JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.248.80.63

142.248.80.63 was found in our database!

This IP was reported 180 times. Confidence of Abuse is 100%: ?

100%

ISP	Advin Services LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS22295
Domain Name	advinservers.com
Country	🇺🇸 United States of America
City	Kansas City, Missouri

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.248.80.63

Whois 142.248.80.63

IP Abuse Reports for 142.248.80.63:

This IP address has been reported a total of 180 times from 108 distinct sources. 142.248.80.63 was first reported on March 5th 2026, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (8 hours ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇮🇩 soc-yk	2026-06-03 15:42:11 (15 hours ago)	Type: suspicious_network_activity Risk: 73 Events: 133 Evidence: - Persistent suspicious network ac ... show more Type: suspicious_network_activity Risk: 73 Events: 133 Evidence: - Persistent suspicious network activity detected - Repeated hostile operational behavior observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Port Scan Hacking
🇺🇸 RAP	2026-06-03 12:19:52 (18 hours ago)	2026-06-03 12:19:52 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
Anonymous	2026-06-03 11:39:02 (19 hours ago)	Unauthorized SSH login attempts	Brute-Force SSH
🇬🇧 NotCool	2026-06-03 09:35:05 (21 hours ago)	[3600] Port Scan detected from 142.248.80.63 (US/United States/-). 11 hits in the last 130 seconds	Brute-Force
🇸🇪 EmK530	2026-06-03 05:32:38 (1 day ago)	URL flagged by RegEx: /.aws/credentials	Web App Attack
🇬🇧 andypiper	2026-06-03 01:03:03 (1 day ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇺🇸 hyena	2026-06-03 00:30:14 (1 day ago)	Repeated mod_security events.	Web App Attack
🇫🇷 Lunix	2026-06-02 22:28:54 (1 day ago)		Brute-Force Web App Attack
🇩🇪 benou2	2026-06-02 18:00:12 (1 day ago)	crowdsecurity/http-crawl-non_statics	Port Scan Hacking
🇫🇷 Eldeberen	2026-06-02 17:20:34 (1 day ago)	Vulnerability scan attempt through HTTP protocol	Web App Attack
🇬🇧 Andrew	2026-06-02 06:31:45 (2 days ago)	Blocked by UFW (TCP on port 9090). Source port: 1032 TTL: 50 Packet length: 60 TOS: 0x00 This repor ... show more Blocked by UFW (TCP on port 9090). Source port: 1032 TTL: 50 Packet length: 60 TOS: 0x00 This report (for 142.248.80.63) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-02 04:14:39 (2 days ago)	Aggressive web scan	Web App Attack
Anonymous	2026-06-01 21:52:11 (2 days ago)	Reported from Nginx log analysis 11. Log: 142.248.80.63 - - [01/Jun/2026:xx:xx:xx 0200] "GET / HTTP ... show more Reported from Nginx log analysis 11. Log: 142.248.80.63 - - [01/Jun/2026:xx:xx:xx 0200] "GET / HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 Edg/147.0.0.0" "-" "US United States -" "AS22295" "Advin Services LLC" \| 142.248.80.63 - - [01/Jun/2026:xx:xx:xx 0200] "GET / HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 18_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Mobile/15E148 Safari/604.1" "-" "US United States -" "AS22295" "Advin Services LLC" show less	Port Scan Brute-Force SSH
🇺🇸 Gabriel Camargo	2026-05-31 03:13:50 (4 days ago)	142.248.80.63 - - [30/May/2026:22:13:49 -0500] "GET /config/credentials.json HTTP/1.1" 404 134 "-" " ... show more 142.248.80.63 - - [30/May/2026:22:13:49 -0500] "GET /config/credentials.json HTTP/1.1" 404 134 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 18_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.4 Mobile/15E148 Safari/604.1" 142.248.80.63 - - [30/May/2026:22:13:49 -0500] "GET /google-service-account.json HTTP/1.1" 404 197 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36 Edg/146.0.0.0" 142.248.80.63 - - [30/May/2026:22:13:49 -0500] "GET /backend/.env HTTP/1.1" 404 134 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:149.0) Gecko/20100101 Firefox/149.0" ... show less	Brute-Force SSH

Showing 1 to 15 of 180 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 220.88.220.59

🇺🇸 216.180.246.165

🇺🇸 199.192.123.12

🇬🇧 199.47.240.117

🇯🇵 156.227.235.173

🇺🇸 104.168.74.62

🇸🇬 103.189.234.85

🇧🇩 49.0.36.122

🇨🇳 14.103.115.3

🇩🇪 185.242.3.12

🇺🇸 159.26.100.219

🇫🇮 147.185.133.72

🇩🇪 130.12.181.97

🇻🇳 103.118.28.15

🇨🇬 102.129.81.198

🇨🇳 101.96.202.144

🇺🇸 91.230.168.232

🇫🇷 217.76.54.209

🇮🇩 210.79.142.223

🇺🇸 203.161.39.197