209.97.135.38 - NovaSense Threat Feeds

Matched! This IP address is listed on NovaSense! Depending on the categories it may be informational, or may be being actively blocked.

Botnet
Known botnet and C&C servers, these have responded with a valid botnet C2 response.

Malware
Systems that are infected with or involved in spreading malware and ransomware.

Field	Value
SenseScore	92
IP Address	209.97.135.38
Hostname	209.97.135.38
Country	United Kingdom
ISP	Digital Ocean
Organization	Digital Ocean
Hosted By	Digital Ocean
Threat Type	botnets malware
Blocked Since	2022-04-20 18:29:24
Last Threat	2022-08-16 18:29:42

Field	Value
Intel: HTTP Server	None
Intel: Powered By	None
Intel: SSH Server	SSH-2.0-OpenSSH_7.4

Field	Value
SENSE list (high risk)	Yes
SENSE list	Yes
RBL	Yes
One day public list	Yes
Seven day public list	Yes

Data	Category	Action
2022-04-27 00:18:47	Internal	Threat score opinion changed to 92.
2022-04-27 00:18:44	Internal	Threat score opinion changed to 79.
2022-04-20 18:29:25	Probe	Discovered listed SSH daemon: SSH-2.0-OpenSSH_7.4
2022-04-20 18:29:25	Internal	Threat score opinion changed to 70.
2022-04-20 18:29:24	Botnets	Botnets confirmation received.
2022-04-20 16:42:36	Probe	Discovered listed SSH daemon: SSH-2.0-OpenSSH_7.4
2022-04-20 16:42:36	Internal	Threat score opinion changed to 49.
2022-04-20 16:42:33	Malware	Malware confirmation received.

You may enter an IP address to check if it is blocked on NovaSense. If you have an IP address which is incorrectly blocked you may then request an exception.

Snapt users: you may whitelist IP addresses on your ADC to immediately ignore matches in NovaSense.

UNSAFE 209.97.135.38

Threat Information

Threat Intelligence

Blocked In

Threat History [last 14 days]

IP Lookup