JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 168.107.9.197

168.107.9.197 was found in our database!

This IP was reported 57 times. Confidence of Abuse is 0%: ?

ISP	Oracle Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31898
Domain Name	oracle.com
Country	🇰🇷 Korea (the Republic of)
City	Chuncheon, Gangwon-do

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 168.107.9.197

Whois 168.107.9.197

IP Abuse Reports for 168.107.9.197:

This IP address has been reported a total of 57 times from 28 distinct sources. 168.107.9.197 was first reported on March 31st 2026, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-04-03 23:50:48 (2 months ago)	ThreatBook Intelligence: Spam more details on http://threatbook.io/ip/168.107.9.197	SSH
🇩🇪 acadeova	2026-04-03 07:34:35 (2 months ago)	Blocked by UFW on vps2 [5522/tcp] Source port: 40962 TTL: 253 Packet length: 40 TOS: 0x00 This repo ... show more Blocked by UFW on vps2 [5522/tcp] Source port: 40962 TTL: 253 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇭 pingusurmars	2026-04-03 03:47:35 (2 months ago)	Blocked by UFW on amperetwo [5522/tcp] Source port: 47945 TTL: 253 Packet length: 40 TOS: 0x00 This ... show more Blocked by UFW on amperetwo [5522/tcp] Source port: 47945 TTL: 253 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇰🇷 2048	2026-04-03 01:25:45 (2 months ago)	2026-04-03T01:25:43.871824+00:00 no4 sshd[2362775]: Connection closed by authenticating user root 16 ... show more 2026-04-03T01:25:43.871824+00:00 no4 sshd[2362775]: Connection closed by authenticating user root 168.107.9.197 port 49538 [preauth] ... show less	Brute-Force SSH
🇰🇷 2048	2026-04-03 01:07:33 (2 months ago)	2026-04-03T01:07:32.182026+00:00 no3 sshd[2375834]: Connection closed by authenticating user root 16 ... show more 2026-04-03T01:07:32.182026+00:00 no3 sshd[2375834]: Connection closed by authenticating user root 168.107.9.197 port 34284 [preauth] ... show less	Brute-Force SSH
🇨🇭 Xenic	2026-04-03 01:05:50 (2 months ago)	Apr 3 03:05:47 zurich-2 sshd[2286701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more Apr 3 03:05:47 zurich-2 sshd[2286701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.107.9.197 user=root Apr 3 03:05:47 zurich-2 sshd[2286699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.107.9.197 user=root Apr 3 03:05:49 zurich-2 sshd[2286699]: Failed password for root from 168.107.9.197 port 37270 ssh2 ... show less	Brute-Force SSH
🇩🇪 acadeova	2026-04-03 00:40:22 (2 months ago)	Blocked by UFW on vps4 [5522/tcp] Source port: 56391 TTL: 253 Packet length: 40 TOS: 0x00 This repo ... show more Blocked by UFW on vps4 [5522/tcp] Source port: 56391 TTL: 253 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇦 dpinse	2026-04-02 23:59:31 (2 months ago)	Honeypot [honeypot-ca-sensor1]: Brute-force attack detected on 22/SSH • Credentials: root:123@@@, ro ... show more Honeypot [honeypot-ca-sensor1]: Brute-force attack detected on 22/SSH • Credentials: root:123@@@, root:LeitboGi0ro • Number of login attempts: 2 • Client: SSH-2.0-paramiko_4.0.0 show less	Brute-Force SSH
