Hack The Box Academy - FOOTPRINTING - DNS enumeration

Hello together,

right now I’m stuck at in the FOOTPRINTING module of Hack The Box Academy in the DNS enumeration section.

I’m stuck at the following question:
“What is the FQDN of the host where the last octet ends with “x.x.x.203”?”

I already used all the big subdomain lists from the SecLists directory to enumerate the subdomains but i did not find the ip address which ends with .203. I use dnsenum for the DNS enumeration.
Can someone please give me some hints or point me to correct wordlist which can be used to find the correct ip?

Best regards

You need to systematically DIG or transfer EVERY subdomain you find, and pay attention to which DNS server you’re querying when you do it.