JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.172.142

66.132.172.142 was found in our database!

This IP was reported 2,601 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	142.172.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.172.142

Whois 66.132.172.142

IP Abuse Reports for 66.132.172.142:

This IP address has been reported a total of 2,601 times from 475 distinct sources. 66.132.172.142 was first reported on March 19th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 jkhorvath.com	2026-05-30 01:10:00 (4 days ago)	Request for URL *	Phishing Brute-Force Web App Attack
🇩🇪 andrepcg	2026-05-30 00:45:10 (4 days ago)	Port scanning (66.132.172.142 -> :587)	Port Scan Brute-Force
🇫🇮 Maxetow	2026-05-30 00:30:39 (5 days ago)	Scan port: 8080 \| 2 total \| size=60B	Port Scan
🇹🇭 Sawasdee	2026-05-30 00:30:34 (5 days ago)	Port Scan ...	Port Scan
🇨🇭 GAS	2026-05-29 23:01:48 (5 days ago)	Direct IP access. 66.132.172.142 - - [30/May/2026:01:01:00 +0200] "GET / HTTP/1.1" 402 4857 "-" "Moz ... show more Direct IP access. 66.132.172.142 - - [30/May/2026:01:01:00 +0200] "GET / HTTP/1.1" 402 4857 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" "REDACTED" "" 66.132.172.142 - - [30/May/2026:01:01:46 +0200] "GET /wiki HTTP/1.1" 402 4857 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" "REDACTED" "" ... show less	Port Scan Web App Attack
🇬🇧 AvonleaConsulting	2026-05-29 22:50:13 (5 days ago)	Brute force attack stopped by firewall	Web Spam Brute-Force Web App Attack
🇩🇪 IP Analyzer	2026-05-29 22:00:19 (5 days ago)	Unauthorized connection attempt from IP address 66.132.172.142 on Port 80	Port Scan
🇺🇸 pjfasano	2026-05-29 20:20:04 (5 days ago)	May 29 20:19:57 fermi dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 1 se ... show more May 29 20:19:57 fermi dovecot: imap-login: Disconnected: Connection closed (no auth attempts in 1 secs): user=<>, rip=66.132.172.142, lip=205.166.159.14, TLS: Connection closed, session=<C+yHkfpSvJlChKyO> May 29 20:19:58 fermi dovecot: imap-login: Disconnected: Too many invalid commands (no auth attempts in 0 secs): user=<>, rip=66.132.172.142, lip=205.166.159.14, session=<aL2gkfpSBJpChKyO> May 29 20:20:00 fermi dovecot: imap-login: Disconnected: Too many invalid commands (no auth attempts in 0 secs): user=<>, rip=66.132.172.142, lip=205.166.159.14, session=<fUO3kfpSSJpChKyO> May 29 20:20:02 fermi dovecot: imap-login: Disconnected: Too many invalid commands (no auth attempts in 1 secs): user=<>, rip=66.132.172.142, lip=205.166.159.14, session=<+CHSkfpSUJpChKyO> May 29 20:20:03 fermi dovecot: imap-login: Disconnected: Too many invalid commands (no auth attempts in 0 secs): user=<>, rip=66.132.172.142, lip=205.166.159.14, session=<smnqkfpSbJpChKyO> ... show less	Brute-Force SSH
🇫🇷 evvsk	2026-05-29 20:07:14 (5 days ago)	19999/tcp	Port Scan
🇩🇪 acadeova	2026-05-29 19:14:23 (5 days ago)	🚨 Recon detected (nft drop) SRC=66.132.172.142 Observed=TCP dpt=38062 in=enp0s6 ttl=54 Time=recent(j ... show more 🚨 Recon detected (nft drop) SRC=66.132.172.142 Observed=TCP dpt=38062 in=enp0s6 ttl=54 Time=recent(journalctl: 10 minutes ago) Assessment=Generic scanning / reconnaissance (PORT_SCAN) show less	Port Scan
🇭🇷 IgorS.zg.hr	2026-05-29 19:01:23 (5 days ago)	SSHD brute force attack detected by fail2ban	Brute-Force SSH
🇺🇸 MPL	2026-05-29 18:33:27 (5 days ago)	tcp/139 (12 or more attempts)	Port Scan
🇮🇹 abuseiphack	2026-05-29 18:05:27 (5 days ago)	Automatic report for brute force attack	Web App Attack
🇺🇸 MPL	2026-05-29 17:25:43 (5 days ago)	tcp/1910 (18 or more attempts)	Port Scan
🇺🇸 aks4226	2026-05-29 16:03:06 (5 days ago)	Brute force on SSH.	SSH Brute-Force

Showing 151 to 165 of 2601 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.122

🇹🇼 198.235.24.107

🇺🇸 185.191.171.1

🇱🇧 185.160.227.166

🇨🇳 117.160.217.188

🇫🇷 91.196.152.126

🇺🇸 45.33.89.53

🇬🇧 35.203.211.130

🇬🇧 35.203.210.240

🇺🇸 20.65.194.112

🇷🇺 5.141.100.135

🇰🇷 222.239.251.12

🇧🇷 205.210.31.237

🇬🇧 193.163.125.157

🇮🇱 185.46.77.99

🇳🇱 176.65.139.31

🇻🇳 171.237.176.209

🇺🇸 164.92.106.15

🇻🇳 160.191.54.27

🇹🇭 152.32.247.23