City: Salt Lake City
Region: Utah
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 65.56.0.0 - 65.59.255.255
CIDR: 65.56.0.0/14
NetName: LC-ORG-ARIN-BLK2
NetHandle: NET-65-56-0-0-1
Parent: NET65 (NET-65-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Level 3 Parent, LLC (LPL-141)
RegDate: 2001-09-21
Updated: 2018-02-20
Ref: https://rdap.arin.net/registry/ip/65.56.0.0
OrgName: Level 3 Parent, LLC
OrgId: LPL-141
Address: 100 CenturyLink Drive
City: Monroe
StateProv: LA
PostalCode: 71203
Country: US
RegDate: 2018-02-06
Updated: 2024-06-17
Comment: USAGE OF IP SPACE MUST COMPLY WITH OUR ACCEPTABLE USE POLICY:
Comment: https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
Comment:
Comment: ADDRESSES COVERED BY THIS ORG-ID ARE NON-PORTABLE ANY ISP ANNOUNCING OR TRANSITING PORTIONS WITHIN OUR RANGES SHOULD NOT RELY ON PRESENTED LOA'S OR OLD WHOIS UNLESS THOSE RANGES ARE ALSO ACTIVELY DIRECTLY ANNOUNCED TO A LUMEN ASN. WITH ALL LOA'S THESE CONDITIONS APPLY:
Comment:
Comment: 1. You are permitted to route the Lumen IP prefixes listed via Public BGP to your alternate ISP from the designated ASN. Any other ASN originating the prefix listed is forbidden.
Comment: 2. The Lumen IP prefixes listed can be routed via Public BGP to your alternate ISP as long as you remain an active customer with Lumen and continue to route the prefixes over at least one Lumen Internet circuit without significant traffic engineering.
Comment: 3. Should your Internet services with Lumen be discontinued, Lumen reserves the right to have your alternate ISP terminate the routing of the Lumen IP prefixes without advanced notification, should you fail to do so.
Comment: 4. All IP Addresses assigned or allocated by Lumen to an end-user (customer or ISP) shall be considered non-portable and will be reclaimed by Lumen upon service termination.
Comment: 5. Lumen reserves the right to conduct audits to ensure the LOA conditions are being met.
Comment: 6. Usage of IP space must comply with our AUP https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
Comment:
Comment: Our looking glass is located at: https://lookingglass.centurylink.com/
Comment:
Comment: For subpoena or court order please fax 844.254.5800 or refer to our Trust & Safety page:
Comment: https://www.lumen.com/en-us/about/legal/trust-center/trust-and-safety.html
Comment:
Comment: For abuse issues, please email abuse@aup.lumen.com
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email)
Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/LPL-141
OrgAbuseHandle: LAC56-ARIN
OrgAbuseName: L3 Abuse Contact
OrgAbusePhone: +1-877-453-8353
OrgAbuseEmail: abuse@level3.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/LAC56-ARIN
OrgTechHandle: APL7-ARIN
OrgTechName: ADMIN POC LVLT
OrgTechPhone: +1-877-453-8353
OrgTechEmail: ipadmin@lumen.com
OrgTechRef: https://rdap.arin.net/registry/entity/APL7-ARIN
OrgRoutingHandle: RPKIR-ARIN
OrgRoutingName: RPKI-ROA
OrgRoutingPhone: +1-877-886-6515
OrgRoutingEmail: rpki-roa@lumen.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/RPKIR-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 65.58.176.209
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17871
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;65.58.176.209. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025092601 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 27 12:14:09 CST 2025
;; MSG SIZE rcvd: 106Host 209.176.58.65.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 209.176.58.65.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 129.150.69.48 | attack | scan z |
2020-05-10 16:55:11 |
| 125.64.94.221 | attackbots | Port scan on 3 port(s): 587 1687 6600 |
2020-05-10 16:37:21 |
| 185.94.188.130 | attackspambots | Port scan(s) denied |
2020-05-10 17:09:11 |
| 195.54.160.228 | attackspam | Excessive Port-Scanning |
2020-05-10 17:07:08 |
| 104.50.180.85 | attack | May 10 07:07:07 sip sshd[19095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.50.180.85 May 10 07:07:09 sip sshd[19095]: Failed password for invalid user oracle from 104.50.180.85 port 46712 ssh2 May 10 07:29:06 sip sshd[27298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.50.180.85 |
2020-05-10 17:10:06 |
| 190.44.187.174 | attackbots | $f2bV_matches |
2020-05-10 16:37:01 |
| 111.229.102.53 | attackbots | Unauthorized SSH login attempts |
2020-05-10 16:53:04 |
| 141.98.9.161 | attackspam | $f2bV_matches |
2020-05-10 16:47:16 |
| 27.15.154.174 | attack | Unauthorized connection attempt detected from IP address 27.15.154.174 to port 23 [T] |
2020-05-10 16:54:04 |
| 5.39.77.117 | attack | May 10 07:54:24 legacy sshd[8052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.77.117 May 10 07:54:26 legacy sshd[8052]: Failed password for invalid user test1 from 5.39.77.117 port 49668 ssh2 May 10 08:00:38 legacy sshd[8286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.77.117 ... |
2020-05-10 16:50:33 |
| 114.121.248.250 | attackspam | May 10 10:40:30 vpn01 sshd[2101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.121.248.250 May 10 10:40:33 vpn01 sshd[2101]: Failed password for invalid user afe from 114.121.248.250 port 43398 ssh2 ... |
2020-05-10 16:58:46 |
| 177.234.152.114 | attackbots | xmlrpc attack |
2020-05-10 17:03:03 |
| 183.224.38.56 | attackbotsspam | May 10 04:03:27 game-panel sshd[1676]: Failed password for root from 183.224.38.56 port 35992 ssh2 May 10 04:07:55 game-panel sshd[1838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.224.38.56 May 10 04:07:57 game-panel sshd[1838]: Failed password for invalid user telnetd from 183.224.38.56 port 60434 ssh2 |
2020-05-10 16:53:46 |
| 27.72.157.66 | attackspam | 1589082660 - 05/10/2020 05:51:00 Host: 27.72.157.66/27.72.157.66 Port: 445 TCP Blocked |
2020-05-10 16:30:27 |
| 42.57.110.37 | attackspam | Unauthorised access (May 10) SRC=42.57.110.37 LEN=40 TTL=46 ID=16526 TCP DPT=8080 WINDOW=1973 SYN |
2020-05-10 16:49:08 |