JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.172.208

66.132.172.208 was found in our database!

This IP was reported 1,758 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	208.172.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.172.208

Whois 66.132.172.208

IP Abuse Reports for 66.132.172.208:

This IP address has been reported a total of 1,758 times from 403 distinct sources. 66.132.172.208 was first reported on March 20th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 GoodOldTOS	2026-05-28 15:21:52 (6 days ago)	Connection to mysql honeypot	Hacking
🇫🇷 zulzeen	2026-05-28 14:36:27 (6 days ago)	[distribamap-0] Banned by Fail2ban (Jail: syswarden-portscan)	Port Scan
🇲🇹 neilcaruana	2026-05-28 13:47:03 (6 days ago)	Sentinel detected an attack on port [3299]	Hacking
🇬🇷 ggb_st	2026-05-28 08:21:21 (6 days ago)	[2026-05-28 08:21:20] 66.132.172.208 triggered a honeypot. Requested on port 80. URI: /, UA: Mozilla ... show more [2026-05-28 08:21:20] 66.132.172.208 triggered a honeypot. Requested on port 80. URI: /, UA: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/) ... show less	Bad Web Bot Brute-Force Web App Attack Hacking SQL Injection
🇩🇪 Justin F. \| AS204464	2026-05-28 07:28:30 (6 days ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 21040 [1] TCP Reported by: Justi ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 21040 [1] TCP Reported by: Justin F. show less	Port Scan
🇺🇸 gu-alvareza	2026-05-28 07:05:38 (6 days ago)	Censys.io.Scanner	Port Scan
🇸🇬 drewf.ink	2026-05-28 06:42:51 (6 days ago)	[06:42] Port scanning. Port(s) scanned: TCP/113	Port Scan
🇺🇸 sandra361	2026-05-28 05:45:01 (6 days ago)	Port scan detected: 35 attempts across 1 ports (8020). \| Evidence: REAPER_TARPIT:IN=enp1s0 OUT= SRC= ... show more Port scan detected: 35 attempts across 1 ports (8020). \| Evidence: REAPER_TARPIT:IN=enp1s0 OUT= SRC=66.132.172.208 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=41561 DF PROTO=TCP SPT=4774 DPT=8020 WINDOW=21900 RES=0x00 SYN URGP=0 show less	Port Scan
🇫🇷 evvsk	2026-05-28 02:24:48 (1 week ago)	3306/tcp	Port Scan
🇺🇸 donarev419	2026-05-28 00:17:44 (1 week ago)	Port scan detected on port 831 (connection without data transfer)	Port Scan
🇩🇪 Kreisausschuss des Odenwaldkreises	2026-05-27 22:51:40 (1 week ago)	HAProxy NOSRV or BADREQ	Web App Attack
🇺🇸 SSP	2026-05-27 22:20:01 (1 week ago)	Automatic report from iptables firewall - detected malicious activity	DDoS Attack Brute-Force SSH Web App Attack Port Scan Hacking
🇩🇪 dispaisyenterprises	2026-05-27 21:35:18 (1 week ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 15000 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 15000 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇩🇪 shr4pnel	2026-05-27 21:20:03 (1 week ago)	SSH login attempts (endlessh): 2026-05-27T20:36:49.265Z ACCEPT host=::ffff:66.132.172.208 port=63994 ... show more SSH login attempts (endlessh): 2026-05-27T20:36:49.265Z ACCEPT host=::ffff:66.132.172.208 port=63994 fd=10 n=7/4096 show less	Brute-Force SSH
🇺🇸 Xarcotic	2026-05-27 19:33:07 (1 week ago)	SSH login on honeypot.	Brute-Force SSH

Showing 151 to 165 of 1758 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.68

🇧🇷 104.23.254.79

🇺🇸 64.62.197.85

🇱🇹 62.60.130.210

🇧🇪 34.140.166.170

🇺🇸 216.25.89.74

🇧🇷 191.53.9.22

🇲🇽 189.203.163.10

🇸🇪 185.132.127.69

🇺🇸 147.185.132.123

🇨🇳 106.13.181.87

🇳🇱 83.168.106.26

🇺🇸 64.62.197.87

🇺🇸 64.62.197.2

🇺🇸 45.202.240.36

🇳🇱 45.148.10.157

🇳🇱 45.148.10.147

🇺🇸 34.26.14.127

🇲🇾 1.9.203.73

🇨🇳 222.189.36.138