城市(city): Pittsburg
省份(region): California
国家(country): United States
运营商(isp): RTC Communications LLC
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
# start
NetRange: 67.128.0.0 - 67.135.255.255
CIDR: 67.128.0.0/13
NetName: CENTURYLINK-LEGACY-QWEST-INET-11
NetHandle: NET-67-128-0-0-1
Parent: NET67 (NET-67-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: CenturyLink Communications, LLC (CCL-534)
RegDate: 2002-07-12
Updated: 2018-02-21
Ref: https://rdap.arin.net/registry/ip/67.128.0.0
OrgName: CenturyLink Communications, LLC
OrgId: CCL-534
Address: 100 CENTURYLINK DR
City: Monroe
StateProv: LA
PostalCode: 71201
Country: US
RegDate: 2018-07-12
Updated: 2026-04-22
Comment: USAGE OF IP SPACE MUST COMPLY WITH OUR ACCEPTABLE USE POLICY:
Comment: https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
Comment:
Comment: ADDRESSES COVERED BY THIS ORG-ID ARE NON-PORTABLE ANY ISP ANNOUNCING OR TRANSITING PORTIONS WITHIN OUR RANGES SHOULD NOT RELY ON PRESENTED LOA'S OR OLD WHOIS UNLESS THOSE RANGES ARE ALSO ACTIVELY DIRECTLY ANNOUNCED TO A LUMEN ASN. WITH ALL LOA'S THESE CONDITIONS APPLY:
Comment:
Comment: 1. You are permitted to route the Lumen IP prefixes listed via Public BGP to your alternate ISP from the designated ASN. Any other ASN originating the prefix listed is forbidden.
Comment: 2. The Lumen IP prefixes listed can be routed via Public BGP to your alternate ISP as long as you remain an active customer with Lumen and continue to route the prefixes over at least one Lumen Internet circuit without significant traffic engineering.
Comment: 3. Should your Internet services with Lumen be discontinued, Lumen reserves the right to have your alternate ISP terminate the routing of the Lumen IP prefixes without advanced notification, should you fail to do so.
Comment: 4. All IP Addresses assigned or allocated by Lumen to an end-user (customer or ISP) shall be considered non-portable and will be reclaimed by Lumen upon service termination.
Comment: 5. Lumen reserves the right to conduct audits to ensure the LOA conditions are being met.
Comment: 6. Usage of IP space must comply with our AUP https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
Comment:
Comment: Our looking glass is located at: https://lookingglass.centurylink.com/
Comment:
Comment: For subpoena or court order please fax 844.254.5800 or refer to our Trust & Safety page:
Comment: https://www.lumen.com/en-us/about/legal/trust-center/trust-and-safety.html
Comment:
Comment: For abuse issues, please email abuse@aup.lumen.com
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email)
Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/CCL-534
OrgTechHandle: QIA-ARIN
OrgTechName: Centurylink IP Admin
OrgTechPhone: +1-877-886-6515
OrgTechEmail: ipadmin@centurylink.com
OrgTechRef: https://rdap.arin.net/registry/entity/QIA-ARIN
OrgAbuseHandle: CAD54-ARIN
OrgAbuseName: Centurylink Abuse Desk
OrgAbusePhone: +1-877-886-6515
OrgAbuseEmail: abuse@aup.lumen.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/CAD54-ARIN
OrgRoutingHandle: RPKIR-ARIN
OrgRoutingName: RPKI-ROA
OrgRoutingPhone: +1-877-886-6515
OrgRoutingEmail: rpki-roa@lumen.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/RPKIR-ARIN
# end
# start
NetRange: 67.134.12.0 - 67.134.15.255
CIDR: 67.134.12.0/22
NetName: Q1010-67-134-12-0
NetHandle: NET-67-134-12-0-1
Parent: CENTURYLINK-LEGACY-QWEST-INET-11 (NET-67-128-0-0-1)
NetType: Reallocated
OriginAS:
Organization: Intelletrace (INTEL-81)
RegDate: 2012-10-10
Updated: 2012-10-10
Ref: https://rdap.arin.net/registry/ip/67.134.12.0
OrgName: Intelletrace
OrgId: INTEL-81
Address: 936 B 7th Street #122
City: Novato
StateProv: CA
PostalCode: 94945
Country: US
RegDate: 2005-07-13
Updated: 2024-11-25
Ref: https://rdap.arin.net/registry/entity/INTEL-81
OrgTechHandle: SUPPO153-ARIN
OrgTechName: Intelletrace Support
OrgTechPhone: +1-800-618-5877
OrgTechEmail: arinsupport@intelletrace.com
OrgTechRef: https://rdap.arin.net/registry/entity/SUPPO153-ARIN
OrgAbuseHandle: SUPPO153-ARIN
OrgAbuseName: Intelletrace Support
OrgAbusePhone: +1-800-618-5877
OrgAbuseEmail: arinsupport@intelletrace.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/SUPPO153-ARIN
OrgNOCHandle: SUPPO153-ARIN
OrgNOCName: Intelletrace Support
OrgNOCPhone: +1-800-618-5877
OrgNOCEmail: arinsupport@intelletrace.com
OrgNOCRef: https://rdap.arin.net/registry/entity/SUPPO153-ARIN
# end
# start
NetRange: 67.134.12.0 - 67.134.15.255
CIDR: 67.134.12.0/22
NetName: Q1010-67-134-12-0
NetHandle: NET-67-134-12-0-2
Parent: Q1010-67-134-12-0 (NET-67-134-12-0-1)
NetType: Reallocated
OriginAS:
Organization: Evocative, Inc. (EVOCAT-2)
RegDate: 2012-11-02
Updated: 2012-11-02
Ref: https://rdap.arin.net/registry/ip/67.134.12.0
OrgName: Evocative, Inc.
