JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.172.193

66.132.172.193 was found in our database!

This IP was reported 1,855 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	193.172.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.172.193

Whois 66.132.172.193

IP Abuse Reports for 66.132.172.193:

This IP address has been reported a total of 1,855 times from 425 distinct sources. 66.132.172.193 was first reported on March 19th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 drewf.ink	2026-05-26 14:12:36 (1 week ago)	[14:12] Port scanning. Port(s) scanned: TCP/636	Port Scan
🇺🇸 SSP	2026-05-26 12:20:02 (1 week ago)	Automatic report from iptables firewall - detected malicious activity	DDoS Attack Brute-Force SSH Web App Attack Port Scan Hacking
🇳🇱 donarev419	2026-05-26 12:13:03 (1 week ago)	Port scan detected on port 444 (connection without data transfer)	Port Scan
Anonymous	2026-05-26 11:13:43 (1 week ago)	2026-05-26T12:13:42.499086+01:00 vps kernel: [41534197.398994] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-05-26T12:13:42.499086+01:00 vps kernel: [41534197.398994] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=66.132.172.193 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=45 ID=41968 DF PROTO=TCP SPT=23982 DPT=2049 WINDOW=21900 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇦🇺 LiftUp Hosting	2026-05-26 10:40:02 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 6513 [1] TCP	Port Scan
🇩🇪 IP Analyzer	2026-05-26 09:00:37 (1 week ago)	Unauthorized connection attempt from IP address 66.132.172.193 on Port 465(SMTPS)	Port Scan
🇫🇷 Fasetech	2026-05-26 05:29:53 (1 week ago)	SecLedge detected suspicious activity. Score: 197.52. Sensor: T-Pot.	Brute-Force Web App Attack
🇳🇱 donarev419	2026-05-26 04:50:55 (1 week ago)	Port scan detected on port 13661 (connection without data transfer)	Port Scan
🇩🇪 Justin F. \| AS204464	2026-05-26 03:59:31 (1 week ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 15619 [1] TCP Reported by: Justi ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 15619 [1] TCP Reported by: Justin F. show less	Port Scan
🇳🇱 donarev419	2026-05-26 02:58:52 (1 week ago)	Connection to port 4369 with data transfer. Data preview:	Port Scan Hacking
🇬🇧 andypiper	2026-05-26 01:01:03 (1 week ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇩🇪 4server	2026-05-26 00:47:16 (1 week ago)	[TueMay2602:47:12.5415042026][security2:error][pid687346:tid687459][client66.132.172.193:0]ModSecuri ... show more [TueMay2602:47:12.5415042026][security2:error][pid687346:tid687459][client66.132.172.193:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?:\\\\\\\\bshodan\\\\\\\\b\\|\\\\\\\\bcensysinspect\\\\\\\\b\\|\\\\\\\\bcensys\\\\\\\\b\\|\\\\\\\\bexpanse\\\\\\\\b\\|\\\\\\\\bnetsystemsresearch\\\\\\\\b\\|\\\\\\\\bnetcraftsurveyagent\\\\\\\\b\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"73\"][id\"338801\"][rev\"1\"][msg\"Atomicorp.comWAFRules:Blockedinternet-widesurveyorUA\"][severity\"ERROR\"][hostname\"www.risanamento-pareti-umide.ch.risanamento-funghi-muffa.ch\"][uri\"/\"][unique_id\"ahTtkEjR_-FcSms9P1K4SgAAANE\"] show less	Port Scan Brute-Force Web App Attack
Anonymous	2026-05-26 00:15:35 (1 week ago)	Shorewall log file match.	Port Scan
🇩🇪 chwxr	2026-05-25 20:55:51 (1 week ago)	[email protected] detection: crowdsecurity/http-bad-user-agent	Fraud VoIP Port Scan Brute-Force
🇺🇸 shabi	2026-05-25 20:42:35 (1 week ago)	UFW Blocked [4366/TCP] Source: 66.132.172.193:26644 TTL: 57 Lenth: 60 TOS: 0x00	Port Scan

Showing 226 to 240 of 1855 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.90.244.19

🇬🇧 104.143.224.132

🇮🇳 103.117.155.41

🇳🇱 94.102.49.193

🇰🇷 222.107.156.227

🇰🇷 220.74.119.84

🇰🇷 218.156.93.202

🇮🇩 202.152.201.166

🇺🇸 165.154.182.152

🇺🇸 162.216.149.184

🇩🇿 154.242.218.192

🇮🇳 154.221.35.72

🇺🇸 143.198.238.87

🇬🇧 139.59.170.85

🇺🇸 104.23.250.71

🇫🇷 62.210.124.141

🇧🇷 45.164.39.253

🇸🇬 43.128.104.75

🇧🇷 20.197.238.250

🇺🇸 8.229.216.39