46.242.61.139 - IPInfo

Basic Info

City: Moscow

Region: Moscow

Country: Russia

Internet Service Provider: National Cable Networks

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 46.242.61.139 on Port 445(SMB)	2019-12-26 06:55:25

Comments on same subnet:

IP	Type	Details	Datetime
46.242.61.161	attackbots	Unauthorized connection attempt detected from IP address 46.242.61.161 to port 445 [T]	2020-08-16 03:37:54
46.242.61.178	attack	Unauthorized connection attempt from IP address 46.242.61.178 on Port 445(SMB)	2020-06-06 23:18:56
46.242.61.39	attack	20/5/11@08:04:09: FAIL: Alarm-Network address from=46.242.61.39 ...	2020-05-12 01:46:33
46.242.61.132	attackspam	Unauthorized connection attempt from IP address 46.242.61.132 on Port 445(SMB)	2020-03-26 02:36:10
46.242.61.3	attackspambots	Unauthorized connection attempt detected from IP address 46.242.61.3 to port 445	2020-03-18 00:40:26
46.242.61.54	attack	Unauthorized connection attempt from IP address 46.242.61.54 on Port 445(SMB)	2020-03-07 09:32:56
46.242.61.180	attackspam	Unauthorized connection attempt from IP address 46.242.61.180 on Port 445(SMB)	2020-03-07 09:06:20
46.242.61.22	attack	Honeypot attack, port: 445, PTR: broadband-46-242-61-22.ip.moscow.rt.ru.	2020-03-06 07:10:21
46.242.61.184	attackspambots	Unauthorized connection attempt from IP address 46.242.61.184 on Port 445(SMB)	2020-02-18 00:35:33
46.242.61.14	attackspam	Unauthorised access (Jan 27) SRC=46.242.61.14 LEN=52 PREC=0x20 TTL=111 ID=27556 DF TCP DPT=445 WINDOW=8192 SYN	2020-01-27 20:42:14
46.242.61.23	attackspambots	Unauthorized connection attempt from IP address 46.242.61.23 on Port 445(SMB)	2020-01-22 06:05:10
46.242.61.14	attack	Unauthorized connection attempt from IP address 46.242.61.14 on Port 445(SMB)	2020-01-04 19:51:29
46.242.61.149	attackbotsspam	1577341319 - 12/26/2019 07:21:59 Host: 46.242.61.149/46.242.61.149 Port: 445 TCP Blocked	2019-12-26 20:11:57
46.242.61.55	attack	Unauthorized connection attempt detected from IP address 46.242.61.55 to port 445	2019-12-14 06:42:13
46.242.61.13	attackspambots	Unauthorized connection attempt detected from IP address 46.242.61.13 to port 445	2019-12-09 02:48:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 46.242.61.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50821
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;46.242.61.139.			IN	A

;; AUTHORITY SECTION:
.			159	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122502 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 26 06:55:21 CST 2019
;; MSG SIZE  rcvd: 117

