JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.224.87

66.132.224.87 was found in our database!

This IP was reported 1,596 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	87.224.132.66.censys-scanner.com
Domain Name	censys.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.224.87

Whois 66.132.224.87

IP Abuse Reports for 66.132.224.87:

This IP address has been reported a total of 1,596 times from 413 distinct sources. 66.132.224.87 was first reported on March 22nd 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-26 10:35:04 (3 hours ago)	Honeypot hit: Empty payload (likely service probe); 6699 [1] TCP	Port Scan
🇯🇵 S.O.B.A. Dev.	2026-06-26 05:34:57 (8 hours ago)	Persistent port scanning or vulnerability scanning	Port Scan
🇩🇪 dispaisyenterprises	2026-06-26 03:21:53 (10 hours ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 2053 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 2053 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇪🇸 DXC-0	2026-06-26 03:01:16 (10 hours ago)	Multiple attacks on Honeypot servers	Web Spam Brute-Force Web App Attack Hacking
🇦🇺 LiftUp Hosting	2026-06-26 02:39:59 (11 hours ago)	Honeypot hit: Empty payload (likely service probe); 6039 [1] TCP	Port Scan
🇳🇱 donarev419	2026-06-26 01:48:42 (11 hours ago)	Connection to port 3260 with data transfer. Data preview:	Port Scan Hacking
🇫🇷 bellovacorp	2026-06-26 00:25:49 (13 hours ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇭🇰 sandra361	2026-06-26 00:22:22 (13 hours ago)	Port scan detected: 25 attempts across 1 ports (17777). \| Evidence: REAPER_TARPIT: IN=eth0 SRC=66.13 ... show more Port scan detected: 25 attempts across 1 ports (17777). \| Evidence: REAPER_TARPIT: IN=eth0 SRC=66.132.224.87 LEN=60 TOS=0x14 PREC=0x00 TTL=50 ID=42167 DF PROTO=TCP SPT=29866 DPT=17777 WINDOW=21900 RES=0x00 SYN URGP=0 show less	Port Scan
🇺🇸 MPL	2026-06-25 21:43:45 (15 hours ago)	tcp/51443 (6 or more attempts)	Port Scan
🇩🇪 dispaisyenterprises	2026-06-25 20:40:52 (17 hours ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 56462 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 56462 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 OptimusGO	2026-06-25 19:09:28 (18 hours ago)	Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Time ... show more Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Timestamp: 2026-06-25 20:09:28 UTC Log evidence: 06/25/2026-20:09:27.502148 [] [1:1000090:1] POLICY Unauthorized Management Port Access [] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 66.132.224.87:62814 -> 185.127.18.66:22 show less	Port Scan Brute-Force
🇬🇧 skocherhan	2026-06-25 18:42:23 (18 hours ago)	SSH probe cluster. Session hits: 1. Client ID: SSH-2.0-Go	Brute-Force SSH
Anonymous	2026-06-25 15:47:14 (21 hours ago)	$f2bV_matches	Brute-Force SSH
🇬🇧 sandra361	2026-06-25 13:40:03 (1 day ago)	Port scan detected: 23 attempts across 1 ports (60837). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=6 ... show more Port scan detected: 23 attempts across 1 ports (60837). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=66.132.224.87 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=59089 DF PROTO=TCP SPT=55130 DPT=60837 WINDOW=21900 RES=0x00 SYN URGP=0 show less	Port Scan
🇸🇬 drewf.ink	2026-06-25 09:09:06 (1 day ago)	[09:09] Port scanning. Port(s) scanned: TCP/3260	Port Scan

Showing 1 to 15 of 1596 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 91.92.40.4

🇳🇱 45.148.10.121

🇳🇱 37.74.44.129

🇷🇺 82.112.46.29

🇱🇹 62.60.130.219

🇰🇪 41.60.236.246

🇷🇴 2.57.121.25

🇺🇸 195.63.4.213

🇬🇧 194.50.235.148

🇷🇴 193.32.162.82

🇧🇷 179.125.169.27

🇭🇰 103.81.170.118

🇱🇻 81.30.98.44

🇬🇧 78.129.165.4

🇺🇸 18.119.209.50

🇨🇳 14.103.107.229

🇺🇸 153.75.246.180

🇨🇳 119.53.253.2

🇯🇵 111.96.117.44

🇭🇰 38.76.182.117