89.203.142.242

Basic Info

City: Úvaly

Region: Central Bohemian Region (Stredocesky kraj)

Country: Czechia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
89.203.142.10	attack	Aug 27 18:46:09 mail.srvfarm.net postfix/smtpd[1678851]: warning: unknown[89.203.142.10]: SASL PLAIN authentication failed: Aug 27 18:46:09 mail.srvfarm.net postfix/smtpd[1678851]: lost connection after AUTH from unknown[89.203.142.10] Aug 27 18:47:47 mail.srvfarm.net postfix/smtpd[1680648]: warning: unknown[89.203.142.10]: SASL PLAIN authentication failed: Aug 27 18:47:47 mail.srvfarm.net postfix/smtpd[1680648]: lost connection after AUTH from unknown[89.203.142.10] Aug 27 18:53:50 mail.srvfarm.net postfix/smtpd[1680648]: warning: unknown[89.203.142.10]: SASL PLAIN authentication failed:	2020-08-28 07:13:43

Type

Details

Datetime

89.203.142.10

attack

Aug 27 18:46:09 mail.srvfarm.net postfix/smtpd[1678851]: warning: unknown[89.203.142.10]: SASL PLAIN authentication failed: 
Aug 27 18:46:09 mail.srvfarm.net postfix/smtpd[1678851]: lost connection after AUTH from unknown[89.203.142.10]
Aug 27 18:47:47 mail.srvfarm.net postfix/smtpd[1680648]: warning: unknown[89.203.142.10]: SASL PLAIN authentication failed: 
Aug 27 18:47:47 mail.srvfarm.net postfix/smtpd[1680648]: lost connection after AUTH from unknown[89.203.142.10]
Aug 27 18:53:50 mail.srvfarm.net postfix/smtpd[1680648]: warning: unknown[89.203.142.10]: SASL PLAIN authentication failed:

2020-08-28 07:13:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.203.142.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37685
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;89.203.142.242.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025011500 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 15 15:44:43 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 242.142.203.89.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.142.203.89.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.30.57	attack	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-02-16 23:01:25
103.1.93.123	attack	"SMTP brute force auth login attempt."	2020-02-16 23:28:58
171.224.178.75	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 16-02-2020 13:50:22.	2020-02-16 22:49:26
171.231.190.118	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 16-02-2020 13:50:23.	2020-02-16 22:48:44
221.144.61.3	attackspambots	$f2bV_matches	2020-02-16 22:59:01
27.155.87.108	attackbots	20/2/16@08:49:56: FAIL: Alarm-Intrusion address from=27.155.87.108 ...	2020-02-16 23:32:38
222.186.31.166	attack	DATE:2020-02-16 16:13:07, IP:222.186.31.166, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-02-16 23:19:38
61.28.108.122	attackspam	2020-02-16T16:21:11.624788 sshd[8283]: Invalid user adi from 61.28.108.122 port 2853 2020-02-16T16:21:11.639294 sshd[8283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.28.108.122 2020-02-16T16:21:11.624788 sshd[8283]: Invalid user adi from 61.28.108.122 port 2853 2020-02-16T16:21:13.595198 sshd[8283]: Failed password for invalid user adi from 61.28.108.122 port 2853 ssh2 ...	2020-02-16 23:24:34
202.151.30.145	attack	Feb 16 16:02:34 dedicated sshd[3414]: Invalid user a from 202.151.30.145 port 57938	2020-02-16 23:16:13
185.112.250.250	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-16 23:09:55
200.89.178.167	attackbots	Feb 16 05:14:25 hpm sshd\[11725\]: Invalid user williamsburg from 200.89.178.167 Feb 16 05:14:25 hpm sshd\[11725\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167-178-89-200.fibertel.com.ar Feb 16 05:14:27 hpm sshd\[11725\]: Failed password for invalid user williamsburg from 200.89.178.167 port 33444 ssh2 Feb 16 05:18:52 hpm sshd\[12172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167-178-89-200.fibertel.com.ar user=root Feb 16 05:18:55 hpm sshd\[12172\]: Failed password for root from 200.89.178.167 port 33426 ssh2	2020-02-16 23:31:31
87.241.160.219	attackspam	DATE:2020-02-16 14:48:33, IP:87.241.160.219, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-16 23:06:11
220.127.220.90	attackspambots	firewall-block, port(s): 23/tcp	2020-02-16 23:04:59
185.209.0.32	attackspam	firewall-block, port(s): 6450/tcp, 10389/tcp	2020-02-16 23:09:27
182.61.179.75	attackspambots	Feb 16 10:15:34 plusreed sshd[16507]: Invalid user 1234 from 182.61.179.75 ...	2020-02-16 23:32:01

Recently Reported IPs

49.221.13.7	244.248.22.114	13.62.135.156	178.190.191.159
92.209.100.64	88.100.99.44	94.22.155.81	153.176.126.219
32.202.241.112	92.156.81.251	30.44.33.165	255.149.152.130
35.127.7.49	94.159.175.48	146.120.207.57	29.113.64.175
91.59.63.140	41.131.38.215	39.174.154.19	149.175.118.253