142.93.39.29 is a Hacker from Canada (Toronto)

IP informations Cybercrime IP Feeds Raw whois

142.93.39.29

is a

Hacker

100 %

Canada

Report Abuse

1021attacks reported

766Brute-ForceSSH

100Brute-Force

48SSH

33HackingBrute-ForceSSH

14Web App Attack

11HackingBrute-Force

10FTP Brute-Force

9Port Scan

9uncategorized

4FTP Brute-ForceBrute-Force

...

1reputation reported

1uncategorized

1abuse reported

1Email Spam

from 113 distinct reporters

and 10 distinct sources : BadIPs.com, Blocklist.de, danger.rulez.sk, darklist.de, Emerging Threats, FireHOL, blocklist.net.ua, NormShield.com, Charles Haley, AbuseIPDB

142.93.39.29 was first signaled at 2019-03-04 03:34 and last record was at 2019-08-24 13:28.

142.93.39.29

Organization

DigitalOcean, LLC

all IP owned by DigitalOcean, LLC

Localisation

Canada

Ontario, Toronto

NetRange : First & Last IP

142.93.0.0 - 142.93.255.255

Network CIDR

142.93.0.0/16

ASN

14061

list IP by ASN 14061

Cybercrime IP Feeds

Date UTC	Category	Sub Categories	Source List	Source	Logs
2019-06-26 13:06	attacks	Brute-ForceSSH		AbuseIPDB	Jun 27 00:05:55 amit sshd\[4854\]: Invalid user castis from 142.93.39.29 Jun 27 00:05:55 amit sshd\[4854\]: pam_unix$sshd:auth$: authentication fail
2019-06-26 13:05	attacks	Brute-ForceSSH		AbuseIPDB	Jun 26 22:05:49 MK-Soft-VM5 sshd\[11117\]: Invalid user castis from 142.93.39.29 port 48546 Jun 26 22:05:49 MK-Soft-VM5 sshd\[11117\]: pam_unix\(sshd:
2019-06-26 13:01	attacks	Brute-ForceSSH		AbuseIPDB	Invalid user saints1 from 142.93.39.29 port 49822
2019-06-26 12:40	attacks	Brute-ForceSSH		AbuseIPDB	Invalid user pentarun from 142.93.39.29 port 46790
2019-06-26 11:52	attacks	FTP Brute-Force		AbuseIPDB	FTP Brute-Force reported by Fail2Ban
2019-06-26 10:32	attacks	Brute-ForceSSH		AbuseIPDB	Jun 26 21:31:55 icinga sshd[20690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.39.29 Jun 26 21:31:
2019-06-26 10:13	attacks	SSH		AbuseIPDB	Jun 26 19:13:42 sshgateway sshd\[23008\]: Invalid user phion from 142.93.39.29 Jun 26 19:13:42 sshgateway sshd\[23008\]: pam_unix$sshd:auth$: authen
2019-06-26 10:08	attacks	Brute-ForceSSH		AbuseIPDB	Jun 26 20:08:33 debian sshd\[25201\]: Invalid user ftpuser from 142.93.39.29 port 34806 Jun 26 20:08:33 debian sshd\[25201\]: pam_unix$sshd:auth$: a
2019-06-26 09:56	attacks	HackingBrute-Force		AbuseIPDB	IP attempted unauthorised action
2019-06-26 08:12	attacks	Brute-ForceSSH		AbuseIPDB	Jun 26 19:12:38 core01 sshd\[32326\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.39.29 user=roo
2019-06-26 07:02	attacks	Brute-ForceSSH		AbuseIPDB	Jun 26 19:02:53 srv-4 sshd\[15061\]: Invalid user ftp_user from 142.93.39.29 Jun 26 19:02:53 srv-4 sshd\[15061\]: pam_unix$sshd:auth$: authenticatio
2019-06-26 05:46	attacks	Port Scan		AbuseIPDB	$f2bV_matches
2019-06-26 05:08	attacks	Brute-ForceSSH		AbuseIPDB	Jun 26 16:08:10 nginx sshd[28443]: Invalid user ubuntu from 142.93.39.29 Jun 26 16:08:10 nginx sshd[28443]: Received disconnect from 142.93.39.29 port
2019-06-26 04:42	attacks	SSH		AbuseIPDB	Jun 26 15:41:58 [munged] sshd[27988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.39.29 user=root J
2019-06-26 01:28	attacks	Brute-ForceSSH		AbuseIPDB	Jun 26 11:28:18 debian sshd\[20943\]: Invalid user mwang2 from 142.93.39.29 port 48758 Jun 26 11:28:18 debian sshd\[20943\]: pam_unix$sshd:auth$: au
2019-06-26 01:17	attacks	Brute-ForceSSH		AbuseIPDB	Jun 26 10:17:04 *** sshd[21647]: Invalid user iag from 142.93.39.29
2019-06-26 00:12	attacks	Brute-ForceSSH		AbuseIPDB	Brute-Force attack detected (85) and blocked by Fail2Ban.