OrgId: EVOCAT-2
Address: 26 Centerpointe Dr. Suite 110
City: La Palma
StateProv: CA
PostalCode: 90623
Country: US
RegDate: 1998-11-17
Updated: 2024-11-25
Ref: https://rdap.arin.net/registry/entity/EVOCAT-2
OrgTechHandle: NOC1709-ARIN
OrgTechName: Network Operations Center
OrgTechPhone: +1-888-365-2656
OrgTechEmail: abuse@evocative.com
OrgTechRef: https://rdap.arin.net/registry/entity/NOC1709-ARIN
OrgNOCHandle: NETWO813-ARIN
OrgNOCName: Network Engineering
OrgNOCPhone: +1-866-599-9593
OrgNOCEmail: abuse@vpls.net
OrgNOCRef: https://rdap.arin.net/registry/entity/NETWO813-ARIN
OrgAbuseHandle: VPLSA-ARIN
OrgAbuseName: VPLS-ARIN
OrgAbusePhone: +1-213-406-9018
OrgAbuseEmail: abuse@vpls.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/VPLSA-ARIN
OrgTechHandle: NETWO813-ARIN
OrgTechName: Network Engineering
OrgTechPhone: +1-866-599-9593
OrgTechEmail: admin-arin@vpls.net
OrgTechRef: https://rdap.arin.net/registry/entity/NETWO813-ARIN
# end
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 67.134.12.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57312
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;67.134.12.0. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026042800 1800 900 604800 86400
;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 28 16:33:47 CST 2026
;; MSG SIZE rcvd: 104b'Host 0.12.134.67.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 67.134.12.0.in-addr.arpa: SERVFAIL| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 165.22.110.16 | attackbotsspam | Sep 20 17:27:23 MK-Soft-VM7 sshd\[15317\]: Invalid user rolands from 165.22.110.16 port 56408 Sep 20 17:27:23 MK-Soft-VM7 sshd\[15317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.110.16 Sep 20 17:27:25 MK-Soft-VM7 sshd\[15317\]: Failed password for invalid user rolands from 165.22.110.16 port 56408 ssh2 ... |
2019-09-21 00:22:16 |
| 58.246.26.230 | attackspambots | Sep 20 09:13:20 localhost sshd\[31227\]: Invalid user exam from 58.246.26.230 port 52928 Sep 20 09:13:20 localhost sshd\[31227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.246.26.230 Sep 20 09:13:22 localhost sshd\[31227\]: Failed password for invalid user exam from 58.246.26.230 port 52928 ssh2 ... |
2019-09-21 00:25:18 |
| 193.112.49.155 | attack | Sep 20 15:24:11 game-panel sshd[20922]: Failed password for root from 193.112.49.155 port 55846 ssh2 Sep 20 15:28:37 game-panel sshd[21091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.49.155 Sep 20 15:28:39 game-panel sshd[21091]: Failed password for invalid user kyle from 193.112.49.155 port 56274 ssh2 |
2019-09-21 00:15:46 |
| 189.34.62.36 | attackspam | SSH Brute Force, server-1 sshd[27159]: Failed password for invalid user abc from 189.34.62.36 port 45035 ssh2 |
2019-09-21 00:14:21 |
| 178.62.181.74 | attackbotsspam | Triggered by Fail2Ban at Ares web server |
2019-09-21 00:30:49 |
| 222.186.15.65 | attackbotsspam | Sep 20 15:51:48 game-panel sshd[22008]: Failed password for root from 222.186.15.65 port 40508 ssh2 Sep 20 15:51:52 game-panel sshd[22008]: Failed password for root from 222.186.15.65 port 40508 ssh2 Sep 20 15:51:56 game-panel sshd[22008]: Failed password for root from 222.186.15.65 port 40508 ssh2 Sep 20 15:52:00 game-panel sshd[22008]: Failed password for root from 222.186.15.65 port 40508 ssh2 |
2019-09-20 23:52:49 |
