38.60.89.45 - IPInfo

基本信息:

城市(city): Los Angeles

省份(region): California

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



# start

NetRange:       38.0.0.0 - 38.255.255.255
CIDR:           38.0.0.0/8
NetName:        COGENT-A
NetHandle:      NET-38-0-0-0-1
Parent:          ()
NetType:        Direct Allocation
OriginAS:       
Organization:   Cogent Communications, LLC (COGC)
RegDate:        1991-04-16
Updated:        2025-09-23
Ref:            https://rdap.arin.net/registry/ip/38.0.0.0



OrgName:        Cogent Communications, LLC
OrgId:          COGC
Address:        2450 N Street NW
City:           Washington
StateProv:      DC
PostalCode:     20037
Country:        US
RegDate:        2000-05-30
Updated:        2025-09-23
Comment:        Geofeed https://geofeed.cogentco.com/geofeed.csv
Ref:            https://rdap.arin.net/registry/entity/COGC

ReferralServer:  rwhois://rwhois.cogentco.com:4321

OrgTechHandle: IPALL-ARIN
OrgTechName:   IP Allocation
OrgTechPhone:  +1-877-875-4311 
OrgTechEmail:  ipalloc@cogentco.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPALL-ARIN

OrgAbuseHandle: COGEN-ARIN
OrgAbuseName:   Cogent Abuse
OrgAbusePhone:  +1-877-875-4311 
OrgAbuseEmail:  abuse@cogentco.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/COGEN-ARIN

OrgNOCHandle: ZC108-ARIN
OrgNOCName:   Cogent Communications
OrgNOCPhone:  +1-877-875-4311 
OrgNOCEmail:  noc@cogentco.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/ZC108-ARIN

# end


# start

NetRange:       38.60.64.0 - 38.60.127.255
CIDR:           38.60.64.0/18
NetName:        KURUN-CGNT-NET-6
NetHandle:      NET-38-60-64-0-1
Parent:         COGENT-A (NET-38-0-0-0-1)
NetType:        Reallocated
OriginAS:       
Organization:   KURUN CLOUD INC (KC-2074)
RegDate:        2023-08-23
Updated:        2023-08-23
Ref:            https://rdap.arin.net/registry/ip/38.60.64.0


OrgName:        KURUN CLOUD INC
OrgId:          KC-2074
Address:        6550 Meadow Lane PL, Rancho Cucamonga, CA 91701
City:           LA
StateProv:      CA
PostalCode:     91701
Country:        US
RegDate:        2020-11-19
Updated:        2024-11-25
Ref:            https://rdap.arin.net/registry/entity/KC-2074


OrgAbuseHandle: ABUSE8033-ARIN
OrgAbuseName:   Abuse
OrgAbusePhone:  +1-909-279-1111 
OrgAbuseEmail:  abuse@kurun.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE8033-ARIN

OrgTechHandle: TECH1232-ARIN
OrgTechName:   Tech
OrgTechPhone:  +1-909-279-1111 
OrgTechEmail:  noc@kurun.com
OrgTechRef:    https://rdap.arin.net/registry/entity/TECH1232-ARIN

OrgNOCHandle: NOC33228-ARIN
OrgNOCName:   NOC
OrgNOCPhone:  +1-909-279-1111 
OrgNOCEmail:  noc@kurun.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/NOC33228-ARIN

# end



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



Found a referral to rwhois.cogentco.com:4321.

%rwhois V-1.5:0010b0:00 rwhois.cogentco.com (CGNT rwhoisd 1.2.1)
network:ID:NET4-263C400012
network:Network-Name:NET4-263C400012
network:IP-Network:38.60.64.0/18
network:Org-Name:KURUN CLOUD INC
network:Street-Address:624 SOUTH GRAND AVENUE
network:City:LOS ANGELES
network:State:CA
network:Country:US
network:Postal-Code:90017
network:Tech-Contact:ZC108-ARIN
network:Updated:2025-05-06 14:18:08
%ok

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 38.60.89.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2647
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;38.60.89.45.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025120201 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 03 11:22:19 CST 2025
;; MSG SIZE  rcvd: 104

HOST信息:

