38.239.207.27 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 38.239.207.27 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: 1076app.com 2840app.com x661lv.com wwwyh0694.cc 258aacc.com 33001cc.com 9941cc.com ttcp118.com wwwpc95.com www86222g.com sx0000cc.com am128vip.com t7541.com 57607r.com wwwb022.com 988019vip.com 546aavip.com www3bo3.com 66w3wcc.com imc27wsce2slb.asia b2lcotrr1i53o.asia k0c5yelzrtimz.asia kq2zziygte0ou.asia bgg1cwfhruiht.asia kqwrt5slm02z5.asia 21ysq1r7cfliu.asia 3fukqtlhzeqs3.asia kze0c30zulcng.asia cgry57lc75zil.asia ct2yq7ebb12ku.asia cwmcrb372k0cq.asia hesch7mbykyei.asia by5nqfrww5isz.asia h52fmwzyr5ksf.asia h5sgw2gkrshsb.asia iq2hzyuzuo55z.asia krh3lfqfe7esb.asia 30kcbwku0lkmb.asia 3bys0mz3b7bbm.asia cw3qgensuf12k.asia b7z2thknb2zwh.asia 7gzloigctqosb.asia 371r5ciwrwlrz.asia h3oewke2gqr1u.asia ien2y1kq5ubcz.asia i5fmzzq5377qh.asia hk01ente1khmh.asia hn3kuhzq7fbcs.asia 77r71o21eto0k.asia 15hsckwsoyebn.asia 30037nhlcogmn.asia 3gt32eltlo3rr.asia 27z5cfncc5y0f.asia 2rtcourmkm0nl.asia 23q157wgq0obm.asia 7y07kfwwwob2b.asia 2bwkwfys7s3zo.asia kziz3fyioblfy.asia k5bs2w5kc3zgw.asia ckp193h257bji.asia hc5i79bj3kp21.asia i7h3jbp1c529k.asia 971k3cjhb52ip.asia hk2bj9pic7531.asia 5ki1p9j7bhc23.asia bjk7932hi51pc.asia 39hkb2jpi17c5.asia bi2j9375c1kph.asia 751hbij3p29ck.asia 7b2k15j9pi3ch.asia ki5239b1jpc7h.asia 3951hibk7jp2c.asia 395hipk1bcj72.asia bc9ji235kp71h.asia 57ci123bjk9hp.asia 2p31hj9ib5k7c.asia 93p57cb21hkij.asia kj79ic352phb1.asia 2bp7k53hji91c.asia ib51c23j7p9hk.asia cj1ibh7k5932p.asia ch3j9bi75pk12.asia 59c372kpihj1b.asia bhjpc7i253k19.asia 2cb3jpih71k95.asia jkc29ib3h17p5.asia kc7hj51923ibp.asia h9c52i3bpjk17.asia b19357jcpik2h.asia b5j21p7ihkc39.asia ipjb9khc23715.asia p51j729kc3ibh.asia jk27915cbpi3h.asia 92ikbjhp3c571.asia 31pk9275ihcjb.asia 71ik5b392hjpc.asia 3b527k9cjph1i.asia 1hk9ic327bjp5.asia 3jbi5cp721k9h.asia 7259614.lol 6159843.lol 3156987.lol 4579836.lol 8597412.lol 7129586.lol 7951483.lol 8247596.lol 1567283.lol 8239547.lol vxxvfh8dat8ka.asia j7da2kch5b13i.asia ylrth8jbid3oi.asia ynnv2ph7nkuln.asia 585paxq68ms3u.asia r4ammoumhu11e.asia hf9pm1ona2vs3.asia c7ovaaxddvc16.asia u9v398feyw6u3.asia riwvovkdops9j.asia upselqnja2ca4.asia pwrp4yt72klss.asia eih85as6u37zc.asia pi7bno3geqet8.asia vodp8w9976krn.asia h3rb3aasweck7.asia bs4rj3ma5bef4.asia oqlh1yagrof8j.asia op2x3k4p7tc1r.asia e5haaifl148z6.asia ff46kieaokqfw.asia ah532bdi1j9ck.asia 5p7ij3a2hdkb1.asia 2j3cka17bd5pi.asia bd19hk2ij7cap.asia icj2ahb37kp59.asia 1kc3b25jhdiap.asia 7k9pd3ib152ca.asia dk5i3ch97a2jp.asia jcda91h72i3kp.asia ik5jdbp3ca79h.asia ic92ha1kj5b7d.asia 5j3hcab9di27p.asia pjh5cd31i9ak2.asia 9cba5p27h3jik.asia 1bj29ad3kipc7.asia j3hb19aic52k7.asia 7hb93251ipakj.asia 273cidbjh1k95.asia 3c9jhka7i21d5.asia 35697.org 76281.vip 96834.vip 69471.vip 92486.vip 17362.pub 25139.pub 53796.pub 13768.pub yhmjs.org fuydn.org trwfm.org dgtyj.org swdmh.org nhrtd.org nfwdy.org nujty.org rgdhu.org fgwsr.org jinhuifenbi.com

