52.128.231.114

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: CSL Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       52.128.224.0 - 52.128.255.255
CIDR:           52.128.224.0/19
NetName:        APNIC
NetHandle:      NET-52-128-224-0-1
Parent:         NET52 (NET-52-0-0-0-0)
NetType:        Early Registrations, Transferred to APNIC
OriginAS:       
Organization:   Asia Pacific Network Information Centre (APNIC)
RegDate:        2017-10-03
Updated:        2017-10-03
Ref:            https://rdap.arin.net/registry/ip/52.128.224.0

ResourceLink:  https://apps.db.ripe.net/db-web-ui/query
ResourceLink:  whois://whois.apnic.net


OrgName:        Asia Pacific Network Information Centre
OrgId:          APNIC
Address:        PO Box 3646
City:           South Brisbane
StateProv:      QLD
PostalCode:     4101
Country:        AU
RegDate:        
Updated:        2012-01-24
Ref:            https://rdap.arin.net/registry/entity/APNIC

ReferralServer:  whois://whois.apnic.net
ResourceLink:  http://wq.apnic.net/whois-search/static/search.html

OrgTechHandle: AWC12-ARIN
OrgTechName:   APNIC Whois Contact
OrgTechPhone:  +61 7 3858 3188 
OrgTechEmail:  search-apnic-not-arin@apnic.net
OrgTechRef:    https://rdap.arin.net/registry/entity/AWC12-ARIN

OrgAbuseHandle: AWC12-ARIN
OrgAbuseName:   APNIC Whois Contact
OrgAbusePhone:  +61 7 3858 3188 
OrgAbuseEmail:  search-apnic-not-arin@apnic.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/AWC12-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



Found a referral to whois.apnic.net.

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '52.128.224.0 - 52.128.255.255'

% Abuse contact for '52.128.224.0 - 52.128.255.255' is 'abuse@netsec.com'

inetnum:        52.128.224.0 - 52.128.255.255
netname:        NETSEC-HK
descr:          Netsec Limited
country:        HK
org:            ORG-NASS1-AP
admin-c:        NN541-AP
tech-c:         NN541-AP
status:         ALLOCATED PORTABLE
abuse-c:        AH1002-AP
mnt-by:         APNIC-HM
mnt-lower:      MAINT-NETSEC-HK
mnt-routes:     MAINT-NETSEC-HK
mnt-irt:        IRT-NETSEC
last-modified:  2025-03-14T06:41:34Z
source:         APNIC

irt:            IRT-NETSEC
address:        Suite 1007, 10/F, The Bay Hub, 17 Kai Cheung Rd, Kowloon Bay
e-mail:         noc@netsec.com
abuse-mailbox:  abuse@netsec.com
admin-c:        NN541-AP
tech-c:         NN541-AP
auth:           # Filtered
remarks:        noc@netsec.com was validated on 2025-11-25
remarks:        abuse@netsec.com was validated on 2026-03-25
mnt-by:         MAINT-NETSEC-HK
last-modified:  2026-03-25T03:18:33Z
source:         APNIC

organisation:   ORG-NASS1-AP
org-name:       Netsec Limited
org-type:       LIR
country:        HK
address:        RM 2607-08, 26/F, Billion Plaza, 8 Cheung Yue St, Cheung Sha
phone:          +852-27511100
fax-no:         +852-27511199
e-mail:         noc@netsec.com
mnt-ref:        APNIC-HM
mnt-by:         APNIC-HM
last-modified:  2023-09-05T02:15:31Z
source:         APNIC

role:           ABUSE HKNETSEC
country:        ZZ
address:        RM 2607-08, 26/F, Billion Plaza, 8 Cheung Yue St, Cheung Sha Wan, Kowloon, Hong Kong
phone:          +000000000
e-mail:         noc@netsec.com
admin-c:        NN411-AP
tech-c:         NN411-AP
nic-hdl:        AH1002-AP
remarks:        Generated from irt object IRT-HK-NETSEC
remarks:        noc@netsec.com was validated on 2025-11-25
remarks:        abuse@netsec.com was validated on 2026-03-25
abuse-mailbox:  abuse@netsec.com
mnt-by:         APNIC-ABUSE
last-modified:  2026-03-25T03:18:46Z
source:         APNIC

role:           NETSEC NOC
address:        Suite 1007, 10/F, The Bay Hub, 17 Kai Cheung Rd, Kowloon Bay
country:        HK
phone:          +85227511100
e-mail:         noc@netsec.com
admin-c:        NN541-AP
tech-c:         NN541-AP
nic-hdl:        NN541-AP
mnt-by:         MAINT-NETSEC-HK
last-modified:  2025-03-14T05:55:40Z
source:         APNIC

% Information related to '52.128.231.0/24AS45753'

route:          52.128.231.0/24
origin:         AS45753
descr:          Netsec Limited
                RM 2607-08, 26/F, Billion Plaza, 8 Cheung Yue St, Cheung Sha
mnt-by:         MAINT-NETSEC-HK
last-modified:  2021-11-29T08:39:22Z
source:         APNIC

% Information related to '52.128.231.0/24AS9744'

route:          52.128.231.0/24
origin:         AS9744
descr:          Netsec Limited
                RM 2607-08, 26/F, Billion Plaza, 8 Cheung Yue St, Cheung Sha
mnt-by:         MAINT-NETSEC-HK
last-modified:  2021-11-29T07:50:38Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.128.231.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37768
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.128.231.114.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026052401 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 25 07:00:11 CST 2026
;; MSG SIZE  rcvd: 107

