城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 8.8.9.0 - 8.127.255.255
CIDR: 8.8.16.0/20, 8.8.32.0/19, 8.8.64.0/18, 8.8.10.0/23, 8.9.0.0/16, 8.16.0.0/12, 8.64.0.0/10, 8.12.0.0/14, 8.8.128.0/17, 8.10.0.0/15, 8.32.0.0/11, 8.8.9.0/24, 8.8.12.0/22
NetName: LVLT-ORG-8-8
NetHandle: NET-8-8-9-0-3
Parent: NET8 (NET-8-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Level 3 Parent, LLC (LPL-141)
RegDate: 1992-12-01
Updated: 2023-12-28
Ref: https://rdap.arin.net/registry/ip/8.8.9.0
OrgName: Level 3 Parent, LLC
OrgId: LPL-141
Address: 100 CenturyLink Drive
City: Monroe
StateProv: LA
PostalCode: 71203
Country: US
RegDate: 2018-02-06
Updated: 2024-06-17
Comment: USAGE OF IP SPACE MUST COMPLY WITH OUR ACCEPTABLE USE POLICY:
Comment: https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
Comment:
Comment: ADDRESSES COVERED BY THIS ORG-ID ARE NON-PORTABLE ANY ISP ANNOUNCING OR TRANSITING PORTIONS WITHIN OUR RANGES SHOULD NOT RELY ON PRESENTED LOA'S OR OLD WHOIS UNLESS THOSE RANGES ARE ALSO ACTIVELY DIRECTLY ANNOUNCED TO A LUMEN ASN. WITH ALL LOA'S THESE CONDITIONS APPLY:
Comment:
Comment: 1. You are permitted to route the Lumen IP prefixes listed via Public BGP to your alternate ISP from the designated ASN. Any other ASN originating the prefix listed is forbidden.
Comment: 2. The Lumen IP prefixes listed can be routed via Public BGP to your alternate ISP as long as you remain an active customer with Lumen and continue to route the prefixes over at least one Lumen Internet circuit without significant traffic engineering.
Comment: 3. Should your Internet services with Lumen be discontinued, Lumen reserves the right to have your alternate ISP terminate the routing of the Lumen IP prefixes without advanced notification, should you fail to do so.
Comment: 4. All IP Addresses assigned or allocated by Lumen to an end-user (customer or ISP) shall be considered non-portable and will be reclaimed by Lumen upon service termination.
Comment: 5. Lumen reserves the right to conduct audits to ensure the LOA conditions are being met.
Comment: 6. Usage of IP space must comply with our AUP https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
Comment:
Comment: Our looking glass is located at: https://lookingglass.centurylink.com/
Comment:
Comment: For subpoena or court order please fax 844.254.5800 or refer to our Trust & Safety page:
Comment: https://www.lumen.com/en-us/about/legal/trust-center/trust-and-safety.html
Comment:
Comment: For abuse issues, please email abuse@aup.lumen.com
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email)
Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/LPL-141
OrgAbuseHandle: LAC56-ARIN
OrgAbuseName: L3 Abuse Contact
OrgAbusePhone: +1-877-453-8353
OrgAbuseEmail: abuse@level3.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/LAC56-ARIN
OrgRoutingHandle: RPKIR-ARIN
OrgRoutingName: RPKI-ROA
OrgRoutingPhone: +1-877-886-6515
OrgRoutingEmail: rpki-roa@lumen.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/RPKIR-ARIN
OrgTechHandle: APL7-ARIN
OrgTechName: ADMIN POC LVLT
OrgTechPhone: +1-877-453-8353
OrgTechEmail: ipadmin@lumen.com
OrgTechRef: https://rdap.arin.net/registry/entity/APL7-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 8.66.14.175
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58792
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;8.66.14.175. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026040800 1800 900 604800 86400
;; Query time: 4 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 08 22:51:23 CST 2026
;; MSG SIZE rcvd: 104Host 175.14.66.8.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 175.14.66.8.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 158.69.222.121 | attackbots | Aug 1 17:30:46 SilenceServices sshd[18360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.222.121 Aug 1 17:30:47 SilenceServices sshd[18360]: Failed password for invalid user jira from 158.69.222.121 port 48872 ssh2 Aug 1 17:34:57 SilenceServices sshd[21292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.222.121 |
2019-08-01 23:53:03 |
| 92.255.185.6 | attackspam | proto=tcp . spt=34959 . dpt=25 . (listed on Github Combined on 4 lists ) (490) |
2019-08-02 00:57:31 |
| 177.207.235.234 | attack | Aug 1 10:55:28 aat-srv002 sshd[14192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.207.235.234 Aug 1 10:55:30 aat-srv002 sshd[14192]: Failed password for invalid user inx from 177.207.235.234 port 55512 ssh2 Aug 1 11:04:01 aat-srv002 sshd[14354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.207.235.234 Aug 1 11:04:03 aat-srv002 sshd[14354]: Failed password for invalid user citicog from 177.207.235.234 port 40926 ssh2 ... |
