JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.248.80.164

142.248.80.164 was found in our database!

This IP was reported 354 times. Confidence of Abuse is 100%: ?

100%

ISP	Advin Services LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS22295
Domain Name	advinservers.com
Country	🇺🇸 United States of America
City	Kansas City, Missouri

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.248.80.164

Whois 142.248.80.164

IP Abuse Reports for 142.248.80.164:

This IP address has been reported a total of 354 times from 184 distinct sources. 142.248.80.164 was first reported on May 15th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ValtonTahiri	2026-06-04 06:34:38 (5 hours ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=142.248.80.164; proto=TCP; source_port=40890; target_port=8080; flags=SYN show less	Port Scan
🇨🇭 pingusurmars	2026-06-03 22:02:10 (14 hours ago)	Blocked by UFW on amperetwo [8081/tcp] Source port: 60660 TTL: 49 Packet length: 60 TOS: 0x00 This ... show more Blocked by UFW on amperetwo [8081/tcp] Source port: 60660 TTL: 49 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-03 18:49:19 (17 hours ago)		Web App Attack
🇫🇮 habs	2026-06-03 18:48:01 (17 hours ago)	142.248.80.164 - - [03/Jun/2026:21:48:00 +0300] "\x16\x03\x01\x05\xA8\x01\x00\x05\xA4\x03\x03\xF8\x0 ... show more 142.248.80.164 - - [03/Jun/2026:21:48:00 +0300] "\x16\x03\x01\x05\xA8\x01\x00\x05\xA4\x03\x03\xF8\x00lo\x9Ca\xC4\xD25\xC8@\xFE\xA4\xF2\x83\x9E/`H\xF6\xC6\xB0G,\xAD\xBC\xCEf\xC0\xC0r\x90 \x0C\x02\xFE\|\x12\xFE\xB0\x14\x01\x05\xC8D\xD3\x05b\xCA\xF2\xB1\xE0\xA1}\xD4u>\x00-C\x90^H'\xE0\x00\x1A\xC0+\xC0/\xC0,\xC00\xCC\xA9\xCC\xA8\xC0\x09\xC0\x13\xC0" 400 150 "-" "-" 142.248.80.164 - - [03/Jun/2026:21:48:00 +0300] "\x16\x03\x01\x05\xA8\x01\x00\x05\xA4\x03\x03Uo\x138\xAE\xB0Z\xED\x14Y\x19g\xDE\xF3\xC5\x1E\xF6\x90s\x19\xEF\xF1\xFA_*\x1C\xB6\xBF\xBB\xE0\x8CT \xD2\x14\xA2m\x01\xB8\xC2u&\xDDk\x10" 400 150 "-" "-" ... show less	Port Scan Bad Web Bot
🇺🇸 technash	2026-06-03 17:50:00 (18 hours ago)	Port scanning detection [Fortinet/Sentinel]. Deny/drop traffic.	Port Scan
🇸🇬 Cloudkul Cloudkul	2026-06-03 16:30:29 (19 hours ago)	Multiple unauthorized attempts to access web resources	Brute-Force Web App Attack
Anonymous	2026-06-03 12:00:28 (1 day ago)	(mod_security) mod_security triggered on hostname [redacted] 142.248.80.164 (US/United States/-)	SQL Injection
Anonymous	2026-06-03 10:24:07 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
Anonymous	2026-06-02 17:37:11 (1 day ago)	Portscan: TCP/3000, TCP/9090, TCP/8443, TCP/8000, TCP/5173, TCP/80, TCP/443, TCP/8888, TCP/5000, TCP ... show more Portscan: TCP/3000, TCP/9090, TCP/8443, TCP/8000, TCP/5173, TCP/80, TCP/443, TCP/8888, TCP/5000, TCP/8081, TCP/8080 show less	Port Scan
🇨🇭 pingusurmars	2026-06-02 14:33:05 (1 day ago)	Blocked by UFW on ampereone [8081/tcp] Source port: 32948 TTL: 51 Packet length: 60 TOS: 0x08 This ... show more Blocked by UFW on ampereone [8081/tcp] Source port: 32948 TTL: 51 Packet length: 60 TOS: 0x08 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 RAP	2026-06-02 12:19:27 (1 day ago)	2026-06-02 12:19:27 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇹🇭 Sawasdee	2026-06-02 07:43:29 (2 days ago)	Port Scan ...	Port Scan
🇦🇺 tekgnosis	2026-06-02 06:06:18 (2 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
🇺🇸 xmission.com	2026-06-02 00:58:21 (2 days ago)	Blocked by UFW (TCP on 8081) Source port: 8228 TTL: 56 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 8081) Source port: 8228 TTL: 56 Packet length: 60 TOS: 0x00 This report (for 142.248.80.164) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 kuj	2026-05-31 21:10:25 (3 days ago)	2026-05-31T15:10:20.000672-06:00 derpamp-oci derper[287106]: 2026/05/31 15:10:20 http: TLS handshake ... show more 2026-05-31T15:10:20.000672-06:00 derpamp-oci derper[287106]: 2026/05/31 15:10:20 http: TLS handshake error from 142.248.80.164:36232: acme/autocert: missing server name 2026-05-31T15:10:24.409814-06:00 derpamp-oci derper[287106]: 2026/05/31 15:10:24 http: TLS handshake error from 142.248.80.164:36248: client sent an HTTP request to an HTTPS server 2026-05-31T15:10:25.203371-06:00 derpamp-oci derper[287106]: 2026/05/31 15:10:25 http: TLS handshake error from 142.248.80.164:36252: client sent an HTTP request to an HTTPS server ... show less	Port Scan Brute-Force

Showing 1 to 15 of 354 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.226

🇹🇭 184.22.166.99

🇳🇱 178.16.54.237

🇮🇳 157.48.169.141

🇸🇴 154.118.240.182

🇸🇬 45.78.206.111

🇸🇦 188.50.183.72

🇲🇽 187.190.35.163

🇧🇷 163.198.215.33

🇺🇸 159.89.236.95

🇨🇳 124.174.44.175

🇮🇳 117.251.22.198

🇺🇸 107.167.34.125

🇷🇺 85.142.40.75

🇺🇸 74.82.47.5

🇺🇸 43.166.242.149

🇻🇳 14.164.7.35

🇲🇰 188.44.20.33

🇮🇳 182.76.66.186

🇺🇸 162.216.150.188