AbuseIPDB » 172.81.61.42

172.81.61.42 was found in our database!

This IP was reported 1,501 times. Confidence of Abuse is 100%: ?

100%

ISP	Dynu Systems Incorporated
Usage Type	Data Center/Web Hosting/Transit
ASN	AS398019
Hostname(s)	unassigned.172-81-61-42.spryt.net
Domain Name	dynu.com
Country	United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 172.81.61.42

Whois 172.81.61.42

IP Abuse Reports for 172.81.61.42:

This IP address has been reported a total of 1,501 times from 79 distinct sources. 172.81.61.42 was first reported on June 12th 2025, and the most recent report was 1 minute ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
PvH	2025-07-18 21:05:31 (1 minute ago)	Unsolicited connection attempts to port 5900	Hacking
rtbh.com.tr	2025-07-18 20:07:45 (59 minutes ago)	list.rtbh.com.tr report: tcp/5900	Brute-Force
anon333	2025-07-18 19:34:02 (1 hour ago)	Hacker syslog review 1752867241	Hacking
StopAbuse	2025-07-18 19:12:03 (1 hour ago)	tcp/5900	Port Scan
domotuto.com	2025-07-18 18:47:02 (2 hours ago)	Mikrotik port scanner detected. EA4GKQ	Port Scan
MPL	2025-07-18 17:40:53 (3 hours ago)	tcp/5900 (2 or more attempts)	Port Scan
rtbh.com.tr	2025-07-18 16:07:44 (4 hours ago)	list.rtbh.com.tr report: tcp/5900	Brute-Force
Anonymous	2025-07-18 16:06:34 (5 hours ago)	2025-07-18T17:06:33.141307+01:00 vps kernel: [14595243.094570] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more2025-07-18T17:06:33.141307+01:00 vps kernel: [14595243.094570] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=172.81.61.42 DST=54.37.14.118 LEN=40 TOS=0x00 PREC=0x00 TTL=231 ID=54321 PROTO=TCP SPT=49981 DPT=5900 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
OceanTreasure	2025-07-18 15:50:03 (5 hours ago)	tcp/5900; Scan for open VNC remote desktop port (R18) @ 2025-07-18T15:43:11Z	Brute-Force
Study Bitcoin 🤗	2025-07-18 15:46:15 (5 hours ago)	5 port probes: 5x tcp/5900 (vnc virtual network computing) [srv127,srv135,srv129,srv124,srv136 ... show more5 port probes: 5x tcp/5900 (vnc virtual network computing) [srv127,srv135,srv129,srv124,srv136] show less	Port Scan
Crxa	2025-07-18 15:19:27 (5 hours ago)	Blocked by UFW on homeserver [5900/tcp] Source port: 59045 TTL: 243 Packet length: ... show moreBlocked by UFW on homeserver [5900/tcp] Source port: 59045 TTL: 243 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking
Study Bitcoin 🤗	2025-07-18 15:17:40 (5 hours ago)	Port probe to tcp/5900 (vnc virtual network computing) [ros]	Port Scan
yangfan	2025-07-18 15:15:42 (5 hours ago)	UFW Blocked [5900/TCP] Source: 172.81.61.42:40549 TTL: 238 Lenth: 40 TOS: 0x ... show moreUFW Blocked [5900/TCP] Source: 172.81.61.42:40549 TTL: 238 Lenth: 40 TOS: 0x00 show less	Port Scan
avsisp	2025-07-18 12:52:10 (8 hours ago)	Honeypot IP Hit to Unused IP (https://github.com/AVSISP/honeypot)	Port Scan
rtbh.com.tr	2025-07-18 12:07:44 (8 hours ago)	list.rtbh.com.tr report: tcp/5900	Brute-Force

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