JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.195.97

66.132.195.97 was found in our database!

This IP was reported 1,503 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	97.195.132.66.censys-scanner.com
Domain Name	censys.io
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.195.97

Whois 66.132.195.97

IP Abuse Reports for 66.132.195.97:

This IP address has been reported a total of 1,503 times from 409 distinct sources. 66.132.195.97 was first reported on March 23rd 2026, and the most recent report was 9 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇰🇷 winter	2026-06-04 13:55:30 (9 minutes ago)	Connection attemp from 66.132.195.97 to port 22	Brute-Force SSH
🇨🇭 amaco	2026-06-04 12:45:43 (1 hour ago)	SSH brute-force attempt from 66.132.195.97.	Port Scan Brute-Force SSH
🇨🇦 aks4226	2026-06-04 12:33:06 (1 hour ago)	Brute force on SSH.	SSH Brute-Force
🇺🇸 sefinek.net	2026-06-04 12:32:23 (1 hour ago)	Blocked by UFW on NY01 [500/tcp] \| SPT: 12300 \| TTL: 53 \| LEN: 60 \| TOS: 0x08 • Reported by: github. ... show more Blocked by UFW on NY01 [500/tcp] \| SPT: 12300 \| TTL: 53 \| LEN: 60 \| TOS: 0x08 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇾 hbars.by	2026-06-04 12:10:11 (1 hour ago)	2026-06-04T15:10:10.964894+03:00 radionet dovecot: pop3-login: Disconnected: Connection closed: read ... show more 2026-06-04T15:10:10.964894+03:00 radionet dovecot: pop3-login: Disconnected: Connection closed: read(size=599) failed: Connection reset by peer (no auth attempts in 0 secs): user=<>, rip=66.132.195.97, lip=192.168.3.3, TLS handshaking: read(size=599) failed: Connection reset by peer, session=<a0QGbWxTQI1ChMNh> 2026-06-04T15:10:11.260037+03:00 radionet dovecot: pop3-login: Disconnected: Connection closed: read(size=599) failed: Connection reset by peer (no auth attempts in 0 secs): user=<>, rip=66.132.195.97, lip=192.168.3.3, TLS handshaking: read(size=599) failed: Connection reset by peer, session=<y8UKbWxTTI1ChMNh> show less	Brute-Force
Anonymous	2026-06-04 09:53:22 (4 hours ago)	Reported from Nginx log analysis 17. Log: 66.132.195.97 - - [04/Jun/2026:xx:xx:xx 0200] "GET / HTTP ... show more Reported from Nginx log analysis 17. Log: 66.132.195.97 - - [04/Jun/2026:xx:xx:xx 0200] "GET / HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; https://about.censys.io/)" "-" "US United States -" "AS398324" "Censys, Inc." show less	Port Scan Brute-Force SSH
🇫🇷 masterguru	2026-06-04 09:18:37 (4 hours ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 66.132.195.97 (US/United States/97.19 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 66.132.195.97 (US/United States/97.195.132.66.censys-scanner.com): 2 in the last 3600 secs (0-196) show less	Hacking
🇧🇪 sid3windr	2026-06-04 08:30:25 (5 hours ago)	SSH port scan (Tarpitted for 10s, wasted 0B)	Port Scan SSH
🇩🇪 firestorm	2026-06-04 06:58:38 (7 hours ago)	66.132.195.97 - - [04/Jun/2026:08:58:22 +0200] "PRI * HTTP/2.0" 400 150 "-" "-" 66.132.195.97 - - [0 ... show more 66.132.195.97 - - [04/Jun/2026:08:58:22 +0200] "PRI * HTTP/2.0" 400 150 "-" "-" 66.132.195.97 - - [04/Jun/2026:08:58:25 +0200] "\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03\xFE\x83\xFA\x90\xEB\xEF\xA3\xA7H\x00\x09\xBCa\xF8\xF3L@\x11\x09\xBBZ7\x02\x11\xEA{\x80\xD9\x83\x96d\xB7 a\xDD\xF6\xE9\x1B\xBD\xA8,\xB4\xC8\xAE\xBE4?AKF\x7F\x09\x0B\xCE\xBAe\xC8\xE7\xFE\x0Bmr\xCC\xAEv\x00&\xCC\xA8\xCC\xA9\xC0/\xC00\xC0+\xC0,\xC0\x13\xC0\x09\xC0\x14\xC0" 400 150 "-" "-" 66.132.195.97 - - [04/Jun/2026:08:58:37 +0200] "\x16\x03\x01\x00\xEE\x01\x00\x00\xEA\x03\x03\x89S\x99,\xF4T\xFB\xE6\xE3\xB2,&\xFC\xBF{\x88\xF4\x87\xAD^\xDE\xABN\xEF\x09a\xF6L\x9E\xC4G\x87 \x08\x97\x22(\xDC\xBF\x03:\xC2\x1E\xFD\xD5\xEB\x05\xA7T\x10\xBBj\xDE\xDE\xB9\xC9\xB7i" 400 150 "-" "-" ... show less	Brute-Force Web App Attack
🇦🇺 2000cn.com.au	2026-06-04 06:58:20 (7 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-bad-user-agent	Web App Attack Bad Web Bot
🇦🇹 Starburst SysOp Team	2026-06-04 06:45:46 (7 hours ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-vie6-1)	Hacking Bad Web Bot
🇹🇭 Sawasdee	2026-06-04 06:39:05 (7 hours ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇺🇸 thororen	2026-06-04 06:36:43 (7 hours ago)	Blocked by UFW [25/tcp] Source port: 5874 TTL: 56 Packet length: 60 TOS: 0x00 This report was gener ... show more Blocked by UFW [25/tcp] Source port: 5874 TTL: 56 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Email Spam
🇨🇳 pengpeng	2026-06-04 06:06:04 (7 hours ago)	monitor: on VM-0-7-ubuntu \| port: 2096 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter	Port Scan
🇰🇷 doll.gl	2026-06-04 05:50:33 (8 hours ago)	CrowdSec: Ip 66.132.195.97 performed 'crowdsecurity/http-bad-user-agent' (2 events over 5.530453699s ... show more CrowdSec: Ip 66.132.195.97 performed 'crowdsecurity/http-bad-user-agent' (2 events over 5.530453699s) at 2026-06-04 05:50:32.086845393 +0000 UTC (scenario: crowdsecurity/http-bad-user-agent) show less	Bad Web Bot

Showing 1 to 15 of 1503 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.32.209.245

🇭🇰 152.32.135.214

🇨🇳 121.229.156.102

🇷🇴 92.118.39.236

🇰🇷 61.84.92.186

🇺🇸 45.146.55.2

🇲🇲 45.125.4.76

🇬🇧 35.203.211.105

🇺🇸 23.44.170.39

🇺🇸 20.83.48.88

🇺🇸 20.29.126.217

🇮🇳 2401:4900:8825:30cf:488e:26e0:ff6:9f8a

🇰🇷 222.102.21.104

🇬🇧 185.38.148.2

🇳🇱 158.94.211.198

🇺🇸 134.209.120.216

🇺🇸 107.174.90.23

🇺🇸 88.216.73.18

🇩🇪 69.5.169.154

🇩🇪 69.5.169.85