69.16.147.209 Fraud Risk

High Risk
← Lowest Risk
Highest Risk →
0
Fraud Score: 100
100
IP address 69.16.147.209 is a very high fraud risk. This IP address is owned by Highwinds Network Group who are themselves a very high risk ISP. Scamalytics see very high levels of traffic from this IP address across our global network, almost all of which is fraudulent. We apply a risk score of 100/100 to 69.16.147.209, meaning that of the traffic where we have visibility, 100% is suspected to be fraudulent. If you see traffic from this IP address there is a very high risk that it is criminals engaged in fraudulent activity. 69.16.147.209 is operating an anonymising VPN, which is likely to be proxying traffic from another geographical location. The geographical location of 69.16.147.209 is in the United States, however the geographical location of the user could be anywhere in the world.
Operator
Hostname 69-16-147-209.ipvanish.com
ASN 11588 - HIGHWINDS - Highwinds Network Group, Inc.
ISP Name Highwinds Network Group
Organization Name SecuredConnectivity.net
Connection type n/a
Location
Country Name United States
Country Code US
Region Arizona
City Phoenix (Encanto)
Postal Code 85012
Metro Code n/a
Area Code n/a
Latitude 33.4867
Longitude -112.0740
Port Scan
TCP
26/rsftp
Filtered
TCP
135/msrpc
Open
Microsoft Windows RPC
TCP
139/netbios-ssn
Open
Microsoft Windows netbios-ssn
TCP
445/microsoft-ds
Open
Microsoft Windows Server 2008 R2 - 2012 microsoft-ds
TCP
631/ipp
Filtered
TCP
1028/unknown
Filtered
TCP
1029/ms-lsa
Filtered
TCP
3389/ms-wbt-server
Open
Microsoft Terminal Service
TCP
5060/sip
Filtered
TCP
8008/http
Filtered
TCP
8009/ajp13
Filtered
TCP
9100/jetdirect
Filtered
TCP
49152/msrpc
Open
Microsoft Windows RPC
TCP
49153/msrpc
Open
Microsoft Windows RPC
TCP
49154/msrpc
Open
Microsoft Windows RPC
TCP
49155/msrpc
Open
Microsoft Windows RPC
TCP
49156/msrpc
Open
Microsoft Windows RPC
TCP
49157/msrpc
Open
Microsoft Windows RPC
TCP
25/smtp
Filtered
TCP
22/ssh
Filtered
TCP
5666/tcpwrapped
Open
TCP
111/rpcbind
Open
2-4 (RPC #100000)
TCP
80/http
Open
nginx
TCP
443/openvpn
Open
OpenVPN
TCP
995/pop3s?
Open
TCP
1723/pptp
Open
cananian (Firmware: 1)
TCP
53/tcpwrapped
Open
TCP
110/pop3?
Open
TCP
2000/cisco-sccp
Filtered
TCP
8888/http
Open
Apache httpd
TCP
646/ldp
Filtered
TCP
144/news
Filtered
TCP
3986/mapper-ws_ethd
Filtered
TCP
4899/radmin
Filtered
TCP
5432/postgresql
Filtered
TCP
32768/filenet-tms
Filtered
TCP
465/smtps
Closed
TCP
587/submission
Closed
TCP
8080/http-proxy?
Open
TCP
8081/blackice-icecap?
Open
TCP
8443/https-alt?
Open
TCP
179/tcpwrapped
Open
TCP
389/ldap
Filtered
TCP
1720/h323q931
Filtered
TCP
554/rtsp?
Open
TCP
5357/http
Open
Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
Proxies
Anonymizing VPN
Yes
Tor Exit Node
No
Server
No
Public Proxy
No
Web Proxy
No
Search Engine Robot
No
Domain Names
69-16-147-209.ipvanish.com

IP address data sponsored by IP2Location

Execution time: 10ms