JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.186.201

66.132.186.201 was found in our database!

This IP was reported 2,295 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	201.186.132.66.censys-scanner.com
Domain Name	censys.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.186.201

Whois 66.132.186.201

IP Abuse Reports for 66.132.186.201:

This IP address has been reported a total of 2,295 times from 469 distinct sources. 66.132.186.201 was first reported on March 22nd 2026, and the most recent report was 25 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 sandra361	2026-06-28 13:55:02 (25 minutes ago)	Port scan detected: 14 attempts across 1 ports (8085). \| Evidence: REAPER_TARPIT: IN=ens3 SRC=66.132 ... show more Port scan detected: 14 attempts across 1 ports (8085). \| Evidence: REAPER_TARPIT: IN=ens3 SRC=66.132.186.201 LEN=60 TOS=0x00 PREC=0x00 TTL=60 ID=6313 DF PROTO=TCP SPT=45732 DPT=8085 WINDOW=21900 RES=0x00 SYN URGP=0 show less	Port Scan
🇧🇷 diego	2026-06-28 12:40:20 (1 hour ago)	[probe-44-49] 2026-06-28 12:23:37, Client: 66.132.186.201, Protocol: 6, Unauthorized activity to HTT ... show more [probe-44-49] 2026-06-28 12:23:37, Client: 66.132.186.201, Protocol: 6, Unauthorized activity to HTTP: GET / show less	Web App Attack
Anonymous	2026-06-28 11:56:15 (2 hours ago)	66.132.186.201 - - [28/Jun/2026:11:56:14 +0000] "\x16\x03\x01" 400 432 "-" "-" ...	Bad Web Bot Web App Attack
🇬🇧 gbzret4d	2026-06-28 11:39:52 (2 hours ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 12000 [1] TCP	Port Scan
🇨🇦 Luhte	2026-06-28 10:03:50 (4 hours ago)	Unsolicited TCP connection from 66.132.186.201 to port 0 at 2026-06-28T10:03:50Z. Source IP complete ... show more Unsolicited TCP connection from 66.132.186.201 to port 0 at 2026-06-28T10:03:50Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking
🇸🇬 drewf.ink	2026-06-28 09:54:11 (4 hours ago)	[09:54] Port scanning. Port(s) scanned: TCP/993	Port Scan
🇫🇷 dusfor72	2026-06-28 08:31:20 (5 hours ago)	aggressive portscan ...	Port Scan
🇺🇸 kuj	2026-06-28 07:56:06 (6 hours ago)	2026-06-28T01:55:20.767020-06:00 derp derper[226735]: 2026/06/28 01:55:20 http: TLS handshake error ... show more 2026-06-28T01:55:20.767020-06:00 derp derper[226735]: 2026/06/28 01:55:20 http: TLS handshake error from 66.132.186.201:49832: acme/autocert: missing server name 2026-06-28T01:55:23.376117-06:00 derp derper[226735]: 2026/06/28 01:55:23 http: TLS handshake error from 66.132.186.201:49842: client sent an HTTP request to an HTTPS server 2026-06-28T01:56:06.251617-06:00 derp derper[226735]: 2026/06/28 01:56:06 http: TLS handshake error from 66.132.186.201:28290: acme/autocert: missing server name ... show less	Port Scan Brute-Force
🇫🇷 Thaliruth	2026-06-28 07:39:36 (6 hours ago)	Jun 28 09:39:35 151 dovecot: pop3-login: Login aborted: Connection closed (disconnected during TLS h ... show more Jun 28 09:39:35 151 dovecot: pop3-login: Login aborted: Connection closed (disconnected during TLS handshake) (tls_handshake_not_finished): user=<>, rip=66.132.186.201, lip=92.205.28.48, TLS handshaking: Connection closed, session=<gviWcEtVDFNChLrJ> ... show less	Hacking Brute-Force
🇩🇪 dispaisyenterprises	2026-06-28 06:21:48 (7 hours ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 3130 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 3130 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 brantknudson.org	2026-06-28 05:48:31 (8 hours ago)	Client sent invalid (non-HTTP) message to honeypot web server: 66.132.186.201 - - [28/Jun/2026:00:48 ... show more Client sent invalid (non-HTTP) message to honeypot web server: 66.132.186.201 - - [28/Jun/2026:00:48:30 -0500] "\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03\|_\x14\x87*\xAF\xE9C\xC5\x1Ai\xF0\x1DtJW\xA98Ux\xFA\xFD\xE1\x95\x1B\xD4.\xF8[u\xC7\xCA \xAE\x1F\x96?S\xEAFKC\xE5.P\xEF@\x1E\x19\xE8>>\xFF\x8D\x051" 400 166 "-" "-" "-" "" show less	Web App Attack Port Scan
🇺🇸 sandra361	2026-06-28 04:39:45 (9 hours ago)	Port scan detected: 28 attempts across 1 ports (51200). \| Evidence: REAPER_TARPIT: IN=enp1s0 SRC=66. ... show more Port scan detected: 28 attempts across 1 ports (51200). \| Evidence: REAPER_TARPIT: IN=enp1s0 SRC=66.132.186.201 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=29424 DF PROTO=TCP SPT=1674 DPT=51200 WINDOW=21900 RES=0x00 SYN URGP=0 show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-28 04:20:53 (9 hours ago)	Honeypot hit: Unauthorized traffic (5 bytes of payload); 8009 [4] TCP	Port Scan
🇬🇧 sandra361	2026-06-28 04:12:34 (10 hours ago)	Port scan detected: 9 attempts across 1 ports (10948). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=66 ... show more Port scan detected: 9 attempts across 1 ports (10948). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=66.132.186.201 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=24264 DF PROTO=TCP SPT=14176 DPT=10948 WINDOW=21900 RES=0x00 SYN URGP=0 show less	Port Scan
🇭🇰 PingMeMaybe	2026-06-28 03:58:27 (10 hours ago)	Blocked by UFW on hk [8443/tcp] Source port: 59396 TTL: 52 Packet length: 60 TOS: 0x00 This report ... show more Blocked by UFW on hk [8443/tcp] Source port: 59396 TTL: 52 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 2295 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 202.29.220.130

🇳🇱 193.176.31.223

🇦🇷 190.181.90.17

🇳🇱 185.223.235.42

🇧🇷 177.8.132.7

🇮🇳 106.51.38.156

🇱🇻 81.30.98.44

🇧🇬 79.124.56.246

🇧🇬 78.128.112.6

🇩🇪 69.5.169.157

🇨🇦 54.39.210.170

🇧🇷 45.160.230.186

🇺🇸 216.226.77.10

🇧🇷 205.164.239.213

🇳🇬 197.159.74.227

🇧🇷 189.51.33.245

🇩🇪 128.14.225.164

🇮🇳 106.51.92.114

🇭🇰 104.208.72.10

🇱🇻 62.60.234.140