2019-08-02 00:25:42 |
| 84.201.134.56 | attackspambots | Aug 1 17:35:39 site1 sshd\[53025\]: Invalid user ghost from 84.201.134.56Aug 1 17:35:40 site1 sshd\[53025\]: Failed password for invalid user ghost from 84.201.134.56 port 44618 ssh2Aug 1 17:40:38 site1 sshd\[53566\]: Invalid user 07 from 84.201.134.56Aug 1 17:40:40 site1 sshd\[53566\]: Failed password for invalid user 07 from 84.201.134.56 port 38202 ssh2Aug 1 17:45:28 site1 sshd\[54078\]: Invalid user sentry from 84.201.134.56Aug 1 17:45:30 site1 sshd\[54078\]: Failed password for invalid user sentry from 84.201.134.56 port 60264 ssh2 ... |
2019-08-01 23:13:15 |
| 177.242.118.63 | attackbots | MultiHost/MultiPort Probe, Scan, Hack - |
2019-08-01 23:08:45 |
| 171.25.193.20 | attack | Aug 1 09:57:06 aat-srv002 sshd[13120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.25.193.20 Aug 1 09:57:08 aat-srv002 sshd[13120]: Failed password for invalid user apc from 171.25.193.20 port 37896 ssh2 Aug 1 09:57:12 aat-srv002 sshd[13122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.25.193.20 Aug 1 09:57:13 aat-srv002 sshd[13122]: Failed password for invalid user device from 171.25.193.20 port 41004 ssh2 ... |
2019-08-01 23:24:49 |
| 106.111.160.97 | attack | Aug 1 17:04:01 www1 sshd\[13785\]: Invalid user pi from 106.111.160.97Aug 1 17:04:05 www1 sshd\[13785\]: Failed password for invalid user pi from 106.111.160.97 port 44306 ssh2Aug 1 17:04:16 www1 sshd\[13807\]: Invalid user pi from 106.111.160.97Aug 1 17:04:18 www1 sshd\[13807\]: Failed password for invalid user pi from 106.111.160.97 port 46059 ssh2Aug 1 17:04:23 www1 sshd\[13809\]: Invalid user pi from 106.111.160.97Aug 1 17:04:27 www1 sshd\[13809\]: Failed password for invalid user pi from 106.111.160.97 port 48265 ssh2 ... |
2019-08-02 00:45:40 |
| 81.22.45.150 | attackspam | Aug 1 16:47:50 h2177944 kernel: \[2994807.726073\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.150 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=50563 PROTO=TCP SPT=52686 DPT=9656 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 1 16:52:25 h2177944 kernel: \[2995082.551706\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.150 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=25705 PROTO=TCP SPT=52686 DPT=9447 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 1 16:55:11 h2177944 kernel: \[2995248.701147\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.150 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=54962 PROTO=TCP SPT=52686 DPT=9515 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 1 17:06:42 h2177944 kernel: \[2995939.482974\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.150 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=15233 PROTO=TCP SPT=52686 DPT=9575 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 1 17:12:28 h2177944 kernel: \[2996284.905544\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.150 DST=85.214.117.9 LEN= |
2019-08-01 23:45:12 |
| 109.94.121.104 | attackbotsspam | port scan and connect, tcp 80 (http) |
2019-08-01 23:22:20 |
| 134.209.237.152 | attack | Aug 1 18:34:58 hosting sshd[27933]: Invalid user user from 134.209.237.152 port 42888 ... |
2019-08-02 00:52:29 |
| 157.230.154.97 | attackbotsspam | Aug 1 17:33:20 plex sshd[16213]: Invalid user office from 157.230.154.97 port 50668 |
2019-08-01 23:37:32 |
| 211.26.187.128 | attackbotsspam | Aug 1 15:48:54 plex sshd[14354]: Invalid user ispconfig from 211.26.187.128 port 54242 |
2019-08-01 23:45:50 |
| 104.233.226.157 | attackspambots | Aug 1 17:18:48 mintao sshd\[20050\]: Invalid user ftpuser from 104.233.226.157\ Aug 1 17:20:34 mintao sshd\[20075\]: Invalid user ftpuser from 104.233.226.157\ |
2019-08-01 23:42:52 |
| 120.220.22.5 | attack | Jul 30 10:47:16 shared09 sshd[20139]: Invalid user tino from 120.220.22.5 Jul 30 10:47:16 shared09 sshd[20139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.220.22.5 Jul 30 10:47:18 shared09 sshd[20139]: Failed password for invalid user tino from 120.220.22.5 port 38471 ssh2 Jul 30 10:47:18 shared09 sshd[20139]: Received disconnect from 120.220.22.5 port 38471:11: Bye Bye [preauth] Jul 30 10:47:18 shared09 sshd[20139]: Disconnected from 120.220.22.5 port 38471 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=120.220.22.5 |
2019-08-01 23:48:32 |
| 103.25.167.144 | attackspambots | proto=tcp . spt=60512 . dpt=25 . (listed on Github Combined on 3 lists ) (486) |
2019-08-02 01:13:06 |