JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.195.48

66.132.195.48 was found in our database!

This IP was reported 1,860 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	48.195.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.195.48

Whois 66.132.195.48

IP Abuse Reports for 66.132.195.48:

This IP address has been reported a total of 1,860 times from 404 distinct sources. 66.132.195.48 was first reported on March 23rd 2026, and the most recent report was 30 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 dispaisyenterprises	2026-06-02 15:57:44 (1 day ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 47001 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 47001 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 heyzg	2026-06-02 14:00:04 (1 day ago)	API honeypot \| LLM Recon (Ollama) \| 6 HTTP, 1.3m \| tactics: outbound scan \| Ollama: /api/version,/ap ... show more API honeypot \| LLM Recon (Ollama) \| 6 HTTP, 1.3m \| tactics: outbound scan \| Ollama: /api/version,/api/tags,/api/ps show less	Hacking Web App Attack
🇩🇪 ITSNF	2026-06-02 13:20:03 (1 day ago)	Blocked by os-abuseipdb; 10 hits, proto=tcp, ports=5006	Port Scan Hacking
🇬🇧 gbzret4d	2026-06-02 11:39:59 (1 day ago)	Honeypot [uk-production01]: Unauthorized traffic (10 bytes of payload); 20546 [2] TCP	Port Scan
🇺🇸 MPL	2026-06-02 09:27:23 (1 day ago)	tcp ports: 7681,139 (36 or more attempts)	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-02 08:25:09 (1 day ago)	Honeypot hit: Empty payload (likely service probe); 58000 [1] TCP	Port Scan
🇫🇷 centurion	2026-06-02 08:14:34 (1 day ago)	Blocked by UFW on dc00 [42020/tcp] Source port: 44770 TTL: 52 Packet length: 60 TOS: 0x00 This repo ... show more Blocked by UFW on dc00 [42020/tcp] Source port: 44770 TTL: 52 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 Little Iguana	2026-06-02 07:36:57 (1 day ago)	trying to access non-authorized port	Port Scan
Anonymous	2026-06-02 07:30:12 (1 day ago)	Triggered: repeated knocking on closed ports.	Port Scan
🇦🇺 LiftUp Hosting	2026-06-02 07:10:00 (1 day ago)	Honeypot hit: Empty payload (likely service probe); 55663 [1] TCP	Port Scan
Anonymous	2026-06-02 03:38:40 (1 day ago)	Malicious activity detected	Port Scan Brute-Force Hacking
🇧🇪 sid3windr	2026-06-02 02:32:47 (1 day ago)	SSH port scan (Tarpitted for 10s, wasted 0B)	Port Scan SSH
🇩🇰 swrlly	2026-06-02 01:37:31 (1 day ago)	2 unauthorized webserver connections (30d)	Web App Attack
🇺🇸 donarev419	2026-06-02 01:01:14 (2 days ago)	Port scan detected on port 12774 (connection without data transfer)	Port Scan
🇺🇸 MPL	2026-06-02 00:58:54 (2 days ago)	tcp/51443 (4 or more attempts)	Port Scan

Showing 31 to 45 of 1860 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2001:470:1:332::60

🇬🇧 198.244.240.159

🇹🇼 198.235.24.76

🇳🇮 190.212.210.88

🇨🇳 182.138.158.144

🇵🇰 175.107.201.149

🇺🇸 173.255.242.196

🇨🇳 118.145.238.115

🇨🇳 116.204.78.216

🇨🇳 116.178.128.152

🇨🇳 115.151.47.26

🇻🇳 103.72.71.43

🇷🇴 80.94.92.184

🇧🇬 79.124.40.110

🇸🇬 66.118.234.246

🇺🇸 65.49.20.115

🇺🇸 45.8.19.234

🇸🇬 43.133.61.254

🇬🇧 35.203.211.37

🇳🇱 5.83.143.80