JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.81.133.172

172.81.133.172 was found in our database!

This IP was reported 51 times. Confidence of Abuse is 25%: ?

25%

ISP	DataWagon LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS27176
Hostname(s)	ip-172-81-133-172.host.datawagon.net
Domain Name	datawagon.com
Country	🇺🇸 United States of America
City	Buffalo, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.81.133.172

Whois 172.81.133.172

IP Abuse Reports for 172.81.133.172:

This IP address has been reported a total of 51 times from 33 distinct sources. 172.81.133.172 was first reported on May 9th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 dinginess6354	2026-06-03 11:18:17 (1 week ago)	Unauthorized Access Attempt	Port Scan Hacking Web App Attack
🇫🇷 georgton.tech	2026-05-29 08:14:02 (2 weeks ago)	172.81.133.172 - - [29/May/2026:05:13:54 -0300] "GET / HTTP/1.1" 400 666 "-" "Mozilla/5.0 (Macintosh ... show more 172.81.133.172 - - [29/May/2026:05:13:54 -0300] "GET / HTTP/1.1" 400 666 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36" 172.81.133.172 - - [29/May/2026:05:14:01 -0300] "POST /bsh.servlet.BshServlet HTTP/1.1" 400 264 "-" "Mozilla/5.0 (X11; Linux i686; rv:1.9.7.20) Gecko/ Firefox/3.6.4" 172.81.133.172 - - [29/May/2026:05:14:01 -0300] "POST /webadm/?q=moni_detail.do&action=gragh HTTP/1.1" 400 666 "-" "Mozilla/5.0 (CentOS; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇬🇧 yvoictra	2026-05-25 06:50:33 (3 weeks ago)	May 25 08:50:32 geneba sshd[390638]: Invalid user from 172.81.133.172 port 35458 ...	Brute-Force SSH
🇺🇸 shaunc	2026-05-20 02:12:35 (3 weeks ago)	May 19 21:12:31 [redacted] kernel: CLOSED_PORT_PROBE: IN=eth0 OUT= MAC=[redacted]:6c:78:c1:10:f6:b0: ... show more May 19 21:12:31 [redacted] kernel: CLOSED_PORT_PROBE: IN=eth0 OUT= MAC=[redacted]:6c:78:c1:10:f6:b0:08:00 SRC=172.81.133.172 DST=[redacted] LEN=44 TOS=0x08 PREC=0x20 TTL=29 ID=23303 PROTO=TCP SPT=60478 DPT=111 WINDOW=1024 RES=0x00 SYN URGP=0 May 19 21:12:31 [redacted] kernel: CLOSED_PORT_PROBE: IN=eth0 OUT= MAC=[redacted]:6c:78:c1:10:f6:b0:08:00 SRC=172.81.133.172 DST=[redacted] LEN=44 TOS=0x08 PREC=0x20 TTL=27 ID=3500 PROTO=TCP SPT=60478 DPT=5900 WINDOW=1024 RES=0x00 SYN URGP=0 May 19 21:12:33 [redacted] kernel: CLOSED_PORT_PROBE: IN=eth0 OUT= MAC=[redacted]:6c:78:c1:10:f6:b0:08:00 SRC=172.81.133.172 DST=[redacted] LEN=44 TOS=0x08 PREC=0x20 TTL=42 ID=25309 PROTO=TCP SPT=60480 DPT=5900 WINDOW=1024 RES=0x00 SYN URGP=0 show less	Port Scan
🇺🇸 KayCee	2026-05-19 16:49:02 (3 weeks ago)	Tue 19 May 2026 12:44:26 ANNOUNCEMENT: WARNING: maximum local connections for the main class (2) exc ... show more Tue 19 May 2026 12:44:26 ANNOUNCEMENT: WARNING: maximum local connections for the main class (2) exceeded by 172.81.133.172 Tue 19 May 2026 12:44:32 ANNOUNCEMENT: WARNING: maximum local connections for the main class (2) exceeded by 172.81.133.172 Tue 19 May 2026 12:44:37 ANNOUNCEMENT: WARNING: maximum local connections for the main class (2) exceeded by 172.81.133.172 ... show less	DDoS Attack
🇺🇸 Rip	2026-02-20 22:08:20 (3 months ago)	Automated recon attempt targeting restricted and sensitive paths.	Web App Attack
Anonymous	2026-01-19 10:34:54 (4 months ago)	Aggressive web scan	Web App Attack
🇳🇱 Roderic	2025-11-12 05:23:53 (7 months ago)	(PERMBLOCK) 172.81.133.172 (US/United States/-/-/ip-172-81-133-172.host.datawagon.net/[redacted]) ha ... show more (PERMBLOCK) 172.81.133.172 (US/United States/-/-/ip-172-81-133-172.host.datawagon.net/[redacted]) has had more than 4 temp blocks show less	Hacking
🇳🇱 Roderic	2025-11-12 02:29:53 (7 months ago)	(apache_scanners-2) Failed apache-scanners trigger with match [redacted])	Port Scan
🇳🇱 Roderic	2025-11-12 00:28:17 (7 months ago)	(mod_security) mod_security triggered on hostname [redacted])	SQL Injection
🇫🇷 security.rdmc.fr	2025-11-06 08:00:50 (7 months ago)	Port Scan Attack proto:TCP src:39753 dst:20	Port Scan
🇫🇷 masterguru	2025-10-31 08:35:17 (7 months ago)	Port Scan detected from 172.81.133.172 (US/United States/ip-172-81-133-172.host.datawagon.net). 11 ... show more Port Scan detected from 172.81.133.172 (US/United States/ip-172-81-133-172.host.datawagon.net). 11 hits in the last 20 seconds (0-135) show less	Port Scan
🇫🇷 PacketFilter	2025-09-27 01:07:40 (8 months ago)	Fail2Ban	Hacking Web App Attack
🇨🇳 ThreatBook.io	2025-07-22 00:43:16 (10 months ago)	ThreatBook Intelligence: Scanner,Spam more details on https://threatbook.io/ip/172.81.133.172	SSH
🇺🇸 Epimetheus	2025-06-09 14:38:37 (1 year ago)	Unauthorized access attempts: From: 172.81.133.172 Method: HTTP GET URI Path: /_profiler/empty ... show more Unauthorized access attempts: From: 172.81.133.172 Method: HTTP GET URI Path: /_profiler/empty/search/results UA: "python-requests/2.31.0" show less	Web App Attack

Showing 1 to 15 of 51 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.216.101

🇨🇱 179.57.170.71

🇺🇸 165.22.4.171

🇨🇴 161.18.234.168

🇵🇱 151.115.48.199

🇬🇧 101.36.97.80

🇫🇷 91.231.89.76

🇳🇱 91.92.40.4

🇷🇴 80.94.92.168

🇳🇱 45.156.87.204

🇳🇱 45.148.10.147

🇩🇪 45.135.141.13

🇸🇬 43.172.198.227

🇺🇸 34.50.165.165

🇪🇸 185.9.193.111

🇨🇳 171.114.228.132

🇳🇱 52.174.67.71

🇮🇩 41.216.178.119

🇩🇪 216.26.246.67

🇺🇸 159.223.189.15