38.148.201.97 - IPInfo

Basic Info

City: Los Angeles

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

b'#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



# start

NetRange:       38.0.0.0 - 38.255.255.255
CIDR:           38.0.0.0/8
NetName:        COGENT-A
NetHandle:      NET-38-0-0-0-1
Parent:          ()
NetType:        Direct Allocation
OriginAS:       
Organization:   Cogent Communications, LLC (COGC)
RegDate:        1991-04-16
Updated:        2025-09-23
Ref:            https://rdap.arin.net/registry/ip/38.0.0.0



OrgName:        Cogent Communications, LLC
OrgId:          COGC
Address:        2450 N Street NW
City:           Washington
StateProv:      DC
PostalCode:     20037
Country:        US
RegDate:        2000-05-30
Updated:        2025-09-23
Comment:        Geofeed https://geofeed.cogentco.com/geofeed.csv
Ref:            https://rdap.arin.net/registry/entity/COGC

ReferralServer:  rwhois://rwhois.cogentco.com:4321

OrgAbuseHandle: COGEN-ARIN
OrgAbuseName:   Cogent Abuse
OrgAbusePhone:  +1-877-875-4311 
OrgAbuseEmail:  abuse@cogentco.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/COGEN-ARIN

OrgNOCHandle: ZC108-ARIN
OrgNOCName:   Cogent Communications
OrgNOCPhone:  +1-877-875-4311 
OrgNOCEmail:  noc@cogentco.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/ZC108-ARIN

OrgTechHandle: IPALL-ARIN
OrgTechName:   IP Allocation
OrgTechPhone:  +1-877-875-4311 
OrgTechEmail:  ipalloc@cogentco.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPALL-ARIN

# end


# start

NetRange:       38.148.192.0 - 38.148.255.255
CIDR:           38.148.192.0/18
NetName:        KURUN-CGNT-NET-7
NetHandle:      NET-38-148-192-0-1
Parent:         COGENT-A (NET-38-0-0-0-1)
NetType:        Reallocated
OriginAS:       
Organization:   KURUN CLOUD INC (KC-2074)
RegDate:        2023-08-23
Updated:        2023-08-23
Ref:            https://rdap.arin.net/registry/ip/38.148.192.0


OrgName:        KURUN CLOUD INC
OrgId:          KC-2074
Address:        6550 Meadow Lane PL, Rancho Cucamonga, CA 91701
City:           LA
StateProv:      CA
PostalCode:     91701
Country:        US
RegDate:        2020-11-19
Updated:        2024-11-25
Ref:            https://rdap.arin.net/registry/entity/KC-2074


OrgAbuseHandle: ABUSE8033-ARIN
OrgAbuseName:   Abuse
OrgAbusePhone:  +1-909-279-1111 
OrgAbuseEmail:  abuse@kurun.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE8033-ARIN

OrgNOCHandle: NOC33228-ARIN
OrgNOCName:   NOC
OrgNOCPhone:  +1-909-279-1111 
OrgNOCEmail:  noc@kurun.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/NOC33228-ARIN

OrgTechHandle: TECH1232-ARIN
OrgTechName:   Tech
OrgTechPhone:  +1-909-279-1111 
OrgTechEmail:  noc@kurun.com
OrgTechRef:    https://rdap.arin.net/registry/entity/TECH1232-ARIN

# end



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



Found a referral to rwhois.cogentco.com:4321.

%rwhois V-1.5:0010b0:00 rwhois.cogentco.com (CGNT rwhoisd 1.2.2)
network:ID:NET4-2694C00012
network:Network-Name:NET4-2694C00012
network:IP-Network:38.148.192.0/18
network:Org-Name:KURUN CLOUD INC
network:Street-Address:624 SOUTH GRAND AVENUE
network:City:LOS ANGELES
network:State:CA
network:Country:US
network:Postal-Code:90017
network:Tech-Contact:ZC108-ARIN
network:Updated:2026-05-01 08:45:34
%ok'

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 38.148.201.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49964
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;38.148.201.97.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026062202 1800 900 604800 86400

;; Query time: 31 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 23 10:16:17 CST 2026
;; MSG SIZE  rcvd: 106

