JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.172.142

66.132.172.142 was found in our database!

This IP was reported 2,613 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	142.172.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.172.142

Whois 66.132.172.142

IP Abuse Reports for 66.132.172.142:

This IP address has been reported a total of 2,613 times from 475 distinct sources. 66.132.172.142 was first reported on March 19th 2026, and the most recent report was 59 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 technojoe99	2026-05-28 09:52:48 (1 week ago)	Exploit scan from 66.132.172.142. GET /sitemap.xml HTTP/1.1.	Web App Attack
🇲🇹 neilcaruana	2026-05-28 09:43:21 (1 week ago)	Sentinel detected an attack on port [18080]	Hacking
🇹🇭 Sawasdee	2026-05-28 09:26:16 (1 week ago)	Port Scan ...	Port Scan
🇩🇪 ValtonTahiri	2026-05-28 09:08:50 (1 week ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=66.132.172.142; proto=TCP; source_port=40428; target_port=10250; flags=SYN show less	Port Scan
🇫🇷 Thaliruth	2026-05-28 08:06:32 (1 week ago)	May 28 10:06:32 151 postfix/smtpd[939294]: lost connection after STARTTLS from 142.172.132.66.censys ... show more May 28 10:06:32 151 postfix/smtpd[939294]: lost connection after STARTTLS from 142.172.132.66.censys-scanner.com[66.132.172.142] ... show less	Hacking Brute-Force
🇬🇧 gbzret4d	2026-05-28 08:05:58 (1 week ago)	Honeypot [uk-production01]: Unauthorized traffic (243 bytes of payload); 16993 [3] TCP	Port Scan
🇵🇱 axiomofchoice.xyz	2026-05-28 07:42:32 (1 week ago)	endlessh trap: attempts=9 total_time_stuck=160.184s	Port Scan SSH Hacking
Anonymous	2026-05-28 07:20:45 (1 week ago)	$f2bV_matches	Brute-Force SSH
🇩🇪 london2038.com	2026-05-28 07:18:11 (1 week ago)	Connection atttempts against closed TCP ports May 28 09:18:07 BLOCK SRC=66.132.172.142 LEN=60 TOS=0x ... show more Connection atttempts against closed TCP ports May 28 09:18:07 BLOCK SRC=66.132.172.142 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=21566 DF PROTO=TCP SPT=30902 DPT=993 WINDOW=21900 RES=0x00 SYN May 28 09:18:08 BLOCK SRC=66.132.172.142 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=21567 DF PROTO=TCP SPT=30902 DPT=993 WINDOW=21900 RES=0x00 SYN May 28 09:18:10 BLOCK SRC=66.132.172.142 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=21568 DF PROTO=TCP SPT=30902 DPT=993 WINDOW=21900 RES=0x00 SYN show less	Port Scan
🇺🇸 gu-alvareza	2026-05-28 07:05:38 (1 week ago)	Censys.io.Scanner	Port Scan
🇺🇸 sandra361	2026-05-28 04:20:01 (1 week ago)	Port scan detected: 38 attempts across 1 ports (55343). \| Evidence: REAPER_TARPIT:IN=enp1s0 OUT= SRC ... show more Port scan detected: 38 attempts across 1 ports (55343). \| Evidence: REAPER_TARPIT:IN=enp1s0 OUT= SRC=66.132.172.142 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=25834 DF PROTO=TCP SPT=44304 DPT=55343 WINDOW=21900 RES=0x00 SYN URGP=0 show less	Port Scan
🇫🇷 evvsk	2026-05-28 02:40:47 (1 week ago)	5432/tcp	Port Scan
🇸🇪 Esko	2026-05-28 01:56:50 (1 week ago)	Blocked by ufw, port 80	Port Scan
🇦🇺 HostFission	2026-05-28 01:20:08 (1 week ago)	PSAD port scan detected	Port Scan
🇯🇵 mkaraki	2026-05-27 23:37:01 (1 week ago)	1779925020 # Service_probe # SIGNATURE_SEND # source_ip:66.132.172.142 # dst_port:60000 ...	Port Scan

Showing 226 to 240 of 2613 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇶 212.237.123.223

🇮🇩 157.15.40.77

🇸🇬 143.198.221.127

🇲🇾 121.121.113.192

🇱🇦 103.114.147.217

🇩🇪 78.47.4.5

🇸🇦 188.52.161.207

🇧🇷 187.49.18.52

🇬🇧 185.249.74.198

🇧🇩 144.79.107.1

🇨🇳 110.249.201.158

🇳🇱 89.21.67.132

🇧🇬 78.128.113.46

🇸🇦 46.153.66.149

🇳🇱 45.156.87.117

🇰🇷 221.156.126.1

🇵🇰 203.130.11.3

🇺🇸 162.216.150.177

🇹🇳 102.31.133.218

🇨🇳 61.151.249.194