City: Pittsburg
Region: California
Country: United States
Internet Service Provider: RTC Communications LLC
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
# start
NetRange: 67.128.0.0 - 67.135.255.255
CIDR: 67.128.0.0/13
NetName: CENTURYLINK-LEGACY-QWEST-INET-11
NetHandle: NET-67-128-0-0-1
Parent: NET67 (NET-67-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: CenturyLink Communications, LLC (CCL-534)
RegDate: 2002-07-12
Updated: 2018-02-21
Ref: https://rdap.arin.net/registry/ip/67.128.0.0
OrgName: CenturyLink Communications, LLC
OrgId: CCL-534
Address: 100 CENTURYLINK DR
City: Monroe
StateProv: LA
PostalCode: 71201
Country: US
RegDate: 2018-07-12
Updated: 2026-04-22
Comment: USAGE OF IP SPACE MUST COMPLY WITH OUR ACCEPTABLE USE POLICY:
Comment: https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
Comment:
Comment: ADDRESSES COVERED BY THIS ORG-ID ARE NON-PORTABLE ANY ISP ANNOUNCING OR TRANSITING PORTIONS WITHIN OUR RANGES SHOULD NOT RELY ON PRESENTED LOA'S OR OLD WHOIS UNLESS THOSE RANGES ARE ALSO ACTIVELY DIRECTLY ANNOUNCED TO A LUMEN ASN. WITH ALL LOA'S THESE CONDITIONS APPLY:
Comment:
Comment: 1. You are permitted to route the Lumen IP prefixes listed via Public BGP to your alternate ISP from the designated ASN. Any other ASN originating the prefix listed is forbidden.
Comment: 2. The Lumen IP prefixes listed can be routed via Public BGP to your alternate ISP as long as you remain an active customer with Lumen and continue to route the prefixes over at least one Lumen Internet circuit without significant traffic engineering.
Comment: 3. Should your Internet services with Lumen be discontinued, Lumen reserves the right to have your alternate ISP terminate the routing of the Lumen IP prefixes without advanced notification, should you fail to do so.
Comment: 4. All IP Addresses assigned or allocated by Lumen to an end-user (customer or ISP) shall be considered non-portable and will be reclaimed by Lumen upon service termination.
Comment: 5. Lumen reserves the right to conduct audits to ensure the LOA conditions are being met.
Comment: 6. Usage of IP space must comply with our AUP https://www.lumen.com/en-us/about/legal/acceptable-use-policy.html
Comment:
Comment: Our looking glass is located at: https://lookingglass.centurylink.com/
Comment:
Comment: For subpoena or court order please fax 844.254.5800 or refer to our Trust & Safety page:
Comment: https://www.lumen.com/en-us/about/legal/trust-center/trust-and-safety.html
Comment:
Comment: For abuse issues, please email abuse@aup.lumen.com
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email)
Comment: Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/CCL-534
OrgTechHandle: QIA-ARIN
OrgTechName: Centurylink IP Admin
OrgTechPhone: +1-877-886-6515
OrgTechEmail: ipadmin@centurylink.com
OrgTechRef: https://rdap.arin.net/registry/entity/QIA-ARIN
OrgAbuseHandle: CAD54-ARIN
OrgAbuseName: Centurylink Abuse Desk
OrgAbusePhone: +1-877-886-6515
OrgAbuseEmail: abuse@aup.lumen.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/CAD54-ARIN
OrgRoutingHandle: RPKIR-ARIN
OrgRoutingName: RPKI-ROA
OrgRoutingPhone: +1-877-886-6515
OrgRoutingEmail: rpki-roa@lumen.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/RPKIR-ARIN
# end
# start
NetRange: 67.134.12.0 - 67.134.15.255
CIDR: 67.134.12.0/22
NetName: Q1010-67-134-12-0
NetHandle: NET-67-134-12-0-1
Parent: CENTURYLINK-LEGACY-QWEST-INET-11 (NET-67-128-0-0-1)
NetType: Reallocated
OriginAS:
Organization: Intelletrace (INTEL-81)
RegDate: 2012-10-10
Updated: 2012-10-10
Ref: https://rdap.arin.net/registry/ip/67.134.12.0
OrgName: Intelletrace
OrgId: INTEL-81
Address: 936 B 7th Street #122
City: Novato
StateProv: CA
PostalCode: 94945
Country: US
RegDate: 2005-07-13
Updated: 2024-11-25
Ref: https://rdap.arin.net/registry/entity/INTEL-81
OrgTechHandle: SUPPO153-ARIN
OrgTechName: Intelletrace Support
OrgTechPhone: +1-800-618-5877
OrgTechEmail: arinsupport@intelletrace.com
OrgTechRef: https://rdap.arin.net/registry/entity/SUPPO153-ARIN
OrgAbuseHandle: SUPPO153-ARIN
OrgAbuseName: Intelletrace Support
OrgAbusePhone: +1-800-618-5877
OrgAbuseEmail: arinsupport@intelletrace.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/SUPPO153-ARIN
OrgNOCHandle: SUPPO153-ARIN
OrgNOCName: Intelletrace Support
OrgNOCPhone: +1-800-618-5877
OrgNOCEmail: arinsupport@intelletrace.com
OrgNOCRef: https://rdap.arin.net/registry/entity/SUPPO153-ARIN
# end
# start
NetRange: 67.134.12.0 - 67.134.15.255
CIDR: 67.134.12.0/22
NetName: Q1010-67-134-12-0
NetHandle: NET-67-134-12-0-2
Parent: Q1010-67-134-12-0 (NET-67-134-12-0-1)
NetType: Reallocated
OriginAS:
Organization: Evocative, Inc. (EVOCAT-2)
RegDate: 2012-11-02
Updated: 2012-11-02
Ref: https://rdap.arin.net/registry/ip/67.134.12.0
OrgName: Evocative, Inc.
