JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.209.56.169

185.209.56.169 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 64%: ?

64%

ISP	LLC DataNet ISP
Usage Type	Fixed Line ISP
ASN	AS57999
Hostname(s)	56-169.datanet.kiev.ua
Domain Name	datanet.kiev.ua
Country	🇺🇦 Ukraine
City	Kyiv, Kyiv City

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.209.56.169

Whois 185.209.56.169

IP Abuse Reports for 185.209.56.169:

This IP address has been reported a total of 15 times from 14 distinct sources. 185.209.56.169 was first reported on August 25th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 ChamberofCommerce.com	2026-06-15 04:57:37 (1 day ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
Anonymous	2026-06-14 18:05:18 (1 day ago)	Blocked: Reason='Suspicious traffic score=65 (review-based detection)'; Requests=137	Hacking
🇺🇸 antlac1	2026-06-13 01:36:09 (3 days ago)	crowdsecurity/http-bad-user-agent	Brute-Force Web App Attack
🇺🇸 cwytech	2026-06-11 06:05:45 (5 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/tpot-web-high.	Bad Web Bot Web App Attack
🇩🇪 ghostwarriors	2026-06-10 00:20:19 (6 days ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-06-09 00:18:05 (1 week ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇩🇪 netclix.gr	2026-06-08 04:19:32 (1 week ago)	(bot_kill_mega) Aggressive Bot Blocked: MJ12bot 185.209.56.169 (UA/Ukraine/56-169.datanet.kiev.ua): ... show more (bot_kill_mega) Aggressive Bot Blocked: MJ12bot 185.209.56.169 (UA/Ukraine/56-169.datanet.kiev.ua): 1 in the last 4600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 185.209.56.169 - - [08/Jun/2026:07:19:27 +0300] "GET /robots.txt HTTP/1.1" 200 1169 "-" "Mozilla/5.0 (compatible; MJ12bot/v1.4.8; http://mj12bot.com/)" show less	Port Scan
🇰🇷 doll.gl	2026-06-05 12:30:16 (1 week ago)	CrowdSec: Ip 185.209.56.169 performed 'crowdsecurity/http-bad-user-agent' (2 events over 5.028249573 ... show more CrowdSec: Ip 185.209.56.169 performed 'crowdsecurity/http-bad-user-agent' (2 events over 5.028249573s) at 2026-06-05 12:30:14.748166651 +0000 UTC (scenario: crowdsecurity/http-bad-user-agent) show less	Bad Web Bot
🇺🇸 mc4bbs	2026-06-04 22:07:04 (1 week ago)	Automated Apache detection on Windows host. 5 suspicious HTTP requests within 300 seconds. Examples: ... show more Automated Apache detection on Windows host. 5 suspicious HTTP requests within 300 seconds. Examples: GET /circsex/Rites%20of%20Passage/Penis%20Festival%20in%20Japan/index.html -> 404 UA=""; GET /circsex/Rites%20of%20Passage/Penis%20Festival%20in%20Japan/target1.html -> 404 UA=""; GET /circsex/Rites%20of%20Passage/Penis%20Festival%20in%20Japan/target2.html -> 404 UA=""; GET /circsex/Rites%20of%20Passage/Penis%20Festival%20in%20Japan/target3.html -> 404 UA=""; GET /circsex/Rites%20of%20Passage/Penis%20Festival%20in%20Japan/target4.html -> 404 UA="" show less	Web App Attack Hacking
🇩🇪 4server	2026-06-04 21:30:42 (1 week ago)	[ThuJun0423:30:35.9083302026][security2:error][pid3941325:tid3941445][client185.209.56.169:0]ModSecu ... show more [ThuJun0423:30:35.9083302026][security2:error][pid3941325:tid3941445][client185.209.56.169:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"MJ12bot\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"324\"][id\"333515\"][rev\"4\"][msg\"Atomicorp.comWAFRules:MJ12Distributedbotdetected\(Disablethisruleifyouwanttoallowthisbot\)\"][severity\"WARNING\"][tag\"no_ar\"][hostname\"respiratrentino.it\"][uri\"/robots.txt\"][unique_id\"aiHue7k9HmgBdAwqKLsb7gAAAQY\"] show less	Port Scan Brute-Force Web App Attack
Anonymous	2026-06-04 14:40:02 (1 week ago)	\| [Dangerous/Ukraine] Aggressive IP 185.209.56.169 (~30 hits). Type: DoS Defender- Web server 400 er ... show more \| [Dangerous/Ukraine] Aggressive IP 185.209.56.169 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
Anonymous	2026-06-03 17:30:54 (1 week ago)	[osotir.org] httpd-noisy-crawler: sites=logosparakliseos.gr; logs=/var/log/httpd/domains/logosparakl ... show more [osotir.org] httpd-noisy-crawler: sites=logosparakliseos.gr; logs=/var/log/httpd/domains/logosparakliseos.gr.log; samples=mj12bot:/robots.txt \| mj12bot:/video_tag/%CE%AC%CE%B3%CE%B9%CE%BF%CF%82-%CE%BD%CE%B5%CE%BA%CF%84%CE%AC%CF%81%CE%B9%CE%BF%CF%82/feed/ \| mj12bot:/video_tag/%CE%BA%CF%8D%CF%80%CF%81%CE%BF%CF%82/feed/ show less	Hacking Web App Attack
🇩🇪 netclix.gr	2026-06-03 13:50:43 (1 week ago)	(bot_kill_mega) Aggressive Bot Blocked: MJ12bot 185.209.56.169 (UA/Ukraine/56-169.datanet.kiev.ua): ... show more (bot_kill_mega) Aggressive Bot Blocked: MJ12bot 185.209.56.169 (UA/Ukraine/56-169.datanet.kiev.ua): 1 in the last 4600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 185.209.56.169 - - [03/Jun/2026:16:50:41 +0300] "GET /robots.txt HTTP/1.1" 200 1169 "-" "Mozilla/5.0 (compatible; MJ12bot/v1.4.8; http://mj12bot.com/)" show less	Port Scan
🇳🇱 exxos	2025-10-15 07:03:01 (8 months ago)	Attacks with Bad user agents	Hacking
🇬🇧 cybersteve99	2025-08-25 17:12:55 (9 months ago)	Fail2Ban - NGINX - Too many WordPress errors - Persistant attempts to access non-existant files. Fai ... show more Fail2Ban - NGINX - Too many WordPress errors - Persistant attempts to access non-existant files. Failures from \<ip\> on nginx-wordpress-brute show less	Brute-Force Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 199.119.65.87

🇭🇰 198.176.55.171

🇿🇦 197.94.254.129

🇰🇷 175.118.127.138

🇩🇿 154.121.74.73

🇸🇦 51.39.66.143

🇨🇦 2607:f8b0:4023:1803::12c

🇺🇸 185.251.19.56

🇺🇸 151.240.50.127

🇯🇵 133.18.122.63

🇨🇳 114.239.168.227

🇺🇸 48.216.243.233

🇧🇷 45.164.251.67

🇩🇿 41.111.178.11

🇩🇪 8.209.114.67

🇳🇱 204.76.203.206

🇩🇪 202.71.141.170

🇵🇾 190.128.201.18

🇩🇪 130.61.152.179

🇨🇳 129.204.3.12