JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.197.75.97

138.197.75.97 was found in our database!

This IP was reported 194 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	Clifton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.197.75.97

Whois 138.197.75.97

IP Abuse Reports for 138.197.75.97:

This IP address has been reported a total of 194 times from 141 distinct sources. 138.197.75.97 was first reported on December 22nd 2024, and the most recent report was 7 months ago.

Old Reports: The most recent abuse report for this IP address is from 7 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 ATV	2025-11-07 03:05:39 (7 months ago)	Unsolicited connection attempts to port 3306	Port Scan
🇺🇸 MPL	2025-11-06 14:23:16 (7 months ago)	tcp/5000	Port Scan
🇫🇮 6kilowatti	2025-11-06 14:14:33 (7 months ago)	Blocked by UFW on koti [2000/tcp] Source port: 61008 TTL: 240 Packet length: 44 TOS: 0x00 This repo ... show more Blocked by UFW on koti [2000/tcp] Source port: 61008 TTL: 240 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇹 urnilxfgbez	2025-01-12 23:45:00 (1 year ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇧🇷 diego	2025-01-12 13:12:53 (1 year ago)	Events: TCP SYN Discovery or Flooding, Seen 4 times in the last 10800 seconds	DDoS Attack
Anonymous	2024-12-30 18:55:00 (1 year ago)	2024-12-30T18:50:36.767534+00:00 polka sshd-session[55137]: Disconnected from authenticating user ro ... show more 2024-12-30T18:50:36.767534+00:00 polka sshd-session[55137]: Disconnected from authenticating user root 138.197.75.97 port 36478 [preauth] 2024-12-30T18:52:13.681008+00:00 polka sshd-session[55151]: Disconnected from authenticating user root 138.197.75.97 port 43512 [preauth] 2024-12-30T18:53:10.332542+00:00 polka sshd-session[55167]: Disconnected from authenticating user root 138.197.75.97 port 33034 [preauth] 2024-12-30T18:54:04.023983+00:00 polka sshd-session[55184]: Disconnected from authenticating user root 138.197.75.97 port 58484 [preauth] 2024-12-30T18:54:59.535699+00:00 polka sshd-session[55207]: Disconnected from authenticating user root 138.197.75.97 port 44224 [preauth] ... show less	Brute-Force SSH
Anonymous	2024-12-30 18:52:45 (1 year ago)	Dec 30 13:51:48 mail sshd[3098953]: Failed password for root from 138.197.75.97 port 44076 ssh2 Dec ... show more Dec 30 13:51:48 mail sshd[3098953]: Failed password for root from 138.197.75.97 port 44076 ssh2 Dec 30 13:52:44 mail sshd[3099147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.75.97 user=root Dec 30 13:52:45 mail sshd[3099147]: Failed password for root from 138.197.75.97 port 53562 ssh2 ... show less	Brute-Force SSH
🇫🇷 geoffray-levasseur.org	2024-12-30 17:39:40 (1 year ago)	Dec 30 18:36:21 apo sshd[17038]: Failed password for root from 138.197.75.97 port 37090 ssh2 Dec 30 ... show more Dec 30 18:36:21 apo sshd[17038]: Failed password for root from 138.197.75.97 port 37090 ssh2 Dec 30 18:37:44 apo sshd[19748]: Failed password for root from 138.197.75.97 port 52104 ssh2 Dec 30 18:38:42 apo sshd[21461]: Failed password for root from 138.197.75.97 port 51566 ssh2 Dec 30 18:39:40 apo sshd[23436]: Failed password for root from 138.197.75.97 port 48584 ssh2 ... show less	Brute-Force SSH