2019-06-26 00:03	attacks	Brute-ForceSSH		AbuseIPDB	SSH Bruteforce Attack
2019-06-25 22:03	attacks	Brute-ForceSSH		AbuseIPDB	Jun 26 08:20:52 62-210-73-4 sshd\[30389\]: Invalid user chary from 142.93.39.29 port 59708 Jun 26 08:20:52 62-210-73-4 sshd\[30389\]: pam_unix\(sshd:a
2019-06-25 20:38	attacks	Brute-ForceSSH		AbuseIPDB	Jun 26 07:37:59 vpn01 sshd\[12002\]: Invalid user nrpe from 142.93.39.29 Jun 26 07:37:59 vpn01 sshd\[12002\]: pam_unix$sshd:auth$: authentication fa
2019-06-25 19:46	attacks	Brute-ForceSSH		AbuseIPDB	Jun 26 06:46:13 vps647732 sshd[31575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.39.29 Jun 26 06:
2019-06-25 15:19	attacks	Brute-ForceSSH		AbuseIPDB
2019-06-25 15:12	attacks	Web App Attack		AbuseIPDB	Automatic report - Web App Attack
2019-06-25 15:07	attacks	Brute-ForceSSH		AbuseIPDB	Jun 26 02:07:31 mail sshd\[7255\]: Invalid user git from 142.93.39.29 Jun 26 02:07:31 mail sshd\[7255\]: pam_unix$sshd:auth$: authentication failure
2019-06-25 12:42	attacks	Brute-ForceSSH		AbuseIPDB	Jun 25 23:42:39 * sshd[9482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.39.29 Jun 25 23:42:41 * s
2019-06-25 11:03	attacks	Brute-ForceSSH		AbuseIPDB	Jun 25 10:34:25 *** sshd[18273]: Failed password for invalid user candice from 142.93.39.29 port 51604 ssh2
2019-06-25 10:50	attacks	Brute-ForceSSH		AbuseIPDB	Jun 25 21:50:19 ns3367391 sshd\[23460\]: Invalid user mark1 from 142.93.39.29 port 35752 Jun 25 21:50:19 ns3367391 sshd\[23460\]: pam_unix\(sshd:auth\
2019-06-25 10:30	attacks	Brute-ForceSSH		AbuseIPDB	Jun 25 21:30:28 * sshd[18545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.39.29 Jun 25 21:30:30 *
2019-06-25 10:09	attacks	Brute-ForceSSH		AbuseIPDB	Jun 25 21:09:22 ArkNodeAT sshd\[8631\]: Invalid user sybase from 142.93.39.29 Jun 25 21:09:22 ArkNodeAT sshd\[8631\]: pam_unix$sshd:auth$: authentic
2019-06-25 10:04	attacks	Brute-ForceSSH		AbuseIPDB	Jun 25 14:04:16 mailman sshd[21575]: Invalid user 1q from 142.93.39.29 Jun 25 14:04:16 mailman sshd[21575]: pam_unix(sshd:auth): authentication failur
2019-06-25 09:30	attacks	Brute-Force		AbuseIPDB	Jun 25 18:30:21 work-partkepr sshd\[30988\]: Invalid user ryder from 142.93.39.29 port 53316 Jun 25 18:30:21 work-partkepr sshd\[30988\]: pam_unix\(ss
2019-06-25 07:51	attacks	Brute-ForceSSH		AbuseIPDB
2019-06-25 06:23	attacks	Brute-ForceSSH		AbuseIPDB	Jun 25 11:23:42 debian sshd\[12309\]: Invalid user jun from 142.93.39.29 port 40290 Jun 25 11:23:42 debian sshd\[12309\]: pam_unix$sshd:auth$: authe
2019-06-25 04:02	attacks	Brute-ForceSSH		AbuseIPDB	Jun 25 15:02:25 vmd17057 sshd\[721\]: Invalid user glutton from 142.93.39.29 port 54016 Jun 25 15:02:25 vmd17057 sshd\[721\]: pam_unix$sshd:auth$: a
2019-06-25 03:48	attacks	Brute-ForceSSH		AbuseIPDB	Jun 25 15:48:34 srv-4 sshd\[5060\]: Invalid user alfred from 142.93.39.29 Jun 25 15:48:34 srv-4 sshd\[5060\]: pam_unix$sshd:auth$: authentication fa
2019-06-25 02:56	attacks	Brute-ForceSSH		AbuseIPDB
2019-06-24 23:56	attacks	Brute-ForceSSH		AbuseIPDB	Jun 25 10:56:17 core01 sshd\[8219\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.39.29 user=root
2019-06-24 22:35	attacks	FTP Brute-Force		AbuseIPDB	FTP Brute-Force reported by Fail2Ban
2019-06-23 19:51	attacks	SSH		AbuseIPDB	Jun 24 06:51:28 [munged] sshd[20240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.39.29 user=root J
2019-06-23 19:51	attacks	Brute-ForceSSH		AbuseIPDB
2019-06-23 19:34	attacks	Brute-Force		AbuseIPDB	$f2bV_matches
2019-06-23 18:27	attacks	Brute-ForceSSH		AbuseIPDB	Jun 24 05:27:48 dev sshd\[25797\]: Invalid user george from 142.93.39.29 port 45262 Jun 24 05:27:48 dev sshd\[25797\]: pam_unix$sshd:auth$: authenti
