145.239.29.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: France

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
spam	Exploit.RTF-ObfsStrm.Gen	2025-01-23 20:00:43

Comments on same subnet:

IP	Type	Details	Datetime
145.239.29.217	attackspam	wp-login.php	2020-10-06 02:01:23
145.239.29.217	attack	Attempt to hack Wordpress Login, XMLRPC or other login	2020-10-05 17:49:52
145.239.29.217	attackbotsspam	(PERMBLOCK) 145.239.29.217 (PL/Poland/ip-145-239-29.eu) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs:	2020-09-29 23:35:29
145.239.29.71	attack	(mod_security) mod_security (id:210492) triggered by 145.239.29.71 (FR/France/-): 5 in the last 3600 secs	2020-09-25 03:30:39
145.239.29.71	attack	(mod_security) mod_security (id:210492) triggered by 145.239.29.71 (FR/France/-): 5 in the last 3600 secs	2020-09-24 19:15:18
145.239.29.217	attackbotsspam	145.239.29.217 - - [21/Sep/2020:06:50:02 +0100] "POST /wp-login.php HTTP/1.1" 200 1861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.29.217 - - [21/Sep/2020:06:50:02 +0100] "POST /wp-login.php HTTP/1.1" 200 1839 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.29.217 - - [21/Sep/2020:06:50:03 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-21 15:37:58
145.239.29.217	attackbots	145.239.29.217 - - [20/Sep/2020:21:50:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2520 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.29.217 - - [20/Sep/2020:21:50:23 +0100] "POST /wp-login.php HTTP/1.1" 200 2572 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.29.217 - - [20/Sep/2020:21:50:23 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-21 07:31:58
145.239.29.217	attack	145.239.29.217 - - [14/Sep/2020:08:51:41 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.29.217 - - [14/Sep/2020:08:51:44 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.29.217 - - [14/Sep/2020:08:51:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-14 23:59:46
145.239.29.217	attackspam	145.239.29.217 - - [14/Sep/2020:08:51:41 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.29.217 - - [14/Sep/2020:08:51:44 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.29.217 - - [14/Sep/2020:08:51:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-14 15:45:13
145.239.29.217	attack	145.239.29.217 - - [13/Sep/2020:18:59:28 +0100] "POST /wp-login.php HTTP/1.1" 200 2401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.29.217 - - [13/Sep/2020:18:59:29 +0100] "POST /wp-login.php HTTP/1.1" 200 2415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.29.217 - - [13/Sep/2020:18:59:29 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-14 07:38:29
145.239.29.217	attackspam	GET /wp-login.php HTTP/1.1	2020-09-14 00:21:04
145.239.29.217	attackspambots	xmlrpc attack	2020-09-13 16:09:21
145.239.29.217	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-13 07:53:02
145.239.29.217	attackspam	ENG,DEF GET /wp-login.php	2020-09-06 02:42:44
145.239.29.217	attackspambots	Automatic report - XMLRPC Attack	2020-09-05 18:18:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.239.29.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8600
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;145.239.29.12.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012300 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 20:00:41 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 12.29.239.145.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.29.239.145.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.191.128.217	attack	Unauthorized connection attempt detected from IP address 123.191.128.217 to port 3128 [J]	2020-01-25 17:45:06
93.183.125.165	attackbotsspam	Unauthorized connection attempt detected from IP address 93.183.125.165 to port 8080 [J]	2020-01-25 18:16:58
41.39.91.102	attackspam	Unauthorized connection attempt detected from IP address 41.39.91.102 to port 23 [J]	2020-01-25 18:23:52
151.80.254.75	attack	Invalid user ts3bot from 151.80.254.75 port 57920	2020-01-25 18:09:44
79.30.123.37	attackspam	Unauthorized connection attempt detected from IP address 79.30.123.37 to port 2220 [J]	2020-01-25 18:19:10
201.158.118.51	attackbotsspam	Unauthorized connection attempt detected from IP address 201.158.118.51 to port 23 [J]	2020-01-25 18:01:14
219.78.46.115	attackspam	Unauthorized connection attempt detected from IP address 219.78.46.115 to port 5555 [J]	2020-01-25 18:00:21
220.246.240.210	attack	Unauthorized connection attempt detected from IP address 220.246.240.210 to port 5555 [J]	2020-01-25 17:59:41
5.2.195.12	attackbots	Unauthorized connection attempt detected from IP address 5.2.195.12 to port 4567 [J]	2020-01-25 17:58:29
82.62.21.129	attackbots	Unauthorized connection attempt detected from IP address 82.62.21.129 to port 81 [J]	2020-01-25 18:18:09
60.12.94.186	attackspambots	Unauthorized connection attempt detected from IP address 60.12.94.186 to port 7001 [J]	2020-01-25 18:21:03
42.117.20.39	attackspambots	Unauthorized connection attempt detected from IP address 42.117.20.39 to port 23 [J]	2020-01-25 17:55:43
180.76.53.114	attackspambots	Unauthorized connection attempt detected from IP address 180.76.53.114 to port 2220 [J]	2020-01-25 18:05:57
128.199.82.144	attackspam	$f2bV_matches	2020-01-25 18:10:09
160.20.253.19	attackbots	Unauthorized connection attempt detected from IP address 160.20.253.19 to port 1433 [J]	2020-01-25 17:42:45

Recently Reported IPs

68.87.186.156	193.247.52.71	71.34.63.145	95.59.77.201
108.52.163.82	131.27.230.172	59.25.189.131	249.10.58.244
34.138.85.16	242.195.90.68	164.33.138.67	90.95.165.69
80.196.64.169	120.79.243.169	82.194.35.240	98.247.61.239
73.23.38.140	212.121.59.7	190.47.4.127	44.123.228.121