JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.197.78.173

138.197.78.173 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 38%: ?

38%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	Clifton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.197.78.173

Whois 138.197.78.173

IP Abuse Reports for 138.197.78.173:

This IP address has been reported a total of 39 times from 13 distinct sources. 138.197.78.173 was first reported on November 21st 2023, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-14 14:11:12 (2 hours ago)	Blocked by UFW (TCP on 8882) Source port: 61012 TTL: 241 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8882) Source port: 61012 TTL: 241 Packet length: 44 TOS: 0x08 This report (for 138.197.78.173) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-14 14:03:12 (2 hours ago)	tcp/55555	Port Scan
🇩🇪 dispaisyenterprises	2026-06-14 13:27:50 (3 hours ago)	Honeypot [fra-de-honeypot]: HTTP/1.1 request on 12000 GET / User-Agent: Mozilla/5.0 (X11; Linux x86 ... show more Honeypot [fra-de-honeypot]: HTTP/1.1 request on 12000 GET / User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate; 12000 [2] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇺🇸 xmission.com	2026-06-14 07:31:00 (9 hours ago)	Blocked by UFW (TCP on 8083) Source port: 61012 TTL: 241 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8083) Source port: 61012 TTL: 241 Packet length: 44 TOS: 0x08 This report (for 138.197.78.173) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇹🇷 Threat.live	2026-06-14 07:15:04 (9 hours ago)	Threat.live: Brute Force	Brute-Force
🇺🇸 MPL	2026-06-14 07:13:33 (9 hours ago)	tcp/8001 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-06-14 06:51:16 (9 hours ago)	tcp/8084	Port Scan
🇫🇷 Petre 21_ip	2026-06-14 06:07:16 (10 hours ago)	2026-06-14T08:07:15.619754+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-06-14T08:07:15.619754+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=138.197.78.173 DST=155.133.26.57 LEN=44 TOS=0x00 PREC=0x00 TTL=244 ID=21218 PROTO=TCP SPT=61015 DPT=4782 WINDOW=1025 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇱🇺 mg	2023-11-25 04:37:39 (2 years ago)	Nov 24 20:31:15 goldcrest sshd[500654]: Failed password for invalid user admin from 138.197.78.173 p ... show more Nov 24 20:31:15 goldcrest sshd[500654]: Failed password for invalid user admin from 138.197.78.173 port 53608 ssh2 Nov 24 20:33:19 goldcrest sshd[500700]: Invalid user admin from 138.197.78.173 port 51440 Nov 24 20:33:19 goldcrest sshd[500700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.78.173 Nov 24 20:33:21 goldcrest sshd[500700]: Failed password for invalid user admin from 138.197.78.173 port 51440 ssh2 ... show less	Brute-Force SSH
🇱🇺 Hessfr	2023-11-25 03:59:30 (2 years ago)	2023-11-24T20:54:59.191295-07:00 localhost sshd[110767]: Failed password for invalid user admin from ... show more 2023-11-24T20:54:59.191295-07:00 localhost sshd[110767]: Failed password for invalid user admin from 138.197.78.173 port 37536 ssh2 2023-11-24T20:57:02.590656-07:00 localhost sshd[110784]: Invalid user admin from 138.197.78.173 port 36308 2023-11-24T20:57:02.686547-07:00 localhost sshd[110784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.78.173 2023-11-24T20:57:05.205726-07:00 localhost sshd[110784]: Failed password for invalid user admin from 138.197.78.173 port 36308 ssh2 2023-11-24T20:59:19.495962-07:00 localhost sshd[110791]: Invalid user admin from 138.197.78.173 port 41616 ... show less	Brute-Force SSH
