JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.172.187

66.132.172.187 was found in our database!

This IP was reported 2,039 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	187.172.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.172.187

Whois 66.132.172.187

IP Abuse Reports for 66.132.172.187:

This IP address has been reported a total of 2,039 times from 428 distinct sources. 66.132.172.187 was first reported on March 20th 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Admins@FBN	2026-06-02 04:15:50 (1 day ago)	FW-PortScan: Traffic Blocked srcport=1924 dstport=22	Port Scan Hacking SSH
🇺🇸 donarev419	2026-06-02 04:14:55 (1 day ago)	Port scan detected on port 18200 (connection without data transfer)	Port Scan
🇦🇺 LiftUp Hosting	2026-06-02 04:03:57 (1 day ago)	Honeypot hit: Empty payload (likely service probe); 50580 [1] TCP	Port Scan
🇸🇬 drewf.ink	2026-06-02 02:02:11 (1 day ago)	[02:02] Port scanning. Port(s) scanned: TCP/465	Port Scan
🇫🇷 Fasetech	2026-06-01 23:30:26 (2 days ago)	SecLedge detected suspicious activity. Score: 226.56. Sensor: T-Pot.	Brute-Force Web App Attack
🇦🇹 urnilxfgbez	2026-06-01 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 ITSNF	2026-06-01 21:15:04 (2 days ago)	Blocked by os-abuseipdb; 5 hits, proto=tcp, ports=993	Port Scan Hacking
🇲🇹 neilcaruana	2026-06-01 17:39:08 (2 days ago)	Sentinel detected an attack on port [58500]	Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-01 17:12:01 (2 days ago)	Honeypot hit: Empty payload (likely service probe); 36563 [1] TCP	Port Scan
🇩🇪 DerDoktor	2026-06-01 17:10:05 (2 days ago)	I0601 16:44:04.41597 fail2ban action triggered	Port Scan Brute-Force SSH
🇬🇧 gbzret4d	2026-06-01 15:45:54 (2 days ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 39855 [1] TCP	Port Scan
🇩🇪 4server	2026-06-01 14:28:11 (2 days ago)	[MonJun0116:28:08.7865782026][security2:error][pid2856415:tid2856465][client66.132.172.187:0]ModSecu ... show more [MonJun0116:28:08.7865782026][security2:error][pid2856415:tid2856465][client66.132.172.187:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?:\\\\\\\\bshodan\\\\\\\\b\\|\\\\\\\\bcensysinspect\\\\\\\\b\\|\\\\\\\\bcensys\\\\\\\\b\\|\\\\\\\\bexpanse\\\\\\\\b\\|\\\\\\\\bnetsystemsresearch\\\\\\\\b\\|\\\\\\\\bnetcraftsurveyagent\\\\\\\\b\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"73\"][id\"338801\"][rev\"1\"][msg\"Atomicorp.comWAFRules:Blockedinternet-widesurveyorUA\"][severity\"ERROR\"][hostname\"www.avcolor.ch\"][uri\"/\"][unique_id\"ah2W-E_t-A4MXw0Hzd3iLAAAABU\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 SSP	2026-06-01 11:20:05 (2 days ago)	Automatic report from iptables firewall - detected malicious activity	DDoS Attack Brute-Force SSH Web App Attack Port Scan Hacking
🇩🇪 zupan	2026-06-01 11:19:11 (2 days ago)	Blocked by UFW on vps [6501/tcp] \| SPT: 16042 \| TTL: 53 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on vps [6501/tcp] \| SPT: 16042 \| TTL: 53 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 StopAbuse	2026-06-01 10:41:55 (2 days ago)	tcp/65003	Port Scan

Showing 31 to 45 of 2039 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.122

🇹🇼 198.235.24.107

🇺🇸 185.191.171.1

🇱🇧 185.160.227.166

🇨🇳 117.160.217.188

🇫🇷 91.196.152.126

🇺🇸 45.33.89.53

🇬🇧 35.203.211.130

🇬🇧 35.203.210.240

🇺🇸 20.65.194.112

🇷🇺 5.141.100.135

🇰🇷 222.239.251.12

🇧🇷 205.210.31.237

🇬🇧 193.163.125.157

🇮🇱 185.46.77.99

🇳🇱 176.65.139.31

🇻🇳 171.237.176.209

🇺🇸 164.92.106.15

🇻🇳 160.191.54.27

🇹🇭 152.32.247.23