城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): RTC Communications LLC
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 208.132.128.0 - 208.138.15.255
CIDR: 208.138.0.0/20, 208.136.0.0/15, 208.134.0.0/15, 208.133.0.0/16, 208.132.128.0/17
NetName: CENTURYLINK-LEGACY-SAVVIS-BLK93
NetHandle: NET-208-132-128-0-1
Parent: NET208 (NET-208-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: CenturyLink Communications, LLC (CCL-534)
RegDate: 1996-03-27
Updated: 2018-11-15
Ref: https://rdap.arin.net/registry/ip/208.132.128.0
OrgName: CenturyLink Communications, LLC
OrgId: CCL-534
Address: 100 CENTURYLINK DR
City: Monroe
StateProv: LA
PostalCode: 71201
Country: US
RegDate: 2018-07-12
Updated: 2024-06-17
Comment: USAGE OF IP SPACE MUST COMPLY WITH OUR ACCEPTABLE USE POLICY:
Comment: https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
Comment:
Comment: ADDRESSES COVERED BY THIS ORG-ID ARE NON-PORTABLE ANY ISP ANNOUNCING OR TRANSITING PORTIONS WITHIN OUR RANGES SHOULD NOT RELY ON PRESENTED LOA'S OR OLD WHOIS UNLESS THOSE RANGES ARE ALSO ACTIVELY DIRECTLY ANNOUNCED TO A LUMEN ASN. WITH ALL LOA'S THESE CONDITIONS APPLY:
Comment:
Comment: 1. You are permitted to route the Lumen IP prefixes listed via Public BGP to your alternate ISP from the designated ASN. Any other ASN originating the prefix listed is forbidden.
Comment: 2. The Lumen IP prefixes listed can be routed via Public BGP to your alternate ISP as long as you remain an active customer with Lumen and continue to route the prefixes over at least one Lumen Internet circuit without significant traffic engineering.
Comment: 3. Should your Internet services with Lumen be discontinued, Lumen reserves the right to have your alternate ISP terminate the routing of the Lumen IP prefixes without advanced notification, should you fail to do so.
Comment: 4. All IP Addresses assigned or allocated by Lumen to an end-user (customer or ISP) shall be considered non-portable and will be reclaimed by Lumen upon service termination.
Comment: 5. Lumen reserves the right to conduct audits to ensure the LOA conditions are being met.
Comment: 6. Usage of IP space must comply with our AUP https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
Comment:
Comment: Our looking glass is located at: https://lookingglass.centurylink.com/
Comment:
Comment: For subpoena or court order please fax 844.254.5800 or refer to our Trust & Safety page:
Comment: https://www.lumen.com/en-us/about/legal/trust-center/trust-and-safety.html
Comment:
Comment: For abuse issues, please email abuse@aup.lumen.com
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email)
Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/CCL-534
OrgRoutingHandle: RPKIR-ARIN
OrgRoutingName: RPKI-ROA
OrgRoutingPhone: +1-877-886-6515
OrgRoutingEmail: rpki-roa@lumen.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/RPKIR-ARIN
OrgTechHandle: QIA-ARIN
OrgTechName: Centurylink IP Admin
OrgTechPhone: +1-877-886-6515
OrgTechEmail: ipadmin@centurylink.com
OrgTechRef: https://rdap.arin.net/registry/entity/QIA-ARIN
OrgAbuseHandle: CAD54-ARIN
OrgAbuseName: Centurylink Abuse Desk
OrgAbusePhone: +1-877-886-6515
OrgAbuseEmail: abuse@aup.lumen.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/CAD54-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 208.137.20.190
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42158
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;208.137.20.190. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025111000 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 10 23:57:46 CST 2025
;; MSG SIZE rcvd: 107Host 190.20.137.208.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 190.20.137.208.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 82.29.138.216 | attackbots | Fake Googlebot |
2020-06-09 05:51:46 |
| 45.129.56.200 | attackspambots | Jun 8 20:24:50 124388 sshd[29093]: Invalid user 12345678 from 45.129.56.200 port 42270 Jun 8 20:24:51 124388 sshd[29093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.129.56.200 Jun 8 20:24:50 124388 sshd[29093]: Invalid user 12345678 from 45.129.56.200 port 42270 Jun 8 20:24:53 124388 sshd[29093]: Failed password for invalid user 12345678 from 45.129.56.200 port 42270 ssh2 Jun 8 20:24:58 124388 sshd[29095]: Invalid user 12345678 from 45.129.56.200 port 51938 |
2020-06-09 06:17:20 |
| 156.146.36.89 | attackbotsspam | (From valeria.mccabe@gmail.com) Hello, We have available the following, with low minimum order requirements - if you or anyone you know is in need: -Custom Printed Masks – reusable, washable – 100% custom printed ! -3ply Disposable Masks -KN95 masks and N95 masks with FDA, CE certificate -Gloves (Nitrile and Latex) -Disposable Gowns -Sanitizing Wipes -Hand Sanitizer -Face Shields -Oral and No Touch Thermometers Details: -We are based in the US -All products are produced Vietnam, Bangladesh, China or US – depending on item and quantity. -We are shipping out every day. -Minimum order size varies by product -We can prepare container loads and ship via AIR or SEA. Please reply back to lisaconnors.2019@gmail.com Let me know the item(s) you need, the quantity, and the best contact phone number to call you Thank you, Lisa Connors PPE Product Specialist |
