Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: France

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
145.239.29.12 spam
Exploit.RTF-ObfsStrm.Gen
2025-01-23 20:00:43
145.239.23.196 spamattack
PHISHING AND SPAM ATTACK
FROM "Wealth Loophole - eqyeyrp@storages.moscow - " : 
SUBJECT "Citizens are already raking in millions of dollars from home using this "wealth loophole" " :
RECEIVED "from storages.moscow (media1.worldbtcnews.com [145.239.23.196] " :
DATE/TIMESENT "Wed, 17 Mar 2021 01:53:17 ":
IP ADDRESS "inetnum: 145.239.23.192 - 145.239.23.207  OrgName: Information Technologies AltinSoft" :
2021-03-17 15:31:29
145.239.29.217 attackspam
wp-login.php
2020-10-06 02:01:23
145.239.29.217 attack
Attempt to hack Wordpress Login, XMLRPC or other login
2020-10-05 17:49:52
145.239.29.217 attackbotsspam
(PERMBLOCK) 145.239.29.217 (PL/Poland/ip-145-239-29.eu) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs:
2020-09-29 23:35:29
145.239.29.71 attack
(mod_security) mod_security (id:210492) triggered by 145.239.29.71 (FR/France/-): 5 in the last 3600 secs
2020-09-25 03:30:39
145.239.29.71 attack
(mod_security) mod_security (id:210492) triggered by 145.239.29.71 (FR/France/-): 5 in the last 3600 secs
2020-09-24 19:15:18
145.239.29.217 attackbotsspam
145.239.29.217 - - [21/Sep/2020:06:50:02 +0100] "POST /wp-login.php HTTP/1.1" 200 1861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
145.239.29.217 - - [21/Sep/2020:06:50:02 +0100] "POST /wp-login.php HTTP/1.1" 200 1839 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
145.239.29.217 - - [21/Sep/2020:06:50:03 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-21 15:37:58
145.239.29.217 attackbots
145.239.29.217 - - [20/Sep/2020:21:50:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2520 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
145.239.29.217 - - [20/Sep/2020:21:50:23 +0100] "POST /wp-login.php HTTP/1.1" 200 2572 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
145.239.29.217 - - [20/Sep/2020:21:50:23 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-21 07:31:58
145.239.211.242 attackbots
"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:
2020-09-20 14:20:31
145.239.211.242 attackspambots
145.239.211.242 - - [19/Sep/2020:23:10:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2191 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
145.239.211.242 - - [19/Sep/2020:23:10:50 +0100] "POST /wp-login.php HTTP/1.1" 200 2173 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
145.239.211.242 - - [19/Sep/2020:23:10:50 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-20 06:20:08
145.239.29.217 attack
145.239.29.217 - - [14/Sep/2020:08:51:41 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
145.239.29.217 - - [14/Sep/2020:08:51:44 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
145.239.29.217 - - [14/Sep/2020:08:51:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-09-14 23:59:46
145.239.29.217 attackspam
145.239.29.217 - - [14/Sep/2020:08:51:41 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
145.239.29.217 - - [14/Sep/2020:08:51:44 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
145.239.29.217 - - [14/Sep/2020:08:51:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-09-14 15:45:13
145.239.29.217 attack
145.239.29.217 - - [13/Sep/2020:18:59:28 +0100] "POST /wp-login.php HTTP/1.1" 200 2401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
145.239.29.217 - - [13/Sep/2020:18:59:29 +0100] "POST /wp-login.php HTTP/1.1" 200 2415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
145.239.29.217 - - [13/Sep/2020:18:59:29 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-14 07:38:29
