City: Havana
Region: La Habana
Country: Cuba
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 152.207.0.0 - 152.207.255.255
CIDR: 152.207.0.0/16
NetName: LACNIC-ERX-152-207-0-0
NetHandle: NET-152-207-0-0-1
Parent: NET152 (NET-152-0-0-0-0)
NetType: Transferred to LACNIC
OriginAS:
Organization: Latin American and Caribbean IP address Regional Registry (LACNIC)
RegDate: 2010-11-03
Updated: 2010-11-17
Comment: This IP address range is under LACNIC responsibility
Comment: for further allocations to users in LACNIC region.
Comment: Please see http://www.lacnic.net/ for further details,
Comment: or check the WHOIS server located at http://whois.lacnic.net
Ref: https://rdap.arin.net/registry/ip/152.207.0.0
ResourceLink: http://lacnic.net/cgi-bin/lacnic/whois
ResourceLink: whois.lacnic.net
OrgName: Latin American and Caribbean IP address Regional Registry
OrgId: LACNIC
Address: Rambla Republica de Mexico 6125
City: Montevideo
StateProv:
PostalCode: 11400
Country: UY
RegDate: 2002-07-27
Updated: 2018-03-15
Ref: https://rdap.arin.net/registry/entity/LACNIC
ReferralServer: whois://whois.lacnic.net
ResourceLink: http://lacnic.net/cgi-bin/lacnic/whois
OrgAbuseHandle: LWI100-ARIN
OrgAbuseName: LACNIC Whois Info
OrgAbusePhone: +598-2604-2222
OrgAbuseEmail: abuse@lacnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/LWI100-ARIN
OrgTechHandle: LACNIC-ARIN
OrgTechName: LACNIC Whois Info
OrgTechPhone: +598-2604-2222
OrgTechEmail: whois-contact@lacnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/LACNIC-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.lacnic.net.
% IP Client: 124.223.158.242
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2025-12-07 23:07:33 (-03 -03:00)
inetnum: 152.206.0.0/15
status: allocated
aut-num: AS27725
owner: Empresa de Telecomunicaciones de Cuba, S.A.
ownerid: CU-ETCS-LACNIC
responsible: Daniel Ramos Fernandez
address: 3ra Ave Edificio Beigin, Oficina 507, Miramar Trade Center, entre 76 y 78 Reparto Miramar, Playa., 507, -
address: 10100 - La Habana - CU
country: CU
phone: +53 52883033 [0000]
owner-c: DRF13
tech-c: SYA8
abuse-c: DRF13
inetrev: 152.207.0.0/16
nserver: NS3.ETECSA.NET
nsstat: 20251204 AA
nslastaa: 20251204
nserver: NS4.ETECSA.NET
nsstat: 20251204 AA
nslastaa: 20251204
nserver: NS5.ETECSA.NET
nsstat: 20251204 AA
nslastaa: 20251204
inetrev: 152.206.0.0/16
nserver: NS3.ETECSA.NET
nsstat: 20251207 AA
nslastaa: 20251207
nserver: NS4.ETECSA.NET
nsstat: 20251207 AA
nslastaa: 20251207
nserver: NS5.ETECSA.NET
nsstat: 20251207 AA
nslastaa: 20251207
created: 20140604
changed: 20170510
nic-hdl: DRF13
person: Daniel Ramos Fernández
e-mail: daniel.ramos@etecsa.cu
address: Santiago, 2310, -
address: - - La Habana -
country: CU
phone: +53 52883033 [0000]
created: 20170427
changed: 20240220
nic-hdl: SYA8
person: Sybel Alonso
e-mail: sybel.alonso@etecsa.cu
address: 19, 19b, Vedado
address: - Plaza - la Habana
country: CU
phone: +53 52881595
created: 20170510
changed: 20221018
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.207.57.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26572
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;152.207.57.74. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025120701 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 08 10:07:33 CST 2025
;; MSG SIZE rcvd: 106Host 74.57.207.152.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 74.57.207.152.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 83.159.162.26 | attackbotsspam | Unauthorized connection attempt from IP address 83.159.162.26 on Port 445(SMB) |
2019-12-21 08:04:13 |
| 178.128.53.118 | attackbotsspam | RDP Brute-Force (Grieskirchen RZ1) |
2019-12-21 08:16:06 |
| 114.98.225.210 | attack | Dec 21 01:00:34 root sshd[11611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.98.225.210 Dec 21 01:00:35 root sshd[11611]: Failed password for invalid user wernher from 114.98.225.210 port 35768 ssh2 Dec 21 01:06:35 root sshd[11707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.98.225.210 ... |
2019-12-21 08:10:50 |
