Publicité (Header Leaderboard)

Rapport IP : 168.228.195.17

Généré le 16/12/2025 13:57
← Retour
NEXUS AI THREAT REPORT
NEUTRAL
ANALYSIS INITIATED FOR TARGET: 168.228.195.17.
[STATUS]: ENTITY APPEARS CLEAN based on current intelligence databases.
[INTEL]: No negative signals detected in global registries.
[VERDICT]: MONITORING ADVISED BUT NO IMMEDIATE ACTION REQUIRED.
Route: Client → ISP → ASN → Target
Dark Web Leak Radar
Standby

Search for leaks associated with this IP in BreachCompilation, DeepMix, etc.

Stealth Proxy Hunter
Analyze VPN, TOR, and Anonymous Proxy signatures.
Botnet C2 Hunter
AWAITING TARGET ACQUISITION...

Map neighboring IP addresses and identify potential subnet associations.

Vulnerability Lab

Analyze detected services to identify known CVEs.

Identity & Summary
Organization / ISP
Latin American and Caribbean IP address Regional Registry
IP Range (CIDR)
168.228.0.0/16
Key Dates
Created: 2010-11-03
Updated: 2010-11-17
Whois Data / Technical Raw Output

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange: 168.228.0.0 - 168.228.255.255
CIDR: 168.228.0.0/16
NetName: LACNIC-ERX-168-228-0-0
NetHandle: NET-168-228-0-0-1
Parent: NET168 (NET-168-0-0-0-0)
NetType: Transferred to LACNIC
OriginAS:
Organization: Latin American and Caribbean IP address Regional Registry (LACNIC)
RegDate: 2010-11-03
Updated: 2010-11-17
Comment: This IP address range is under LACNIC responsibility
Comment: for further allocations to users in LACNIC region.
Comment: Please see http://www.lacnic.net/ for further details,
Comment: or check the WHOIS server located at http://whois.lacnic.net
Ref: https://rdap.arin.net/registry/ip/168.228.0.0

ResourceLink: http://lacnic.net/cgi-bin/lacnic/whois
ResourceLink: whois.lacnic.net


OrgName: Latin American and Caribbean IP address Regional Registry
OrgId: LACNIC
Address: Rambla Republica de Mexico 6125
City: Montevideo
StateProv:
PostalCode: 11400
Country: UY
RegDate: 2002-07-27
Updated: 2018-03-15
Ref: https://rdap.arin.net/registry/entity/LACNIC

ReferralServer: whois://whois.lacnic.net
ResourceLink: http://lacnic.net/cgi-bin/lacnic/whois

OrgTechHandle: LACNIC-ARIN
OrgTechName: LACNIC Whois Info
OrgTechPhone: +598-2604-2222
OrgTechEmail: whois-contact@lacnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/LACNIC-ARIN

OrgAbuseHandle: LWI100-ARIN
OrgAbuseName: LACNIC Whois Info
OrgAbusePhone: +598-2604-2222
OrgAbuseEmail: abuse@lacnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/LWI100-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



Found a referral to whois.lacnic.net.

% IP Client: 2001:41d0:d:309c:0:0:0:1

% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries

% LACNIC resource: whois.lacnic.net


% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2025-12-16 10:57:59 (-03 -03:00)

inetnum: 168.228.195.0/24
status: reallocated
aut-num: AS263725
owner: CATELSA
ownerid: HN-CATE4-LACNIC
responsible: JOSE TURCIOS
address: 15 calle 232 San Pedro Sula HN, ,
address: 50067 - San Pedro Sula - Cortes
country: HN
phone: +504 94524630
owner-c: JOT51
tech-c: JGE3
abuse-c: JGE3
inetrev: 168.228.195.0/24
nserver: NS2.MULTICABLE.HN
nsstat: 20251212 AA
nslastaa: 20251212
created: 20200503
changed: 20200503
inetnum-up: 168.228.192.0/22

nic-hdl: JOT51
person: jose turcios
e-mail: joseturcios@catelsa.hn
address: 15 calle, 182, 15 calle 10 y 11 avenida
address: 50067 - San Pedro Sula - Cortes
country: HN
phone: +504 50494524630 [01]
created: 20200501
changed: 20200501

nic-hdl: JGE3
person: jose gonzalo turcios enamorado
e-mail: joseturcios@multicable.hn
address: san pedro sula barrio paz barahona, 302, 9ave y 10 calle barrio lempira.
address: 21104 - san pedro sula -
country: HN
phone: +504 94524630 [0000]
created: 20141011
changed: 20220115

% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.

Dictionary
ASN

Autonomous System Number (ASN) defines a group of IP networks run by one operator.

Handle

A unique identifier assigned by registrars (RIPE, ARIN) to organizations or contacts.

Associated Domains / Passive DNS
Geolocation & Network
🌍

Loading...

-

ISP Provider
...
Organization
...
ASN
...
Timezone
...
Interactive Map
Risk Index SAFE
0%

Malicious Activity Probability

Reports
0
Reporters
0
Report this IP
Analyzing web server...
Latency (Live)
Standby Avg: - ms
Port Scanner

Check common open ports on this host.

AI Analysis & Summary

The IP address 168.228.195.17 is located in UY and is assigned to the Internet Service Provider Latin American and Caribbean IP address Regional Registry. It is part of the network range 168.228.0.0 - 168.228.255.255. We have not actively detected malicious activity from this IP in our database recently, but it may still be part of a compromised subnet. You can perform a full Port Scan or Whois Lookup to get more details.

IP Abuse Reports for 168.228.195.17:

No abuse reports found for this IP address.

ads_placeholder
Historique
No recent search.
Recent Global Scans (SEO Index)
103.187.147.16 178.62.253.97 195.178.110.30 116.110.149.157 116.110.151.38 195.96.138.145 216.10.247.49 193.46.255.99 80.94.93.119 92.118.39.87 80.94.93.233 116.177.172.64 103.47.226.141 43.159.230.49 193.46.255.20 80.94.92.168 45.148.10.121 160.22.122.35 195.178.110.30 45.134.26.238 104.214.58.50 80.94.95.115 193.46.255.33 186.96.145.241 193.46.255.217 103.187.147.16 92.118.39.62 193.46.255.103 164.92.94.204 195.20.236.212 193.46.255.20 193.46.255.159 52.174.67.71 80.94.92.40 92.118.39.87 45.134.26.236 188.166.76.107 179.43.184.242 80.94.92.167 160.22.122.35 80.94.95.116 80.94.95.115 110.32.34.138 118.193.45.106 104.214.58.50 186.96.145.241 20.243.136.122 103.187.147.16 193.46.255.7 43.159.230.49

Cybersecurity Knowledge Base

Understanding the threats detected by our systems.

SSH Brute Force

An automated attack where a script attempts to guess the password of a Secure Shell (SSH) server by trying thousands of combinations. This is a common method used by botnets to gain unauthorized access to servers.

Port Scanning

The practice of sending packets to specific ports on a host to identify open services. While used by administrators for auditing, it is often the first step in an attack to find vulnerabilities.

Botnet Activity

A network of compromised computers (bots) controlled by a third party. They are often used to coordinate DDoS attacks, send spam, or perform distributed brute-force attacks.