City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
# start
NetRange: 142.248.80.0 - 142.248.83.255
CIDR: 142.248.80.0/22
NetName: AMBYRE
NetHandle: NET-142-248-80-0-1
Parent: NET142 (NET-142-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Ambyre LLC (AL-3032)
RegDate: 2025-10-10
Updated: 2025-10-10
Ref: https://rdap.arin.net/registry/ip/142.248.80.0
OrgName: Ambyre LLC
OrgId: AL-3032
Address: 30 N. Gould St. Ste N
City: Sheridan
StateProv: WY
PostalCode: 82801
Country: US
RegDate: 2021-07-15
Updated: 2024-11-25
Ref: https://rdap.arin.net/registry/entity/AL-3032
OrgTechHandle: AMBYR-ARIN
OrgTechName: AMBYRE-ARIN
OrgTechPhone: +1-434-373-7837
OrgTechEmail: admin@ambyre.net
OrgTechRef: https://rdap.arin.net/registry/entity/AMBYR-ARIN
OrgAbuseHandle: ABUSE8544-ARIN
OrgAbuseName: ABUSE
OrgAbusePhone: +1-434-373-7837
OrgAbuseEmail: abuse@ambyrenodes.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE8544-ARIN
# end
# start
NetRange: 142.248.80.0 - 142.248.80.255
CIDR: 142.248.80.0/24
NetName: ADVIN-KC-01
NetHandle: NET-142-248-80-0-2
Parent: AMBYRE (NET-142-248-80-0-1)
NetType: Reallocated
OriginAS:
Organization: Advin Services LLC (ASL-843)
RegDate: 2025-10-27
Updated: 2025-10-27
Comment: Geofeed https://advinservers.com/geofeed.csv
Ref: https://rdap.arin.net/registry/ip/142.248.80.0
OrgName: Advin Services LLC
OrgId: ASL-843
Address: 3640 Concord Pike #1080
City: Wilmington
StateProv: DE
PostalCode: 19803
Country: US
RegDate: 2021-10-18
Updated: 2024-10-02
Comment: Website: https://advinservers.com
Comment: Abuse Email: abuse@advinservers.com
Comment: Support Email: support@advinservers.com
Ref: https://rdap.arin.net/registry/entity/ASL-843
OrgAbuseHandle: ADMIN7999-ARIN
OrgAbuseName: Admin
OrgAbusePhone: +1-302-212-0969
OrgAbuseEmail: anush@fro.email
OrgAbuseRef: https://rdap.arin.net/registry/entity/ADMIN7999-ARIN
OrgTechHandle: ADMIN7999-ARIN
OrgTechName: Admin
OrgTechPhone: +1-302-212-0969
OrgTechEmail: anush@fro.email
OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN7999-ARIN
OrgRoutingHandle: ADMIN7999-ARIN
OrgRoutingName: Admin
OrgRoutingPhone: +1-302-212-0969
OrgRoutingEmail: anush@fro.email
OrgRoutingRef: https://rdap.arin.net/registry/entity/ADMIN7999-ARIN
OrgDNSHandle: ADMIN7999-ARIN
OrgDNSName: Admin
OrgDNSPhone: +1-302-212-0969
OrgDNSEmail: anush@fro.email
OrgDNSRef: https://rdap.arin.net/registry/entity/ADMIN7999-ARIN
OrgNOCHandle: ADMIN7999-ARIN
OrgNOCName: Admin
OrgNOCPhone: +1-302-212-0969
OrgNOCEmail: anush@fro.email
OrgNOCRef: https://rdap.arin.net/registry/entity/ADMIN7999-ARIN
# end
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.248.80.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49227
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;142.248.80.30. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026042802 1800 900 604800 86400
;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 29 11:25:03 CST 2026
;; MSG SIZE rcvd: 106Host 30.80.248.142.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 30.80.248.142.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 36.67.163.146 | attackspam | Aug 15 14:30:23 vps333114 sshd[29153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.67.163.146 user=root Aug 15 14:30:25 vps333114 sshd[29153]: Failed password for root from 36.67.163.146 port 56600 ssh2 ... |
2020-08-15 21:29:00 |
| 222.67.187.183 | attackspambots | Lines containing failures of 222.67.187.183 Aug 10 23:38:09 shared11 sshd[31873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.67.187.183 user=r.r Aug 10 23:38:11 shared11 sshd[31873]: Failed password for r.r from 222.67.187.183 port 3209 ssh2 Aug 10 23:38:11 shared11 sshd[31873]: Received disconnect from 222.67.187.183 port 3209:11: Bye Bye [preauth] Aug 10 23:38:11 shared11 sshd[31873]: Disconnected from authenticating user r.r 222.67.187.183 port 3209 [preauth] Aug 11 09:00:55 shared11 sshd[1274]: Connection closed by 222.67.187.183 port 3212 [preauth] Aug 11 09:13:28 shared11 sshd[5426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.67.187.183 user=r.r Aug 11 09:13:30 shared11 sshd[5426]: Failed password for r.r from 222.67.187.183 port 3215 ssh2 Aug 11 09:13:30 shared11 sshd[5426]: Received disconnect from 222.67.187.183 port 3215:11: Bye Bye [preauth] Aug 11 09:13:30 shar........ ------------------------------ |
