JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.195.57

66.132.195.57 was found in our database!

This IP was reported 1,887 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	57.195.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.195.57

Whois 66.132.195.57

IP Abuse Reports for 66.132.195.57:

This IP address has been reported a total of 1,887 times from 415 distinct sources. 66.132.195.57 was first reported on March 22nd 2026, and the most recent report was 23 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇹 neilcaruana	2026-06-01 16:46:28 (2 days ago)	Sentinel detected an attack on port [80]	Hacking
🇵🇱 Kitki30.com	2026-06-01 13:57:45 (2 days ago)	Entered SSH Tarpit (endlessh). Log: 2026-06-01T13:57:44.704Z ACCEPT host=::ffff:66.132.195.57 port=6 ... show more Entered SSH Tarpit (endlessh). Log: 2026-06-01T13:57:44.704Z ACCEPT host=::ffff:66.132.195.57 port=61052 fd=5 n=3/4096 show less	Brute-Force SSH Port Scan
🇩🇪 zupan	2026-06-01 11:04:57 (2 days ago)	Blocked by UFW on vps [8322/tcp] \| SPT: 2690 \| TTL: 56 \| LEN: 60 \| TOS: 0x00 • Reported by: github.c ... show more Blocked by UFW on vps [8322/tcp] \| SPT: 2690 \| TTL: 56 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 dispaisyenterprises	2026-06-01 10:57:47 (2 days ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 7616 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 7616 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇫🇷 GoodOldTOS	2026-06-01 10:01:02 (2 days ago)	Connection to SSHTarpit	Hacking SSH
🇺🇸 MPL	2026-06-01 08:53:19 (2 days ago)	tcp/1910 (9 or more attempts)	Port Scan
🇦🇹 Pingger Shikkoken	2026-06-01 07:10:15 (2 days ago)	2026-06-01T07:10:15+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC ... show more 2026-06-01T07:10:15+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=66.132.195.57 DST=10.1.1.9 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=57188 DF PROTO=TCP SPT=50940 DPT=9000 WINDOW=21900 RES=0x00 SYN URGP=0 2026-06-01T07:10:16+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=66.132.195.57 DST=10.1.1.9 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=57189 DF PROTO=TCP SPT=50940 DPT=9000 WINDOW=21900 RES=0x00 SYN URGP=0 2026-06-01T07:10:18+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=66.132.195.57 DST=10.1.1.9 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=57190 DF PROTO=TCP SPT=50940 DPT=9000 WINDOW=21900 RES=0x00 SYN URGP=0 ... show less	Hacking Port Scan Bad Web Bot
🇨🇦 Tanados	2026-06-01 06:17:47 (2 days ago)	Blocked by UFW [3296/tcp] Source port: 19708 TTL: 52 Packet length: 60 TOS: 0x08 This report was ge ... show more Blocked by UFW [3296/tcp] Source port: 19708 TTL: 52 Packet length: 60 TOS: 0x08 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 donarev419	2026-06-01 06:13:18 (2 days ago)	Connection to port 443 with data transfer. Data preview:	Port Scan Hacking
🇷🇴 StarTech Team	2026-06-01 05:43:48 (2 days ago)	Web App Atack	Web App Attack
🇩🇪 NxtGenIT	2026-06-01 05:32:41 (2 days ago)	CiscoASA Honeypot hit, Payload: code 505,	Brute-Force
🇩🇪 eebh.hu	2026-06-01 05:06:25 (2 days ago)	Jun 1 07:06:15 mail postfix/smtpd[2604321]: improper command pipelining after CONNECT from 57.195.1 ... show more Jun 1 07:06:15 mail postfix/smtpd[2604321]: improper command pipelining after CONNECT from 57.195.132.66.censys-scanner.com[66.132.195.57]: \026\003\003\001\245\001\000\001\241\003\003\2627\362Pr\206\277\230:\364\232\304_\310)\277\363\255\353\000\347S\005\366\316_P\215B\314\340\371 \000S\233M3\236\375\337uDYT\tw\312rm%\341x\277\314\033Y\313n\033K\246\305\206\024\000\212\000\026\0003\000g\300\236\300\242\000\236\0009\000k\300\237\300\243\000\237 Jun 1 07:06:21 mail postfix/smtpd[2604321]: improper command pipelining after CONNECT from 57.195.132.66.censys-scanner.com[66.132.195.57]: \026\003\001\001\247\001\000\001\243\003\003\204\230\016\025\210\231m\360\233\034\367\177\036\305\272lTv\273E\031\233q\226\365\364\324\243\354\232\331\034 ^\367\n\035\357\243\3163\214\002*2\3553~\f$\377l\244\201\363\254\020 \222EX\3168\205\004\000\212\000\026\0003\000g\300\236\300\242\000\236\0009\000k\300\237\300\243\000\237 Jun 1 07:06:24 mail postfix/smtpd[2589797]: improper command pipelining after CO ... show less	Brute-Force
Anonymous	2026-06-01 03:54:12 (2 days ago)	Reported from Nginx log analysis 19. Log: 66.132.195.57 - - [01/Jun/2026:xx:xx:xx 0200] "GET / HTTP ... show more Reported from Nginx log analysis 19. Log: 66.132.195.57 - - [01/Jun/2026:xx:xx:xx 0200] "GET / HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; https://about.censys.io/)" "-" "US United States -" "AS398324" "Censys, Inc." show less	Port Scan Brute-Force SSH
🇩🇪 Justin F. \| AS204464	2026-06-01 03:34:32 (2 days ago)	Honeypot [nx-infrastructure]: Unauthorized traffic (243 bytes of payload); 25694 [2] TCP Reported by ... show more Honeypot [nx-infrastructure]: Unauthorized traffic (243 bytes of payload); 25694 [2] TCP Reported by: Justin F. show less	Port Scan
🇩🇪 eskilbrun	2026-06-01 02:37:44 (3 days ago)	2026-06-01T04:37:32.029811+02:00 linode1.eskil.net sshd[294995]: refused connect from 57.195.132.66. ... show more 2026-06-01T04:37:32.029811+02:00 linode1.eskil.net sshd[294995]: refused connect from 57.195.132.66.censys-scanner.com (66.132.195.57) 2026-06-01T04:37:40.250545+02:00 linode1.eskil.net sshd[294996]: refused connect from 57.195.132.66.censys-scanner.com (66.132.195.57) 2026-06-01T04:37:43.359437+02:00 linode1.eskil.net sshd[294997]: refused connect from 57.195.132.66.censys-scanner.com (66.132.195.57) ... show less	Brute-Force SSH

Showing 61 to 75 of 1887 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.202.118.38

🇺🇸 142.93.205.24

🇫🇷 80.124.54.14

🇬🇧 77.72.5.234

🇺🇸 66.228.34.203

🇩🇪 2a00:1450:4001:c00::121

🇨🇳 220.167.232.82

🇲🇽 209.178.128.32

🇩🇪 206.189.60.249

🇧🇷 205.210.31.237

🇧🇷 205.210.31.210

🇬🇧 193.163.125.48

🇩🇪 164.92.163.185

🇧🇷 147.93.37.13

🇮🇳 103.176.137.242

🇭🇰 103.149.26.43

🇮🇶 91.106.43.176

🇳🇱 89.21.67.181

🇺🇸 64.62.156.148

🇳🇱 45.148.10.21