14.160.52.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
14.160.52.130	attack	1602016722 - 10/06/2020 22:38:42 Host: 14.160.52.130/14.160.52.130 Port: 445 TCP Blocked ...	2020-10-08 02:34:02
14.160.52.130	attackspam	1602016722 - 10/06/2020 22:38:42 Host: 14.160.52.130/14.160.52.130 Port: 445 TCP Blocked ...	2020-10-07 18:46:54
14.160.52.58	attack	Dovecot Invalid User Login Attempt.	2020-09-06 21:56:13
14.160.52.58	attackspambots	Attempted Brute Force (dovecot)	2020-09-06 13:31:37
14.160.52.58	attackspam	Attempted Brute Force (dovecot)	2020-09-06 05:46:12
14.160.52.26	attackspam	Brute force attack to crack SMTP password (port 25 / 587)	2020-08-06 07:01:33
14.160.52.58	attackbotsspam	Unauthorized connection attempt from IP address 14.160.52.58	2020-07-28 00:53:59
14.160.52.26	attackbotsspam	Brute force attack to crack SMTP password (port 25 / 587)	2020-06-26 08:22:22
14.160.52.58	attackspam	...	2020-06-04 01:56:32
14.160.52.26	attackspambots	Dovecot Invalid User Login Attempt.	2020-05-29 01:38:47
14.160.52.26	attack	(imapd) Failed IMAP login from 14.160.52.26 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 29 16:31:17 ir1 dovecot[264309]: imap-login: Disconnected (auth failed, 1 attempts in 7 secs): user=, method=PLAIN, rip=14.160.52.26, lip=5.63.12.44, session=<4VYztGykXkAOoDQa>	2020-04-30 03:46:08
14.160.52.54	attackbotsspam	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-03-05 19:34:24
14.160.52.54	attackbots	Nov 27 23:55:20 ns3042688 courier-imapd: LOGIN FAILED, method=PLAIN, ip=\[::ffff:14.160.52.54\] ...	2019-11-28 09:40:10
14.160.52.170	attack	Unauthorized connection attempt from IP address 14.160.52.170 on Port 445(SMB)	2019-11-17 04:42:08
14.160.52.170	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 10-10-2019 21:10:22.	2019-10-11 05:17:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.160.52.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41955
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.160.52.2.			IN	A

;; AUTHORITY SECTION:
.			189	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 23:27:34 CST 2022
;; MSG SIZE  rcvd: 104

