66.249.71.40 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
66.249.71.72	attackspambots	(mod_security) mod_security (id:210730) triggered by 66.249.71.72 (US/United States/crawl-66-249-71-72.googlebot.com): 5 in the last 3600 secs	2020-08-28 19:34:51
66.249.71.88	attack	[Wed Aug 26 10:51:02.074181 2020] [:error] [pid 30864:tid 139707023353600] [client 66.249.71.88:52018] [client 66.249.71.88] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-all-categories/3961-klimatologi/prakiraan-klimatologi/prakiraan-dasarian/prakiraan-dasarian-daerah-potensi-banjir/prakiraan-dasarian-daerah-potensi-banjir-di-provinsi-jawa-timur/prakiraan-dasarian-daerah-potensi-banjir-di-p ...	2020-08-26 18:12:04
66.249.71.94	attackbotsspam	[Thu Dec 26 21:53:15.711280 2019] [ssl:info] [pid 25774:tid 140406505846528] [client 66.249.71.94:46609] AH02033: No hostname was provided via SNI for a name based virtual host ...	2019-12-27 01:10:19
66.249.71.90	attackspambots	[Sun Dec 22 21:46:24.760805 2019] [ssl:info] [pid 17248:tid 140655330285312] [client 66.249.71.90:50813] AH02033: No hostname was provided via SNI for a name based virtual host ...	2019-12-23 04:50:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.249.71.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48083
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;66.249.71.40.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025061900 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 20 01:00:59 CST 2025
;; MSG SIZE  rcvd: 105

Host info

40.71.249.66.in-addr.arpa domain name pointer crawl-66-249-71-40.googlebot.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
40.71.249.66.in-addr.arpa	name = crawl-66-249-71-40.googlebot.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.125.26.101	attackspambots	Nov 12 16:23:05 minden010 sshd[25481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.26.101 Nov 12 16:23:07 minden010 sshd[25481]: Failed password for invalid user yenter from 113.125.26.101 port 36872 ssh2 Nov 12 16:32:47 minden010 sshd[3284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.26.101 ...	2019-11-13 00:38:07
42.234.212.7	attackspam	Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.	2019-11-13 01:11:54
185.209.0.18	attack	Nov 12 17:08:49 h2177944 kernel: \[6450467.777030\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.18 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=34557 PROTO=TCP SPT=56942 DPT=4318 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 17:09:43 h2177944 kernel: \[6450522.237824\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.18 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=6224 PROTO=TCP SPT=56942 DPT=4329 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 17:14:06 h2177944 kernel: \[6450784.504438\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.18 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=34008 PROTO=TCP SPT=56942 DPT=4335 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 17:32:05 h2177944 kernel: \[6451863.096439\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.18 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=45321 PROTO=TCP SPT=56942 DPT=4379 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 17:42:18 h2177944 kernel: \[6452476.894915\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.209.0.18 DST=85.214.117.9 LEN=4	2019-11-13 00:45:07
148.70.222.83	attackbots	Nov 12 16:39:35 eventyay sshd[31734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.222.83 Nov 12 16:39:38 eventyay sshd[31734]: Failed password for invalid user squanna from 148.70.222.83 port 43804 ssh2 Nov 12 16:45:05 eventyay sshd[31830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.222.83 ...	2019-11-13 00:32:34
218.92.0.163	attack	Nov 12 17:51:10 v22019058497090703 sshd[11002]: Failed password for root from 218.92.0.163 port 27716 ssh2 Nov 12 17:51:21 v22019058497090703 sshd[11002]: Failed password for root from 218.92.0.163 port 27716 ssh2 Nov 12 17:51:25 v22019058497090703 sshd[11002]: Failed password for root from 218.92.0.163 port 27716 ssh2 Nov 12 17:51:25 v22019058497090703 sshd[11002]: error: maximum authentication attempts exceeded for root from 218.92.0.163 port 27716 ssh2 [preauth] ...	2019-11-13 01:13:41
110.145.25.35	attack	SSH Brute-Force reported by Fail2Ban	2019-11-13 00:25:59
84.196.70.84	attackspambots	2019-11-12T14:39:38.206529abusebot-2.cloudsearch.cf sshd\[27822\]: Invalid user mysql from 84.196.70.84 port 60720	2019-11-13 00:57:19
111.93.52.182	attackspambots	Nov 12 17:48:55 cavern sshd[23219]: Failed password for root from 111.93.52.182 port 54188 ssh2	2019-11-13 01:02:58
37.49.231.158	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-13 00:28:00
191.242.113.196	attackspambots	Honeypot attack, port: 23, PTR: PTR record not found	2019-11-13 00:56:55
42.239.169.174	attackspam	Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.	2019-11-13 00:27:46
104.243.41.97	attackbotsspam	Nov 12 05:09:20 sachi sshd\[7337\]: Invalid user fruen from 104.243.41.97 Nov 12 05:09:20 sachi sshd\[7337\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.41.97 Nov 12 05:09:22 sachi sshd\[7337\]: Failed password for invalid user fruen from 104.243.41.97 port 35972 ssh2 Nov 12 05:12:38 sachi sshd\[7630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.41.97 user=root Nov 12 05:12:39 sachi sshd\[7630\]: Failed password for root from 104.243.41.97 port 42508 ssh2	2019-11-13 00:50:26
37.49.231.143	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-13 00:36:47
123.207.115.16	attackbots	123.207.115.16 - - [12/Nov/2019:11:39:56 -0300] "POST /Adminb23d2e4e/Login.php HTTP/1.1" 404 548 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0)" 123.207.115.16 - - [12/Nov/2019:11:39:57 -0300] "GET /l.php HTTP/1.1" 404 178 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0)" ...	2019-11-13 00:44:49
159.203.193.241	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-13 00:55:54

Recently Reported IPs

81.17.21.242	130.89.144.164	140.250.99.4	115.159.33.43
14.29.99.201	113.141.86.71	111.119.236.208	47.250.126.243
166.88.228.51	42.101.37.63	113.219.255.161	116.171.4.124
1.24.16.17	81.19.223.146	135.119.88.100	206.168.34.33
42.236.17.70	162.216.149.82	106.75.7.10	135.233.97.43