城市(city): Dallas
省份(region): Texas
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
# start
NetRange: 38.0.0.0 - 38.255.255.255
CIDR: 38.0.0.0/8
NetName: COGENT-A
NetHandle: NET-38-0-0-0-1
Parent: ()
NetType: Direct Allocation
OriginAS:
Organization: Cogent Communications, LLC (COGC)
RegDate: 1991-04-16
Updated: 2025-09-23
Ref: https://rdap.arin.net/registry/ip/38.0.0.0
OrgName: Cogent Communications, LLC
OrgId: COGC
Address: 2450 N Street NW
City: Washington
StateProv: DC
PostalCode: 20037
Country: US
RegDate: 2000-05-30
Updated: 2025-09-23
Comment: Geofeed https://geofeed.cogentco.com/geofeed.csv
Ref: https://rdap.arin.net/registry/entity/COGC
ReferralServer: rwhois://rwhois.cogentco.com:4321
OrgAbuseHandle: COGEN-ARIN
OrgAbuseName: Cogent Abuse
OrgAbusePhone: +1-877-875-4311
OrgAbuseEmail: abuse@cogentco.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/COGEN-ARIN
OrgNOCHandle: ZC108-ARIN
OrgNOCName: Cogent Communications
OrgNOCPhone: +1-877-875-4311
OrgNOCEmail: noc@cogentco.com
OrgNOCRef: https://rdap.arin.net/registry/entity/ZC108-ARIN
OrgTechHandle: IPALL-ARIN
OrgTechName: IP Allocation
OrgTechPhone: +1-877-875-4311
OrgTechEmail: ipalloc@cogentco.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPALL-ARIN
# end
# start
NetRange: 38.213.0.0 - 38.213.255.255
CIDR: 38.213.0.0/16
NetName: WEB-THREE-CGNT-NET-1
NetHandle: NET-38-213-0-0-1
Parent: COGENT-A (NET-38-0-0-0-1)
NetType: Reassigned
OriginAS:
Customer: Web Three Limited (C11284594)
RegDate: 2025-07-17
Updated: 2025-07-17
Ref: https://rdap.arin.net/registry/ip/38.213.0.0
CustName: Web Three Limited
Address: PROLOGACION PASEO DE LA REFORMA NO 5287
City: Mexico City
StateProv: DF
PostalCode: 05000
Country: MX
RegDate: 2025-07-17
Updated: 2025-07-17
Ref: https://rdap.arin.net/registry/entity/C11284594
OrgAbuseHandle: COGEN-ARIN
OrgAbuseName: Cogent Abuse
OrgAbusePhone: +1-877-875-4311
OrgAbuseEmail: abuse@cogentco.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/COGEN-ARIN
OrgNOCHandle: ZC108-ARIN
OrgNOCName: Cogent Communications
OrgNOCPhone: +1-877-875-4311
OrgNOCEmail: noc@cogentco.com
OrgNOCRef: https://rdap.arin.net/registry/entity/ZC108-ARIN
OrgTechHandle: IPALL-ARIN
OrgTechName: IP Allocation
OrgTechPhone: +1-877-875-4311
OrgTechEmail: ipalloc@cogentco.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPALL-ARIN
# end
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
Found a referral to rwhois.cogentco.com:4321.