🇦🇺 vftable	2026-04-02 22:48:22 (2 months ago)	2026-04-02T22:48:18.604182+00:00 kyana sshd[284127]: pam_unix(sshd:auth): authentication failure; lo ... show more 2026-04-02T22:48:18.604182+00:00 kyana sshd[284127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.107.9.197 user=root 2026-04-02T22:48:20.836284+00:00 kyana sshd[284127]: Failed password for root from 168.107.9.197 port 52182 ssh2 2026-04-02T22:48:21.572197+00:00 kyana sshd[284125]: Connection closed by authenticating user root 168.107.9.197 port 52178 [preauth] ... show less	Brute-Force SSH
🇬🇧 moomoo.me	2026-04-02 22:43:03 (2 months ago)	Apr 2 22:19:46 mc sshd[2378439]: Failed password for root from 168.107.9.197 port 38994 ssh2 Apr 2 ... show more Apr 2 22:19:46 mc sshd[2378439]: Failed password for root from 168.107.9.197 port 38994 ssh2 Apr 2 22:43:01 mc sshd[2389495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.107.9.197 user=root Apr 2 22:43:03 mc sshd[2389495]: Failed password for root from 168.107.9.197 port 60326 ssh2 ... show less	Brute-Force SSH
🇩🇪 Nick2	2026-04-02 21:53:18 (2 months ago)	2026-04-01 00:16:43 connection from 168.107.9.197 2026-04-01 00:16:43 connection from 168.107.9.197 ... show more 2026-04-01 00:16:43 connection from 168.107.9.197 2026-04-01 00:16:43 connection from 168.107.9.197 2026-04-01 22:47:26 connection from 168.107.9.197 2026-04-01 22:47:28 connection from 168.107.9.197 2026-04-02 21:53:17 connection from 168.107.9.197 ... show less	Brute-Force Port Scan SSH
🇺🇸 SecondBanana	2026-04-02 20:43:34 (2 months ago)	2026-04-02T20:43:34.076338+00:00 thecount sshd[1559902]: Connection closed by authenticating user ro ... show more 2026-04-02T20:43:34.076338+00:00 thecount sshd[1559902]: Connection closed by authenticating user root 168.107.9.197 port 41734 [preauth] ... show less	Brute-Force SSH
🇩🇪 Private Private	2026-04-02 17:36:55 (2 months ago)	Failed password for root from 168.107.9.197 port 40936 ssh2	Brute-Force SSH
🇺🇸 RoblKyogre	2026-04-02 15:54:29 (2 months ago)	2026-04-01T03:37:21.621441-07:00 RoblOracle sshd-session[20742]: error: PAM: Authentication failure ... show more 2026-04-01T03:37:21.621441-07:00 RoblOracle sshd-session[20742]: error: PAM: Authentication failure for root from 168.107.9.197 2026-04-01T15:02:55.539773-07:00 RoblOracle sshd-session[98052]: error: PAM: Authentication failure for root from 168.107.9.197 2026-04-01T15:03:02.618768-07:00 RoblOracle sshd-session[98056]: error: PAM: Authentication failure for root from 168.107.9.197 2026-04-02T08:54:26.258020-07:00 RoblOracle sshd-session[219926]: error: PAM: Authentication failure for root from 168.107.9.197 2026-04-02T08:54:28.156669-07:00 RoblOracle sshd-session[219931]: error: PAM: Authentication failure for root from 168.107.9.197 ... show less	Brute-Force SSH
🇬🇧 Deveroonie	2026-04-02 15:24:50 (2 months ago)	2026-04-02T15:24:50.301563+00:00 instance-20241105-1951 sshd[1294157]: Connection closed by authenti ... show more 2026-04-02T15:24:50.301563+00:00 instance-20241105-1951 sshd[1294157]: Connection closed by authenticating user root 168.107.9.197 port 35834 [preauth] ... show less	Hacking Brute-Force SSH

Showing 1 to 15 of 57 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.202.112.197

🇷🇺 193.37.69.113

🇦🇪 158.252.65.28

🇺🇸 147.185.132.120

🇨🇳 124.88.113.30

🇵🇭 45.199.177.34

🇬🇧 35.203.210.161

🇦🇺 34.126.207.68

🇷🇴 2.57.121.112

🇧🇷 205.210.31.205

🇻🇳 202.158.244.203

🇭🇰 199.45.154.154

🇹🇼 198.235.24.56

🇲🇦 160.179.151.235

🇭🇰 150.5.131.119

🇫🇮 147.185.133.147

🇨🇭 104.244.78.33

🇻🇳 103.200.25.198

🇻🇳 103.200.24.17

🇯🇵 101.36.105.94