OrgId: EVOCAT-2
Address: 26 Centerpointe Dr. Suite 110
City: La Palma
StateProv: CA
PostalCode: 90623
Country: US
RegDate: 1998-11-17
Updated: 2024-11-25
Ref: https://rdap.arin.net/registry/entity/EVOCAT-2
OrgTechHandle: NOC1709-ARIN
OrgTechName: Network Operations Center
OrgTechPhone: +1-888-365-2656
OrgTechEmail: abuse@evocative.com
OrgTechRef: https://rdap.arin.net/registry/entity/NOC1709-ARIN
OrgNOCHandle: NETWO813-ARIN
OrgNOCName: Network Engineering
OrgNOCPhone: +1-866-599-9593
OrgNOCEmail: abuse@vpls.net
OrgNOCRef: https://rdap.arin.net/registry/entity/NETWO813-ARIN
OrgAbuseHandle: VPLSA-ARIN
OrgAbuseName: VPLS-ARIN
OrgAbusePhone: +1-213-406-9018
OrgAbuseEmail: abuse@vpls.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/VPLSA-ARIN
OrgTechHandle: NETWO813-ARIN
OrgTechName: Network Engineering
OrgTechPhone: +1-866-599-9593
OrgTechEmail: admin-arin@vpls.net
OrgTechRef: https://rdap.arin.net/registry/entity/NETWO813-ARIN
# end
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 67.134.12.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57312
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;67.134.12.0. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026042800 1800 900 604800 86400
;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 28 16:33:47 CST 2026
;; MSG SIZE rcvd: 104b'Host 0.12.134.67.in-addr.arpa not found: 2(SERVFAIL)
'server can't find 67.134.12.0.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.42.29.236 | attackspambots | Sep 15 04:58:59 bouncer sshd\[1777\]: Invalid user trendimsa1.0 from 104.42.29.236 port 46912 Sep 15 04:58:59 bouncer sshd\[1777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.29.236 Sep 15 04:59:01 bouncer sshd\[1777\]: Failed password for invalid user trendimsa1.0 from 104.42.29.236 port 46912 ssh2 ... |
2019-09-15 11:48:25 |
| 162.144.78.197 | attackbots | 162.144.78.197 - - [14/Sep/2019:23:48:08 +0200] "POST /wp-login.php HTTP/1.1" 403 1595 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" a9eb64c97a449f165ca99bfd15f809e8 United States US Utah Provo 162.144.78.197 - - [15/Sep/2019:04:59:05 +0200] "POST /wp-login.php HTTP/1.1" 403 1593 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" f5bde79ce8be65534531cf281fb24ccc United States US Utah Provo |
2019-09-15 11:44:04 |
| 81.22.45.190 | attack | Port scan on 14 port(s): 18160 18175 18255 18344 18423 18558 18560 18578 18721 18744 18835 18931 18939 18969 |
2019-09-15 12:09:32 |
| 176.31.251.177 | attack | Sep 14 17:40:25 web1 sshd\[10894\]: Invalid user Juuso from 176.31.251.177 Sep 14 17:40:25 web1 sshd\[10894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.251.177 Sep 14 17:40:26 web1 sshd\[10894\]: Failed password for invalid user Juuso from 176.31.251.177 port 56034 ssh2 Sep 14 17:47:50 web1 sshd\[11490\]: Invalid user vmail from 176.31.251.177 Sep 14 17:47:50 web1 sshd\[11490\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.251.177 |
2019-09-15 11:51:03 |
| 213.191.197.53 | attackspambots | Sep 14 17:36:54 eddieflores sshd\[5433\]: Invalid user vliaudat from 213.191.197.53 Sep 14 17:36:54 eddieflores sshd\[5433\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.191.197.53 Sep 14 17:36:56 eddieflores sshd\[5433\]: Failed password for invalid user vliaudat from 213.191.197.53 port 55256 ssh2 Sep 14 17:44:35 eddieflores sshd\[6112\]: Invalid user admin from 213.191.197.53 Sep 14 17:44:35 eddieflores sshd\[6112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.191.197.53 |
