JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.172.110

66.132.172.110 was found in our database!

This IP was reported 2,371 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	110.172.132.66.censys-scanner.com
Domain Name	censys.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.172.110

Whois 66.132.172.110

IP Abuse Reports for 66.132.172.110:

This IP address has been reported a total of 2,371 times from 496 distinct sources. 66.132.172.110 was first reported on March 19th 2026, and the most recent report was 54 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇭🇰 sandra361	2026-06-28 04:44:23 (54 minutes ago)	Port scan detected: 19 attempts across 1 ports (61712). \| Evidence: REAPER_TARPIT: IN=eth0 SRC=66.13 ... show more Port scan detected: 19 attempts across 1 ports (61712). \| Evidence: REAPER_TARPIT: IN=eth0 SRC=66.132.172.110 LEN=60 TOS=0x14 PREC=0x00 TTL=51 ID=1927 DF PROTO=TCP SPT=24880 DPT=61712 WINDOW=21900 RES=0x00 SYN URGP=0 show less	Port Scan
🇹🇷 ozyurterdem	2026-06-28 04:01:08 (1 hour ago)	T-Pot honeypot: 2 interactions. SiberKale Threat Intel.	Port Scan Hacking Brute-Force
🇫🇷 IpdbBot	2026-06-28 01:35:20 (4 hours ago)	Connection attempt to HONEYPOT	Port Scan Hacking
🇧🇷 dominioz	2026-06-28 01:09:51 (4 hours ago)	66.132.172.110 - - [27/Jun/2026:22:09:48 -0300] "PRI * HTTP/2.0" 400 173 "-" "-" "-" 66.132.172.110 ... show more 66.132.172.110 - - [27/Jun/2026:22:09:48 -0300] "PRI * HTTP/2.0" 400 173 "-" "-" "-" 66.132.172.110 - - [27/Jun/2026:22:09:50 -0300] "\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x0363\x89\xBB\x09a\x897F\xB3\xA6\x08\xE9\xF9T7V\xF1\xF7\x0B\xEB\xB8e\x9D\xD0\x0C\xB2V D\x15\x16 \x13\xC4\x9Eu \x94MA\xD4\xD5\xE7\x0C\xCB6\xAA" 400 173 "-" "-" "-" ... show less	Web App Attack
🇬🇧 Andrew	2026-06-28 00:36:11 (5 hours ago)	Blocked by UFW (TCP on port 30653). Source port: 64800 TTL: 54 Packet length: 60 TOS: 0x00 This rep ... show more Blocked by UFW (TCP on port 30653). Source port: 64800 TTL: 54 Packet length: 60 TOS: 0x00 This report (for 66.132.172.110) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 IP Analyzer	2026-06-28 00:30:20 (5 hours ago)	Unauthorized connection attempt from IP address 66.132.172.110 on Port 445(SMB)	Port Scan
🇷🇴 /dev/null	2026-06-27 23:30:32 (6 hours ago)	RouterOS: Portscanner detected.	Port Scan Brute-Force
🇬🇧 gbzret4d	2026-06-27 23:21:47 (6 hours ago)	Honeypot [uk-production01]: Unauthorized traffic (1000 bytes of payload); 20001 [2] TCP	Port Scan
🇩🇪 Loris007	2026-06-27 22:32:58 (7 hours ago)	Fail2Ban (Opencanary) detected attack from 66.132.172.110	Port Scan Brute-Force
🇺🇸 sandra361	2026-06-27 20:43:44 (8 hours ago)	Port scan detected: 9 attempts across 1 ports (56749). \| Evidence: REAPER_TARPIT: IN=enp1s0 SRC=66.1 ... show more Port scan detected: 9 attempts across 1 ports (56749). \| Evidence: REAPER_TARPIT: IN=enp1s0 SRC=66.132.172.110 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=13960 DF PROTO=TCP SPT=20830 DPT=56749 WINDOW=21900 RES=0x00 SYN URGP=0 show less	Port Scan
🇿🇦 slartybartfast69420blazit	2026-06-27 20:38:45 (8 hours ago)	Fail2ban picked up 66.132.172.110 attacking nginx	Web App Attack
🇩🇪 acadeova	2026-06-27 18:52:26 (10 hours ago)	🚨 Recon detected (nft drop) SRC=66.132.172.110 Observed=TCP dpt=81 in=enp0s6 ttl=54 Time=recent(jour ... show more 🚨 Recon detected (nft drop) SRC=66.132.172.110 Observed=TCP dpt=81 in=enp0s6 ttl=54 Time=recent(journalctl: 10 minutes ago) Assessment=Generic scanning / reconnaissance (PORT_SCAN) show less	Port Scan
🇫🇷 TheHoneyPotter	2026-06-27 18:24:49 (11 hours ago)	Honeypot detection: SSH brute-force authentication attempt on port 22 (2 or more attempts) - Logs: 2 ... show more Honeypot detection: SSH brute-force authentication attempt on port 22 (2 or more attempts) - Logs: 2026-06-27T18:24:48.379Z ACCEPT host=::ffff:66.132.172.110 port=24844 fd=6 n=3/4096 ... show less	Brute-Force SSH
🇨🇦 Slackin' Jack	2026-06-27 18:04:15 (11 hours ago)	Triggered honeypot on port 179. (66.132.172.110)	Port Scan
🇩🇪 guldkage	2026-06-27 17:27:13 (12 hours ago)	Unauthorized connection attempt detected from IP address 66.132.172.110 to port 3306 (ger-03) [h]	Brute-Force Exploited Host

Showing 1 to 15 of 2371 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 186.148.224.219

🇺🇸 65.49.1.104

🇧🇷 45.233.179.79

🇧🇷 205.210.31.203

🇺🇸 205.210.31.99

🇨🇳 183.197.81.165

🇨🇳 180.153.236.118

🇭🇰 152.32.134.231

🇺🇸 147.185.132.40

🇬🇧 118.193.64.235

🇮🇩 103.172.20.218

🇳🇱 89.21.67.177

🇹🇼 61.220.189.187

🇳🇱 45.148.10.151

🇬🇧 35.203.210.194

🇨🇳 218.63.76.144

🇧🇴 190.181.27.27

🇨🇴 152.200.205.179

🇸🇬 139.59.238.173

🇩🇪 89.163.145.38