145.239.29.217 attackspam
GET /wp-login.php HTTP/1.1
2020-09-14 00:21:04
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.239.2.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23576
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;145.239.2.3.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 175 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:17:59 CST 2022
;; MSG SIZE  rcvd: 104
Host info
3.2.239.145.in-addr.arpa domain name pointer lim4.dobar.hosting.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
3.2.239.145.in-addr.arpa	name = lim4.dobar.hosting.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
180.76.117.181 attackspambots
HTTP/80/443 Probe, BF, WP, Hack -
2019-12-26 03:11:22
157.230.41.141 attack
HTTP/80/443 Probe, BF, WP, Hack -
2019-12-26 03:29:29
87.251.166.70 attackspam
MultiHost/MultiPort Probe, Scan, Hack -
2019-12-26 03:23:34
45.134.179.57 attack
Fail2Ban Ban Triggered
2019-12-26 03:09:22
168.0.129.158 attack
HTTP/80/443 Probe, BF, WP, Hack -
2019-12-26 03:23:05
216.189.156.101 attack
SSH/22 MH Probe, BF, Hack -
2019-12-26 03:24:24
103.100.209.174 attack
SSH/22 MH Probe, BF, Hack -
2019-12-26 03:27:11
175.6.68.118 attack
HTTP/80/443 Probe, BF, WP, Hack -
2019-12-26 03:16:10
88.99.61.123 attack
Dec2515:25:02server4pure-ftpd:\(\?@148.72.232.25\)[WARNING]Authenticationfailedforuser[ftp]Dec2515:03:50server4pure-ftpd:\(\?@88.99.61.123\)[WARNING]Authenticationfailedforuser[ftp]Dec2515:51:17server4pure-ftpd:\(\?@94.247.179.149\)[WARNING]Authenticationfailedforuser[ftp]Dec2515:51:18server4pure-ftpd:\(\?@51.68.11.223\)[WARNING]Authenticationfailedforuser[ftp]Dec2515:07:49server4pure-ftpd:\(\?@68.183.131.166\)[WARNING]Authenticationfailedforuser[ftp]Dec2515:12:21server4pure-ftpd:\(\?@94.247.179.149\)[WARNING]Authenticationfailedforuser[ftp]Dec2515:19:03server4pure-ftpd:\(\?@159.65.150.235\)[WARNING]Authenticationfailedforuser[ftp]Dec2515:25:08server4pure-ftpd:\(\?@148.72.232.25\)[WARNING]Authenticationfailedforuser[ftp]Dec2515:25:09server4pure-ftpd:\(\?@160.153.157.137\)[WARNING]Authenticationfailedforuser[ftp]Dec2515:19:08server4pure-ftpd:\(\?@159.65.150.235\)[WARNING]Authenticationfailedforuser[ftp]IPAddressesBlocked:148.72.232.25\(US/UnitedStates/sg2plcpnl0156.prod.sin2.secureserver.net\)
2019-12-26 03:05:23
129.226.114.225 attackbotsspam
Dec 25 19:32:35 MK-Soft-Root1 sshd[3460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.114.225 
Dec 25 19:32:38 MK-Soft-Root1 sshd[3460]: Failed password for invalid user maess from 129.226.114.225 port 44146 ssh2
...
2019-12-26 02:59:11
103.75.164.250 attackbotsspam
1577285447 - 12/25/2019 15:50:47 Host: 103.75.164.250/103.75.164.250 Port: 445 TCP Blocked
2019-12-26 03:25:48
128.199.211.110 attack
Brute force attempt
2019-12-26 03:20:28
222.186.175.151 attackbots
Dec 25 16:01:29 firewall sshd[14651]: Failed password for root from 222.186.175.151 port 40288 ssh2
Dec 25 16:01:32 firewall sshd[14651]: Failed password for root from 222.186.175.151 port 40288 ssh2
Dec 25 16:01:36 firewall sshd[14651]: Failed password for root from 222.186.175.151 port 40288 ssh2
...
2019-12-26 03:18:15
178.128.242.161 attack
Wordpress Admin Login attack
2019-12-26 03:08:23
211.33.221.81 attack
IP blocked
2019-12-26 03:10:58

Recently Reported IPs

145.239.220.204 145.239.200.120 145.239.222.146 145.239.214.142
145.239.232.101 145.239.238.243 145.239.233.77 145.239.24.216
145.239.244.182 145.239.25.246 145.239.252.136 145.239.232.133
145.239.244.173 145.239.245.118 145.239.25.187 145.239.252.229
145.239.254.81 145.239.255.227 145.239.3.236 145.239.3.48