JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 84.239.42.21

84.239.42.21 was found in our database!

This IP was reported 67 times. Confidence of Abuse is 7%: ?

ISP	ORIGIN INTERNET NETWORK
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	castlegem.co.uk
Country	🇺🇦 Ukraine
City	Sofiyivska Borschagivka, Kyiv Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 84.239.42.21

Whois 84.239.42.21

IP Abuse Reports for 84.239.42.21:

This IP address has been reported a total of 67 times from 48 distinct sources. 84.239.42.21 was first reported on June 20th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 e.fierstra	2026-05-16 14:38:34 (1 month ago)	Failed SMTP logins	Brute-Force
🇫🇷 vtchost.com	2026-05-16 03:50:24 (1 month ago)	requested honeypot page - ignored robots.txt - scraping botnet or virus ...	Bad Web Bot Exploited Host
🇳🇱 FREAKISH	2026-04-25 23:52:11 (2 months ago)	2026-04-26 01:52:10: Minecraft server scan detected from 84.239.42.21 on port 25565 of 127.0.0.1	Port Scan
🇺🇸 cpxducky	2026-04-25 23:51:32 (2 months ago)	2026-04-25 23:51:32: Minecraft server scan detected from 84.239.42.21 on port 25565 of mail.cpxducky ... show more 2026-04-25 23:51:32: Minecraft server scan detected from 84.239.42.21 on port 25565 of mail.cpxducky.com show less	Port Scan
🇺🇸 LockBlock	2026-04-25 23:51:04 (2 months ago)	2026-04-25 23:51:04: Minecraft server scan detected from 84.239.42.21 on port 25565 of racknerd-e7e1 ... show more 2026-04-25 23:51:04: Minecraft server scan detected from 84.239.42.21 on port 25565 of racknerd-e7e1a9 show less	Port Scan
🇬🇧 consul.to	2026-04-10 13:25:01 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇨🇦 Julio Covolato	2025-12-30 10:15:02 (5 months ago)	Imap or Submission login brute-force attacks.	Brute-Force
🇫🇷 ✨	2025-12-30 02:11:16 (5 months ago)	Rule : SMTP 12/29/25 23:04:37 1844 84.239.42.21 *hidden-privacy* ESMTP MailEnable Service, Ve ... show more Rule : SMTP 12/29/25 23:04:37 1844 84.239.42.21 *hidden-privacy* ESMTP MailEnable Service, Version: 10.53-- ready at 12/29/25 23:04:37 87 0 12/29/25 23:04:37 1844 84.239.42.21 EHLO EHLO ADMIN *hidden-privacy* [84.239.42.21], this server offers 5 extensions 220 12 12/29/25 23:04:37 1844 84.239.42.21 AUTH AUTH LOGIN 334 VXNlcm5hbWU6 18 12 12/29/25 23:04:38 1844 84.239.42.21 AUTH {blank} 334 UGFzc3dvcmQ6 18 46 [email protected] 12/29/25 23:04:38 1844 84.239.42.21 AUTH {blank} 535 Invalid Username or Password 34 22 [email protected] show less	Email Spam Port Scan Spoofing
🇮🇹 VHosting	2025-12-16 20:19:59 (6 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇧🇪 cmbplf	2025-12-16 12:26:00 (6 months ago)	18 requests with user_agent.original Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/200212 ... show more 18 requests with user_agent.original Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20021208 Debian/1.2.1-2 15 requests with user_agent.original Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.7.6) Gecko/20050319 15 requests with user_agent.original Mozilla/5.0 (X11; U; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/115.0.5738.217 Chrome/115.0.5738.217 Safari/537.36 14 requests with user_agent.original Mozilla/5.0 (X11; Linux x86_64; SMARTEMB Build/3.12.9076) AppleWebKit/537.36 (KHTML, like Gecko) Chromium/103.0.5060.129 Chrome/103.0.5060.129 Safari/537.36 13 requests with user_agent.original Mozilla/5.0 (Linux; Android 11; SM-A115M Build/RP1A.200720.012; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/102.0.5005.125 Mobile Safari/537.36 Instagram 306.0.0.35.109 Android (30/11; 280dpi; 720x1411; samsung; SM-A115M; a11q; qcom; pt_BR; 530130405) 12 requests with user_agent.original Mozilla/5.0 (Macintosh; U; PPC; en-US; rv:0.9.3) Gecko/20010802 11 show less	Brute-Force Bad Web Bot
Anonymous	2025-11-19 01:06:39 (7 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-16 07:10:03 (7 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-01 18:30:07 (7 months ago)	(smtpauth) Failed SMTP AUTH login from 84.239.42.21 (UA/Ukraine/-): 2 in the last 3600 secs	Brute-Force
🇳🇱 ipoac.nl	2025-11-01 18:00:24 (7 months ago)	2025-11-01T19:00:20.085881+01:00 ipoac - postfix/smtps/smtpd-: warning: unknown[84.239.42.21]:7865: ... show more 2025-11-01T19:00:20.085881+01:00 ipoac - postfix/smtps/smtpd-: warning: unknown[84.239.42.21]:7865: SASL LOGIN authentication failed: (reason unavailable), sasl_username= - ipoac - 2025-11-01T19:00:20.085881+01:00 ipoac - postfix/smtps/smtpd-: warning: unknown[84.239.42.21]:1219: SASL LOGIN authentication failed: (reason unavailable), sasl_username=websiteipoac - 2025-11-01T19:00:20.170093+01:00 ipoac - postfix/smtps/smtpd-: disconnect from unknown[84.239.42.21]:7865 ehlo=1 auth=0/1 quit=1 commands=2/3 2025-11-01T19:00:20.171334+01:00 ipoac - postfix/smtps/smtpd-: disconnect from unknown[84.239.42.21]:1219 ehlo=1 auth=0/1 quit=1 commands=2/3 show less	Brute-Force
Anonymous	2025-10-16 16:30:17 (8 months ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force

Showing 1 to 15 of 67 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.70.255.242

🇺🇸 162.216.150.15

🇺🇸 162.216.149.186

🇩🇪 69.5.169.202

🇧🇾 46.216.198.132

🇳🇱 31.14.99.66

🇭🇰 199.45.154.159

🇬🇹 190.151.130.5

🇭🇰 152.32.171.73

🇫🇮 147.185.133.223

🇫🇮 147.185.133.126

🇫🇮 147.185.133.32

🇧🇷 138.255.157.62

🇵🇰 103.157.88.93

🇧🇬 79.124.62.246

🇺🇸 20.55.13.163

🇸🇬 8.222.174.150

🇺🇸 216.244.66.238

🇳🇱 213.177.179.61

🇸🇪 195.178.191.5