2020-06-09 06:00:11 |
| 115.231.126.44 | attackbots | IP 115.231.126.44 attacked honeypot on port: 139 at 6/8/2020 9:24:59 PM |
2020-06-09 06:00:51 |
| 141.98.81.207 | attack | 2020-06-08T21:20:19.994629abusebot-7.cloudsearch.cf sshd[12281]: Invalid user admin from 141.98.81.207 port 7415 2020-06-08T21:20:19.999007abusebot-7.cloudsearch.cf sshd[12281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.207 2020-06-08T21:20:19.994629abusebot-7.cloudsearch.cf sshd[12281]: Invalid user admin from 141.98.81.207 port 7415 2020-06-08T21:20:21.769313abusebot-7.cloudsearch.cf sshd[12281]: Failed password for invalid user admin from 141.98.81.207 port 7415 ssh2 2020-06-08T21:20:37.519285abusebot-7.cloudsearch.cf sshd[12310]: Invalid user Admin from 141.98.81.207 port 6233 2020-06-08T21:20:37.523599abusebot-7.cloudsearch.cf sshd[12310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.207 2020-06-08T21:20:37.519285abusebot-7.cloudsearch.cf sshd[12310]: Invalid user Admin from 141.98.81.207 port 6233 2020-06-08T21:20:39.098212abusebot-7.cloudsearch.cf sshd[12310]: Failed pass ... |
2020-06-09 05:48:26 |
| 118.24.33.38 | attackbotsspam | Jun 9 00:04:40 vps639187 sshd\[11216\]: Invalid user syang from 118.24.33.38 port 44086 Jun 9 00:04:40 vps639187 sshd\[11216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.33.38 Jun 9 00:04:42 vps639187 sshd\[11216\]: Failed password for invalid user syang from 118.24.33.38 port 44086 ssh2 ... |
2020-06-09 06:18:41 |
| 188.166.211.194 | attackspambots | 399. On Jun 8 2020 experienced a Brute Force SSH login attempt -> 53 unique times by 188.166.211.194. |
2020-06-09 06:05:03 |
| 192.35.169.41 | attack | Hits on port : 9049 |
2020-06-09 06:13:31 |
| 106.13.93.199 | attack | Jun 8 17:25:12 ws19vmsma01 sshd[189462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.93.199 Jun 8 17:25:14 ws19vmsma01 sshd[189462]: Failed password for invalid user ftpuser from 106.13.93.199 port 60230 ssh2 ... |
2020-06-09 05:58:10 |
| 141.98.81.208 | attackbots | Jun 9 00:13:46 hosting sshd[1442]: Invalid user Administrator from 141.98.81.208 port 14471 ... |
2020-06-09 05:45:10 |
| 88.102.249.203 | attackspam | 2020-06-08T21:25:25.569560ionos.janbro.de sshd[84727]: Failed password for invalid user qwang from 88.102.249.203 port 48863 ssh2 2020-06-08T21:30:46.224248ionos.janbro.de sshd[84756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.102.249.203 user=root 2020-06-08T21:30:48.737278ionos.janbro.de sshd[84756]: Failed password for root from 88.102.249.203 port 57325 ssh2 2020-06-08T21:35:58.811743ionos.janbro.de sshd[84813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.102.249.203 user=root 2020-06-08T21:36:00.823754ionos.janbro.de sshd[84813]: Failed password for root from 88.102.249.203 port 41263 ssh2 2020-06-08T21:41:18.736154ionos.janbro.de sshd[84854]: Invalid user nadiya from 88.102.249.203 port 54721 2020-06-08T21:41:18.793394ionos.janbro.de sshd[84854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.102.249.203 2020-06-08T21:41:18.736154ionos.janb ... |
2020-06-09 05:58:39 |
| 185.220.100.255 | attackbotsspam | (sshd) Failed SSH login from 185.220.100.255 (DE/Germany/tor-exit-4.zbau.f3netze.de): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 8 22:25:15 ubnt-55d23 sshd[9675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.100.255 user=root Jun 8 22:25:17 ubnt-55d23 sshd[9675]: Failed password for root from 185.220.100.255 port 22470 ssh2 |
2020-06-09 05:52:51 |
| 150.242.99.65 | attackspam | IP 150.242.99.65 attacked honeypot on port: 139 at 6/8/2020 9:25:07 PM |
2020-06-09 05:51:21 |
| 49.235.63.27 | attackbots | 3014:Jun 8 04:46:37 fmk sshd[18781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.63.27 user=r.r 3015:Jun 8 04:46:39 fmk sshd[18781]: Failed password for r.r from 49.235.63.27 port 55394 ssh2 3016:Jun 8 04:46:40 fmk sshd[18781]: Received disconnect from 49.235.63.27 port 55394:11: Bye Bye [preauth] 3017:Jun 8 04:46:40 fmk sshd[18781]: Disconnected from authenticating user r.r 49.235.63.27 port 55394 [preauth] 3082:Jun 8 05:11:49 fmk sshd[19134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.63.27 user=r.r 3083:Jun 8 05:11:52 fmk sshd[19134]: Failed password for r.r from 49.235.63.27 port 48138 ssh2 3084:Jun 8 05:11:54 fmk sshd[19134]: Received disconnect from 49.235.63.27 port 48138:11: Bye Bye [preauth] 3085:Jun 8 05:11:54 fmk sshd[19134]: Disconnected from authenticating user r.r 49.235.63.27 port 48138 [preauth] 3098:Jun 8 05:15:39 fmk sshd[19193]: pam_unix(ss........ ------------------------------ |
2020-06-09 06:15:44 |
| 178.128.217.58 | attackspambots | Jun 8 23:59:26 buvik sshd[31218]: Invalid user paetti from 178.128.217.58 Jun 8 23:59:26 buvik sshd[31218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.217.58 Jun 8 23:59:27 buvik sshd[31218]: Failed password for invalid user paetti from 178.128.217.58 port 43516 ssh2 ... |
2020-06-09 06:02:01 |