City: Beauharnois
Region: Quebec
Country: Canada
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '85.217.149.0 - 85.217.149.255'
% Abuse contact for '85.217.149.0 - 85.217.149.255' is 'abuse@modat.io'
inetnum: 85.217.149.0 - 85.217.149.255
geoloc: 45.3161 -73.8736
netname: NL-MODAT-20050118
country: CA
org: ORG-MB333-RIPE
admin-c: SA44188-RIPE
tech-c: SA44188-RIPE
status: ALLOCATED PA
mnt-by: lir-nl-modat-1-MNT
mnt-by: RIPE-NCC-HM-MNT
created: 2025-10-01T10:50:58Z
last-modified: 2026-01-05T14:31:28Z
source: RIPE
descr: -----BEGIN TOKEN-----0583cd002dd2d40e0493d0b39614036b09af1496be82f0ea11044c6a4f69570044d6239017a1a02777ac81b2b9fb53ace406737ea8afd965b98f4332ad67b88d-----END TOKEN-----
organisation: ORG-MB333-RIPE
org-name: Modat B.V.
country: NL
reg-nr: 93876106
org-type: LIR
address: Wilhelmina van Pruisenweg 104
address: 2595 AN
address: Den Haag
address: NETHERLANDS
phone: +31625014423
admin-c: SA44188-RIPE
tech-c: SA44188-RIPE
abuse-c: AR78809-RIPE
mnt-ref: lir-nl-modat-1-MNT
mnt-by: RIPE-NCC-HM-MNT
mnt-by: lir-nl-modat-1-MNT
created: 2025-09-16T07:00:41Z
last-modified: 2026-05-13T07:17:13Z
source: RIPE # Filtered
role: security
address: NETHERLANDS
address: Den Haag
address: 2595 AN
address: Wilhelmina van Pruisenweg 104
phone: +31625014423
nic-hdl: SA44188-RIPE
mnt-by: lir-nl-modat-1-MNT
created: 2025-09-16T07:00:41Z
last-modified: 2025-09-16T07:00:41Z
source: RIPE # Filtered
% Information related to '85.217.149.0/24AS209334'
route: 85.217.149.0/24
origin: AS209334
mnt-by: lir-nl-modat-1-MNT
created: 2025-10-10T12:40:40Z
last-modified: 2025-10-10T12:40:40Z
source: RIPE
% This query was served by the RIPE Database Query Service version 1.122 (SHETLAND); <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.217.149.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59730
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;85.217.149.69. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026051301 1800 900 604800 86400
;; Query time: 30 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 14 02:00:13 CST 2026
;; MSG SIZE rcvd: 10669.149.217.85.in-addr.arpa domain name pointer o069.scanner.modat.io.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
69.149.217.85.in-addr.arpa name = o069.scanner.modat.io.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 119.146.150.134 | attackspambots | Sep 1 07:51:20 server sshd[31499]: Failed password for invalid user yed from 119.146.150.134 port 57262 ssh2 Sep 1 07:51:18 server sshd[31499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.150.134 Sep 1 07:51:18 server sshd[31499]: Invalid user yed from 119.146.150.134 port 57262 Sep 1 07:51:20 server sshd[31499]: Failed password for invalid user yed from 119.146.150.134 port 57262 ssh2 Sep 1 07:52:30 server sshd[10129]: User root from 119.146.150.134 not allowed because listed in DenyUsers ... |
2020-09-01 17:20:54 |
| 112.85.42.194 | attackspambots | Sep 1 08:59:35 jumpserver sshd[144569]: Failed password for root from 112.85.42.194 port 24766 ssh2 Sep 1 09:00:30 jumpserver sshd[144673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.194 user=root Sep 1 09:00:32 jumpserver sshd[144673]: Failed password for root from 112.85.42.194 port 56721 ssh2 ... |
2020-09-01 17:06:56 |
| 94.67.98.222 | attackbotsspam | Automatic report - Port Scan Attack |
2020-09-01 17:04:50 |
| 74.82.47.23 | attackspam | srv02 Mass scanning activity detected Target: 53413 .. |
2020-09-01 16:54:07 |
| 114.4.227.194 | attack | Sep 1 05:49:54 mout sshd[3377]: Invalid user ty from 114.4.227.194 port 57420 |
2020-09-01 17:03:18 |
| 218.92.0.184 | attackspam | Sep 1 08:35:56 scw-6657dc sshd[23887]: Failed password for root from 218.92.0.184 port 27882 ssh2 Sep 1 08:35:56 scw-6657dc sshd[23887]: Failed password for root from 218.92.0.184 port 27882 ssh2 Sep 1 08:36:00 scw-6657dc sshd[23887]: Failed password for root from 218.92.0.184 port 27882 ssh2 ... |
2020-09-01 16:45:23 |
| 196.52.43.62 | attackbots | Unauthorized connection attempt detected from IP address 196.52.43.62 to port 593 [T] |
2020-09-01 17:02:11 |
| 103.87.229.183 | attackbotsspam | Brute Force |
2020-09-01 17:01:16 |
| 111.72.196.253 | attackbots | Sep 1 08:46:41 srv01 postfix/smtpd\[30291\]: warning: unknown\[111.72.196.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 08:50:08 srv01 postfix/smtpd\[30285\]: warning: unknown\[111.72.196.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 08:53:36 srv01 postfix/smtpd\[21287\]: warning: unknown\[111.72.196.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 08:57:04 srv01 postfix/smtpd\[974\]: warning: unknown\[111.72.196.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 08:57:15 srv01 postfix/smtpd\[974\]: warning: unknown\[111.72.196.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-09-01 17:02:48 |
| 87.101.178.215 | attackspambots | Attempted connection to port 445. |
2020-09-01 16:51:40 |
| 54.37.4.252 | attackbots | WordPress XMLRPC scan :: 54.37.4.252 0.104 - [01/Sep/2020:03:49:25 0000] www.[censored_1] "POST //xmlrpc.php HTTP/1.1" 200 217 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" "HTTP/1.1" |
2020-09-01 17:19:10 |
| 193.118.53.210 | attack | Unauthorized connection attempt detected from IP address 193.118.53.210 to port 6379 [T] |
2020-09-01 16:53:20 |
| 103.219.112.1 | attackbots | Unauthorized connection attempt detected from IP address 103.219.112.1 to port 12684 [T] |
2020-09-01 16:48:11 |
| 156.96.154.55 | attack | [2020-09-01 04:59:05] NOTICE[1185][C-00009448] chan_sip.c: Call from '' (156.96.154.55:51327) to extension '90146812400521' rejected because extension not found in context 'public'. [2020-09-01 04:59:05] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-01T04:59:05.744-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="90146812400521",SessionID="0x7f10c49f9a78",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.154.55/51327",ACLName="no_extension_match" [2020-09-01 05:08:16] NOTICE[1185][C-00009454] chan_sip.c: Call from '' (156.96.154.55:62139) to extension '001146812400521' rejected because extension not found in context 'public'. [2020-09-01 05:08:16] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-01T05:08:16.195-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="001146812400521",SessionID="0x7f10c49912f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/15 ... |
2020-09-01 17:13:31 |
| 120.52.146.211 | attackbotsspam | Sep 1 10:15:24 server sshd[22669]: User root from 120.52.146.211 not allowed because listed in DenyUsers ... |
2020-09-01 16:43:15 |