Host 45.89.60.38.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.89.60.38.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
101.255.81.91	attackspam	Mar 3 02:06:40 plusreed sshd[28382]: Invalid user test from 101.255.81.91 ...	2020-03-03 15:13:47
51.38.46.41	attack	Mar 3 05:56:28 163-172-32-151 sshd[16152]: Invalid user esadmin from 51.38.46.41 port 56448 ...	2020-03-03 15:29:22
174.138.44.30	attackbotsspam	Mar 2 21:16:09 hpm sshd\[26205\]: Invalid user ftpuser from 174.138.44.30 Mar 2 21:16:09 hpm sshd\[26205\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.44.30 Mar 2 21:16:11 hpm sshd\[26205\]: Failed password for invalid user ftpuser from 174.138.44.30 port 47372 ssh2 Mar 2 21:25:00 hpm sshd\[26824\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.44.30 user=news Mar 2 21:25:02 hpm sshd\[26824\]: Failed password for news from 174.138.44.30 port 55878 ssh2	2020-03-03 15:27:08
157.230.163.6	attackspambots	Mar 3 06:57:03 game-panel sshd[2162]: Failed password for mysql from 157.230.163.6 port 45686 ssh2 Mar 3 07:00:33 game-panel sshd[2273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.163.6 Mar 3 07:00:35 game-panel sshd[2273]: Failed password for invalid user ftpuser from 157.230.163.6 port 43456 ssh2	2020-03-03 15:16:18
89.189.186.45	attack	Mar 2 20:53:22 tdfoods sshd\[31414\]: Invalid user uploader from 89.189.186.45 Mar 2 20:53:22 tdfoods sshd\[31414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.189.186.45.sta.211.ru Mar 2 20:53:23 tdfoods sshd\[31414\]: Failed password for invalid user uploader from 89.189.186.45 port 51426 ssh2 Mar 2 21:02:25 tdfoods sshd\[32127\]: Invalid user git from 89.189.186.45 Mar 2 21:02:25 tdfoods sshd\[32127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.189.186.45.sta.211.ru	2020-03-03 15:18:53
209.17.96.250	attack	Unauthorised access (Mar 3) SRC=209.17.96.250 LEN=44 TOS=0x08 PREC=0x20 TTL=243 ID=54321 TCP DPT=8080 WINDOW=65535 SYN	2020-03-03 15:37:01
122.51.82.22	attack	Mar 2 20:49:58 eddieflores sshd\[8738\]: Invalid user hl2dm from 122.51.82.22 Mar 2 20:49:58 eddieflores sshd\[8738\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.82.22 Mar 2 20:49:59 eddieflores sshd\[8738\]: Failed password for invalid user hl2dm from 122.51.82.22 port 38358 ssh2 Mar 2 20:56:43 eddieflores sshd\[9287\]: Invalid user zps from 122.51.82.22 Mar 2 20:56:43 eddieflores sshd\[9287\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.82.22	2020-03-03 15:37:23
74.208.111.128	attackbotsspam	Mar 3 08:15:07 ns381471 sshd[11721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.111.128 Mar 3 08:15:09 ns381471 sshd[11721]: Failed password for invalid user sophrologue-tarascon from 74.208.111.128 port 37909 ssh2	2020-03-03 15:19:52
5.45.207.56	attack	[Tue Mar 03 12:28:24.449172 2020] [:error] [pid 20431:tid 140628089321216] [client 5.45.207.56:45153] [client 5.45.207.56] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xl3q@DnZbsQREE7Iv0NoHAAAAAE"] ...	2020-03-03 15:17:13
103.102.136.102	spambotsattackproxynormal	must be a valid ipv4 or ipv6 ip e.g. 127.0.0.1or 2001:DB8:0:0:8:800:200c:417A	2020-03-03 15:28:55
173.231.205.84	attackbotsspam	$f2bV_matches	2020-03-03 15:13:00
103.102.136.102	spambotsattackproxynormal	must be a valid ipv4 or ipv6 ip e.g. 127.0.0.1or 2001:DB8:0:0:8:800:200c:417A	2020-03-03 15:28:59
103.120.188.114	attackspambots	Honeypot attack, port: 445, PTR: node-103-120-188-114.netstra.net.	2020-03-03 15:32:46
14.190.180.155	attackbots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-03-03 15:05:14
106.13.130.66	attackbotsspam	Mar 3 07:10:46 lnxded63 sshd[3915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.130.66	2020-03-03 15:22:12

最近上报的IP列表

120.231.182.119	67.205.179.196	34.122.105.182	10.95.224.139
113.215.188.173	115.45.40.214	38.71.24.72	143.110.165.7
107.170.190.202	3.253.195.116	170.114.45.39	60.21.160.66
216.36.112.80	47.243.69.126	8.212.74.149	47.129.241.187
110.90.206.61	183.7.147.251	104.17.79.153	116.233.82.171