
548/afp
Open
Netatalk 3.1.12 (name: NyulNAS; protocol 3.4)
TCP
3306/mysql
Open
MySQL 5.7.36-log
TCP
111/rpcbind
Open
2 (RPC #100000)
TCP
8443/ssl/http
Open
Apache httpd
TCP
88/kerberos-sec
Closed
TCP
5009/airport-admin
Closed
TCP
5051/ida-agent
Closed
TCP
5060/sip
Closed
TCP
5101/admdog
Closed
TCP
5190/aol
Closed
TCP
8080/http-proxy
Open
httpd/2.0
TCP
5432/postgresql?
Open
TCP
873/rsync
Open
(protocol version 30)
Proxies
Anonymizing VPN
No
Tor Exit Node
No
Server
No
Public Proxy
No
Web Proxy
No
Search Engine Robot
No
Domain Names
201-28-135-246.customer.tdatabrasil.net.br

IP Address data partner DB-IP.com:

Proxy data sponsored by IP2Proxy:

IMPORTANT: Scamalytics Ltd operate a fraud-detection network with visibility into many millions of internet users per month. We do not have visibility into the entire internet. The statements on this page represent our opinion based on the limited information we have available to us, and specifically only cover web connections made by internet users to websites and applications, not other connections such as server to server connections.