2020-08-15 21:12:19 |
| 222.186.190.14 | attackspam | Aug 15 14:59:48 santamaria sshd\[22716\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.14 user=root Aug 15 14:59:50 santamaria sshd\[22716\]: Failed password for root from 222.186.190.14 port 23769 ssh2 Aug 15 14:59:59 santamaria sshd\[22718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.14 user=root ... |
2020-08-15 21:01:11 |
| 178.20.55.18 | attackbotsspam | [MK-VM2] SSH login failed |
2020-08-15 21:19:24 |
| 49.233.177.166 | attackbots | Aug 15 06:49:32 serwer sshd\[28574\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.177.166 user=root Aug 15 06:49:35 serwer sshd\[28574\]: Failed password for root from 49.233.177.166 port 34554 ssh2 Aug 15 06:52:29 serwer sshd\[30634\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.177.166 user=root ... |
2020-08-15 21:16:32 |
| 159.65.84.164 | attackspambots | Aug 15 15:13:48 abendstille sshd\[7970\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.84.164 user=root Aug 15 15:13:50 abendstille sshd\[7970\]: Failed password for root from 159.65.84.164 port 33740 ssh2 Aug 15 15:17:40 abendstille sshd\[11797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.84.164 user=root Aug 15 15:17:41 abendstille sshd\[11797\]: Failed password for root from 159.65.84.164 port 44338 ssh2 Aug 15 15:21:32 abendstille sshd\[15549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.84.164 user=root ... |
2020-08-15 21:30:36 |
| 64.227.86.151 | attackspambots | mozilla/5.0+(compatible;+nmap+scripting+engine;+https://nmap.org/book/nse.html) |
2020-08-15 21:20:13 |
| 128.199.97.179 | attackspam | Aug 15 14:58:06 piServer sshd[24168]: Failed password for root from 128.199.97.179 port 38760 ssh2 Aug 15 15:02:20 piServer sshd[24450]: Failed password for root from 128.199.97.179 port 57980 ssh2 ... |
2020-08-15 21:19:51 |
| 222.186.175.148 | attackbots | Brute force attempt |
2020-08-15 21:17:16 |
| 113.94.86.109 | attackspambots | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found |
2020-08-15 20:59:43 |
| 141.8.15.95 | attackspam | Aug 15 20:25:24 itachi1706steam sshd[14708]: Invalid user pi from 141.8.15.95 port 38086 Aug 15 20:25:24 itachi1706steam sshd[14707]: Invalid user pi from 141.8.15.95 port 38084 Aug 15 20:25:24 itachi1706steam sshd[14708]: Connection closed by invalid user pi 141.8.15.95 port 38086 [preauth] ... |
2020-08-15 20:51:40 |
| 162.243.232.174 | attackspam | $f2bV_matches |
2020-08-15 20:47:48 |
| 123.31.32.150 | attack | frenzy |
2020-08-15 21:03:16 |
| 139.155.7.216 | attack | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found |
2020-08-15 20:57:55 |
| 113.161.144.254 | attackspambots | Lines containing failures of 113.161.144.254 Aug 11 07:04:59 nbi-636 sshd[19377]: User r.r from 113.161.144.254 not allowed because not listed in AllowUsers Aug 11 07:04:59 nbi-636 sshd[19377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.144.254 user=r.r Aug 11 07:05:00 nbi-636 sshd[19377]: Failed password for invalid user r.r from 113.161.144.254 port 53704 ssh2 Aug 11 07:05:01 nbi-636 sshd[19377]: Received disconnect from 113.161.144.254 port 53704:11: Bye Bye [preauth] Aug 11 07:05:01 nbi-636 sshd[19377]: Disconnected from invalid user r.r 113.161.144.254 port 53704 [preauth] Aug 11 07:08:10 nbi-636 sshd[20253]: User r.r from 113.161.144.254 not allowed because not listed in AllowUsers Aug 11 07:08:10 nbi-636 sshd[20253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.144.254 user=r.r Aug 11 07:08:12 nbi-636 sshd[20253]: Failed password for invalid user r.r from 113......... ------------------------------ |
2020-08-15 21:02:47 |