Open Ports Detected

21

Map

Whois Information

• NetRange: 38.0.0.0 - 38.255.255.255
• CIDR: 38.0.0.0/8
• NetName: COGENT-A
• NetHandle: NET-38-0-0-0-1
• Parent: ()
• NetType: Direct Allocation
• OriginAS:
• Organization: Cogent Communications, LLC (COGC)
• RegDate: 1991-04-16
• Updated: 2025-09-23
• Ref: https://rdap.arin.net/registry/ip/38.0.0.0
• OrgName: Cogent Communications, LLC
• OrgId: COGC
• Address: 2450 N Street NW
• City: Washington
• StateProv: DC
• PostalCode: 20037
• Country: US
• RegDate: 2000-05-30
• Updated: 2025-09-23
• Comment: Geofeed https://geofeed.cogentco.com/geofeed.csv
• Ref: https://rdap.arin.net/registry/entity/COGC
• OrgNOCHandle: ZC108-ARIN
• OrgNOCName: Cogent Communications
• OrgNOCPhone: +1-877-875-4311
• OrgNOCEmail: noc@cogentco.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/ZC108-ARIN
• OrgTechHandle: IPALL-ARIN
• OrgTechName: IP Allocation
• OrgTechPhone: +1-877-875-4311
• OrgTechEmail: ipalloc@cogentco.com
• OrgTechRef: https://rdap.arin.net/registry/entity/IPALL-ARIN
• OrgAbuseHandle: COGEN-ARIN
• OrgAbuseName: Cogent Abuse
• OrgAbusePhone: +1-877-875-4311
• OrgAbuseEmail: abuse@cogentco.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/COGEN-ARIN
• NetRange: 38.238.0.0 - 38.239.255.255
• CIDR: 38.238.0.0/15
• NetName: DXTL-CGNT-NET-2
• NetHandle: NET-38-238-0-0-1
• Parent: COGENT-A (NET-38-0-0-0-1)
• NetType: Reallocated
• OriginAS:
• Organization: Defender cloud international llc (DCIL-3)
• RegDate: 2022-08-24
• Updated: 2022-08-24
• Ref: https://rdap.arin.net/registry/ip/38.238.0.0
• OrgName: Defender cloud international llc
• OrgId: DCIL-3
• Address: 113 barksdale professional ctr
• City: newark
• StateProv: DE
• PostalCode: 19711
• Country: US
• RegDate: 2013-06-19
• Updated: 2013-08-05
• Ref: https://rdap.arin.net/registry/entity/DCIL-3
• OrgTechHandle: SEANL1-ARIN
• OrgTechName: sean, li
• OrgTechPhone: +1-302-266-9367
• OrgTechEmail: ipadmin@dfdcloud.com
• OrgTechRef: https://rdap.arin.net/registry/entity/SEANL1-ARIN
• OrgNOCHandle: SEANL1-ARIN
• OrgNOCName: sean, li
• OrgNOCPhone: +1-302-266-9367
• OrgNOCEmail: ipadmin@dfdcloud.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/SEANL1-ARIN
• OrgAbuseHandle: SEANL1-ARIN
• OrgAbuseName: sean, li
• OrgAbusePhone: +1-302-266-9367
• OrgAbuseEmail: ipadmin@dfdcloud.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/SEANL1-ARIN
• NetRange: 38.239.0.0 - 38.239.255.255
• CIDR: 38.239.0.0/16
• NetName: DXTL-SERVICE
• NetHandle: NET-38-239-0-0-1
• Parent: DXTL-CGNT-NET-2 (NET-38-238-0-0-1)
• NetType: Reassigned
• OriginAS:
• Customer: DXTL-SERVICE (C08840737)
• RegDate: 2022-08-24
• Updated: 2022-08-24
• Comment: Abuse please ipadmin@dfdcloud.com
• Ref: https://rdap.arin.net/registry/ip/38.239.0.0
• CustName: DXTL-SERVICE
• Address: TKO
• City: Hong Kong
• StateProv:
• PostalCode:
• Country: HK
• RegDate: 2022-08-24
• Updated: 2022-08-24
• Ref: https://rdap.arin.net/registry/entity/C08840737
• OrgTechHandle: SEANL1-ARIN
• OrgTechName: sean, li
• OrgTechPhone: +1-302-266-9367
• OrgTechEmail: ipadmin@dfdcloud.com
• OrgTechRef: https://rdap.arin.net/registry/entity/SEANL1-ARIN
• OrgNOCHandle: SEANL1-ARIN
• OrgNOCName: sean, li
• OrgNOCPhone: +1-302-266-9367
• OrgNOCEmail: ipadmin@dfdcloud.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/SEANL1-ARIN
• OrgAbuseHandle: SEANL1-ARIN
• OrgAbuseName: sean, li
• OrgAbusePhone: +1-302-266-9367
• OrgAbuseEmail: ipadmin@dfdcloud.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/SEANL1-ARIN
• network:ID:NET4-26EE00000F
• network:Network-Name:NET4-26EE00000F
• network:IP-Network:38.238.0.0/15
• network:Org-Name:DingFeng XinHui(Hongkong) Technology Limited
• network:Street-Address:2/F, TGT IAC, 22 CHUN CHEONG STREET, TSEUNG KWAN O INDUSTRIAL ESTATE, NEW TERRITORIES
• network:City:HONG KONG
• network:Country:CN
• network:Tech-Contact:ZC108-ARIN
• network:Updated:2025-05-05 22:13:34