Host info

Host 114.231.128.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 114.231.128.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
52.59.138.58	attack	WordPress brute force	2019-09-30 08:29:14
79.137.79.167	attack	Sep 30 00:29:53 rotator sshd\[1248\]: Failed password for root from 79.137.79.167 port 50080 ssh2Sep 30 00:29:55 rotator sshd\[1248\]: Failed password for root from 79.137.79.167 port 50080 ssh2Sep 30 00:29:58 rotator sshd\[1248\]: Failed password for root from 79.137.79.167 port 50080 ssh2Sep 30 00:30:00 rotator sshd\[1248\]: Failed password for root from 79.137.79.167 port 50080 ssh2Sep 30 00:30:02 rotator sshd\[1248\]: Failed password for root from 79.137.79.167 port 50080 ssh2Sep 30 00:30:05 rotator sshd\[1248\]: Failed password for root from 79.137.79.167 port 50080 ssh2 ...	2019-09-30 08:25:42
46.119.114.88	attack	46.119.114.88 - - [30/Sep/2019:01:05:22 +0200] "GET /wp-login.php HTTP/1.1" 200 3511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" 46.119.114.88 - - [30/Sep/2019:01:05:23 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" 46.119.114.88 - - [30/Sep/2019:01:05:23 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" 46.119.114.88 - - [30/Sep/2019:01:05:24 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" 46.119.114.88 - - [30/Sep/2019:01:05:24 +0200] "POST /wp-login.php	2019-09-30 08:38:00
197.58.141.91	attack	Chat Spam	2019-09-30 08:07:56
36.69.20.221	attack	Automatic report - Port Scan Attack	2019-09-30 08:25:30
138.68.92.121	attackbotsspam	Sep 29 19:35:47 xtremcommunity sshd\[11052\]: Invalid user apache from 138.68.92.121 port 54094 Sep 29 19:35:47 xtremcommunity sshd\[11052\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.92.121 Sep 29 19:35:49 xtremcommunity sshd\[11052\]: Failed password for invalid user apache from 138.68.92.121 port 54094 ssh2 Sep 29 19:44:04 xtremcommunity sshd\[11258\]: Invalid user min from 138.68.92.121 port 38534 Sep 29 19:44:04 xtremcommunity sshd\[11258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.92.121 ...	2019-09-30 07:58:35
222.188.18.123	attackbots	SSH bruteforce (Triggered fail2ban) Sep 29 22:48:55 dev1 sshd[228310]: error: maximum authentication attempts exceeded for invalid user admin from 222.188.18.123 port 35299 ssh2 [preauth] Sep 29 22:48:55 dev1 sshd[228310]: Disconnecting invalid user admin 222.188.18.123 port 35299: Too many authentication failures [preauth]	2019-09-30 08:02:43
35.240.181.249	attack	Lines containing failures of 35.240.181.249 (max 1000) Sep 27 23:10:50 localhost sshd[8711]: Invalid user gnbc from 35.240.181.249 port 33792 Sep 27 23:10:50 localhost sshd[8711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.240.181.249 Sep 27 23:10:51 localhost sshd[8711]: Failed password for invalid user gnbc from 35.240.181.249 port 33792 ssh2 Sep 27 23:10:53 localhost sshd[8711]: Received disconnect from 35.240.181.249 port 33792:11: Bye Bye [preauth] Sep 27 23:10:53 localhost sshd[8711]: Disconnected from invalid user gnbc 35.240.181.249 port 33792 [preauth] Sep 27 23:23:21 localhost sshd[10611]: Invalid user ftpuser from 35.240.181.249 port 33536 Sep 27 23:23:21 localhost sshd[10611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.240.181.249 Sep 27 23:23:23 localhost sshd[10611]: Failed password for invalid user ftpuser from 35.240.181.249 port 33536 ssh2 Sep 27 23:23:25 lo........ ------------------------------	2019-09-30 08:02:04
134.209.87.150	attackspambots	v+ssh-bruteforce	2019-09-30 07:59:20
222.186.175.163	attackbotsspam	Sep 30 01:59:35 Ubuntu-1404-trusty-64-minimal sshd\[29927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Sep 30 01:59:37 Ubuntu-1404-trusty-64-minimal sshd\[29927\]: Failed password for root from 222.186.175.163 port 41228 ssh2 Sep 30 02:00:02 Ubuntu-1404-trusty-64-minimal sshd\[30077\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Sep 30 02:00:03 Ubuntu-1404-trusty-64-minimal sshd\[30077\]: Failed password for root from 222.186.175.163 port 56142 ssh2 Sep 30 02:00:08 Ubuntu-1404-trusty-64-minimal sshd\[30077\]: Failed password for root from 222.186.175.163 port 56142 ssh2	2019-09-30 08:01:05
106.13.65.18	attack	Sep 30 01:51:50 markkoudstaal sshd[2064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.65.18 Sep 30 01:51:52 markkoudstaal sshd[2064]: Failed password for invalid user harleyharley. from 106.13.65.18 port 54806 ssh2 Sep 30 01:56:35 markkoudstaal sshd[2558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.65.18	2019-09-30 08:10:11
62.210.157.140	attackbotsspam	$f2bV_matches	2019-09-30 08:00:46
96.126.117.163	attackspam	WordPress brute force	2019-09-30 08:08:58
187.189.63.198	attackbots	$f2bV_matches	2019-09-30 08:22:15
85.25.192.73	attack	WordPress brute force	2019-09-30 08:15:08

Recently Reported IPs

147.182.180.47	38.100.223.60	202.47.56.15	60.186.126.141
167.88.164.59	172.86.73.246	2.58.172.169	34.156.153.209
135.237.127.116	2606:4700:10::6816:4643	47.74.42.58	8.221.141.105
66.132.172.187	59.52.101.96	43.248.109.217	139.212.71.99
2606:4700:10::6814:4525	2606:4700:10::ac43:129e	43.164.129.191	2606:4700:10::6816:4597