38.148.201.97 - IPInfo

基本信息:

城市(city): Los Angeles

省份(region): California

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

b'#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



# start

NetRange:       38.0.0.0 - 38.255.255.255
CIDR:           38.0.0.0/8
NetName:        COGENT-A
NetHandle:      NET-38-0-0-0-1
Parent:          ()
NetType:        Direct Allocation
OriginAS:       
Organization:   Cogent Communications, LLC (COGC)
RegDate:        1991-04-16
Updated:        2025-09-23
Ref:            https://rdap.arin.net/registry/ip/38.0.0.0



OrgName:        Cogent Communications, LLC
OrgId:          COGC
Address:        2450 N Street NW
City:           Washington
StateProv:      DC
PostalCode:     20037
Country:        US
RegDate:        2000-05-30
Updated:        2025-09-23
Comment:        Geofeed https://geofeed.cogentco.com/geofeed.csv
Ref:            https://rdap.arin.net/registry/entity/COGC

ReferralServer:  rwhois://rwhois.cogentco.com:4321

OrgAbuseHandle: COGEN-ARIN
OrgAbuseName:   Cogent Abuse
OrgAbusePhone:  +1-877-875-4311 
OrgAbuseEmail:  abuse@cogentco.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/COGEN-ARIN

OrgNOCHandle: ZC108-ARIN
OrgNOCName:   Cogent Communications
OrgNOCPhone:  +1-877-875-4311 
OrgNOCEmail:  noc@cogentco.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/ZC108-ARIN

OrgTechHandle: IPALL-ARIN
OrgTechName:   IP Allocation
OrgTechPhone:  +1-877-875-4311 
OrgTechEmail:  ipalloc@cogentco.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPALL-ARIN

# end


# start

NetRange:       38.148.192.0 - 38.148.255.255
CIDR:           38.148.192.0/18
NetName:        KURUN-CGNT-NET-7
NetHandle:      NET-38-148-192-0-1
Parent:         COGENT-A (NET-38-0-0-0-1)
NetType:        Reallocated
OriginAS:       
Organization:   KURUN CLOUD INC (KC-2074)
RegDate:        2023-08-23
Updated:        2023-08-23
Ref:            https://rdap.arin.net/registry/ip/38.148.192.0


OrgName:        KURUN CLOUD INC
OrgId:          KC-2074
Address:        6550 Meadow Lane PL, Rancho Cucamonga, CA 91701
City:           LA
StateProv:      CA
PostalCode:     91701
Country:        US
RegDate:        2020-11-19
Updated:        2024-11-25
Ref:            https://rdap.arin.net/registry/entity/KC-2074


OrgAbuseHandle: ABUSE8033-ARIN
OrgAbuseName:   Abuse
OrgAbusePhone:  +1-909-279-1111 
OrgAbuseEmail:  abuse@kurun.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE8033-ARIN

OrgNOCHandle: NOC33228-ARIN
OrgNOCName:   NOC
OrgNOCPhone:  +1-909-279-1111 
OrgNOCEmail:  noc@kurun.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/NOC33228-ARIN

OrgTechHandle: TECH1232-ARIN
OrgTechName:   Tech
OrgTechPhone:  +1-909-279-1111 
OrgTechEmail:  noc@kurun.com
OrgTechRef:    https://rdap.arin.net/registry/entity/TECH1232-ARIN

# end



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



Found a referral to rwhois.cogentco.com:4321.

%rwhois V-1.5:0010b0:00 rwhois.cogentco.com (CGNT rwhoisd 1.2.2)
network:ID:NET4-2694C00012
network:Network-Name:NET4-2694C00012
network:IP-Network:38.148.192.0/18
network:Org-Name:KURUN CLOUD INC
network:Street-Address:624 SOUTH GRAND AVENUE
network:City:LOS ANGELES
network:State:CA
network:Country:US
network:Postal-Code:90017
network:Tech-Contact:ZC108-ARIN
network:Updated:2026-05-01 08:45:34
%ok'

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 38.148.201.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49964
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;38.148.201.97.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026062202 1800 900 604800 86400

;; Query time: 31 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 23 10:16:17 CST 2026
;; MSG SIZE  rcvd: 106

HOST信息:

Host 97.201.148.38.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 97.201.148.38.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.89.205.130	attackspambots	Aug 13 21:03:10 lnxweb61 sshd[14528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.205.130 Aug 13 21:03:10 lnxweb61 sshd[14528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.205.130	2019-08-14 03:29:11
112.85.42.227	attackbots	Aug 13 14:31:31 aat-srv002 sshd[21069]: Failed password for root from 112.85.42.227 port 62472 ssh2 Aug 13 14:46:55 aat-srv002 sshd[21552]: Failed password for root from 112.85.42.227 port 22936 ssh2 Aug 13 14:46:57 aat-srv002 sshd[21552]: Failed password for root from 112.85.42.227 port 22936 ssh2 Aug 13 14:47:00 aat-srv002 sshd[21552]: Failed password for root from 112.85.42.227 port 22936 ssh2 ...	2019-08-14 03:58:21
129.211.82.124	attack	Aug 13 20:50:32 vps647732 sshd[31011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.82.124 Aug 13 20:50:34 vps647732 sshd[31011]: Failed password for invalid user postgres from 129.211.82.124 port 45836 ssh2 ...	2019-08-14 03:43:10
94.12.194.81	attackspambots	Automatic report - Port Scan Attack	2019-08-14 03:30:28
41.236.18.208	attack	" "	2019-08-14 03:27:35
118.24.95.31	attackspambots	Aug 13 13:41:31 euve59663 sshd[5335]: Invalid user postgres from 118.24= .95.31 Aug 13 13:41:31 euve59663 sshd[5335]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D118.= 24.95.31=20 Aug 13 13:41:32 euve59663 sshd[5335]: Failed password for invalid user = postgres from 118.24.95.31 port 40061 ssh2 Aug 13 13:41:33 euve59663 sshd[5335]: Received disconnect from 118.24.9= 5.31: 11: Bye Bye [preauth] Aug 13 14:19:11 euve59663 sshd[8209]: Invalid user fastuser from 118.24= .95.31 Aug 13 14:19:11 euve59663 sshd[8209]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D118.= 24.95.31=20 Aug 13 14:19:12 euve59663 sshd[8209]: Failed password for invalid user = fastuser from 118.24.95.31 port 36432 ssh2 Aug 13 14:19:13 euve59663 sshd[8209]: Received disconnect from 118.24.9= 5.31: 11: Bye Bye [preauth] Aug 13 14:24:32 euve59663 sshd[8262]: Invalid user oracle from 118.24.9= 5........ -------------------------------	2019-08-14 03:47:37
182.18.171.148	attack	Aug 14 01:36:05 itv-usvr-01 sshd[13161]: Invalid user nagios from 182.18.171.148	2019-08-14 03:41:32
95.213.177.125	attackbotsspam	Port scan on 1 port(s): 8080	2019-08-14 03:49:55
108.176.64.123	attackspam	Aug 12 15:27:11 penfold sshd[12533]: Invalid user asecruc from 108.176.64.123 port 49140 Aug 12 15:27:11 penfold sshd[12533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.176.64.123 Aug 12 15:27:14 penfold sshd[12533]: Failed password for invalid user asecruc from 108.176.64.123 port 49140 ssh2 Aug 12 15:27:14 penfold sshd[12533]: Received disconnect from 108.176.64.123 port 49140:11: Bye Bye [preauth] Aug 12 15:27:14 penfold sshd[12533]: Disconnected from 108.176.64.123 port 49140 [preauth] Aug 12 15:44:05 penfold sshd[13622]: Invalid user victoria from 108.176.64.123 port 36970 Aug 12 15:44:05 penfold sshd[13622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.176.64.123 Aug 12 15:44:07 penfold sshd[13622]: Failed password for invalid user victoria from 108.176.64.123 port 36970 ssh2 Aug 12 15:44:07 penfold sshd[13622]: Received disconnect from 108.176.64.123 port 36970:11: B........ -------------------------------	2019-08-14 03:36:27
163.172.192.210	attack	\[2019-08-13 15:22:24\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-13T15:22:24.414-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9003011972592277524",SessionID="0x7ff4d0c799b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.192.210/61304",ACLName="no_extension_match" \[2019-08-13 15:26:52\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-13T15:26:52.062-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9004011972592277524",SessionID="0x7ff4d0404308",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.192.210/60764",ACLName="no_extension_match" \[2019-08-13 15:28:27\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-13T15:28:27.469-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="6011972595725702",SessionID="0x7ff4d07e79a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.192.210/50071",	2019-08-14 03:39:31
94.191.39.20	attack	Aug 13 22:53:47 server sshd\[13011\]: User root from 94.191.39.20 not allowed because listed in DenyUsers Aug 13 22:53:47 server sshd\[13011\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.39.20 user=root Aug 13 22:53:49 server sshd\[13011\]: Failed password for invalid user root from 94.191.39.20 port 35930 ssh2 Aug 13 22:59:39 server sshd\[26306\]: Invalid user butter from 94.191.39.20 port 55640 Aug 13 22:59:39 server sshd\[26306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.39.20	2019-08-14 04:00:01
58.211.168.246	attackbotsspam	Aug 13 20:11:03 mail sshd[27119]: Invalid user fax from 58.211.168.246 Aug 13 20:11:03 mail sshd[27119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.211.168.246 Aug 13 20:11:03 mail sshd[27119]: Invalid user fax from 58.211.168.246 Aug 13 20:11:05 mail sshd[27119]: Failed password for invalid user fax from 58.211.168.246 port 51298 ssh2 Aug 13 20:28:04 mail sshd[29059]: Invalid user oracle from 58.211.168.246 ...	2019-08-14 03:22:39
109.76.25.197	attack	Mail sent to address obtained from MySpace hack	2019-08-14 03:44:00
196.196.219.18	attack	Aug 13 21:19:01 vps691689 sshd[1172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.196.219.18 Aug 13 21:19:03 vps691689 sshd[1172]: Failed password for invalid user yang from 196.196.219.18 port 55628 ssh2 ...	2019-08-14 03:29:43
115.221.66.165	attackbotsspam	[portscan] Port scan	2019-08-14 03:47:20

最近上报的IP列表

110.78.158.79	125.78.58.150	93.123.109.103	113.99.176.178
20.197.180.144	4.228.83.28	161.35.103.113	121.230.89.79
107.173.37.138	94.231.206.10	2606:4700:10::6814:7614	2606:4700:10::6814:5454
103.170.233.205	121.230.89.114	175.202.24.204	121.154.254.104
118.43.123.122	2606:4700:10::ac43:2275	2606:4700:10::ac43:1129	115.242.166.190