%rwhois V-1.5:0010b0:00 rwhois.cogentco.com (CGNT rwhoisd 1.2.1)
network:ID:NET4-26D5000010
network:Network-Name:NET4-26D5000010
network:IP-Network:38.213.0.0/16
network:Org-Name:Octopus Web Services Limited
network:Street-Address:2323 BRYAN STREET
network:City:DALLAS
network:State:TX
network:Country:US
network:Postal-Code:75201
network:Tech-Contact:ZC108-ARIN
network:Updated:2025-09-30 13:03:47
%ok; <<>> DiG 9.10.3-P4-Ubuntu <<>> 38.213.168.248
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8592
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;38.213.168.248. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025120903 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 10 12:51:52 CST 2025
;; MSG SIZE rcvd: 107Host 248.168.213.38.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 248.168.213.38.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 118.68.165.29 | attackspambots | Unauthorized connection attempt from IP address 118.68.165.29 on Port 445(SMB) |
2019-11-26 06:04:43 |
| 185.162.235.110 | attackbotsspam | Port probe, failed login and relay attempts SMTP:25. IP blocked. |
2019-11-26 06:14:58 |
| 195.245.214.113 | attackspam | Unauthorized connection attempt from IP address 195.245.214.113 on Port 445(SMB) |
2019-11-26 05:57:22 |
| 35.199.89.26 | attackbots | Time: Mon Nov 25 11:10:31 2019 -0300 IP: 35.199.89.26 (US/United States/26.89.199.35.bc.googleusercontent.com) Failures: 30 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block |
2019-11-26 06:29:43 |
| 84.44.14.226 | attack | Unauthorized connection attempt from IP address 84.44.14.226 on Port 445(SMB) |
2019-11-26 06:10:40 |
| 162.248.52.82 | attackspam | Invalid user ume from 162.248.52.82 port 48476 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.248.52.82 Failed password for invalid user ume from 162.248.52.82 port 48476 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.248.52.82 user=root Failed password for root from 162.248.52.82 port 55938 ssh2 |
2019-11-26 06:00:48 |
| 45.95.33.106 | attackspambots | Lines containing failures of 45.95.33.106 Nov 25 14:04:52 shared01 postfix/smtpd[24473]: connect from flower.honeytreenovi.com[45.95.33.106] Nov 25 14:04:52 shared01 policyd-spf[24483]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=45.95.33.106; helo=flower.naderidoost.com; envelope-from=x@x Nov x@x Nov 25 14:04:53 shared01 postfix/smtpd[24473]: disconnect from flower.honeytreenovi.com[45.95.33.106] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Nov 25 14:05:04 shared01 postfix/smtpd[24473]: connect from flower.honeytreenovi.com[45.95.33.106] Nov 25 14:05:04 shared01 policyd-spf[24483]: prepend Received-SPF: Pass (mailfrom) identhostnamey=mailfrom; client-ip=45.95.33.106; helo=flower.naderidoost.com; envelope-from=x@x Nov x@x Nov 25 14:05:04 shared01 postfix/smtpd[24473]: disconnect from flower.honeytreenovi.com[45.95.33.106] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Nov 25 14:15:01 shared01 postfix/smtpd[27299]: conn........ ------------------------------ |
2019-11-26 06:30:46 |
| 187.188.182.87 | attackspam | Automatic report - XMLRPC Attack |
2019-11-26 06:13:17 |
| 112.85.42.173 | attackspam | 2019-11-25T21:37:46.139258shield sshd\[15484\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.173 user=root 2019-11-25T21:37:47.797245shield sshd\[15484\]: Failed password for root from 112.85.42.173 port 58215 ssh2 2019-11-25T21:37:51.492113shield sshd\[15484\]: Failed password for root from 112.85.42.173 port 58215 ssh2 2019-11-25T21:37:54.922559shield sshd\[15484\]: Failed password for root from 112.85.42.173 port 58215 ssh2 2019-11-25T21:37:57.904195shield sshd\[15484\]: Failed password for root from 112.85.42.173 port 58215 ssh2 |
2019-11-26 05:55:41 |
| 41.39.235.76 | attackbots | Unauthorized connection attempt from IP address 41.39.235.76 on Port 445(SMB) |
2019-11-26 05:59:30 |
| 139.59.59.187 | attackbotsspam | Nov 25 21:39:57 mail sshd[27136]: Invalid user scaner from 139.59.59.187 ... |
2019-11-26 06:22:02 |
| 222.252.25.241 | attackbotsspam | Invalid user amber from 222.252.25.241 port 8440 |
2019-11-26 05:55:13 |
| 200.93.114.140 | attackbotsspam | firewall-block, port(s): 23/tcp |
2019-11-26 05:54:12 |
| 14.248.83.50 | attackbotsspam | Unauthorized connection attempt from IP address 14.248.83.50 on Port 445(SMB) |
2019-11-26 06:09:18 |
| 117.199.61.51 | attack | Unauthorized connection attempt from IP address 117.199.61.51 on Port 445(SMB) |
2019-11-26 06:26:25 |