64.38.239.83 Threat Intelligence and Host Information

Sep 14, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 64.38.239.83 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • JARM: 29d29d16d29d29d00029d29d29d29de7e7bc68ff88a6e818cc060fb26a4f61

  • View other sources: Spamhaus VirusTotal

  • Country: United States
  • Network:
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: e866780a.21.ik2.com s480d.ik2.com bf4e14b4.21.ik2.com 238d0b62.21.ik2.com 2cfa777f.21.ik2.com b6a7a1e8.21.ik2.com 05dc62fb.21.ik2.com 0bb344b0.21.ik2.com 24d0ce2b.21.ik2.com aa3e66e1.21.ik2.com 22.ik2.io c518934e.21.ik2.com intercode.com.br.c2.mx1.ik2.com f4c76b5d.21.ik2.com 585ec115.21.ik2.com 0aaa9681.21.ik2.com mx.e14069a4.21.ik2.com pop.e18a05ce.21.ik2.com www.jet.net.c2.mx1.ik2.com d99b5191.21.ik2.com ik2.com 359ce863.21.ik2.com 66d37b3d.21.ik2.com 7c4ef3aa.21.ik2.com 1b49ea47.21.ik2.com butlersbarn.co.uk.c2.mx1.ik2.com 1870d00e.21.ik2.com comsec.com.br.c2.mx1.ik2.com finesthomesinmarin.com.c2.mx1.ik2.com

Malware Detected on Host

Count: 3 4ac074b54ebbafc82e075cdff6bad934cfb76757ce477cc22d4b7ef59528658a 2ff430b65a4c27bc62672d05bba8b2c09d41c784c1ebecee77cc9baa16316d5d db2a9662c735c619f1be272fbf6b729114d8cf753d451e424853fff1478eae48

Open Ports Detected

25 443 80

Map

Whois Information

  • NetRange: 64.38.216.0 - 64.38.239.255
  • CIDR: 64.38.216.0/21, 64.38.224.0/20
  • NetName: CWIE-BLK-1
  • NetHandle: NET-64-38-216-0-1
  • Parent: NET64 (NET-64-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: CWIE, LLC (CWIE)
  • RegDate: 2000-02-22
  • Updated: 2025-04-18
  • Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
  • Ref: https://rdap.arin.net/registry/ip/64.38.216.0
  • OrgName: CWIE, LLC
  • OrgId: CWIE
  • Address: 2353 W University Bldg A
  • City: Tempe
  • StateProv: AZ
  • PostalCode: 85281
  • Country: US
  • RegDate: 1999-09-01
  • Updated: 2025-02-27
  • Ref: https://rdap.arin.net/registry/entity/CWIE
  • OrgTechHandle: MONTE41-ARIN
  • OrgTechName: Montebello, Adrian
  • OrgTechPhone: +35679305305
  • OrgTechEmail: adrianm@phoenixnap.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/MONTE41-ARIN
  • OrgTechHandle: IPADM336-ARIN
  • OrgTechName: IPAdmin
  • OrgTechPhone: +1-480-422-2022
  • OrgTechEmail: ipadmin@cwie.net
  • OrgTechRef: https://rdap.arin.net/registry/entity/IPADM336-ARIN
  • OrgAbuseHandle: ABUSE1487-ARIN
  • OrgAbuseName: Abuse
  • OrgAbusePhone: +1-480-422-2022
  • OrgAbuseEmail: abuse@cwie.net
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1487-ARIN
  • OrgTechHandle: MUSGR48-ARIN
  • OrgTechName: Musgrave, Brian
  • OrgTechPhone: +1-480-401-0309
  • OrgTechEmail: brianmu@phoenixnap.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/MUSGR48-ARIN
  • NetRange: 64.38.239.0 - 64.38.239.127
  • CIDR: 64.38.239.0/25
  • NetName: WEB-TRAFFIC-MARKETING-SOLUTION
  • NetHandle: NET-64-38-239-0-1
  • Parent: CWIE-BLK-1 (NET-64-38-216-0-1)
  • NetType: Reallocated
  • OriginAS:
  • Organization: Web Traffic Marketing Solution (WEBTR-9)
  • RegDate: 2009-01-02
  • Updated: 2025-04-18
  • Ref: https://rdap.arin.net/registry/ip/64.38.239.0
  • OrgName: Web Traffic Marketing Solution
  • OrgId: WEBTR-9
  • Address: 7025 N.Scottsdale Rd.
  • City: Scottsdale
  • StateProv: AZ
  • PostalCode: 85253
  • Country: US
  • RegDate: 2009-01-02
  • Updated: 2011-09-24
  • Ref: https://rdap.arin.net/registry/entity/WEBTR-9
  • OrgTechHandle: ADMIN1548-ARIN
  • OrgTechName: Admin
  • OrgTechPhone: +1-602-490-5100
  • OrgTechEmail: brian@maxcash.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN1548-ARIN
  • OrgAbuseHandle: ADMIN1548-ARIN
  • OrgAbuseName: Admin
  • OrgAbusePhone: +1-602-490-5100
  • OrgAbuseEmail: brian@maxcash.com
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ADMIN1548-ARIN
  • network:Class-Name:network
  • network:Auth-Area:64.38.236.0/22
  • network:ID:NET-62496.64.38.239.80/29
  • network:Network-Name:64.38.239.80/29
  • network:IP-Network:64.38.239.80/29
  • network:IP-Network-Block:64.38.239.80 - 64.38.239.87
  • network:Org-Name:Private Customer
  • network:Street-Address:
  • network:City:
  • network:State:
  • network:Postal-Code:
  • network:Country-Code:
  • network:Tech-Contact:MAINT-62496.64.38.239.80/29
  • network:Created:20140731190804000
  • network:Updated:20140731190804000
  • network:Updated-By:dnsadmin@securedservers.com
  • contact:POC-Name:DNS Administrator
  • contact:POC-Email:dnsadmin@securedservers.com
  • contact:POC-Phone:(480) 422-2023
  • contact:Tech-Name:DNS Administrator
  • contact:Tech-Email:dnsadmin@securedservers.com
  • contact:Tech-Phone:(480) 422-2023
  • contact:Abuse-Name:Abuse
  • contact:Abuse-Email:abuse@securedservers.com
  • contact:Abuse-Phone:+1-480-422-2022 (Office)

Links to attack logs

****** ****** ******

Share on: