JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.172.38

66.132.172.38 was found in our database!

This IP was reported 1,708 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	38.172.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.172.38

Whois 66.132.172.38

IP Abuse Reports for 66.132.172.38:

This IP address has been reported a total of 1,708 times from 403 distinct sources. 66.132.172.38 was first reported on March 19th 2026, and the most recent report was 36 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇳 Public CSIRT/CC of Mongolia	2026-03-21 09:38:05 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 53976 [1] TCP	Port Scan
🇹🇷 Threat.live	2026-03-21 08:20:20 (2 months ago)	Suspicious activity, tcp/58381	Port Scan
🇺🇸 drewf.ink	2026-03-21 08:03:34 (2 months ago)	[08:03] Port scanning. Port(s) scanned: TCP/389	Port Scan
Anonymous	2026-03-21 05:47:21 (2 months ago)	bad ssl requests	Port Scan Hacking Web App Attack
🇩🇪 dispaisyenterprises	2026-03-21 05:04:02 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 30073 [1] TCP Reported by: https://github.com/se ... show more Honeypot hit: Empty payload (likely service probe); 30073 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 OptimusGO	2026-03-21 03:45:39 (2 months ago)	Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Time ... show more Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Timestamp: 2026-03-21 03:45:39 UTC Log evidence: 66.132.172.38 - - [21/Mar/2026:03:45:38 +0000] "GET / HTTP/1.1" 200 409 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 66.132.172.38 - - [21/Mar/2026:03:45:38 +0000] "PRI * HTTP/2.0" 400 150 "-" "-" 66.132.172.38 - - [21/Mar/2026:03:45:39 +0000] "GET /favicon.ico HTTP/1.1" 404 118 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" show less	Port Scan Brute-Force
🇩🇪 ghostwarriors	2026-03-20 18:20:31 (2 months ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇹🇷 Threat.live	2026-03-20 16:55:33 (2 months ago)	Brute Force, tcp/3389	Brute-Force
🇯🇵 HeliJP	2026-03-20 16:50:08 (2 months ago)	Identified as SPAM from IP address 66.132.172.38	Email Spam
🇺🇸 LSPCCU	2026-03-20 16:04:38 (2 months ago)	TSEC Honeypot Network report. Threat score: 65/100. Categories: Port Scan, Hacking, Brute-Force, Web ... show more TSEC Honeypot Network report. Threat score: 65/100. Categories: Port Scan, Hacking, Brute-Force, Web App Attack, SSH. Honeypot: ssh-telnet, cowrie. Context: 66. show less	Port Scan Hacking Brute-Force Web App Attack SSH
🇩🇪 ValtonTahiri	2026-03-20 10:26:28 (2 months ago)	Honeypot hit: Unauthorized traffic (243 bytes) Payload: ��Qn��.�]<��̲o��j�> ��x2�;(��:C�� ... show more Honeypot hit: Unauthorized traffic (243 bytes) Payload: ��Qn��.�]<��̲o��j�> ��x2�;(��:C��P��cM�t��_�ں6z&̨̩�/�0�+�,�� /5� { �+ 3&$ �'�,�ʍ&F�>Q��H@Ht$�#��L on 8013/TCP (1 attempt) show less	Port Scan
🇧🇷 SOC Blue Team	2026-03-20 09:25:59 (2 months ago)	IPs get by Hunting on SIEM	Phishing Web Spam Port Scan Hacking
🇳🇱 Roderic	2026-03-20 08:00:20 (2 months ago)	Port Scan detected from 66.132.172.38 (US/United States/-/-/38.172.132.66.censys-scanner.com/[reda ... show more Port Scan detected from 66.132.172.38 (US/United States/-/-/38.172.132.66.censys-scanner.com/[redacted]). show less	Port Scan
🇺🇸 Starburst SysOp Team	2026-03-20 06:54:49 (2 months ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-mnz6-3)	Hacking Bad Web Bot
🇹🇷 Threat.live	2026-03-20 06:50:14 (2 months ago)	Suspicious activity, tcp/2957	Port Scan

Showing 1681 to 1695 of 1708 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇷 217.114.40.16

🇰🇷 211.253.31.30

🇺🇸 192.169.178.74

🇸🇪 192.36.109.96

🇧🇪 34.22.204.164

🇦🇪 20.203.42.204

🇨🇦 174.114.208.102

🇺🇸 162.198.46.77

🇮🇩 160.22.72.6

🇨🇳 121.229.210.188

🇮🇹 80.94.127.19

🇩🇪 47.254.170.206

🇺🇸 47.146.94.52

🇳🇱 45.156.128.79

🇩🇪 37.114.35.149

🇬🇧 35.203.210.132

🇧🇪 34.78.29.97

🇧🇪 34.14.104.217

🇺🇸 198.20.228.102

🇺🇸 184.168.147.110