JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.186.187

66.132.186.187 was found in our database!

This IP was reported 1,757 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	187.186.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.186.187

Whois 66.132.186.187

IP Abuse Reports for 66.132.186.187:

This IP address has been reported a total of 1,757 times from 400 distinct sources. 66.132.186.187 was first reported on March 22nd 2026, and the most recent report was 36 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 Luhte	2026-06-04 18:13:15 (36 minutes ago)	Unsolicited TCP connection from 66.132.186.187 to port 0 at 2026-06-04T18:13:15Z. Source IP complete ... show more Unsolicited TCP connection from 66.132.186.187 to port 0 at 2026-06-04T18:13:15Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking
🇵🇱 Wepted	2026-06-04 16:39:23 (2 hours ago)	Port scan detected by honeypot	Port Scan Hacking
🇯🇵 mkaraki	2026-06-04 14:52:01 (3 hours ago)	1780584720 # Service_probe # SIGNATURE_SEND # source_ip:66.132.186.187 # dst_port:389 ...	Port Scan
🇬🇧 gbzret4d	2026-06-04 10:04:14 (8 hours ago)	Honeypot [uk-production01]: Unauthorized traffic (56 bytes of payload); 18245 [2] TCP	Port Scan
🇸🇬 drewf.ink	2026-06-04 10:04:04 (8 hours ago)	[10:04] Port scanning. Port(s) scanned: TCP/8081	Port Scan
🇩🇰 swrlly	2026-06-04 09:49:41 (8 hours ago)	2 unauthorized webserver connections (30d)	Web App Attack
🇺🇸 shabi	2026-06-04 07:39:34 (11 hours ago)	UFW Blocked [2234/TCP] Source: 66.132.186.187:47662 TTL: 56 Lenth: 60 TOS: 0x00	Port Scan
🇺🇸 donarev419	2026-06-04 07:01:20 (11 hours ago)	Connection to port 993 with data transfer. Data preview:	Port Scan Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-04 05:46:30 (13 hours ago)	Honeypot hit: Unauthorized traffic (56 bytes of payload); 18244 [2] TCP	Port Scan
🇲🇹 neilcaruana	2026-06-04 05:40:21 (13 hours ago)	Sentinel detected an attack on port [5055]	Hacking
🇯🇵 S.O.B.A. Dev.	2026-06-04 04:11:09 (14 hours ago)	Persistent port scanning or vulnerability scanning	Port Scan
🇺🇸 knock	2026-06-04 02:45:49 (16 hours ago)	Knock-Knock honeypot brute-force: proto8 (2 total hits)	Brute-Force
Anonymous	2026-06-04 01:06:14 (17 hours ago)	Firewall - Suricata IDS [Priority 2 - High]: ET DROP Dshield Block Listed Source group 1	Port Scan Hacking
🇳🇱 StopAbuse	2026-06-03 22:17:20 (20 hours ago)	tcp/65001 tcp/65002	Port Scan
🇺🇸 PP-VTNK	2026-06-03 21:31:40 (21 hours ago)	2026-06-04T00:31:39.205876+03:00 vatnik sshd[57772]: Connection closed by 66.132.186.187 port 26356 ... show more 2026-06-04T00:31:39.205876+03:00 vatnik sshd[57772]: Connection closed by 66.132.186.187 port 26356 [preauth] ... show less	Hacking Brute-Force SSH

Showing 1 to 15 of 1757 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 189.89.216.207

🇺🇸 158.94.187.206

🇫🇷 51.68.107.146

🇪🇸 196.196.150.124

🇵🇱 185.241.208.20

🇺🇸 136.107.36.146

🇫🇮 135.181.47.238

🇺🇸 164.92.78.51

🇩🇪 45.135.193.193

🇺🇸 40.83.182.122

🇨🇦 34.186.210.16

🇮🇳 34.47.150.230

🇬🇧 2a06:4880:2000::41

🇳🇮 186.77.197.29

🇺🇸 147.185.132.126

🇮🇳 139.59.66.180

🇰🇭 136.228.136.22

🇩🇪 130.12.181.106

🇧🇷 104.28.162.1

🇺🇸 65.49.139.223