JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.172.101

66.132.172.101 was found in our database!

This IP was reported 1,871 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	101.172.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.172.101

Whois 66.132.172.101

IP Abuse Reports for 66.132.172.101:

This IP address has been reported a total of 1,871 times from 411 distinct sources. 66.132.172.101 was first reported on March 19th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-05-30 10:07:38 (4 days ago)	tcp/8482 (10 or more attempts)	Port Scan
🇳🇱 donarev419	2026-05-30 06:10:53 (4 days ago)	Port scan detected on port 3390 (connection without data transfer)	Port Scan
🇫🇷 SiyCah	2026-05-30 06:00:12 (4 days ago)	66.132.172.101 fell into Endlessh tarpit; 0/3 total connections are currently still open. Total time ... show more 66.132.172.101 fell into Endlessh tarpit; 0/3 total connections are currently still open. Total time wasted: 11s. Total bytes sent by tarpit: 960B. Report generated by Endlessh Report Generator v1.2.3 show less	Brute-Force Port Scan SSH Hacking
🇹🇭 MWA SOC	2026-05-30 05:50:41 (4 days ago)		Hacking
🇩🇪 Justin F. \| AS204464	2026-05-30 05:11:13 (5 days ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 38037 [1] TCP Reported by: Justi ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 38037 [1] TCP Reported by: Justin F. show less	Port Scan
🇹🇭 Sawasdee	2026-05-30 05:10:32 (5 days ago)	Port Scan ...	Port Scan
🇮🇱 spd.co.il	2026-05-30 05:03:55 (5 days ago)	Web application attack detected	Hacking Web App Attack
🇩🇪 ITSNF	2026-05-30 04:05:04 (5 days ago)	Blocked by os-abuseipdb; 18 hits, proto=tcp, ports=80	Port Scan Hacking
🇳🇴 tmiland	2026-05-30 02:46:27 (5 days ago)	Suricata Detected 6 attacks from 66.132.172.101.; ET DROP Dshield Block Listed Source group 1; IP: 6 ... show more Suricata Detected 6 attacks from 66.132.172.101.; ET DROP Dshield Block Listed Source group 1; IP: 66.132.172.101; Ports: 29080; Direction: to_server; Trigger: DROP; Category: Misc Attack; Severity: 2 show less	Brute-Force
🇦🇺 LiftUp Hosting	2026-05-30 02:10:07 (5 days ago)	Honeypot hit: Unauthorized traffic (572 bytes of payload); 1801 [2] TCP	Port Scan
🇵🇱 Wepted	2026-05-30 01:22:58 (5 days ago)	Port scan detected by honeypot	Port Scan Hacking
🇬🇧 andypiper	2026-05-30 01:02:41 (5 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇫🇮 Maxetow	2026-05-30 00:11:02 (5 days ago)	Scan port: 4083 \| 3 total \| size=60B	Port Scan
🇬🇧 gbzret4d	2026-05-29 22:53:23 (5 days ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 25949 [1] TCP	Port Scan
🇺🇸 Misaka13514	2026-05-29 22:29:20 (5 days ago)	SSH tarpit connection (endlessh): 2026-05-29T22:29:19.937Z ACCEPT host=::ffff:66.132.172.101 port=61 ... show more SSH tarpit connection (endlessh): 2026-05-29T22:29:19.937Z ACCEPT host=::ffff:66.132.172.101 port=61312 fd=5 n=2/4096 show less	Brute-Force SSH

Showing 106 to 120 of 1871 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇴 102.213.34.99

🇬🇧 195.96.139.83

🇻🇳 112.78.7.30

🇺🇸 66.132.224.19

🇮🇳 43.230.104.190

🇳🇱 34.178.197.199

🇯🇵 8.216.7.37

🇺🇸 195.184.76.210

🇷🇴 193.32.162.13

🇮🇳 182.95.191.186

🇺🇸 162.239.79.185

🇾🇹 153.67.91.230

🇸🇬 152.42.219.134

🇹🇯 150.228.207.250

🇮🇳 125.23.204.74

🇮🇳 103.123.53.88

🇩🇪 95.90.13.168

🇺🇸 66.132.186.246

🇱🇹 45.227.254.170

🇮🇳 203.192.211.180