Host info

Host 97.201.148.38.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 97.201.148.38.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
2a03:4d40:1337:2:f816:3eff:fe33:a49	attackspambots	Attempts to probe for or exploit a Drupal site on url: /wp-includes/js/jquery/jquery.js. Reported by the module https://www.drupal.org/project/abuseipdb.	2020-04-08 15:14:47
164.132.46.197	attackspam	$f2bV_matches	2020-04-08 15:10:58
45.133.99.7	attackbots	Apr 8 08:29:17 relay postfix/smtpd\[24372\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 8 08:29:31 relay postfix/smtpd\[24791\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 8 08:32:09 relay postfix/smtpd\[24372\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 8 08:32:27 relay postfix/smtpd\[4022\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 8 08:32:44 relay postfix/smtpd\[24563\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-08 14:43:55
112.85.42.187	attackspambots	Apr 8 07:05:13 markkoudstaal sshd[8099]: Failed password for root from 112.85.42.187 port 55146 ssh2 Apr 8 07:05:17 markkoudstaal sshd[8099]: Failed password for root from 112.85.42.187 port 55146 ssh2 Apr 8 07:05:20 markkoudstaal sshd[8099]: Failed password for root from 112.85.42.187 port 55146 ssh2	2020-04-08 15:02:33
43.228.125.41	attackbotsspam	2020-04-08T07:03:00.685775ns386461 sshd\[26505\]: Invalid user ubuntu from 43.228.125.41 port 46854 2020-04-08T07:03:00.690381ns386461 sshd\[26505\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.228.125.41 2020-04-08T07:03:02.220209ns386461 sshd\[26505\]: Failed password for invalid user ubuntu from 43.228.125.41 port 46854 ssh2 2020-04-08T07:11:57.372513ns386461 sshd\[2141\]: Invalid user developer from 43.228.125.41 port 55344 2020-04-08T07:11:57.377415ns386461 sshd\[2141\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.228.125.41 ...	2020-04-08 14:31:54
217.55.148.113	attackbotsspam	DATE:2020-04-08 05:57:43, IP:217.55.148.113, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-04-08 14:47:36
158.199.142.170	attack	Apr 8 07:01:50 host01 sshd[3288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.199.142.170 Apr 8 07:01:52 host01 sshd[3288]: Failed password for invalid user frank from 158.199.142.170 port 37405 ssh2 Apr 8 07:06:13 host01 sshd[4269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.199.142.170 ...	2020-04-08 14:57:13
218.255.86.106	attackbots	Apr 7 05:29:55 myhostname sshd[11756]: Invalid user etri from 218.255.86.106 Apr 7 05:29:55 myhostname sshd[11756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.255.86.106 Apr 7 05:29:57 myhostname sshd[11756]: Failed password for invalid user etri from 218.255.86.106 port 50517 ssh2 Apr 7 05:29:58 myhostname sshd[11756]: Received disconnect from 218.255.86.106 port 50517:11: Bye Bye [preauth] Apr 7 05:29:58 myhostname sshd[11756]: Disconnected from 218.255.86.106 port 50517 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=218.255.86.106	2020-04-08 14:37:53
140.143.127.179	attackbotsspam	Apr 7 22:38:07 server1 sshd\[31408\]: Failed password for invalid user update from 140.143.127.179 port 60952 ssh2 Apr 7 22:42:10 server1 sshd\[32602\]: Invalid user testftp from 140.143.127.179 Apr 7 22:42:10 server1 sshd\[32602\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.179 Apr 7 22:42:11 server1 sshd\[32602\]: Failed password for invalid user testftp from 140.143.127.179 port 60272 ssh2 Apr 7 22:46:08 server1 sshd\[1288\]: Invalid user marcela from 140.143.127.179 ...	2020-04-08 14:53:51
77.42.87.213	attackbotsspam	Automatic report - Port Scan Attack	2020-04-08 14:58:58
202.70.80.27	attack	Apr 8 03:57:40 IngegnereFirenze sshd[12293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.70.80.27 user=mysql ...	2020-04-08 14:50:39
89.216.47.154	attack	Apr 8 08:51:39 ewelt sshd[28887]: Invalid user test from 89.216.47.154 port 60740 Apr 8 08:51:39 ewelt sshd[28887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.216.47.154 Apr 8 08:51:39 ewelt sshd[28887]: Invalid user test from 89.216.47.154 port 60740 Apr 8 08:51:41 ewelt sshd[28887]: Failed password for invalid user test from 89.216.47.154 port 60740 ssh2 ...	2020-04-08 15:17:24
177.53.52.37	attack	Scanning an empty webserver with deny all robots.txt	2020-04-08 14:29:15
180.183.245.122	attack	IMAP brute force ...	2020-04-08 14:58:13
122.228.19.80	attackspambots	Port 16993 scan denied	2020-04-08 14:31:24

Recently Reported IPs

110.78.158.79	125.78.58.150	93.123.109.103	113.99.176.178
20.197.180.144	4.228.83.28	161.35.103.113	121.230.89.79
107.173.37.138	94.231.206.10	2606:4700:10::6814:7614	2606:4700:10::6814:5454
103.170.233.205	121.230.89.114	175.202.24.204	121.154.254.104
118.43.123.122	2606:4700:10::ac43:2275	2606:4700:10::ac43:1129	115.242.166.190