City: unknown
Region: unknown
Country: United States
Internet Service Provider: RTC Communications LLC
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 208.132.128.0 - 208.138.15.255
CIDR: 208.132.128.0/17, 208.138.0.0/20, 208.133.0.0/16, 208.136.0.0/15, 208.134.0.0/15
NetName: CENTURYLINK-LEGACY-SAVVIS-BLK93
NetHandle: NET-208-132-128-0-1
Parent: NET208 (NET-208-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: CenturyLink Communications, LLC (CCL-534)
RegDate: 1996-03-27
Updated: 2018-11-15
Ref: https://rdap.arin.net/registry/ip/208.132.128.0
OrgName: CenturyLink Communications, LLC
OrgId: CCL-534
Address: 100 CENTURYLINK DR
City: Monroe
StateProv: LA
PostalCode: 71201
Country: US
RegDate: 2018-07-12
Updated: 2024-06-17
Comment: USAGE OF IP SPACE MUST COMPLY WITH OUR ACCEPTABLE USE POLICY:
Comment: https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
Comment:
Comment: ADDRESSES COVERED BY THIS ORG-ID ARE NON-PORTABLE ANY ISP ANNOUNCING OR TRANSITING PORTIONS WITHIN OUR RANGES SHOULD NOT RELY ON PRESENTED LOA'S OR OLD WHOIS UNLESS THOSE RANGES ARE ALSO ACTIVELY DIRECTLY ANNOUNCED TO A LUMEN ASN. WITH ALL LOA'S THESE CONDITIONS APPLY:
Comment:
Comment: 1. You are permitted to route the Lumen IP prefixes listed via Public BGP to your alternate ISP from the designated ASN. Any other ASN originating the prefix listed is forbidden.
Comment: 2. The Lumen IP prefixes listed can be routed via Public BGP to your alternate ISP as long as you remain an active customer with Lumen and continue to route the prefixes over at least one Lumen Internet circuit without significant traffic engineering.
Comment: 3. Should your Internet services with Lumen be discontinued, Lumen reserves the right to have your alternate ISP terminate the routing of the Lumen IP prefixes without advanced notification, should you fail to do so.
Comment: 4. All IP Addresses assigned or allocated by Lumen to an end-user (customer or ISP) shall be considered non-portable and will be reclaimed by Lumen upon service termination.
Comment: 5. Lumen reserves the right to conduct audits to ensure the LOA conditions are being met.
Comment: 6. Usage of IP space must comply with our AUP https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
Comment:
Comment: Our looking glass is located at: https://lookingglass.centurylink.com/
Comment:
Comment: For subpoena or court order please fax 844.254.5800 or refer to our Trust & Safety page:
Comment: https://www.lumen.com/en-us/about/legal/trust-center/trust-and-safety.html
Comment:
Comment: For abuse issues, please email abuse@aup.lumen.com
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email)
Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/CCL-534
OrgRoutingHandle: RPKIR-ARIN
OrgRoutingName: RPKI-ROA
OrgRoutingPhone: +1-877-886-6515
OrgRoutingEmail: rpki-roa@lumen.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/RPKIR-ARIN
OrgAbuseHandle: CAD54-ARIN
OrgAbuseName: Centurylink Abuse Desk
OrgAbusePhone: +1-877-886-6515
OrgAbuseEmail: abuse@aup.lumen.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/CAD54-ARIN
OrgTechHandle: QIA-ARIN
OrgTechName: Centurylink IP Admin
OrgTechPhone: +1-877-886-6515
OrgTechEmail: ipadmin@centurylink.com
OrgTechRef: https://rdap.arin.net/registry/entity/QIA-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 208.137.10.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 408
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;208.137.10.133. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026032101 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 22 04:09:15 CST 2026
;; MSG SIZE rcvd: 107Host 133.10.137.208.in-addr.arpa not found: 2(SERVFAIL)
server can't find 208.137.10.133.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 116.236.189.134 | attackspambots | Aug 17 00:04:54 itv-usvr-02 sshd[14131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.236.189.134 user=root Aug 17 00:04:56 itv-usvr-02 sshd[14131]: Failed password for root from 116.236.189.134 port 47770 ssh2 Aug 17 00:07:11 itv-usvr-02 sshd[14236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.236.189.134 user=root Aug 17 00:07:13 itv-usvr-02 sshd[14236]: Failed password for root from 116.236.189.134 port 41230 ssh2 Aug 17 00:09:15 itv-usvr-02 sshd[14380]: Invalid user esp from 116.236.189.134 port 34662 |
2020-08-17 02:51:38 |
| 122.114.29.180 | attackspam | Aug 16 16:44:41 vps sshd[247706]: Failed password for invalid user admin from 122.114.29.180 port 22542 ssh2 Aug 16 16:48:35 vps sshd[270131]: Invalid user vlt from 122.114.29.180 port 64006 Aug 16 16:48:35 vps sshd[270131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.29.180 Aug 16 16:48:36 vps sshd[270131]: Failed password for invalid user vlt from 122.114.29.180 port 64006 ssh2 Aug 16 16:52:24 vps sshd[296110]: Invalid user port from 122.114.29.180 port 41498 ... |