🇱🇺 mg	2023-11-24 22:33:37 (2 years ago)	Nov 24 14:27:14 goldcrest sshd[496508]: Failed password for invalid user admin from 138.197.78.173 p ... show more Nov 24 14:27:14 goldcrest sshd[496508]: Failed password for invalid user admin from 138.197.78.173 port 44700 ssh2 Nov 24 14:29:18 goldcrest sshd[496512]: Invalid user admin from 138.197.78.173 port 39906 Nov 24 14:29:18 goldcrest sshd[496512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.78.173 Nov 24 14:29:20 goldcrest sshd[496512]: Failed password for invalid user admin from 138.197.78.173 port 39906 ssh2 ... show less	Brute-Force SSH
🇱🇺 mg	2023-11-24 16:31:05 (2 years ago)	Nov 24 08:24:42 goldcrest sshd[492135]: Failed password for invalid user admin from 138.197.78.173 p ... show more Nov 24 08:24:42 goldcrest sshd[492135]: Failed password for invalid user admin from 138.197.78.173 port 58742 ssh2 Nov 24 08:26:45 goldcrest sshd[492197]: Invalid user admin from 138.197.78.173 port 35072 Nov 24 08:26:45 goldcrest sshd[492197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.78.173 Nov 24 08:26:47 goldcrest sshd[492197]: Failed password for invalid user admin from 138.197.78.173 port 35072 ssh2 ... show less	Brute-Force SSH
🇱🇺 mg	2023-11-24 10:27:21 (2 years ago)	Nov 24 02:20:59 goldcrest sshd[486866]: Failed password for invalid user ubuntu from 138.197.78.173 ... show more Nov 24 02:20:59 goldcrest sshd[486866]: Failed password for invalid user ubuntu from 138.197.78.173 port 58526 ssh2 Nov 24 02:23:02 goldcrest sshd[486891]: Invalid user ubuntu from 138.197.78.173 port 51568 Nov 24 02:23:02 goldcrest sshd[486891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.78.173 Nov 24 02:23:04 goldcrest sshd[486891]: Failed password for invalid user ubuntu from 138.197.78.173 port 51568 ssh2 ... show less	Brute-Force SSH
🇱🇺 mg	2023-11-24 04:23:56 (2 years ago)	Nov 23 20:17:34 goldcrest sshd[481842]: Failed password for invalid user ubuntu from 138.197.78.173 ... show more Nov 23 20:17:34 goldcrest sshd[481842]: Failed password for invalid user ubuntu from 138.197.78.173 port 36794 ssh2 Nov 23 20:19:37 goldcrest sshd[481944]: Invalid user ubuntu from 138.197.78.173 port 50100 Nov 23 20:19:37 goldcrest sshd[481944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.78.173 Nov 23 20:19:39 goldcrest sshd[481944]: Failed password for invalid user ubuntu from 138.197.78.173 port 50100 ssh2 ... show less	Brute-Force SSH
🇱🇺 Hessfr	2023-11-24 03:53:56 (2 years ago)	2023-11-23T20:49:36.420001-07:00 localhost sshd[106785]: Failed password for invalid user ubuntu fro ... show more 2023-11-23T20:49:36.420001-07:00 localhost sshd[106785]: Failed password for invalid user ubuntu from 138.197.78.173 port 55580 ssh2 2023-11-23T20:51:40.198473-07:00 localhost sshd[106795]: Invalid user ubuntu from 138.197.78.173 port 57640 2023-11-23T20:51:40.295769-07:00 localhost sshd[106795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.78.173 2023-11-23T20:51:42.394015-07:00 localhost sshd[106795]: Failed password for invalid user ubuntu from 138.197.78.173 port 57640 ssh2 2023-11-23T20:53:45.959284-07:00 localhost sshd[106828]: Invalid user ubuntu from 138.197.78.173 port 35014 ... show less	Brute-Force SSH

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 184.174.44.115

🇨🇳 175.151.182.237

🇺🇸 147.224.161.112

🇻🇳 123.16.66.15

🇮🇩 34.101.111.80

🇩🇪 34.89.150.17

🇺🇦 194.44.140.222

🇺🇸 147.185.132.96

🇬🇧 146.103.3.98

🇨🇳 114.227.225.191

🇭🇰 47.242.111.161

🇺🇸 44.188.201.253

🇧🇷 38.210.181.71

🇮🇩 34.128.80.227

🇺🇸 20.65.194.119

🇬🇧 178.62.43.51

🇩🇪 167.94.146.36

🇧🇷 143.0.190.34

🇨🇳 118.196.119.108

🇰🇷 61.81.141.186