JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.252.34.217

38.252.34.217 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 73%: ?

73%

ISP	Giga for Telecommunication and Technology Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS328539
Domain Name	giga.ly
Country	🇱🇾 Libya
City	Tripoli, Tripoli

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.252.34.217

Whois 38.252.34.217

IP Abuse Reports for 38.252.34.217:

This IP address has been reported a total of 18 times from 14 distinct sources. 38.252.34.217 was first reported on May 23rd 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇪 RoboSOC	2026-06-04 15:00:14 (3 days ago)	MVPower DVR Shell Unauthenticated Command Execution Vulnerability, PTR: PTR record not found	Hacking
🇺🇸 MPL	2026-06-04 00:04:43 (4 days ago)	tcp ports: 80,6666 (4 or more attempts)	Port Scan
🇭🇺 bcsaba	2026-06-03 16:12:20 (4 days ago)	Suricata: Alert - ET EXPLOIT D-Link DSL-2750B - OS Command Injection	Web App Attack
🇷🇺 6o6ep	2026-06-03 16:07:10 (4 days ago)	GET / HTTP/1.0	Port Scan Bad Web Bot
🇺🇸 xmission.com	2026-06-03 15:57:05 (4 days ago)	Blocked by UFW (TCP on 62001) Source port: 63277 TTL: 44 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 62001) Source port: 63277 TTL: 44 Packet length: 44 TOS: 0x00 This report (for 38.252.34.217) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-03 12:04:02 (4 days ago)	tcp/23	Port Scan
🇯🇵 huihui	2026-06-03 11:14:07 (4 days ago)	2026-06-03T15:43:34.611625+08:00 [Host] sshd[138526]: banner exchange: Connection from 38.252.34.217 ... show more 2026-06-03T15:43:34.611625+08:00 [Host] sshd[138526]: banner exchange: Connection from 38.252.34.217 port 55362: invalid format 2026-06-03T15:43:34.718681+08:00 [Host] sshd[138528]: error: kex_exchange_identification: client sent invalid protocol identifier "\340\246wO\247\355" 2026-06-03T15:43:34.762907+08:00 [Host] sshd[138528]: banner exchange: Connection from 38.252.34.217 port 55382: invalid format ... show less	Brute-Force SSH
🇧🇪 sauron-le-noir	2026-06-03 11:09:35 (4 days ago)	scan port : 23 from Libye at Wed Jun 3 13:13:36 2026	Port Scan
🇧🇷 SOC PR	2026-06-03 09:34:02 (4 days ago)	IPS: RCE attempt via web shell endpoint with JAWS malware dropper. Attempt to download and execute J ... show more IPS: RCE attempt via web shell endpoint with JAWS malware dropper. Attempt to download and execute JAWS botnet payload. User-Agent: terrabot-owned-you. show less	Web App Attack
🇬🇧 PeravixGroup	2026-06-03 04:35:38 (5 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 xmission.com	2026-05-29 13:12:06 (1 week ago)	Blocked by UFW (TCP on 23) Source port: 61990 TTL: 43 Packet length: 44 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 61990 TTL: 43 Packet length: 44 TOS: 0x08 This report (for 38.252.34.217) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇳🇱 rmvanderspek	2026-05-29 12:15:03 (1 week ago)	Telnet Brute-force (IoT Botnet scan) detected.	Brute-Force IoT Targeted
🇫🇷 security.rdmc.fr	2026-05-29 11:44:52 (1 week ago)	Port Scan Attack proto:TCP src:40630 dst:23	Port Scan
🇬🇧 PeravixGroup	2026-05-29 10:46:42 (1 week ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇺🇸 RAP	2026-05-29 10:35:59 (1 week ago)	2026-05-29 10:35:59 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a880:2:d1:0:1:51f0:4001

🇧🇷 179.48.4.14

🇨🇳 180.153.236.227

🇸🇦 142.247.166.17

🇮🇳 122.165.170.242

🇧🇪 66.249.76.34

🇳🇱 45.148.10.151

🇮🇩 36.85.62.145

🇧🇷 34.39.161.130

🇨🇴 186.85.240.85

🇷🇺 176.109.97.11

🇺🇸 165.245.168.93

🇩🇪 130.12.182.140

🇱🇺 64.89.161.160

🇰🇷 59.12.160.91

🇺🇸 52.167.144.190

🇸🇬 34.142.133.191

🇸🇬 8.222.174.150

🇺🇸 2604:a880:400:d1:0:4:6c85:1

🇩🇪 213.209.159.56