118.152.234.54

Basic Info

City: unknown

Region: unknown

Country: Japan

Internet Service Provider: KDDI Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	trying to access non-authorized port	2020-05-03 23:03:47

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.152.234.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11539
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;118.152.234.54.			IN	A

;; AUTHORITY SECTION:
.			190	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050300 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 03 23:03:37 CST 2020
;; MSG SIZE  rcvd: 118

Host info

54.234.152.118.in-addr.arpa is an alias for 54.0h.234.152.118.in-addr.arpa.
54.0h.234.152.118.in-addr.arpa domain name pointer zz20194010327698EA36.userreverse.dion.ne.jp.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.234.152.118.in-addr.arpa	canonical name = 54.0h.234.152.118.in-addr.arpa.
54.0h.234.152.118.in-addr.arpa	name = zz20194010327698EA36.userreverse.dion.ne.jp.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.153.199.210	attack	22/tcp 22/tcp 22/tcp... [2019-12-14/24]12pkt,1pt.(tcp)	2019-12-25 00:20:08
51.68.226.66	attackspam	Unauthorized connection attempt detected from IP address 51.68.226.66 to port 22	2019-12-25 00:32:55
119.145.164.6	attackbots	1433/tcp 1433/tcp 1433/tcp... [2019-10-30/12-24]9pkt,1pt.(tcp)	2019-12-25 00:14:08
104.140.188.58	attackbots	Fail2Ban Ban Triggered	2019-12-25 00:12:39
54.39.50.204	attackspam	2019-12-24T15:29:30.371288abusebot-2.cloudsearch.cf sshd[22277]: Invalid user noair from 54.39.50.204 port 25964 2019-12-24T15:29:30.380179abusebot-2.cloudsearch.cf sshd[22277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns559723.ip-54-39-50.net 2019-12-24T15:29:30.371288abusebot-2.cloudsearch.cf sshd[22277]: Invalid user noair from 54.39.50.204 port 25964 2019-12-24T15:29:32.708819abusebot-2.cloudsearch.cf sshd[22277]: Failed password for invalid user noair from 54.39.50.204 port 25964 ssh2 2019-12-24T15:32:32.733738abusebot-2.cloudsearch.cf sshd[22282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns559723.ip-54-39-50.net user=root 2019-12-24T15:32:34.894484abusebot-2.cloudsearch.cf sshd[22282]: Failed password for root from 54.39.50.204 port 57866 ssh2 2019-12-24T15:35:33.602033abusebot-2.cloudsearch.cf sshd[22284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser ...	2019-12-25 00:16:04
103.125.189.148	attackspam	2019-12-24T15:34:58.678961abusebot-4.cloudsearch.cf sshd[18149]: Invalid user usa from 103.125.189.148 port 59417 2019-12-24T15:34:58.686485abusebot-4.cloudsearch.cf sshd[18149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.125.189.148 2019-12-24T15:34:58.678961abusebot-4.cloudsearch.cf sshd[18149]: Invalid user usa from 103.125.189.148 port 59417 2019-12-24T15:35:00.551817abusebot-4.cloudsearch.cf sshd[18149]: Failed password for invalid user usa from 103.125.189.148 port 59417 ssh2 2019-12-24T15:35:11.786617abusebot-4.cloudsearch.cf sshd[18151]: Invalid user admin from 103.125.189.148 port 59974 2019-12-24T15:35:11.791092abusebot-4.cloudsearch.cf sshd[18151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.125.189.148 2019-12-24T15:35:11.786617abusebot-4.cloudsearch.cf sshd[18151]: Invalid user admin from 103.125.189.148 port 59974 2019-12-24T15:35:13.440653abusebot-4.cloudsearch.cf sshd[18151] ...	2019-12-25 00:40:51
196.52.43.104	attackbotsspam	20249/tcp 62078/tcp 5632/udp... [2019-10-25/12-24]33pkt,27pt.(tcp),4pt.(udp)	2019-12-25 00:37:57
73.201.89.2	attack	19/12/24@10:35:11: FAIL: IoT-Telnet address from=73.201.89.2 ...	2019-12-25 00:41:13
196.202.55.2	attack	23/tcp [2019-12-24]1pkt	2019-12-25 00:17:05
159.203.201.143	attackbots	1414/tcp 8443/tcp 2083/tcp... [2019-10-25/12-24]64pkt,56pt.(tcp),2pt.(udp)	2019-12-25 00:49:15
196.2.14.184	attack	8080/tcp 23/tcp... [2019-10-28/12-24]6pkt,2pt.(tcp)	2019-12-25 00:34:40
113.184.153.124	attack	Dec 24 16:35:24 jane sshd[5164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.184.153.124 Dec 24 16:35:26 jane sshd[5164]: Failed password for invalid user admin from 113.184.153.124 port 58350 ssh2 ...	2019-12-25 00:26:38
159.203.201.250	attack	6379/tcp 5631/tcp 29330/tcp... [2019-10-25/12-24]51pkt,46pt.(tcp),2pt.(udp)	2019-12-25 00:45:20
74.62.91.28	attackspam	445/tcp 1433/tcp... [2019-11-09/12-24]9pkt,2pt.(tcp)	2019-12-25 00:29:19
213.167.46.166	attackspam	$f2bV_matches	2019-12-25 00:24:05

Recently Reported IPs

6.228.115.54	49.233.171.219	34.87.10.245	126.171.177.122
88.92.216.59	108.158.163.224	196.158.247.3	8.111.152.230
212.198.184.113	107.237.233.23	49.230.142.158	114.245.39.55
230.32.227.134	165.98.201.3	255.108.167.226	158.18.114.232
237.72.189.197	84.38.182.101	103.90.205.27	176.204.102.202