This IP address has been reported a total of
2,694
times from
513 distinct
sources.
66.132.172.188 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
[probe-44-49] 2026-07-01 10:46:59, Client: 66.132.172.188, Protocol: 6, Unauthorized activity to HTT ...
show more[probe-44-49] 2026-07-01 10:46:59, Client: 66.132.172.188, Protocol: 6, Unauthorized activity to HTTP: GET /a9fdu441vqfi00hrjs
show less
Web App Attack
Anonymous
Reported from Nginx log analysis 16. Log: 66.132.172.188 - - [01/Jul/2026:xx:xx:xx 0200] "GET / HTT ...
show moreReported from Nginx log analysis 16. Log: 66.132.172.188 - - [01/Jul/2026:xx:xx:xx 0200] "GET / HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; https://about.censys.io/)" "-" "US United States -" "AS398324" "Censys, Inc."
show less
Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 2005 [1] TCP
Reported by DisPaisy ...
show moreHoneypot [fra-de-honeypot]: Empty payload (likely service probe); 2005 [1] TCP
Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB
show less
Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). So ...
show moreWeb application attack / vulnerability scanning against our public nginx web server (TCP 80/443). Source matched a blocked-path security rule (jail nginx-444); server returned HTTP 444 (connection closed without response). TCP three-way handshake completed (full HTTP request received).
show less
UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ...
show moreUFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=66.132.172.188; proto=TCP; source_port=16300; target_port=4240; flags=SYN
show less
Jul 1 04:31:50 Ubuntu-2204-jammy-amd64-base sshd[1118342]: Connection closed by 66.132.172.188 port ...
show moreJul 1 04:31:50 Ubuntu-2204-jammy-amd64-base sshd[1118342]: Connection closed by 66.132.172.188 port 61364 [preauth]
...
show less
Unsolicited TCP connection from 66.132.172.188 to port 0 at 2026-07-01T01:31:33Z. Source IP complete ...
show moreUnsolicited TCP connection from 66.132.172.188 to port 0 at 2026-07-01T01:31:33Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring.
show less
Port Scan
Hacking
Showing 1 to
15
of 2694 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