IP: Near: La Rioja, La Rioja, Argentina
La Rioja
NetRange: -
NetName: LACNIC-200
NetHandle: NET-200-0-0-0-1
Parent: ()
NetType: Allocated to LACNIC
Organization: Latin American and Caribbean IP address Regional Registry (LACNIC)
RegDate: 2002-07-26
Updated: 2010-07-21
Comment: This IP address range is under LACNIC responsibility for further
Comment: allocations to users in LACNIC region.
Comment: Please see http://www.lacnic.net/ for further details, or check the
Comment: WHOIS server located at http://whois.lacnic.net
Ref: https://rdap.arin.net/registry/ip/

ResourceLink: http://lacnic.net/cgi-bin/lacnic/whois
ResourceLink: whois.lacnic.net

OrgName: Latin American and Caribbean IP address Regional Registry
Address: Rambla Republica de Mexico 6125
City: Montevideo
PostalCode: 11400
Country: UY
RegDate: 2002-07-26
Updated: 2018-03-15
Ref: https://rdap.arin.net/registry/entity/LACNIC

ReferralServer: whois://whois.lacnic.net
ResourceLink: http://lacnic.net/cgi-bin/lacnic/whois

OrgTechHandle: LACNIC-ARIN
OrgTechName: LACNIC Whois Info
OrgTechPhone: +598-2604-2222
OrgTechEmail: whois-contact@lacnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/LACNIC-ARIN

OrgAbuseHandle: LWI100-ARIN
OrgAbuseName: LACNIC Whois Info
OrgAbusePhone: +598-2604-2222
OrgAbuseEmail: abuse@lacnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/LWI100-ARIN
DNS BlackList results:
Most recent complaints on
Complaint by phartz :

constant intrusions of win.mssql.worm.helkern from this IP

Reported on: 4th, Jan. 2013
Complaint by WifiNinja :

attempted DoS MS-SQL Slammer Worm on my system

Reported on: 6th, Jan. 2013
Complaint by Anonymous :

Same as others, intrusion of Intrusion.Win.MSSQL.worm.Helkern from this IP. (Blocked by my Firewall)

Reported on: 14th, Jan. 2013
Complaint by RK :

Snort blocked GPL SQL Slammer Worm propagation attempt

Reported on: 15th, Jan. 2013
Complaint by Net Admin :

UDP from to local port 1434Intrusion.Win.MSSQL.worm.Helkern 12/16/2012 5:02:23 PM Several of these over a 3 week period

Reported on: 9th, Mar. 2013
Complaint by ANONYM HUNGARY :

Has repeatedly attempting to penetrate into my system!

Reported on: 26th, Apr. 2013
Complaint by hacker :

i had an intrusion just like all others from this ip address

Reported on: 7th, May. 2013
Complaint by S.Ruban :


Reported on: 9th, May. 2013
Complaint by GL :

UDP from to local port 1434Intrusion.Win.MSSQL.worm.Helkern 05/11/2013 21:08:10

Reported on: 11th, May. 2013
Complaint by Anonymous :

Kaspersky reports: "Intrusion.Win.MSSQL.worm.Helkern" Simultaneously I am recieving fake phone calls to my voip softphone.

Reported on: 14th, May. 2013
Complaint by Berliner : tried to damage my system and penetrated illegally into my privacy

Reported on: 4th, Jun. 2013
Complaint by Palo Alto :

Microsoft SQL Server Stack Overflow Vulnerability ID: 30009 Description: Microsoft SQL Server is prone to a remote stack overflow vulnerability. A SQL request packet with the first byte set to 0x04,and followed by a long string would overflow the stack, as the server attempts to open a registry key with the data. A successful attack may result in arbitrary code execution with SYSTEM privileges leading to a full compromise.

Reported on: 10th, Jun. 2013
Complaint by Anonymous :

Same as the others. attempted Helken intrusion, blocked by firewall.

Reported on: 4th, Jul. 2013
Complaint by Anonymous :

please block this ip adress it is trying to hack my pc since march. every time it attacks there is a kaspersky report Intrusion. win.MSSQL.worm.Helkern object: status: Undefined

Reported on: 14th, Jul. 2013
Complaint by T. S. :

Attack on my pc as well. Intrusion,tried to install Win.MSSQL.worm.H; With so many complaints about this address; Why is it still doing it?

Reported on: 15th, Oct. 2013
Complaint by Arx :

Attack on my pc, intrusion my MSSQL worm Helkern

Reported on: 2nd, Nov. 2013
Complaint by DR :

Attack from this ip on my laptop,kaspersky internet security blocked it. Trying to inject win.mssql.worm.kelkern.

Reported on: 15th, Nov. 2013
Complaint by Venky :

Intrusion of Intrusion.Win.MSSQL.worm.Helkern from this IP. (Blocked by my Firewall)

Reported on: 19th, Nov. 2013
Complaint by RM :

Blocked by McAfee HIP IPS, signature 3720 "MSSQL Resolution Service Buffer Overflow (Slammer)"

Reported on: 8th, Jan. 2014
Complaint by Anonymous :

Intrusion.Win.MSSQL.worm.Helkern from this IP Blocked by "Kaspersky Internet Security 2014"

Reported on: 12th, May. 2014
Complaint by Daniil :

Только козлы могут вторгаться в чужие огороды

Reported on: 2nd, Jun. 2014
Complaint by j :

Network attack identified by Kaspersky antivirus. Blocked

Reported on: 19th, Jun. 2014
Complaint by mpd55 :

Intrusion.Win.MSSQL.worm.Helkern from this IP Blocked by Kaspersky Internet Security 2013. Occurences almost daily from this and other ISP's. (Addresses reported as spoofed.)

Reported on: 21st, Jun. 2014

Please help us keep Internet safer and cleaner by leaving a descriptive comment about IP address

DNSBL* - is a list of IP addresses published through the Internet Domain Name Service (DNS) either as a zone file that can be used by DNS server software, or as a live DNS zone that can be queried in real-time. DNSBLs are most often used to publish the addresses of computers or networks linked to spamming; most mail server software can be configured to reject or flag messages which have been sent from a site listed on one or more such lists.

WHOIS** - is a query/response protocol that is widely used for querying databases in order to determine the registrant or assignee of Internet resources, such as a domain name, an IP address block, or an autonomous system number. WHOIS lookups were traditionally performed with a command line interface application, and network administrators predominantly still use this method, but many simplified web-based tools exist. WHOIS services are typically communicated using the Transmission Control Protocol (TCP). Servers listen to requests on the well-known port number 43.

** Approximate Geographic Location - This is NOT the exact geographical location of the person/organization with the given IP address. However, this should still give you a good idea about the area/region where this person/orgranization is located.