| 49.88.112.76 | attackspambots | Sep 20 15:23:18 *** sshd[6316]: User root from 49.88.112.76 not allowed because not listed in AllowUsers |
2019-09-21 00:22:42 |
| 134.209.51.28 | attack | [munged]::443 134.209.51.28 - - [20/Sep/2019:11:12:46 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 134.209.51.28 - - [20/Sep/2019:11:12:49 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 134.209.51.28 - - [20/Sep/2019:11:12:53 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 134.209.51.28 - - [20/Sep/2019:11:12:56 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 134.209.51.28 - - [20/Sep/2019:11:13:00 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 134.209.51.28 - - [20/Sep/2019:11:13:05 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubun |
2019-09-21 00:29:04 |
| 148.227.224.17 | attackbotsspam | Sep 19 23:26:44 tdfoods sshd\[11935\]: Invalid user role1 from 148.227.224.17 Sep 19 23:26:44 tdfoods sshd\[11935\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.227.224.17 Sep 19 23:26:47 tdfoods sshd\[11935\]: Failed password for invalid user role1 from 148.227.224.17 port 39186 ssh2 Sep 19 23:31:15 tdfoods sshd\[12308\]: Invalid user wh from 148.227.224.17 Sep 19 23:31:15 tdfoods sshd\[12308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.227.224.17 |
2019-09-21 00:28:37 |
| 213.166.70.101 | attack | 09/20/2019-06:51:42.986149 213.166.70.101 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-09-20 23:59:18 |
| 200.37.95.41 | attack | Sep 19 23:23:42 web1 sshd\[25551\]: Invalid user ftpuser from 200.37.95.41 Sep 19 23:23:42 web1 sshd\[25551\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.37.95.41 Sep 19 23:23:44 web1 sshd\[25551\]: Failed password for invalid user ftpuser from 200.37.95.41 port 49653 ssh2 Sep 19 23:28:55 web1 sshd\[25993\]: Invalid user peggy from 200.37.95.41 Sep 19 23:28:55 web1 sshd\[25993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.37.95.41 |
2019-09-21 00:16:56 |
| 49.88.112.114 | attackspambots | Sep 20 00:59:59 tdfoods sshd\[20688\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Sep 20 01:00:01 tdfoods sshd\[20688\]: Failed password for root from 49.88.112.114 port 54938 ssh2 Sep 20 01:01:03 tdfoods sshd\[20762\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Sep 20 01:01:04 tdfoods sshd\[20762\]: Failed password for root from 49.88.112.114 port 32229 ssh2 Sep 20 01:01:07 tdfoods sshd\[20762\]: Failed password for root from 49.88.112.114 port 32229 ssh2 |
2019-09-21 00:06:57 |
| 78.44.243.210 | attackspam | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/78.44.243.210/ DE - 1H : (40) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : DE NAME ASN : ASN6830 IP : 78.44.243.210 CIDR : 78.44.0.0/16 PREFIX COUNT : 755 UNIQUE IP COUNT : 12137216 WYKRYTE ATAKI Z ASN6830 : 1H - 1 3H - 1 6H - 3 12H - 6 24H - 10 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery |
2019-09-21 00:04:26 |
| 185.166.131.146 | attack | xmlrpc attack |
2019-09-21 00:25:36 |
| 207.93.25.10 | attackbotsspam | Unauthorised access (Sep 20) SRC=207.93.25.10 LEN=40 PREC=0x20 TTL=46 ID=49036 TCP DPT=8080 WINDOW=38974 SYN Unauthorised access (Sep 17) SRC=207.93.25.10 LEN=40 PREC=0x20 TTL=46 ID=10775 TCP DPT=8080 WINDOW=38974 SYN Unauthorised access (Sep 16) SRC=207.93.25.10 LEN=40 TTL=53 ID=57660 TCP DPT=8080 WINDOW=50322 SYN |
2019-09-21 00:16:34 |