2019-06-23 17:08	attacks	SSH		AbuseIPDB	2019-06-24T09:08:29.344357enmeeting.mahidol.ac.th sshd\[15529\]: Invalid user user from 142.93.39.29 port 43470 2019-06-24T09:08:29.363077enmeeting.ma
2019-06-23 16:54	attacks	Brute-ForceSSH		AbuseIPDB	Jun 23 21:54:18 debian sshd\[31829\]: Invalid user gemma from 142.93.39.29 port 50246 Jun 23 21:54:18 debian sshd\[31829\]: pam_unix$sshd:auth$: aut
2019-06-23 16:25	attacks	Brute-Force		AbuseIPDB	" "
2019-06-23 15:42	attacks	Brute-ForceSSH		AbuseIPDB	2019-06-23 UTC: 3x - adam,admin,client
2019-06-23 14:25	attacks	Brute-ForceSSH		AbuseIPDB	Jun 24 01:25:46 ncomp sshd[24209]: Invalid user ada from 142.93.39.29 Jun 24 01:25:46 ncomp sshd[24209]: pam_unix(sshd:auth): authentication failure;
2019-06-23 11:52	attacks	SSH		AbuseIPDB	SSH-BRUTEFORCE
2019-06-23 11:51	attacks	Brute-ForceSSH		AbuseIPDB
2019-06-23 11:03	attacks	Brute-ForceSSH		AbuseIPDB
2019-03-04 03:34	attacks	Brute-ForceSSH		AbuseIPDB	ssh failed login
2019-03-04 03:41	attacks	Brute-ForceSSH		AbuseIPDB	Mar 4 14:41:27 * sshd[3776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.39.29 Mar 4 14:41:29 * ssh
2019-03-04 04:16	attacks	Brute-ForceSSH		AbuseIPDB	Mar 4 15:16:15 cvbmail sshd\[3095\]: Invalid user vision from 142.93.39.29 Mar 4 15:16:15 cvbmail sshd\[3095\]: pam_unix$sshd:auth$: authentication
2019-03-04 05:58	attacks	Brute-ForceSSH		AbuseIPDB
2019-03-04 06:34	attacks	Port ScanHackingExploited Host		AbuseIPDB	Trying ports that it shouldn't be.
2019-03-04 07:25	attacks	Brute-ForceSSH		AbuseIPDB	Mar 4 18:25:58 server sshd[4771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.39.29
2019-03-04 07:33	attacks	Brute-ForceSSH		AbuseIPDB	Mar 4 18:33:01 icinga sshd[5306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.39.29 Mar 4 18:33:03
2019-03-04 07:44	attacks	Brute-ForceSSH		AbuseIPDB	SSH Bruteforce
2019-03-04 08:34	attacks	Brute-ForceSSH		AbuseIPDB
2019-03-04 08:37	attacks	Brute-ForceSSH		AbuseIPDB	Mar 4 19:37:42 vpn01 sshd\[8666\]: Invalid user vision from 142.93.39.29 Mar 4 19:37:42 vpn01 sshd\[8666\]: pam_unix$sshd:auth$: authentication fail
2019-03-29 18:18	attacks		bi_any_0_1d	BadIPs.com
2019-03-29 18:19	attacks	Bad Web Bot	bi_badbots_0_1d	BadIPs.com
2019-03-29 18:19	attacks	Brute-Force	bi_bruteforce_0_1d	BadIPs.com
2019-03-29 18:19	attacks		bi_default_0_1d	BadIPs.com
2019-03-29 18:20	attacks	SSH	bi_sshd_0_1d	BadIPs.com
2019-03-29 18:20	attacks	SSH	bi_ssh_0_1d	BadIPs.com
2019-03-29 18:20	attacks		bi_unknown_0_1d	BadIPs.com
2019-03-29 18:21	attacks		blocklist_de	Blocklist.de
2019-03-29 18:21	attacks	SSH	blocklist_de_ssh	Blocklist.de
2019-03-29 18:22	attacks	Brute-Force	bruteforceblocker	danger.rulez.sk
2019-03-29 18:23	attacks		darklist_de	darklist.de
2019-03-29 18:24	attacks		et_compromised	Emerging Threats
2019-03-29 18:27	attacks		firehol_level2	FireHOL
2019-03-29 18:27	attacks		firehol_level3	FireHOL
2019-05-28 23:18	reputation		bds_atif
2019-05-28 23:20	abuse	Email Spam	blocklist_net_ua	blocklist.net.ua
2019-05-28 23:31	attacks		firehol_level4	FireHOL
2019-05-28 23:37	attacks	Brute-Force	normshield_all_bruteforce	NormShield.com
2019-05-28 23:38	attacks	Brute-Force	normshield_high_bruteforce	NormShield.com
2019-06-05 20:35	attacks	Brute-ForceMailserver Attack	blocklist_de_mail	Blocklist.de
2019-08-23 14:44	attacks	SSH	haley_ssh	Charles Haley
2019-08-24 13:27	attacks	Brute-ForceFTP Brute-Force	bi_ftp_0_1d	BadIPs.com
2019-08-24 13:28	attacks	Brute-ForceFTP Brute-Force	bi_proftpd_0_1d	BadIPs.com