Host info

2.52.160.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.52.160.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
101.231.146.34	attackbotsspam	2020-09-25T07:59:12.375311ollin.zadara.org sshd[1255302]: Invalid user eric from 101.231.146.34 port 59605 2020-09-25T07:59:14.225233ollin.zadara.org sshd[1255302]: Failed password for invalid user eric from 101.231.146.34 port 59605 ssh2 ...	2020-09-25 14:27:37
52.138.16.245	attackbotsspam	Sep 24 22:22:39 sip sshd[11083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.138.16.245 Sep 24 22:22:41 sip sshd[11083]: Failed password for invalid user 107 from 52.138.16.245 port 56685 ssh2 Sep 25 08:18:41 sip sshd[8790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.138.16.245	2020-09-25 14:23:41
125.163.79.159	attackspam	Honeypot attack, port: 445, PTR: 159.subnet125-163-79.speedy.telkom.net.id.	2020-09-25 14:11:47
104.248.226.186	attackspambots	Sep 24 20:18:44 php1 sshd\[30583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.226.186 user=root Sep 24 20:18:45 php1 sshd\[30585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.226.186 user=root Sep 24 20:18:45 php1 sshd\[30587\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.226.186 user=root Sep 24 20:18:45 php1 sshd\[30583\]: Failed password for root from 104.248.226.186 port 53036 ssh2 Sep 24 20:18:46 php1 sshd\[30589\]: Invalid user admin from 104.248.226.186	2020-09-25 14:27:08
185.234.219.14	attack	(cpanel) Failed cPanel login from 185.234.219.14 (IE/Ireland/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CPANEL; Logs: [2020-09-24 18:31:15 -0400] info [cpaneld] 185.234.219.14 - rosaritoinn "GET / HTTP/1.1" FAILED LOGIN cpaneld: user name not provided or invalid user [2020-09-24 18:31:20 -0400] info [cpaneld] 185.234.219.14 - hotelcalafia "GET / HTTP/1.1" FAILED LOGIN cpaneld: user name not provided or invalid user [2020-09-24 18:36:22 -0400] info [cpaneld] 185.234.219.14 - lajolladerosarito "GET / HTTP/1.1" FAILED LOGIN cpaneld: user name not provided or invalid user [2020-09-24 18:38:04 -0400] info [cpaneld] 185.234.219.14 - rosaritotourism "GET / HTTP/1.1" FAILED LOGIN cpaneld: user name not provided or invalid user [2020-09-24 18:44:24 -0400] info [cpaneld] 185.234.219.14 - castropeak "GET / HTTP/1.1" FAILED LOGIN cpaneld: access denied for root, reseller, and user password	2020-09-25 14:40:04
189.125.102.208	attack	(sshd) Failed SSH login from 189.125.102.208 (BR/Brazil/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 25 01:50:28 server5 sshd[1537]: Invalid user jack from 189.125.102.208 Sep 25 01:50:28 server5 sshd[1537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.125.102.208 Sep 25 01:50:30 server5 sshd[1537]: Failed password for invalid user jack from 189.125.102.208 port 48417 ssh2 Sep 25 01:53:46 server5 sshd[3018]: Invalid user prueba from 189.125.102.208 Sep 25 01:53:46 server5 sshd[3018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.125.102.208	2020-09-25 14:33:39
112.112.187.95	attackspam	Brute force blocker - service: proftpd1 - aantal: 92 - Wed Sep 5 11:30:16 2018	2020-09-25 14:26:46
106.56.86.187	attack	Brute force blocker - service: proftpd1 - aantal: 30 - Thu Sep 6 05:55:13 2018	2020-09-25 13:57:47
49.88.112.70	attackspam	Sep 25 11:28:54 mx sshd[956424]: Failed password for root from 49.88.112.70 port 50596 ssh2 Sep 25 11:28:57 mx sshd[956424]: Failed password for root from 49.88.112.70 port 50596 ssh2 Sep 25 11:29:00 mx sshd[956424]: Failed password for root from 49.88.112.70 port 50596 ssh2 Sep 25 11:29:52 mx sshd[956435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.70 user=root Sep 25 11:29:54 mx sshd[956435]: Failed password for root from 49.88.112.70 port 61752 ssh2 ...	2020-09-25 14:04:05
122.14.18.238	attackbots	Brute force blocker - service: proftpd1 - aantal: 155 - Wed Sep 5 10:50:15 2018	2020-09-25 14:31:14
161.35.163.65	attack	20 attempts against mh-ssh on air	2020-09-25 13:55:46
185.191.171.35	attackspam	Automatic report - Banned IP Access	2020-09-25 13:54:20
177.124.195.194	attackspam	Unauthorized connection attempt from IP address 177.124.195.194 on Port 445(SMB)	2020-09-25 14:25:10
40.76.192.252	attackbots	Sep 25 08:18:54 ns381471 sshd[22318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.76.192.252 Sep 25 08:18:56 ns381471 sshd[22318]: Failed password for invalid user topbunk from 40.76.192.252 port 8697 ssh2	2020-09-25 14:37:54
183.196.3.24	attack	Brute force blocker - service: proftpd1 - aantal: 116 - Thu Sep 6 03:40:14 2018	2020-09-25 13:54:46

Recently Reported IPs

124.156.100.83	103.82.79.7	167.99.61.229	200.53.18.140
182.136.147.14	77.44.110.101	202.4.124.58	43.129.49.205
112.249.233.35	222.165.194.68	197.210.54.33	223.98.69.2
186.236.20.160	113.90.234.36	64.127.156.102	8.24.209.4
107.173.237.133	86.98.88.157	178.238.118.238	212.0.135.19