🇫🇮 pr0vieh	2024-12-30 17:22:45 (1 year ago)	2024-12-30T17:19:11.756386+00:00 Linux06 sshd[1397331]: pam_unix(sshd:auth): authentication failure; ... show more 2024-12-30T17:19:11.756386+00:00 Linux06 sshd[1397331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.75.97 user=root 2024-12-30T17:19:14.177994+00:00 Linux06 sshd[1397331]: Failed password for root from 138.197.75.97 port 51096 ssh2 2024-12-30T17:20:04.149249+00:00 Linux06 sshd[1399358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.75.97 user=root 2024-12-30T17:20:06.179182+00:00 Linux06 sshd[1399358]: Failed password for root from 138.197.75.97 port 45794 ssh2 2024-12-30T17:20:56.209027+00:00 Linux06 sshd[1401889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.75.97 user=root 2024-12-30T17:20:58.043209+00:00 Linux06 sshd[1401889]: Failed password for root from 138.197.75.97 port 35538 ssh2 2024-12-30T17:21:49.450857+00:00 Linux06 sshd[1404468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1 ... show less	Brute-Force SSH
🇩🇪 dwmp	2024-12-30 16:53:04 (1 year ago)	Dec 30 17:49:12 webcore sshd[1419649]: Failed password for root from 138.197.75.97 port 45552 ssh2 D ... show more Dec 30 17:49:12 webcore sshd[1419649]: Failed password for root from 138.197.75.97 port 45552 ssh2 Dec 30 17:52:04 webcore sshd[1420334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.75.97 user=root Dec 30 17:52:06 webcore sshd[1420334]: Failed password for root from 138.197.75.97 port 50372 ssh2 Dec 30 17:53:01 webcore sshd[1420564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.75.97 user=root Dec 30 17:53:03 webcore sshd[1420564]: Failed password for root from 138.197.75.97 port 54750 ssh2 ... show less	Brute-Force SSH
🇬🇧 thetomtaylor.co.uk	2024-12-30 16:30:49 (1 year ago)	Fail2Ban - [SSHD]Brute-force SSH server on sshd ... [wa01]	Brute-Force SSH
🇦🇺 AWW-Admin	2024-12-30 16:28:35 (1 year ago)	(sshd) Failed SSH login from 138.197.75.97 (US/United States/-)	Brute-Force SSH
🇺🇸 kosada.com	2024-12-30 16:08:15 (1 year ago)	SSH password guessing	Brute-Force SSH
🇫🇷 wblondel	2024-12-30 15:18:27 (1 year ago)	2024-12-30T16:16:17.090219+01:00 pigeon sshd[517945]: Disconnected from authenticating user root 138 ... show more 2024-12-30T16:16:17.090219+01:00 pigeon sshd[517945]: Disconnected from authenticating user root 138.197.75.97 port 53492 [preauth] 2024-12-30T16:17:29.289918+01:00 pigeon sshd[518587]: Disconnected from authenticating user root 138.197.75.97 port 51882 [preauth] 2024-12-30T16:18:26.977944+01:00 pigeon sshd[519177]: Disconnected from authenticating user root 138.197.75.97 port 33042 [preauth] ... show less	Brute-Force SSH
🇧🇷 diego	2024-12-30 15:17:58 (1 year ago)	[rede-arem1] (sshd) Failed SSH login from 138.197.75.97 (US/United States/-): 5 in the last 3600 sec ... show more [rede-arem1] (sshd) Failed SSH login from 138.197.75.97 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Dec 30 12:14:25 sshd[3702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.75.97 user=[USERNAME] Dec 30 12:14:27 sshd[3702]: Failed password for [USERNAME] from 138.197.75.97 port 38332 ssh2 Dec 30 12:16:58 sshd[3765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.75.97 user=[USERNAME] Dec 30 12:17:01 sshd[3765]: Failed password for [USERNAME] from 138.197.75.97 port 56572 ssh2 Dec 30 12:17:56 ss show less	Port Scan

Showing 1 to 15 of 194 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.236.106.113

🇨🇳 106.15.238.36

🇨🇳 106.14.183.112

🇨🇳 106.13.88.167

🇨🇳 106.13.75.140

🇺🇸 104.200.30.73

🇳🇱 93.123.109.105

🇳🇱 81.19.216.104

🇯🇵 45.32.45.150

🇮🇳 34.100.167.237

🇺🇸 20.228.89.44

🇬🇧 2.58.172.222

🇷🇴 2.57.121.25

🇺🇸 2602:fa87:1:34::a

🇹🇼 221.120.73.25

🇮🇳 203.163.245.197

🇵🇱 194.180.48.31

🇳🇱 185.223.235.25

🇺🇸 140.235.0.124

🇵🇰 139.135.43.98