JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.172.193

66.132.172.193 was found in our database!

This IP was reported 1,840 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	193.172.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.172.193

Whois 66.132.172.193

IP Abuse Reports for 66.132.172.193:

This IP address has been reported a total of 1,840 times from 423 distinct sources. 66.132.172.193 was first reported on March 19th 2026, and the most recent report was 50 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-05-28 22:58:11 (6 days ago)	tcp/48323 (10 or more attempts)	Port Scan
🇺🇸 MPL	2026-05-28 22:41:23 (6 days ago)	tcp ports: 26,48323 (16 or more attempts)	Port Scan
🇩🇪 itak	2026-05-28 21:06:44 (6 days ago)	postfix Server DDoS - AUTH drops, early HANGUPs, other DDoS attacks, etc. Might contain brute-force ... show more postfix Server DDoS - AUTH drops, early HANGUPs, other DDoS attacks, etc. Might contain brute-force dictionary attack sightings on IMAP and SMTP. show less	DDoS Attack Port Scan
🇫🇷 Version Net	2026-05-28 20:46:24 (6 days ago)	IPS Detection: Censys.io.Scanner	Hacking
🇺🇸 mutebot.net	2026-05-28 20:26:03 (6 days ago)	SRC=66.132.172.193, PROTO=TCP, SPT=20616, DPT=23908	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-28 20:18:33 (6 days ago)	Honeypot hit: Empty payload (likely service probe); 53180 [1] TCP	Port Scan
🇮🇳 Parth Maniar	2026-05-28 18:41:18 (6 days ago)	This IP address carried out 24 port scanning attempts on 28-05-2026. For more information or to repo ... show more This IP address carried out 24 port scanning attempts on 28-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇺🇸 Bankbook8585	2026-05-28 18:34:02 (6 days ago)	T-Pot honeypot \| Honeytrap: port 25565	Port Scan Hacking
Anonymous	2026-05-28 18:26:10 (6 days ago)	Detected by CrowdSec IP: 66.132.172.193 Scenario: crowdsecurity/http-bad-user-agent Date: Thu, 28 Ma ... show more Detected by CrowdSec IP: 66.132.172.193 Scenario: crowdsecurity/http-bad-user-agent Date: Thu, 28 May 2026 20:26:10 CEST (GMT +02:00) show less	Web App Attack Bad Web Bot
🇦🇺 LiftUp Hosting	2026-05-28 17:15:57 (6 days ago)	Honeypot hit: Empty payload (likely service probe); 64109 [1] TCP	Port Scan
🇩🇪 femboy.cat	2026-05-28 16:45:20 (6 days ago)	Port scan to tcp/24584 from 66.132.172.193	Brute-Force
🇹🇭 Sawasdee	2026-05-28 15:42:14 (6 days ago)	Port Scan ...	Port Scan
🇩🇪 DAUGDE	2026-05-28 14:14:51 (6 days ago)	2026-05-28T16:14:46.332460+02:00 v2202104133598150667 9275893e7080[126433]: May 28 16:14:46 9275893e ... show more 2026-05-28T16:14:46.332460+02:00 v2202104133598150667 9275893e7080[126433]: May 28 16:14:46 9275893e7080 postfix/smtps/smtpd[60424]: lost connection after EHLO from 193.172.132.66.censys-scanner.com[66.132.172.193] 2026-05-28T16:14:49.429964+02:00 v2202104133598150667 9275893e7080[126433]: May 28 16:14:49 9275893e7080 postfix/smtps/smtpd[60424]: lost connection after CONNECT from 193.172.132.66.censys-scanner.com[66.132.172.193] 2026-05-28T16:14:51.193810+02:00 v2202104133598150667 9275893e7080[126433]: May 28 16:14:51 9275893e7080 postfix/smtps/smtpd[60424]: lost connection after CONNECT from 193.172.132.66.censys-scanner.com[66.132.172.193] ... show less	Email Spam Spoofing Brute-Force
🇬🇧 gbzret4d	2026-05-28 13:40:06 (6 days ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 10030 [1] TCP	Port Scan
🇩🇪 wsyq	2026-05-28 13:01:38 (6 days ago)	Fail2Ban - \[POSTFIX\]Dropped in one of \{SASL AUTH\},\{RBL\},\{DDOS\(PREGREET\)\},\{TWO MANY ERRORS ... show more Fail2Ban - \[POSTFIX\]Dropped in one of \{SASL AUTH\},\{RBL\},\{DDOS\(PREGREET\)\},\{TWO MANY ERRORS\},\{ADDRESS REJECTED\} ... show less	Hacking Spoofing

Showing 151 to 165 of 1840 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.209

🇺🇸 205.210.31.104

🇺🇸 195.184.76.246

🇧🇷 177.22.168.43

🇭🇰 165.154.20.228

🇺🇸 151.240.63.107

🇭🇰 45.142.154.98

🇵🇰 14.1.107.210

🇹🇼 198.235.24.78

🇺🇸 162.241.192.24

🇺🇸 162.216.150.36

🇺🇸 162.216.149.123

🇮🇳 128.185.116.114

🇻🇳 103.200.25.198

🇨🇦 85.217.149.16

🇺🇸 64.62.197.17

🇨🇾 62.228.126.113

🇺🇸 45.33.89.53

🇻🇪 38.51.194.208

🇦🇺 217.217.118.44