Host info

139.61.242.46.in-addr.arpa domain name pointer broadband-46-242-61-139.ip.moscow.rt.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.61.242.46.in-addr.arpa	name = broadband-46-242-61-139.ip.moscow.rt.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.121.18.27	attack	xmlrpc attack	2020-08-03 20:00:57
156.96.128.240	attack	[2020-08-03 08:13:34] NOTICE[1248][C-0000343f] chan_sip.c: Call from '' (156.96.128.240:57790) to extension '9900046192777644' rejected because extension not found in context 'public'. [2020-08-03 08:13:34] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-03T08:13:34.743-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9900046192777644",SessionID="0x7f272007c5b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.128.240/57790",ACLName="no_extension_match" [2020-08-03 08:19:16] NOTICE[1248][C-00003444] chan_sip.c: Call from '' (156.96.128.240:59285) to extension '9901046192777644' rejected because extension not found in context 'public'. [2020-08-03 08:19:16] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-03T08:19:16.279-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9901046192777644",SessionID="0x7f272007c5b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IP ...	2020-08-03 20:21:45
185.172.111.221	attackspambots	Unauthorised access (Aug 3) SRC=185.172.111.221 LEN=40 TTL=53 ID=46514 TCP DPT=8080 WINDOW=46923 SYN Unauthorised access (Aug 3) SRC=185.172.111.221 LEN=40 TTL=53 ID=38324 TCP DPT=8080 WINDOW=46923 SYN Unauthorised access (Aug 3) SRC=185.172.111.221 LEN=40 TTL=53 ID=43132 TCP DPT=8080 WINDOW=31720 SYN	2020-08-03 20:22:03
178.246.204.129	attack	Unauthorized connection attempt from IP address 178.246.204.129 on Port 445(SMB)	2020-08-03 19:52:15
51.91.125.195	attack	$f2bV_matches	2020-08-03 20:16:44
132.145.159.137	attackspambots	2020-08-03T05:55:12.2521331495-001 sshd[9527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.159.137 user=root 2020-08-03T05:55:14.1321261495-001 sshd[9527]: Failed password for root from 132.145.159.137 port 51892 ssh2 2020-08-03T05:59:05.1854791495-001 sshd[9687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.159.137 user=root 2020-08-03T05:59:06.3832851495-001 sshd[9687]: Failed password for root from 132.145.159.137 port 36574 ssh2 2020-08-03T06:03:01.2841091495-001 sshd[9889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.159.137 user=root 2020-08-03T06:03:03.2144351495-001 sshd[9889]: Failed password for root from 132.145.159.137 port 49494 ssh2 ...	2020-08-03 19:46:05
115.239.208.165	attackspambots	Aug 3 10:47:21 host sshd[3814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.239.208.165 user=root Aug 3 10:47:23 host sshd[3814]: Failed password for root from 115.239.208.165 port 54056 ssh2 ...	2020-08-03 20:06:32
51.91.111.136	attackbots	2020-08-03T13:15:44.869595vps773228.ovh.net sshd[1682]: Failed password for invalid user devops from 51.91.111.136 port 45662 ssh2 2020-08-03T13:15:52.370151vps773228.ovh.net sshd[1684]: Invalid user devops from 51.91.111.136 port 55378 2020-08-03T13:15:52.379928vps773228.ovh.net sshd[1684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-38bc867b.vps.ovh.net 2020-08-03T13:15:52.370151vps773228.ovh.net sshd[1684]: Invalid user devops from 51.91.111.136 port 55378 2020-08-03T13:15:54.384339vps773228.ovh.net sshd[1684]: Failed password for invalid user devops from 51.91.111.136 port 55378 ssh2 ...	2020-08-03 19:54:55
176.28.126.135	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-03T11:15:38Z and 2020-08-03T11:38:23Z	2020-08-03 19:42:08
122.51.111.159	attackbots	prod8 ...	2020-08-03 19:52:29
192.210.192.165	attack	Aug 3 12:11:54 ns382633 sshd\[29275\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.210.192.165 user=root Aug 3 12:11:56 ns382633 sshd\[29275\]: Failed password for root from 192.210.192.165 port 57934 ssh2 Aug 3 12:18:21 ns382633 sshd\[30294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.210.192.165 user=root Aug 3 12:18:23 ns382633 sshd\[30294\]: Failed password for root from 192.210.192.165 port 41886 ssh2 Aug 3 12:21:03 ns382633 sshd\[30979\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.210.192.165 user=root	2020-08-03 19:40:55
113.87.162.99	attack	Lines containing failures of 113.87.162.99 Aug 3 05:39:30 shared04 sshd[8886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.87.162.99 user=r.r Aug 3 05:39:32 shared04 sshd[8886]: Failed password for r.r from 113.87.162.99 port 37232 ssh2 Aug 3 05:39:32 shared04 sshd[8886]: Received disconnect from 113.87.162.99 port 37232:11: Bye Bye [preauth] Aug 3 05:39:32 shared04 sshd[8886]: Disconnected from authenticating user r.r 113.87.162.99 port 37232 [preauth] Aug 3 05:45:35 shared04 sshd[11251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.87.162.99 user=r.r Aug 3 05:45:36 shared04 sshd[11251]: Failed password for r.r from 113.87.162.99 port 15238 ssh2 Aug 3 05:45:37 shared04 sshd[11251]: Received disconnect from 113.87.162.99 port 15238:11: Bye Bye [preauth] Aug 3 05:45:37 shared04 sshd[11251]: Disconnected from authenticating user r.r 113.87.162.99 port 15238 [preauth] ........ ------------------------------	2020-08-03 19:56:18
184.105.139.100	attackbotsspam	TCP port : 23	2020-08-03 20:07:18
139.199.18.200	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-03T06:42:40Z and 2020-08-03T06:54:10Z	2020-08-03 20:23:42
77.121.81.204	attack	web-1 [ssh_2] SSH Attack	2020-08-03 19:50:56

Recently Reported IPs

61.49.7.8	100.237.105.68	177.18.148.99	112.67.9.244
174.81.42.192	109.107.160.38	91.217.2.116	105.146.24.221
189.252.146.153	144.50.22.55	94.140.245.136	46.191.176.208
168.121.131.198	182.61.36.47	168.101.145.18	181.33.41.139
5.242.210.87	217.124.159.189	2803:1500:e01:dab9:3102:be57:9f86:e5f4	118.45.137.100