2020-08-17 03:00:45 |
| 156.96.46.8 | attackbots | [2020-08-16 08:15:40] NOTICE[1185][C-00002c25] chan_sip.c: Call from '' (156.96.46.8:51265) to extension '01901146213724602' rejected because extension not found in context 'public'. [2020-08-16 08:15:40] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-16T08:15:40.423-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01901146213724602",SessionID="0x7f10c4086ce8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.46.8/51265",ACLName="no_extension_match" [2020-08-16 08:20:51] NOTICE[1185][C-00002c2b] chan_sip.c: Call from '' (156.96.46.8:59095) to extension '01801146213724602' rejected because extension not found in context 'public'. [2020-08-16 08:20:51] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-16T08:20:51.380-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01801146213724602",SessionID="0x7f10c4086ce8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UD ... |
2020-08-17 03:05:19 |
| 110.49.70.246 | attack | Aug 17 01:02:50 itv-usvr-02 sshd[16572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.70.246 user=root Aug 17 01:02:52 itv-usvr-02 sshd[16572]: Failed password for root from 110.49.70.246 port 57230 ssh2 Aug 17 01:11:38 itv-usvr-02 sshd[17072]: Invalid user admin from 110.49.70.246 port 49446 Aug 17 01:11:38 itv-usvr-02 sshd[17072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.70.246 Aug 17 01:11:38 itv-usvr-02 sshd[17072]: Invalid user admin from 110.49.70.246 port 49446 Aug 17 01:11:40 itv-usvr-02 sshd[17072]: Failed password for invalid user admin from 110.49.70.246 port 49446 ssh2 |
2020-08-17 02:42:48 |
| 118.27.33.234 | attack | Aug 16 20:04:36 lukav-desktop sshd\[24756\]: Invalid user manoel from 118.27.33.234 Aug 16 20:04:36 lukav-desktop sshd\[24756\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.33.234 Aug 16 20:04:38 lukav-desktop sshd\[24756\]: Failed password for invalid user manoel from 118.27.33.234 port 39364 ssh2 Aug 16 20:07:09 lukav-desktop sshd\[14673\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.33.234 user=root Aug 16 20:07:11 lukav-desktop sshd\[14673\]: Failed password for root from 118.27.33.234 port 50628 ssh2 |
2020-08-17 02:46:06 |
| 125.71.216.50 | attack | Failed password for invalid user ftptest from 125.71.216.50 port 43132 ssh2 |
2020-08-17 03:03:30 |
| 68.183.66.107 | attackspam | Aug 16 19:48:54 ns382633 sshd\[15100\]: Invalid user mc from 68.183.66.107 port 52373 Aug 16 19:48:54 ns382633 sshd\[15100\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.66.107 Aug 16 19:48:56 ns382633 sshd\[15100\]: Failed password for invalid user mc from 68.183.66.107 port 52373 ssh2 Aug 16 19:53:06 ns382633 sshd\[16170\]: Invalid user test from 68.183.66.107 port 57802 Aug 16 19:53:06 ns382633 sshd\[16170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.66.107 |
2020-08-17 02:47:29 |
| 83.12.171.68 | attackspambots | Aug 16 18:39:41 ns37 sshd[4020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.12.171.68 |
2020-08-17 02:42:07 |
| 67.227.239.116 | attack | [N10.H1.VM1] Port Scanner Detected Blocked by UFW |
2020-08-17 03:08:04 |
| 27.254.137.144 | attackbots | Fail2Ban - SSH Bruteforce Attempt |
2020-08-17 03:09:52 |
| 199.59.150.104 | attackbots | From n04905b0a24-f20319f821954814-adm.george===alkosa.com.br@bounce.twitter.com Sun Aug 16 09:20:56 2020 Received: from spruce-goose-bi.twitter.com ([199.59.150.104]:35389) |
2020-08-17 02:54:28 |
| 92.157.67.13 | attackspambots | 2020-08-16T20:13:53.832995mail.standpoint.com.ua sshd[25636]: Invalid user adam from 92.157.67.13 port 43652 2020-08-16T20:13:53.836500mail.standpoint.com.ua sshd[25636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-gre-1-93-13.w92-157.abo.wanadoo.fr 2020-08-16T20:13:53.832995mail.standpoint.com.ua sshd[25636]: Invalid user adam from 92.157.67.13 port 43652 2020-08-16T20:13:55.611483mail.standpoint.com.ua sshd[25636]: Failed password for invalid user adam from 92.157.67.13 port 43652 ssh2 2020-08-16T20:17:57.447913mail.standpoint.com.ua sshd[26395]: Invalid user ab from 92.157.67.13 port 53902 ... |
2020-08-17 02:46:38 |
| 14.136.245.194 | attackbots | Unauthorized SSH login attempts |
2020-08-17 02:43:17 |
| 223.83.138.104 | attackbots | SSH BruteForce Attack |
2020-08-17 03:10:06 |
| 195.231.78.86 | attack | 20 attempts against mh-ssh on cloud |
2020-08-17 03:03:03 |