38.207.158.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): California

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



# start

NetRange:       38.0.0.0 - 38.255.255.255
CIDR:           38.0.0.0/8
NetName:        COGENT-A
NetHandle:      NET-38-0-0-0-1
Parent:          ()
NetType:        Direct Allocation
OriginAS:       
Organization:   Cogent Communications, LLC (COGC)
RegDate:        1991-04-16
Updated:        2025-09-23
Ref:            https://rdap.arin.net/registry/ip/38.0.0.0



OrgName:        Cogent Communications, LLC
OrgId:          COGC
Address:        2450 N Street NW
City:           Washington
StateProv:      DC
PostalCode:     20037
Country:        US
RegDate:        2000-05-30
Updated:        2025-09-23
Comment:        Geofeed https://geofeed.cogentco.com/geofeed.csv
Ref:            https://rdap.arin.net/registry/entity/COGC

ReferralServer:  rwhois://rwhois.cogentco.com:4321

OrgAbuseHandle: COGEN-ARIN
OrgAbuseName:   Cogent Abuse
OrgAbusePhone:  +1-877-875-4311 
OrgAbuseEmail:  abuse@cogentco.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/COGEN-ARIN

OrgNOCHandle: ZC108-ARIN
OrgNOCName:   Cogent Communications
OrgNOCPhone:  +1-877-875-4311 
OrgNOCEmail:  noc@cogentco.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/ZC108-ARIN

OrgTechHandle: IPALL-ARIN
OrgTechName:   IP Allocation
OrgTechPhone:  +1-877-875-4311 
OrgTechEmail:  ipalloc@cogentco.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPALL-ARIN

# end


# start

NetRange:       38.207.144.0 - 38.207.159.255
CIDR:           38.207.144.0/20
NetName:        EONS-CGNT-NET-2
NetHandle:      NET-38-207-144-0-1
Parent:         COGENT-A (NET-38-0-0-0-1)
NetType:        Reallocated
OriginAS:       
Organization:   Eons Data Communications Limited (EDCL-7)
RegDate:        2023-07-31
Updated:        2025-12-15
Comment:        Geofeed https://geofeed.edcl.io/geofeed/138997/geofeed.csv
Ref:            https://rdap.arin.net/registry/ip/38.207.144.0


OrgName:        Eons Data Communications Limited
OrgId:          EDCL-7
Address:        FLAT/RM 1307, 13 F, BEVERLEY COMMERCIAL CENTRE, 87-105, CHATHAM ROAD SOUTH
City:           TSIM SHA TSUI
StateProv:      KOWLOON
PostalCode:     999077
Country:        HK
RegDate:        2023-07-11
Updated:        2024-01-02
Ref:            https://rdap.arin.net/registry/entity/EDCL-7


OrgTechHandle: NOC33661-ARIN
OrgTechName:   NOC
OrgTechPhone:  +852-3502-7196 
OrgTechEmail:  noc@eons.cloud
OrgTechRef:    https://rdap.arin.net/registry/entity/NOC33661-ARIN

OrgAbuseHandle: ABUSE8782-ARIN
OrgAbuseName:   ABUSE
OrgAbusePhone:  +852-96969662 
OrgAbuseEmail:  abuse@edcl.io
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE8782-ARIN

# end



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



Found a referral to rwhois.cogentco.com:4321.

%rwhois V-1.5:0010b0:00 rwhois.cogentco.com (CGNT rwhoisd 1.2.2)
network:ID:NET4-26CF900014
network:Network-Name:NET4-26CF900014
network:IP-Network:38.207.144.0/20
network:Org-Name:Eons Data Communications Limited
network:Street-Address:33 CANTON ROAD
network:City:TSIM SHA TSUI
network:Country:HK
network:Postal-Code:0
network:Tech-Contact:ZC108-ARIN
network:Updated:2025-05-06 17:34:07
%ok

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 38.207.158.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51487
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;38.207.158.6.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026021500 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 15 13:52:23 CST 2026
;; MSG SIZE  rcvd: 105

HOST信息:

Host 6.158.207.38.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.158.207.38.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.235.242.163	attackbots	Tried sshing with brute force.	2020-04-11 21:51:38
219.233.49.234	attack	DATE:2020-04-11 14:19:37, IP:219.233.49.234, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-04-11 21:55:57
95.85.20.81	attackbots	Apr 11 14:50:22 [host] sshd[1437]: Invalid user co Apr 11 14:50:22 [host] sshd[1437]: pam_unix(sshd:a Apr 11 14:50:23 [host] sshd[1437]: Failed password	2020-04-11 21:26:44
142.44.240.190	attackspam	Apr 11 15:42:38 ewelt sshd[9985]: Invalid user ping from 142.44.240.190 port 45522 Apr 11 15:42:39 ewelt sshd[9985]: Failed password for invalid user ping from 142.44.240.190 port 45522 ssh2 Apr 11 15:46:37 ewelt sshd[10183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.240.190 user=root Apr 11 15:46:39 ewelt sshd[10183]: Failed password for root from 142.44.240.190 port 55294 ssh2 ...	2020-04-11 21:52:26
113.179.31.111	attack	(sshd) Failed SSH login from 113.179.31.111 (VN/Vietnam/static.vnpt.vn): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 11 14:19:05 ubnt-55d23 sshd[25797]: Invalid user oracle from 113.179.31.111 port 59145 Apr 11 14:19:07 ubnt-55d23 sshd[25797]: Failed password for invalid user oracle from 113.179.31.111 port 59145 ssh2	2020-04-11 22:11:35
36.72.217.12	attack	20/4/11@08:19:59: FAIL: Alarm-Network address from=36.72.217.12 ...	2020-04-11 21:38:24
212.32.245.156	attackbotsspam	(pop3d) Failed POP3 login from 212.32.245.156 (NL/Netherlands/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 11 16:49:41 ir1 dovecot[566034]: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=212.32.245.156, lip=5.63.12.44, session=	2020-04-11 21:49:17
36.155.113.40	attackspam	Apr 11 15:31:05 silence02 sshd[13412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.113.40 Apr 11 15:31:07 silence02 sshd[13412]: Failed password for invalid user system from 36.155.113.40 port 49347 ssh2 Apr 11 15:35:35 silence02 sshd[13700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.113.40	2020-04-11 21:49:32
92.118.38.82	attackspambots	2020-04-11 16:36:38 dovecot_login authenticator failed for \(User\) \[92.118.38.82\]: 535 Incorrect authentication data \(set_id=00000000@org.ua\)2020-04-11 16:37:11 dovecot_login authenticator failed for \(User\) \[92.118.38.82\]: 535 Incorrect authentication data \(set_id=property@org.ua\)2020-04-11 16:37:44 dovecot_login authenticator failed for \(User\) \[92.118.38.82\]: 535 Incorrect authentication data \(set_id=capacitacion@org.ua\) ...	2020-04-11 21:40:35
92.118.37.95	attack	firewall-block, port(s): 13165/tcp, 13473/tcp, 13985/tcp, 14613/tcp, 14671/tcp, 14750/tcp, 15494/tcp, 15610/tcp, 15619/tcp, 16147/tcp, 16699/tcp, 16702/tcp, 16769/tcp, 16836/tcp, 16912/tcp, 16979/tcp, 17104/tcp, 17396/tcp, 17470/tcp, 17608/tcp, 18134/tcp, 18177/tcp, 18226/tcp, 18764/tcp, 18766/tcp, 18769/tcp, 18901/tcp, 19576/tcp	2020-04-11 21:28:15
218.92.0.175	attackspam	Apr 11 15:37:23 163-172-32-151 sshd[19178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.175 user=root Apr 11 15:37:25 163-172-32-151 sshd[19178]: Failed password for root from 218.92.0.175 port 19366 ssh2 ...	2020-04-11 21:41:04
218.92.0.171	attackspam	Apr 11 15:39:50 vmd48417 sshd[30313]: Failed password for root from 218.92.0.171 port 27203 ssh2	2020-04-11 21:43:29
120.92.2.217	attack	Apr 11 16:45:47 lukav-desktop sshd\[19563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.2.217 user=root Apr 11 16:45:49 lukav-desktop sshd\[19563\]: Failed password for root from 120.92.2.217 port 30888 ssh2 Apr 11 16:50:19 lukav-desktop sshd\[19721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.2.217 user=root Apr 11 16:50:21 lukav-desktop sshd\[19721\]: Failed password for root from 120.92.2.217 port 6828 ssh2 Apr 11 16:52:15 lukav-desktop sshd\[19788\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.2.217 user=root	2020-04-11 22:04:28
93.174.93.91	attack	probes 3 times on the port 8080 8081 8888 resulting in total of 4 scans from 93.174.88.0/21 block.	2020-04-11 21:26:17
112.133.236.60	attack	Repeated attempts against wp-login	2020-04-11 21:45:02

最近上报的IP列表

111.225.148.29	106.224.153.83	121.234.219.156	2606:4700:10::6814:9931
122.193.247.124	2606:4700:10::6816:2938	2606:4700:10::6816:2968	2606:4700:10::6816:3811
2606:4700:10::6814:9612	2606:4700:10::ac43:1857	2606:4700:10::6814:7975	2606:4700:10::6814:5558
2606:4700:10::ac43:1101	2606:4700:10::6814:9395	2606:4700:10::ac43:2094	2606:4700:10::6814:6210
2606:4700:10::6814:4809	2606:4700:10::ac43:715	110.249.201.179	2606:4700:10::6814:7407