42.239.121.203

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.239.121.248	attack	Unauthorized connection attempt detected from IP address 42.239.121.248 to port 23 [T]	2020-03-24 19:10:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.239.121.203
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33068
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.239.121.203.			IN	A

;; AUTHORITY SECTION:
.			221	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 17:32:16 CST 2022
;; MSG SIZE  rcvd: 107

Host info

203.121.239.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
203.121.239.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.190.17	attackspambots	Jul 29 23:19:38 rocket sshd[10171]: Failed password for root from 222.186.190.17 port 42793 ssh2 Jul 29 23:20:32 rocket sshd[10479]: Failed password for root from 222.186.190.17 port 45038 ssh2 ...	2020-07-30 06:39:16
206.189.132.8	attack	Jul 29 18:29:10 NPSTNNYC01T sshd[28445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.132.8 Jul 29 18:29:12 NPSTNNYC01T sshd[28445]: Failed password for invalid user sharad from 206.189.132.8 port 38010 ssh2 Jul 29 18:32:28 NPSTNNYC01T sshd[28700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.132.8 ...	2020-07-30 06:50:10
62.234.78.233	attackspambots	Invalid user nagataweb from 62.234.78.233 port 53504	2020-07-30 06:25:41
122.51.186.145	attack	Jul 29 23:12:39 piServer sshd[4467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.186.145 Jul 29 23:12:41 piServer sshd[4467]: Failed password for invalid user qichen from 122.51.186.145 port 40730 ssh2 Jul 29 23:18:14 piServer sshd[5026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.186.145 ...	2020-07-30 06:40:08
178.62.59.59	attack	WordPress wp-login brute force :: 178.62.59.59 0.060 BYPASS [29/Jul/2020:22:01:49 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2003 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-30 06:31:50
185.244.212.185	attack	185.244.212.185 - - [29/Jul/2020:22:26:41 +0200] "GET /awstats.pl?framename=mainright&output=refererpages HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.104 Safari/537.36 Core/1.53.4620.400 QQBrowser/9.7.13014.400"	2020-07-30 06:40:53
179.107.7.148	attackbotsspam	Jul 27 18:04:02 zimbra sshd[16138]: Invalid user mercube from 179.107.7.148 Jul 27 18:04:02 zimbra sshd[16138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.107.7.148 Jul 27 18:04:04 zimbra sshd[16138]: Failed password for invalid user mercube from 179.107.7.148 port 33184 ssh2 Jul 27 18:04:05 zimbra sshd[16138]: Received disconnect from 179.107.7.148 port 33184:11: Bye Bye [preauth] Jul 27 18:04:05 zimbra sshd[16138]: Disconnected from 179.107.7.148 port 33184 [preauth] Jul 27 18:17:09 zimbra sshd[26794]: Invalid user nxautomation from 179.107.7.148 Jul 27 18:17:09 zimbra sshd[26794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.107.7.148 Jul 27 18:17:10 zimbra sshd[26794]: Failed password for invalid user nxautomation from 179.107.7.148 port 51220 ssh2 Jul 27 18:17:10 zimbra sshd[26794]: Received disconnect from 179.107.7.148 port 51220:11: Bye Bye [preauth] Jul 27 18:17:10 z........ -------------------------------	2020-07-30 06:19:24
104.236.142.89	attack	Fail2Ban Ban Triggered	2020-07-30 06:23:45
144.217.85.4	attackbotsspam	Jul 29 19:40:18 firewall sshd[6770]: Invalid user elc_admin from 144.217.85.4 Jul 29 19:40:21 firewall sshd[6770]: Failed password for invalid user elc_admin from 144.217.85.4 port 37764 ssh2 Jul 29 19:44:22 firewall sshd[6890]: Invalid user etrust from 144.217.85.4 ...	2020-07-30 06:46:57
111.72.196.61	attackbotsspam	Jul 30 00:21:44 srv01 postfix/smtpd\[16966\]: warning: unknown\[111.72.196.61\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 30 00:25:12 srv01 postfix/smtpd\[20280\]: warning: unknown\[111.72.196.61\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 30 00:32:09 srv01 postfix/smtpd\[22681\]: warning: unknown\[111.72.196.61\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 30 00:32:20 srv01 postfix/smtpd\[22681\]: warning: unknown\[111.72.196.61\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 30 00:32:36 srv01 postfix/smtpd\[22681\]: warning: unknown\[111.72.196.61\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-30 06:48:54
93.56.36.84	attackbots	DATE:2020-07-29 22:27:00, IP:93.56.36.84, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-07-30 06:20:08
187.141.143.18	attackbots	1596054425 - 07/29/2020 22:27:05 Host: 187.141.143.18/187.141.143.18 Port: 445 TCP Blocked	2020-07-30 06:14:58
5.180.220.119	attack	[2020-07-29 17:21:26] NOTICE[1248][C-0000142f] chan_sip.c: Call from '' (5.180.220.119:51022) to extension '999995011972595725668' rejected because extension not found in context 'public'. [2020-07-29 17:21:26] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-29T17:21:26.671-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="999995011972595725668",SessionID="0x7f272007c5b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.180.220.119/51022",ACLName="no_extension_match" [2020-07-29 17:24:48] NOTICE[1248][C-00001433] chan_sip.c: Call from '' (5.180.220.119:61690) to extension '999993011972595725668' rejected because extension not found in context 'public'. [2020-07-29 17:24:48] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-29T17:24:48.036-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="999993011972595725668",SessionID="0x7f272007c5b8",LocalAddress="IPV4/UDP/192.168.244.6/5060", ...	2020-07-30 06:30:38
34.93.41.18	attackbotsspam	ssh intrusion attempt	2020-07-30 06:44:35
75.142.248.224	attackspam	SSH brute force	2020-07-30 06:29:22

Recently Reported IPs

42.239.11.222	42.239.115.17	42.239.10.65	42.239.13.179
42.239.121.235	42.239.150.27	42.239.133.219	42.239.135.183
42.239.167.125	42.239.148.200	42.239.169.110	42.239.139.19
42.239.164.129	42.239.188.175	42.239.18.224	42.239.180.135
42.239.188.255	42.239.203.75	42.239.223.51	42.239.225.215