JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.132.172.103

66.132.172.103 was found in our database!

This IP was reported 2,035 times. Confidence of Abuse is 100%: ?

100%

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	103.172.132.66.censys-scanner.com
Domain Name	censys.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.132.172.103

Whois 66.132.172.103

IP Abuse Reports for 66.132.172.103:

This IP address has been reported a total of 2,035 times from 444 distinct sources. 66.132.172.103 was first reported on March 19th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇬 Stoyko Stoykov	2026-06-12 20:52:47 (1 hour ago)	66.132.172.103 - - [12/Jun/2026:23:52:46 +0300] "GET / HTTP/1.1" 200 8322 "-" "Mozilla/5.0 (compatib ... show more 66.132.172.103 - - [12/Jun/2026:23:52:46 +0300] "GET / HTTP/1.1" 200 8322 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" ... show less	Hacking Web App Attack
🇩🇪 IP Analyzer	2026-06-12 19:30:32 (2 hours ago)	Unauthorized connection attempt from IP address 66.132.172.103 on Port 135	Port Scan
🇺🇸 Xarcotic	2026-06-12 17:40:11 (4 hours ago)	SSH login on honeypot.	Brute-Force SSH
🇧🇷 diego	2026-06-12 17:29:39 (4 hours ago)	[rede-arem1] 06/12/2026-14:29:39.518198, 66.132.172.103, Protocol: 6, ET DROP Dshield Block Listed S ... show more [rede-arem1] 06/12/2026-14:29:39.518198, 66.132.172.103, Protocol: 6, ET DROP Dshield Block Listed Source group 1 show less	Hacking
🇺🇸 cazae	2026-06-12 17:21:41 (4 hours ago)	Unauthorized attempt on debian [587/tcp] Source port: 49630 TTL: 52 Packet length: 60 TOS: 0x00 htt ... show more Unauthorized attempt on debian [587/tcp] Source port: 49630 TTL: 52 Packet length: 60 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Email Spam
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-12 17:07:23 (4 hours ago)	Honeypot hit: Unauthorized traffic (9 bytes of payload); 5938 [2], 52200 [1] TCP	Port Scan
🇯🇵 mkaraki	2026-06-12 16:16:13 (5 hours ago)	1781280972 # Service_probe # SIGNATURE_SEND # source_ip:66.132.172.103 # dst_port:1963 ...	Port Scan
🇫🇷 pm33	2026-06-12 14:43:19 (7 hours ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇩🇪 kingjan1999	2026-06-12 14:02:02 (7 hours ago)	Blocked by UFW [2223/tcp] \| SPT: 6622 \| TTL: 56 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefi ... show more Blocked by UFW [2223/tcp] \| SPT: 6622 \| TTL: 56 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇮🇱 spd.co.il	2026-06-12 10:01:30 (11 hours ago)	Web application attack detected	Hacking Web App Attack
Anonymous	2026-06-12 10:00:07 (11 hours ago)	Blocked by os-abuseipdb; 5 hits, proto=tcp, ports=58222	Port Scan Hacking
🇺🇸 SSP	2026-06-12 09:55:22 (12 hours ago)	Automatically generated from firewall_v2 logs on Server_ID: MIAPX1 Category: Brute Force Occurrenc ... show more Automatically generated from firewall_v2 logs on Server_ID: MIAPX1 Category: Brute Force Occurrences: 20 Unique Ports: 9 Destination Ports: 8009, 993, 13613, 8006, 40040, 31210, 8086, 139, 15112 First Seen: 2026-06-07 00:45 UTC Last Seen: 2026-06-12 09:55 UTC show less	Brute-Force
🇸🇪 NordhTech	2026-06-12 09:45:06 (12 hours ago)	More than 3 malicious connection attempts, trying port(s) 500/tcp, then blocked from services ...	Port Scan Hacking
🇺🇸 thororen	2026-06-12 08:33:23 (13 hours ago)	Blocked by UFW [993/tcp] Source port: 43352 TTL: 57 Packet length: 60 TOS: 0x00 This report was gen ... show more Blocked by UFW [993/tcp] Source port: 43352 TTL: 57 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 Soncraft	2026-06-12 07:49:54 (14 hours ago)	Blocked by UFW on Jellyfin [7070/tcp] Source port: 48594 TTL: 48 Packet length: 60 TOS: 0x08 This r ... show more Blocked by UFW on Jellyfin [7070/tcp] Source port: 48594 TTL: 48 Packet length: 60 TOS: 0x08 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 2035 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇶 185.158.23.150

🇺🇸 173.244.60.155

🇺🇸 147.185.132.221

🇺🇸 147.185.132.73

🇺🇸 147.185.132.57

🇺🇸 129.121.85.48

🇿🇦 105.184.188.77

🇩🇪 195.230.103.249

🇰🇷 182.210.76.170

🇸🇬 165.154.200.214

🇺🇸 165.154.135.161

🇨🇳 118.113.253.209

🇨🇳 115.190.52.176

🇨🇳 101.126.130.208

🇫🇷 93.114.73.195

🇬🇧 35.203.210.37

🇨🇳 27.24.141.122

🇮🇳 203.100.66.90

🇩🇪 193.124.20.232

🇲🇽 187.212.10.12