JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.197.215.2

138.197.215.2 was found in our database!

This IP was reported 225 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Hostname(s)	prod-beryllium-sfo2-73.do.binaryedge.ninja
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.197.215.2

Whois 138.197.215.2

IP Abuse Reports for 138.197.215.2:

This IP address has been reported a total of 225 times from 82 distinct sources. 138.197.215.2 was first reported on May 15th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-24 08:37:35 (3 days ago)	Unauthorized access (443/tcp/https)	Port Scan Web App Attack
🇩🇪 kexol	2026-06-23 01:07:14 (4 days ago)	3389 port scanned	Port Scan
🇩🇪 Mailguard-FRD	2026-06-23 00:04:05 (4 days ago)	1782173045 - 06/23/2026 02:04:05 Host: 138.197.215.2/138.197.215.2 Port: 3389 TCP Blocked ...	Port Scan
🇫🇮 sonot	2026-06-22 23:45:56 (4 days ago)	Blocked by UFW on mail [3389/tcp] \| SPT: 50490 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: githu ... show more Blocked by UFW on mail [3389/tcp] \| SPT: 50490 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇺 LiftUp Hosting	2026-06-22 15:52:25 (5 days ago)	Honeypot hit: Empty payload (likely service probe); 6000 [39] TCP	Port Scan
🇺🇸 Axel	2026-06-22 13:58:57 (5 days ago)	Blocked by UFW on MVI [27017/tcp] \| SPT: 55737 \| TTL: 241 \| LEN: 44 \| TOS: 0x00 • Reported by: githu ... show more Blocked by UFW on MVI [27017/tcp] \| SPT: 55737 \| TTL: 241 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 drewf.ink	2026-06-22 11:12:12 (5 days ago)	[11:12] Port scanning. Port(s) scanned: TCP/5900	Port Scan
🇫🇷 security.rdmc.fr	2026-06-22 11:02:28 (5 days ago)	Port Scan Attack proto:TCP src:44171 dst:5900	Port Scan
🇺🇸 RAP	2026-06-22 09:46:53 (5 days ago)	2026-06-22 09:46:53 UTC Unauthorized activity to TCP port 8443. Web App	Port Scan Web App Attack
🇸🇬 securejdprop	2026-06-22 08:23:13 (5 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET CINS Active Thr ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET CINS Active Threat Intelligence Poor Reputation IP group 183). Ip 138.197.215.2 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-22 08:23:11.885269361 +0000 UTC show less	Hacking Web App Attack
🇫🇷 Petre 21_ip	2026-06-21 09:43:48 (6 days ago)	2026-06-21T11:43:47.526024+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-06-21T11:43:47.526024+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=138.197.215.2 DST=155.133.26.57 LEN=44 TOS=0x00 PREC=0x00 TTL=239 ID=44656 PROTO=TCP SPT=53937 DPT=8443 WINDOW=1025 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 MPL	2026-06-21 09:32:40 (6 days ago)	tcp/8443	Port Scan
🇺🇸 xmission.com	2026-06-21 08:45:54 (6 days ago)	Blocked by UFW (TCP on 443) Source port: 50111 TTL: 245 Packet length: 44 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 443) Source port: 50111 TTL: 245 Packet length: 44 TOS: 0x08 This report (for 138.197.215.2) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇺🇸 MPL	2026-06-21 08:27:43 (6 days ago)	tcp/443 (2 or more attempts)	Port Scan
🇫🇷 Duggy_Tuxy🧱	2026-06-20 09:58:12 (1 week ago)	[DS-BLKS-PROD01] Blocked by SysWarden Firewall (Web Attack)	Web App Attack Port Scan Hacking

Showing 1 to 15 of 225 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.43.120.12

🇰🇷 175.214.123.177

🇺🇸 142.147.161.151

🇨🇳 115.191.38.87

🇺🇸 205.210.31.18

🇳🇱 176.65.139.217

🇳🇱 176.65.139.36

🇭🇰 165.154.4.92

🇺🇸 162.216.149.111

🇨🇳 112.38.77.113

🇷🇺 94.103.3.226

🇯🇵 85.155.224.55

🇺🇸 54.218.148.142

🇺🇸 23.92.1.39

🇩🇰 193.181.213.174

🇺🇸 172.253.192.155

🇺🇸 135.237.127.63

🇨🇦 82.26.187.164

🇫🇷 82.21.157.80

🇨🇳 60.178.7.230