142.93.239.162 Threat Intelligence and Host Information

Share on:
Mar 17, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 142.93.239.162 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 25/100

Host and Network Information

  • Tags: TOR, VPN

  • JARM: 2ad2ad0002ad2ad0002ad2ad2ad2ad4559f8e10cb8687304fce1c6e19fd405

  • View other sources: Spamhaus VirusTotal

  • Country: Netherlands
  • Network: AS14061 digitalocean llc
  • Noticed: 13 times
  • Protocols Attacked: Anonymous Proxy
  • Passive DNS Results: interbainging6e6tsak9liiunq4ytbso7xyewulo.com 0dfutabdsampbhehyxc5usac9ecae9awtslo0c1isj.com q20j3glzwxoduewggqvrp6x3irwgfa60ujvbpqzvh9.com mkloaw89kjialw891728hawjiawawyu190.com

Malware Detected on Host

Count: 8 16d3d7d61ee9f9ddb064e2a301eec84a2ec1bff7d1826bdec9dcda80cad8c8c9 7ddef1c1c6c94febf3565291d7f4604f550144fd90a33b8c7445626ac29256d3 4eb265b48380b715930624a601733dc497db74e98ffca1387780ebf022ae0782 857df9f995f743358d9379eb9d8ef7848e7969ecc13394600eadbf973076d664 91e0c268211f9e8d9a28e6d8526188360563e1e57739156c07d4ac3e8617bb23 a7e484d7cdbcb39538cd203c269d39b15d59f1703cf73429ca67128bb66c0a00 08700455c4ceb76438481fdd59563d8cf18fd4fa52a26da4972b985904d0c3c8 3052c3e6aa0aa895755e905acaacab8f72dfa55752f8bd2fd736e8fbd4c6298d

Open Ports Detected

443 80 81

Map

Whois Information

  • NetRange: 142.93.0.0 - 142.93.255.255
  • CIDR: 142.93.0.0/16
  • NetName: DIGITALOCEAN-142-93-0-0
  • NetHandle: NET-142-93-0-0-1
  • Parent: NET142 (NET-142-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS: AS14061
  • Organization: DigitalOcean, LLC (DO-13)
  • RegDate: 2018-07-12
  • Updated: 2020-04-03
  • Comment: Routing and Peering Policy can be found at https://www.as14061.net
  • Comment:
  • Ref: https://rdap.arin.net/registry/ip/142.93.0.0
  • OrgName: DigitalOcean, LLC
  • OrgId: DO-13
  • Address: 101 Ave of the Americas
  • Address: FL2
  • City: New York
  • StateProv: NY
  • PostalCode: 10013
  • Country: US
  • RegDate: 2012-05-14
  • Updated: 2023-10-23
  • Ref: https://rdap.arin.net/registry/entity/DO-13
  • OrgNOCHandle: NOC32014-ARIN
  • OrgNOCName: Network Operations Center
  • OrgNOCPhone: +1-347-875-6044
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
  • OrgAbuseHandle: ABUSE5232-ARIN
  • OrgAbuseName: Abuse, DigitalOcean
  • OrgAbusePhone: +1-347-875-6044
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5232-ARIN
  • OrgTechHandle: NOC32014-ARIN
  • OrgTechName: Network Operations Center
  • OrgTechPhone: +1-347-875-6044
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN

Links to attack logs

anonymous-proxy-ip-list-2024-02-03 anonymous-proxy-ip-list-2024-02-08 anonymous-proxy-ip-list-2024-02-23 anonymous-proxy-ip-list-2024-02-09 anonymous-proxy-ip-list-2024-02-18 anonymous-proxy-ip-list-2024-02-20 anonymous-proxy-ip-list-2024-02-15 anonymous-proxy-ip-list-2024-02-24 anonymous-proxy-ip-list-2024-02-25