only last 50 and first 10 AbuseIPDB logs are shown

Threats Categories :

abuse

IPs used to spam forum, boards, blogs or smtp servers, automated web scripts or scrappers (bad bots)

anonymizer

Onion Router IP addresses. TOR network IPs, TOR exit points, socks or ssl proxy.

attacks

bruteforce ssh/ftp/system account, IPs that have been detected by fail2ban, ports scan, vulnerabilities scan, DDoS.

malware

Addresses that have been identified distributing malware, form-grabber and stealer, Viruses, Worms, Trojans, Ransomware, Adware, Spyware

Whois

NetRange: 142.93.0.0 - 142.93.255.255
CIDR: 142.93.0.0/16
NetName: DO-13
NetHandle: NET-142-93-0-0-1
Parent: NET142 (NET-142-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: DigitalOcean, LLC (DO-13)
RegDate: 2018-07-12
Updated: 2018-07-12
Ref: https://rdap.arin.net/registry/ip/ 142.93.0.0

OrgName: DigitalOcean, LLC
OrgId: DO-13
Address: 101 Ave of the Americas
Address: 10th Floor
City: New York
StateProv: NY
PostalCode: 10013
Country: US
RegDate: 2012-05-14
Updated: 2018-07-17
Comment: http://www.digitalocean.com
Comment: Simple Cloud Hosting
Ref: https://rdap.arin.net/registry/entity/DO-13

OrgAbuseHandle: ABUSE5232-ARIN
OrgAbuseName: Abuse, DigitalOcean
OrgAbusePhone: +1-347-875-6044
OrgAbuseEmail: abuse@digitalocean.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5232-ARIN

OrgNOCHandle: NOC32014-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-347-875-6044
OrgNOCEmail: noc@digitalocean.com
OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN

OrgTechHandle: NOC32014-ARIN
OrgTechName: Network Operations Center
OrgTechPhone: +1-347-875-6044
OrgTechEmail: noc@digitalocean.com
OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN

most specific ip range is highlighted

Updated : 2019-07-15