2019-09-15 12:04:58 |
| 222.186.30.152 | attackbots | Sep 15 05:53:26 minden010 sshd[18864]: Failed password for root from 222.186.30.152 port 41002 ssh2 Sep 15 05:53:35 minden010 sshd[18902]: Failed password for root from 222.186.30.152 port 40671 ssh2 Sep 15 05:53:40 minden010 sshd[18902]: Failed password for root from 222.186.30.152 port 40671 ssh2 ... |
2019-09-15 11:55:27 |
| 175.208.192.194 | attack | Sep 15 04:58:40 dev0-dcde-rnet sshd[7994]: Failed password for root from 175.208.192.194 port 55139 ssh2 Sep 15 04:58:48 dev0-dcde-rnet sshd[7994]: Failed password for root from 175.208.192.194 port 55139 ssh2 Sep 15 04:58:50 dev0-dcde-rnet sshd[7994]: Failed password for root from 175.208.192.194 port 55139 ssh2 Sep 15 04:58:52 dev0-dcde-rnet sshd[7994]: Failed password for root from 175.208.192.194 port 55139 ssh2 Sep 15 04:58:52 dev0-dcde-rnet sshd[7994]: error: maximum authentication attempts exceeded for root from 175.208.192.194 port 55139 ssh2 [preauth] |
2019-09-15 11:52:03 |
| 37.187.129.166 | attack | fail2ban honeypot |
2019-09-15 12:22:47 |
| 95.215.58.146 | attackspambots | Sep 15 06:31:47 site3 sshd\[48637\]: Invalid user fawst from 95.215.58.146 Sep 15 06:31:47 site3 sshd\[48637\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.215.58.146 Sep 15 06:31:49 site3 sshd\[48637\]: Failed password for invalid user fawst from 95.215.58.146 port 52072 ssh2 Sep 15 06:36:31 site3 sshd\[48703\]: Invalid user oracle from 95.215.58.146 Sep 15 06:36:31 site3 sshd\[48703\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.215.58.146 ... |
2019-09-15 11:43:01 |
| 121.129.112.106 | attack | Sep 15 04:54:13 ns3110291 sshd\[10901\]: Invalid user sysadmin from 121.129.112.106 Sep 15 04:54:13 ns3110291 sshd\[10901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.129.112.106 Sep 15 04:54:16 ns3110291 sshd\[10901\]: Failed password for invalid user sysadmin from 121.129.112.106 port 47682 ssh2 Sep 15 04:58:34 ns3110291 sshd\[11056\]: Invalid user yuanwd from 121.129.112.106 Sep 15 04:58:34 ns3110291 sshd\[11056\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.129.112.106 ... |
2019-09-15 12:06:34 |
| 73.5.207.198 | attack | 2019-09-15T05:38:08.764421centos sshd\[5048\]: Invalid user rator from 73.5.207.198 port 52144 2019-09-15T05:38:08.769505centos sshd\[5048\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-5-207-198.hsd1.fl.comcast.net 2019-09-15T05:38:11.078756centos sshd\[5048\]: Failed password for invalid user rator from 73.5.207.198 port 52144 ssh2 |
2019-09-15 11:45:46 |
| 68.183.124.182 | attackspambots | 2019-09-15T03:30:58.087539abusebot-7.cloudsearch.cf sshd\[5391\]: Invalid user temp from 68.183.124.182 port 54088 |
2019-09-15 11:43:40 |
| 122.15.82.83 | attack | 2019-09-15T02:58:14.579899abusebot.cloudsearch.cf sshd\[20032\]: Invalid user winston from 122.15.82.83 port 53832 |
2019-09-15 12:18:24 |
| 125.160.17.32 | attackspambots | Bruteforce on SSH Honeypot |
2019-09-15 12:10:21 |
| 177.63.210.93 | attack | Automatic report - Port Scan Attack |
2019-09-15 11:39:57 |