142.248.80.31 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



# start

NetRange:       142.248.80.0 - 142.248.83.255
CIDR:           142.248.80.0/22
NetName:        AMBYRE
NetHandle:      NET-142-248-80-0-1
Parent:         NET142 (NET-142-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Ambyre LLC (AL-3032)
RegDate:        2025-10-10
Updated:        2025-10-10
Ref:            https://rdap.arin.net/registry/ip/142.248.80.0


OrgName:        Ambyre LLC
OrgId:          AL-3032
Address:        30 N. Gould St. Ste N
City:           Sheridan
StateProv:      WY
PostalCode:     82801
Country:        US
RegDate:        2021-07-15
Updated:        2024-11-25
Ref:            https://rdap.arin.net/registry/entity/AL-3032


OrgTechHandle: AMBYR-ARIN
OrgTechName:   AMBYRE-ARIN
OrgTechPhone:  +1-434-373-7837 
OrgTechEmail:  admin@ambyre.net
OrgTechRef:    https://rdap.arin.net/registry/entity/AMBYR-ARIN

OrgAbuseHandle: ABUSE8544-ARIN
OrgAbuseName:   ABUSE
OrgAbusePhone:  +1-434-373-7837 
OrgAbuseEmail:  abuse@ambyrenodes.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE8544-ARIN

# end


# start

NetRange:       142.248.80.0 - 142.248.80.255
CIDR:           142.248.80.0/24
NetName:        ADVIN-KC-01
NetHandle:      NET-142-248-80-0-2
Parent:         AMBYRE (NET-142-248-80-0-1)
NetType:        Reallocated
OriginAS:       
Organization:   Advin Services LLC (ASL-843)
RegDate:        2025-10-27
Updated:        2025-10-27
Comment:        Geofeed https://advinservers.com/geofeed.csv
Ref:            https://rdap.arin.net/registry/ip/142.248.80.0


OrgName:        Advin Services LLC
OrgId:          ASL-843
Address:        3640 Concord Pike #1080
City:           Wilmington
StateProv:      DE
PostalCode:     19803
Country:        US
RegDate:        2021-10-18
Updated:        2024-10-02
Comment:        Website: https://advinservers.com
Comment:        Abuse Email: abuse@advinservers.com
Comment:        Support Email: support@advinservers.com
Ref:            https://rdap.arin.net/registry/entity/ASL-843


OrgAbuseHandle: ADMIN7999-ARIN
OrgAbuseName:   Admin
OrgAbusePhone:  +1-302-212-0969 
OrgAbuseEmail:  anush@fro.email
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ADMIN7999-ARIN

OrgTechHandle: ADMIN7999-ARIN
OrgTechName:   Admin
OrgTechPhone:  +1-302-212-0969 
OrgTechEmail:  anush@fro.email
OrgTechRef:    https://rdap.arin.net/registry/entity/ADMIN7999-ARIN

OrgRoutingHandle: ADMIN7999-ARIN
OrgRoutingName:   Admin
OrgRoutingPhone:  +1-302-212-0969 
OrgRoutingEmail:  anush@fro.email
OrgRoutingRef:    https://rdap.arin.net/registry/entity/ADMIN7999-ARIN

OrgDNSHandle: ADMIN7999-ARIN
OrgDNSName:   Admin
OrgDNSPhone:  +1-302-212-0969 
OrgDNSEmail:  anush@fro.email
OrgDNSRef:    https://rdap.arin.net/registry/entity/ADMIN7999-ARIN

OrgNOCHandle: ADMIN7999-ARIN
OrgNOCName:   Admin
OrgNOCPhone:  +1-302-212-0969 
OrgNOCEmail:  anush@fro.email
OrgNOCRef:    https://rdap.arin.net/registry/entity/ADMIN7999-ARIN

# end



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.248.80.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26816
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.248.80.31.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026041301 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 14 09:00:47 CST 2026
;; MSG SIZE  rcvd: 106

