JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.172.178

66.132.172.178 was found in our database!

This IP was reported 2,104 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	178.172.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.172.178

Whois 66.132.172.178

IP Abuse Reports for 66.132.172.178:

This IP address has been reported a total of 2,104 times from 449 distinct sources. 66.132.172.178 was first reported on March 20th 2026, and the most recent report was 2 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ghostwarriors	2026-03-24 17:20:29 (2 months ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇨🇭 pingusurmars	2026-03-24 16:32:51 (2 months ago)	Blocked by UFW on amperetwo [993/tcp] Source port: 43376 TTL: 55 Packet length: 60 TOS: 0x00 This r ... show more Blocked by UFW on amperetwo [993/tcp] Source port: 43376 TTL: 55 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇵🇱 axiomofchoice.xyz	2026-03-24 15:30:08 (2 months ago)	endlessh trap: attempts=8 total_time_stuck=120.152s	Port Scan SSH Hacking
🇩🇪 Silly Development	2026-03-24 14:00:39 (2 months ago)	SMB Unauthorized Attempt	Brute-Force Port Scan Hacking
🇩🇪 Axel	2026-03-24 13:31:57 (2 months ago)	[2026-03-24 13:31:57 UTC] Honeypot WebLogic connection attempt \| AXFRA HONEYPOT	Web App Attack
🇺🇦 llighthunter	2026-03-24 12:19:23 (2 months ago)	Mar 24 14:19:19 mail dovecot: imap-login: Disconnected: Too many invalid commands (no auth attempts ... show more Mar 24 14:19:19 mail dovecot: imap-login: Disconnected: Too many invalid commands (no auth attempts in 0 secs): user=<>, rip=66.132.172.178, lip=192.168.1.80, session=<FlMnKcRNeuNChKyy> Mar 24 14:19:20 mail dovecot: imap-login: Disconnected: Too many invalid commands (no auth attempts in 0 secs): user=<>, rip=66.132.172.178, lip=192.168.1.80, session=<PxozKcRNkONChKyy> Mar 24 14:19:20 mail dovecot: imap-login: Disconnected: Too many invalid commands (no auth attempts in 0 secs): user=<>, rip=66.132.172.178, lip=192.168.1.80, session=<v+s6KcRNlONChKyy> show less	Port Scan Hacking Spoofing
🇹🇷 Threat.live	2026-03-24 11:55:15 (2 months ago)	Brute Force, tcp/8090	Brute-Force
🇲🇳 Public CSIRT/CC of Mongolia	2026-03-24 11:21:50 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 40240 [1] TCP	Port Scan
🇩🇪 Moritz	2026-03-24 10:59:40 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 2000 [3] TCP	Port Scan
🇩🇪 ValtonTahiri	2026-03-24 10:11:07 (2 months ago)	Honeypot hit: Unauthorized traffic (16 bytes) Payload: �6�@�� on 1194/TCP (2 attempts)	Port Scan
🇹🇷 Threat.live	2026-03-24 09:35:21 (2 months ago)	Suspicious activity, tcp/7081	Port Scan
🇫🇷 Thaliruth	2026-03-24 07:47:41 (2 months ago)	Mar 24 08:47:40 151 postfix/smtpd[1867808]: lost connection after EHLO from 178.172.132.66.censys-sc ... show more Mar 24 08:47:40 151 postfix/smtpd[1867808]: lost connection after EHLO from 178.172.132.66.censys-scanner.com[66.132.172.178] ... show less	Hacking Brute-Force
🇫🇷 ISPLtd	2026-03-24 06:23:23 (2 months ago)	Mar 24 03:23:21 66.132.172.178 TCP SPT=60330 DPT=23780 SYN Mar 24 03:23:22 66.132.172.178 TCP SPT=60 ... show more Mar 24 03:23:21 66.132.172.178 TCP SPT=60330 DPT=23780 SYN Mar 24 03:23:22 66.132.172.178 TCP SPT=60330 DPT=23780 SYN Mar 24 03:23:22 66.132.172.178 TCP SPT=60334 DPT=23780 WINDO ... show less	Port Scan
🇪🇸 el-brujo	2026-03-24 06:01:03 (2 months ago)	03/24/2026-07:01:03.633812 66.132.172.178 Protocol: 6 ET SCAN Suspicious inbound to PostgreSQL port ... show more 03/24/2026-07:01:03.633812 66.132.172.178 Protocol: 6 ET SCAN Suspicious inbound to PostgreSQL port 5432 show less	Hacking
🇫🇷 Mölkky	2026-03-24 03:53:11 (2 months ago)	CVE: Suspicious Scanning	Web App Attack

Showing 1996 to 2010 of 2104 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 218.190.8.165

🇪🇸 188.114.111.232

🇲🇽 186.96.145.241

🇺🇸 162.240.168.158

🇨🇴 152.200.181.42

🇨🇳 120.48.165.75

🇩🇪 104.207.57.64

🇮🇳 13.233.95.147

🇩🇪 8.209.89.108

🇦🇺 220.235.178.197

🇩🇪 216.26.245.199

🇩🇪 172.104.241.92

🇺🇸 147.185.132.252

🇺🇸 109.105.210.60

🇭🇰 103.77.210.80

🇲🇲 103.59.163.132

🇩🇪 65.111.26.69

🇺🇸 65.49.20.109

🇺🇸 65.49.1.238

🇺🇿 62.164.148.87