City: Tyumen
Region: Tyumen
Country: Russia
Internet Service Provider: MTS
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 94.243.8.62 | attackbotsspam | Jul 25 12:28:47 TCP Attack: SRC=94.243.8.62 DST=[Masked] LEN=237 TOS=0x08 PREC=0x20 TTL=43 DF PROTO=TCP SPT=37296 DPT=80 WINDOW=913 RES=0x00 ACK PSH URGP=0 |
2019-07-26 05:26:47 |
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '94.243.8.0 - 94.243.8.255'
% Abuse contact for '94.243.8.0 - 94.243.8.255' is 'abuse@mtu.ru'
inetnum: 94.243.8.0 - 94.243.8.255
netname: MTS-FBN-Tumen_1
descr: Mobile TeleSystems Tumen branch (b2b)
country: RU
admin-c: MTU1-RIPE
tech-c: MTU1-RIPE
status: ASSIGNED PA
mnt-by: MTU-NOC
created: 2025-01-13T14:37:00Z
last-modified: 2025-01-13T14:37:00Z
source: RIPE
role: MTS backbone NOC
address: PJSC MTS / former CJSC Comstar-Direct
address: Petrovsky blvd 12, bldg 3
address: P.O. BOX 4711 127051
address: Moscow, Russia
remarks: **************************************
remarks: Contact addresses:
remarks: routing & peering noc@mtu.ru
remarks: spam & security abuse@mtu.ru
remarks: mail postmaster@mtu.ru
remarks: ddos reports ddos-reports@mtu.ru
remarks: **************************************
phone: +7 495 721-34-99
fax-no: +7 495 956-07-07
admin-c: EDA-RIPE
admin-c: RPS-RIPE
tech-c: EDA-RIPE
nic-hdl: MTU1-RIPE
mnt-by: MTU-NOC
created: 2002-10-18T13:29:19Z
last-modified: 2022-04-08T13:50:05Z
source: RIPE # Filtered
% Information related to '94.243.8.0/21AS8359'
route: 94.243.8.0/21
descr: Mobile TeleSystems Tumen branch (b2b)
origin: AS8359
mnt-by: MTU-NOC
created: 2025-01-13T14:37:27Z
last-modified: 2025-01-13T14:37:27Z
source: RIPE
% This query was served by the RIPE Database Query Service version 1.122.1 (ABERDEEN); <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.243.8.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23308
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;94.243.8.221. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026052500 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 25 16:30:43 CST 2026
;; MSG SIZE rcvd: 105221.8.243.94.in-addr.arpa domain name pointer subscriber-94-243-8-221.mts-chita.ru.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
221.8.243.94.in-addr.arpa name = subscriber-94-243-8-221.mts-chita.ru.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 125.78.61.151 | attack | Honeypot attack, port: 5555, PTR: 151.61.78.125.broad.qz.fj.dynamic.163data.com.cn. |
2020-02-20 17:51:58 |
| 117.2.166.177 | attack | Honeypot attack, port: 445, PTR: localhost. |
2020-02-20 17:25:37 |
| 144.121.237.94 | attack | Honeypot attack, port: 5555, PTR: 144.121.237.94.lightower.net. |
2020-02-20 17:47:27 |
| 14.49.166.186 | attack | Honeypot attack, port: 5555, PTR: PTR record not found |
2020-02-20 17:42:52 |
| 1.34.242.32 | attackbotsspam | Honeypot attack, port: 81, PTR: 1-34-242-32.HINET-IP.hinet.net. |
2020-02-20 17:55:21 |
| 218.92.0.211 | attackspam | Fail2Ban Ban Triggered |
2020-02-20 17:39:31 |
| 58.215.61.68 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-02-20 17:17:21 |
| 106.12.217.180 | attackbotsspam | Feb 20 09:38:08 localhost sshd\[11911\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.217.180 user=root Feb 20 09:38:10 localhost sshd\[11911\]: Failed password for root from 106.12.217.180 port 43074 ssh2 Feb 20 09:41:11 localhost sshd\[12246\]: Invalid user minecraft from 106.12.217.180 port 32854 Feb 20 09:41:11 localhost sshd\[12246\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.217.180 |
2020-02-20 17:11:40 |
| 59.48.244.148 | attack | Honeypot attack, port: 445, PTR: 148.244.48.59.broad.ll.sx.dynamic.163data.com.cn. |
2020-02-20 17:33:41 |
| 123.31.43.40 | attackbots | Automatic report - XMLRPC Attack |
2020-02-20 17:17:35 |
| 222.186.169.194 | attackspambots | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root Failed password for root from 222.186.169.194 port 53118 ssh2 Failed password for root from 222.186.169.194 port 53118 ssh2 Failed password for root from 222.186.169.194 port 53118 ssh2 Failed password for root from 222.186.169.194 port 53118 ssh2 |
2020-02-20 17:42:21 |
| 122.51.233.63 | attackbotsspam | Feb 20 05:49:23 ovpn sshd\[10359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.233.63 user=proxy Feb 20 05:49:25 ovpn sshd\[10359\]: Failed password for proxy from 122.51.233.63 port 48520 ssh2 Feb 20 05:52:34 ovpn sshd\[11126\]: Invalid user web from 122.51.233.63 Feb 20 05:52:34 ovpn sshd\[11126\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.233.63 Feb 20 05:52:36 ovpn sshd\[11126\]: Failed password for invalid user web from 122.51.233.63 port 44108 ssh2 |
2020-02-20 17:26:41 |
| 51.77.140.36 | attack | Feb 20 06:35:57 vps647732 sshd[18925]: Failed password for root from 51.77.140.36 port 54778 ssh2 Feb 20 06:38:36 vps647732 sshd[18992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.36 ... |
2020-02-20 17:51:03 |
| 117.247.201.90 | attackbots | Honeypot attack, port: 445, PTR: PTR record not found |
2020-02-20 17:44:54 |
| 183.82.54.178 | attackbotsspam | Honeypot attack, port: 445, PTR: broadband.actcorp.in. |
2020-02-20 17:29:27 |