| 164.132.110.223 | attackspambots | Dec 21 00:00:19 web8 sshd\[22941\]: Invalid user webmaster from 164.132.110.223 Dec 21 00:00:19 web8 sshd\[22941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.110.223 Dec 21 00:00:22 web8 sshd\[22941\]: Failed password for invalid user webmaster from 164.132.110.223 port 44228 ssh2 Dec 21 00:05:07 web8 sshd\[25197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.110.223 user=root Dec 21 00:05:09 web8 sshd\[25197\]: Failed password for root from 164.132.110.223 port 47051 ssh2 |
2019-12-21 08:05:32 |
| 117.50.22.145 | attackspambots | Invalid user miyauchi from 117.50.22.145 port 58286 |
2019-12-21 08:26:49 |
| 74.82.63.51 | attackbots | Unauthorized connection attempt from IP address 74.82.63.51 on Port 445(SMB) |
2019-12-21 08:11:48 |
| 31.222.195.30 | attackbotsspam | 2019-12-20T23:41:17.228579shield sshd\[11602\]: Invalid user git from 31.222.195.30 port 9391 2019-12-20T23:41:17.232603shield sshd\[11602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.222.195.30 2019-12-20T23:41:18.338799shield sshd\[11602\]: Failed password for invalid user git from 31.222.195.30 port 9391 ssh2 2019-12-20T23:46:15.569061shield sshd\[13129\]: Invalid user roeser from 31.222.195.30 port 22083 2019-12-20T23:46:15.573947shield sshd\[13129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.222.195.30 |
2019-12-21 08:03:12 |
| 185.156.73.52 | attackspam | 12/20/2019-19:04:16.299157 185.156.73.52 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-12-21 08:06:22 |
| 176.31.172.40 | attackspam | Dec 20 14:11:51 kapalua sshd\[17657\]: Invalid user germana from 176.31.172.40 Dec 20 14:11:51 kapalua sshd\[17657\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-176-31-172.eu Dec 20 14:11:54 kapalua sshd\[17657\]: Failed password for invalid user germana from 176.31.172.40 port 37760 ssh2 Dec 20 14:17:04 kapalua sshd\[18240\]: Invalid user sierra from 176.31.172.40 Dec 20 14:17:04 kapalua sshd\[18240\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-176-31-172.eu |
2019-12-21 08:21:30 |
| 123.252.227.43 | attackbotsspam | Unauthorized connection attempt from IP address 123.252.227.43 on Port 445(SMB) |
2019-12-21 08:29:56 |
| 159.65.13.203 | attackbots | Dec 21 01:23:32 lnxmysql61 sshd[18792]: Failed password for mysql from 159.65.13.203 port 60627 ssh2 Dec 21 01:23:32 lnxmysql61 sshd[18792]: Failed password for mysql from 159.65.13.203 port 60627 ssh2 |
2019-12-21 08:26:10 |
| 92.174.242.138 | attackbotsspam | Dec 21 00:45:58 vpn01 sshd[17954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.174.242.138 Dec 21 00:45:59 vpn01 sshd[17954]: Failed password for invalid user leistico from 92.174.242.138 port 56012 ssh2 ... |
2019-12-21 08:23:01 |
| 195.154.119.48 | attackbotsspam | Dec 20 19:19:45 plusreed sshd[13047]: Invalid user shoutcast from 195.154.119.48 ... |
2019-12-21 08:31:45 |
| 178.128.72.80 | attack | Dec 21 00:41:22 loxhost sshd\[7910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.72.80 user=ftp Dec 21 00:41:25 loxhost sshd\[7910\]: Failed password for ftp from 178.128.72.80 port 40350 ssh2 Dec 21 00:46:16 loxhost sshd\[8217\]: Invalid user lemadec from 178.128.72.80 port 46808 Dec 21 00:46:16 loxhost sshd\[8217\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.72.80 Dec 21 00:46:17 loxhost sshd\[8217\]: Failed password for invalid user lemadec from 178.128.72.80 port 46808 ssh2 ... |
2019-12-21 08:00:57 |
| 138.197.163.11 | attack | Dec 21 00:35:13 h2812830 sshd[8550]: Invalid user stonerook from 138.197.163.11 port 48088 Dec 21 00:35:13 h2812830 sshd[8550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.163.11 Dec 21 00:35:13 h2812830 sshd[8550]: Invalid user stonerook from 138.197.163.11 port 48088 Dec 21 00:35:15 h2812830 sshd[8550]: Failed password for invalid user stonerook from 138.197.163.11 port 48088 ssh2 Dec 21 00:45:52 h2812830 sshd[8694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.163.11 user=root Dec 21 00:45:54 h2812830 sshd[8694]: Failed password for root from 138.197.163.11 port 59576 ssh2 ... |
2019-12-21 08:28:50 |