Host info

Host 31.80.248.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 31.80.248.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.3.96.73	attackbotsspam	Jun 28 19:44:46 wildwolf wplogin[20168]: 46.3.96.73 jobboardsecrets.com [2019-06-28 19:44:46+0000] "POST /wp-login.php HTTP/1.1" "hxxp://jobboardsecrets.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKhostname/534.03.50 (KHTML, like Gecko) Chrome/57.5.9144.4872 Safari/534.43" "extreme-member-client-support" "extreme-member-client-support@2017" Jun 28 19:44:46 wildwolf wplogin[16906]: 46.3.96.73 jobboardsecrets.com [2019-06-28 19:44:46+0000] "POST /wp-login.php HTTP/1.1" "hxxp://jobboardsecrets.com/wp-login.php" "Mozilla/5.0 (Windows NT 5.1; WOW64; x64) AppleWebKhostname/531.74.11 (KHTML, like Gecko) Chrome/55.1.6291.1929 Safari/532.03 OPR/42.0.4479.9106" "madgex" "madgex@2017" Jun 28 19:44:46 wildwolf wplogin[19270]: 46.3.96.73 jobboardsecrets.com [2019-06-28 19:44:46+0000] "POST /wp-login.php HTTP/1.1" "hxxp://jobboardsecrets.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.3) AppleWebKhostname/534.00.57 (KHTML, like Gecko) Chrome/57.4.9867.4595 Safari/534.3........ ------------------------------	2019-06-30 14:06:55
168.228.119.110	attackbotsspam	Jun 29 23:43:34 web1 postfix/smtpd[4335]: warning: unknown[168.228.119.110]: SASL PLAIN authentication failed: authentication failure ...	2019-06-30 14:16:14
210.120.112.18	attackbotsspam	Invalid user juanangel from 210.120.112.18 port 51088	2019-06-30 13:27:10
177.188.160.69	attack	Jun 28 04:18:53 liveconfig01 sshd[16528]: Invalid user rupert from 177.188.160.69 Jun 28 04:18:53 liveconfig01 sshd[16528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.188.160.69 Jun 28 04:18:55 liveconfig01 sshd[16528]: Failed password for invalid user rupert from 177.188.160.69 port 36744 ssh2 Jun 28 04:18:55 liveconfig01 sshd[16528]: Received disconnect from 177.188.160.69 port 36744:11: Bye Bye [preauth] Jun 28 04:18:55 liveconfig01 sshd[16528]: Disconnected from 177.188.160.69 port 36744 [preauth] Jun 28 04:21:05 liveconfig01 sshd[16576]: Invalid user rrrr from 177.188.160.69 Jun 28 04:21:05 liveconfig01 sshd[16576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.188.160.69 Jun 28 04:21:07 liveconfig01 sshd[16576]: Failed password for invalid user rrrr from 177.188.160.69 port 55634 ssh2 Jun 28 04:21:07 liveconfig01 sshd[16576]: Received disconnect from 177.188.160.69 port ........ -------------------------------	2019-06-30 13:38:12
193.56.28.229	attackbotsspam	2019-06-30 H=\(ExSnOlyD\) \[193.56.28.229\] F=\<REMOVEDREMOVEDREMOVED_perl@REMOVED.de\> rejected RCPT \: relay not permitted 2019-06-30 dovecot_login authenticator failed for \(b0cofICRH\) \[193.56.28.229\]: 535 Incorrect authentication data \(set_id=REMOVEDREMOVEDREMOVED_perl\) 2019-06-30 dovecot_login authenticator failed for \(GoiDH1\) \[193.56.28.229\]: 535 Incorrect authentication data \(set_id=REMOVEDREMOVEDREMOVED_perl\)	2019-06-30 14:04:11
174.138.56.93	attackbotsspam	FTP Brute-Force reported by Fail2Ban	2019-06-30 13:48:50
36.239.80.151	attackspambots	37215/tcp [2019-06-30]1pkt	2019-06-30 13:50:50
111.248.97.185	attackbots	37215/tcp [2019-06-30]1pkt	2019-06-30 13:26:26
185.222.209.40	attackspam	Jun 30 00:10:36 web1 postfix/smtpd[10479]: warning: unknown[185.222.209.40]: SASL PLAIN authentication failed: authentication failure ...	2019-06-30 13:37:01
49.158.128.120	attack	5555/tcp [2019-06-30]1pkt	2019-06-30 13:55:49
130.61.45.216	attackspam	Jun 29 05:29:10 scivo sshd[17100]: Invalid user han from 130.61.45.216 Jun 29 05:29:10 scivo sshd[17100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.45.216 Jun 29 05:29:12 scivo sshd[17100]: Failed password for invalid user han from 130.61.45.216 port 53088 ssh2 Jun 29 05:29:12 scivo sshd[17100]: Received disconnect from 130.61.45.216: 11: Bye Bye [preauth] Jun 29 05:31:24 scivo sshd[17194]: Invalid user techno from 130.61.45.216 Jun 29 05:31:24 scivo sshd[17194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.45.216 Jun 29 05:31:26 scivo sshd[17194]: Failed password for invalid user techno from 130.61.45.216 port 23720 ssh2 Jun 29 05:31:26 scivo sshd[17194]: Received disconnect from 130.61.45.216: 11: Bye Bye [preauth] Jun 29 05:32:51 scivo sshd[17242]: Invalid user ghostname from 130.61.45.216 Jun 29 05:32:51 scivo sshd[17242]: pam_unix(sshd:auth): authentication fail........ -------------------------------	2019-06-30 14:09:50
106.13.65.210	attackspam	Invalid user matilda from 106.13.65.210 port 38576	2019-06-30 13:50:19
221.221.153.8	attack	Jun 30 04:44:11 debian sshd\[27367\]: Invalid user space from 221.221.153.8 port 51342 Jun 30 04:44:11 debian sshd\[27367\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.221.153.8 ...	2019-06-30 13:52:34
35.205.43.108	attackspambots	22/tcp [2019-06-30]1pkt	2019-06-30 13:26:48
115.79.120.77	attackspam	445/tcp [2019-06-30]1pkt	2019-06-30 13:49:47

Recently Reported IPs

66.132.186.175	109.167.82.135	2606:4700:10::ac43:1855	2606:4700:10::6814:5189
2606:4700:10::6816:2332	2606:4700:10::6814:9235	2606:4700:10::6816:3290	2606:4700:10::6816:1517
35.245.172.223	2606:4700:10::6816:2756	2606:4700:10::6814:5635	2606:4700:10::ac43:950
2606:4700:10::6814:6074	2606:4700:10::ac43:109e	2606:4700:10::6814:4972	2606:4700:10::6814:6048
2606:4700:10::6814:7557	2606:4700:10::6814:6307	2606:4700:10::6814:9679	2606:4700:10::6814:5872