JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.97.129.56

209.97.129.56 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 4%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.97.129.56

Whois 209.97.129.56

IP Abuse Reports for 209.97.129.56:

This IP address has been reported a total of 15 times from 13 distinct sources. 209.97.129.56 was first reported on July 26th 2023, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-06-04 16:12:20 (14 hours ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 209.97.129.56 (GB/United Kingdom/-): ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 209.97.129.56 (GB/United Kingdom/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇦🇹 urnilxfgbez	2025-08-05 22:45:00 (9 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 MPL	2025-07-29 02:30:02 (10 months ago)	tcp/8001 (2 or more attempts)	Port Scan
🇺🇸 MPL	2025-07-29 01:43:16 (10 months ago)	tcp/8000 (2 or more attempts)	Port Scan
🇨🇦 Roper123	2025-07-27 18:50:36 (10 months ago)	Web exploits	Hacking Web App Attack
🇺🇸 MPL	2025-07-27 18:22:51 (10 months ago)	tcp/13000 (2 or more attempts)	Port Scan
🇮🇪 RoboSOC	2024-08-01 05:45:22 (1 year ago)	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	Port Scan
🇺🇸 drewf.ink	2024-07-28 03:56:13 (1 year ago)	[03:56] Port scanning. Port(s) scanned: TCP/5900	Port Scan
🇵🇱 sefinek.net	2024-07-27 23:43:58 (1 year ago)	IP: 209.97.129.56 Protocol: TCP Source port: 42972 Destination port: 7443 TTL: 234 Packet length: 40 ... show more IP: 209.97.129.56 Protocol: TCP Source port: 42972 Destination port: 7443 TTL: 234 Packet length: 40 TOS: 0x00 Timestamp: Jul 28 01:43:58 (01:43:58, 28.07.2024) The IP address was blocked by the Uncomplicated Firewall (UFW) due to suspicious activity. Packet details indicate a possible unauthorized access attempt or network scan. show less	Port Scan
🇳🇱 astijf	2024-07-27 23:39:19 (1 year ago)	Port Scan detected from 209.97.129.56 (GB/United Kingdom/-). 5 hits in the last 550 seconds	Port Scan Brute-Force
🇬🇧 essinghigh	2024-07-27 03:12:41 (1 year ago)	1722049961 # Service_probe # SIGNATURE_SEND # source_ip:209.97.129.56 # dst_port:27017 ...	Port Scan
🇦🇹 niceshops.com	2023-10-29 08:26:33 (2 years ago)	Many 'SSL handshake failures' on https in short time [29/Oct/2023:09:26:32.112]	Port Scan Hacking
🇺🇸 StateWork	2023-07-27 20:01:27 (2 years ago)	Looking for Telerik exploits	Hacking SQL Injection Exploited Host Web App Attack
Anonymous	2023-07-27 16:13:39 (2 years ago)	Attempting to exploit log4j vulnerabilities.	DNS Poisoning Port Scan Hacking SQL Injection
🇺🇦 URAN Publishing Service	2023-07-26 14:38:24 (2 years ago)	209.97.129.56 - - [26/Jul/2023:17:38:22 +0300] "GET /common/admin/PhotoGallery2/Telerik.Web.UI.Dialo ... show more 209.97.129.56 - - [26/Jul/2023:17:38:22 +0300] "GET /common/admin/PhotoGallery2/Telerik.Web.UI.DialogHandler.aspx?dp=1 HTTP/1.1" 404 5060 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F" 209.97.129.56 - - [26/Jul/2023:17:38:23 +0300] "GET /common/admin/Jobs2/Telerik.Web.UI.DialogHandler.aspx?dp=1 HTTP/1.1" 404 5060 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36" ... show less	Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 209.250.232.120

🇵🇰 153.117.8.143

🇫🇮 147.185.133.69

🇰🇷 112.216.108.62

🇺🇸 98.127.109.103

🇩🇪 94.31.110.19

🇧🇪 34.78.26.73

🇹🇼 218.161.25.7

🇲🇾 183.171.191.175

🇰🇷 175.195.192.197

🇨🇦 99.245.20.104

🇺🇸 99.92.218.40

🇲🇩 185.162.141.34

🇦🇹 178.115.82.141

🇮🇳 122.164.127.47

🇮🇳 103.127.170.128

🇳🇱 45.87.249.200

🇬🇧 35.203.210.172

🇸🇦 5.245.153.9

🇨🇳 183.150.201.170