66.249.73.114 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
66.249.73.156	attack	Automatic report - Banned IP Access	2020-09-14 22:41:39
66.249.73.156	attackspambots	Automatic report - Banned IP Access	2020-09-14 14:33:36
66.249.73.156	attack	Automatic report - Banned IP Access	2020-09-14 06:30:36
66.249.73.150	attackspam	Automatic report - Banned IP Access	2020-08-05 19:08:52
66.249.73.152	attackbotsspam	Automatic report - Banned IP Access	2020-08-05 19:08:20
66.249.73.141	attack	Automatic report - Banned IP Access	2020-07-29 20:43:41
66.249.73.173	attack	Malicious brute force vulnerability hacking attacks	2020-07-22 12:37:24
66.249.73.175	attackbotsspam	Malicious brute force vulnerability hacking attacks	2020-07-22 12:36:06
66.249.73.133	attack	Automatic report - Banned IP Access	2020-07-17 13:11:26
66.249.73.79	attackspam	port scan and connect, tcp 443 (https)	2020-06-16 13:28:53
66.249.73.134	attackspam	Automatic report - Banned IP Access	2020-06-15 06:42:07
66.249.73.166	attackspam	[Thu Jun 11 10:53:54.610222 2020] [:error] [pid 1504:tid 140208259458816] [client 66.249.73.166:57222] [client 66.249.73.166] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/agroklimatologi/kalender-tanam/3766-kalender-tanam-katam-terpadu-pulau-sulawesi/kalender-tanam-katam-terpadu-provinsi-sulawesi-selatan/kalender-tanam-katam-terpadu-kabupaten-bone-provinsi-sulawesi-selatan/kalender-tanam-katam-terp ...	2020-06-11 16:06:28
66.249.73.134	attackspam	Automatic report - Banned IP Access	2020-06-09 00:55:51
66.249.73.228	attackbotsspam	Forbidden directory scan :: 2020/06/04 03:47:03 [error] 1030#1030: *1032915 access forbidden by rule, client: 66.249.73.228, server: [censored_1], request: "GET /knowledge-base/website-tips/auto... HTTP/1.1", host: "www.[censored_1]"	2020-06-04 19:25:02
66.249.73.70	attack	[Sat May 09 05:03:12.066788 2020] [:error] [pid 17928:tid 140037002565376] [client 66.249.73.70:43923] [client 66.249.73.70] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/agroklimatologi/kalender-tanam/1194-kalender-tanam-katam-terpadu-pulau-jawa/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu-kota-malang/kalender-tanam-katam-terpadu-kecamatan-kedungkandang-kota-malang" ...	2020-05-09 07:41:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.249.73.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39551
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;66.249.73.114.			IN	A

;; AUTHORITY SECTION:
.			592	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 20:38:42 CST 2022
;; MSG SIZE  rcvd: 106

Host info

114.73.249.66.in-addr.arpa domain name pointer crawl-66-249-73-114.googlebot.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
114.73.249.66.in-addr.arpa	name = crawl-66-249-73-114.googlebot.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
96.83.189.229	attackspam	Aug 30 17:56:35 root sshd[27249]: Invalid user 123456 from 96.83.189.229 ...	2020-08-31 03:32:46
1.0.215.59	attackbots	Aug 30 19:21:31 kh-dev-server sshd[19442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.0.215.59 ...	2020-08-31 03:33:15
217.45.174.161	attackspam	1598789472 - 08/30/2020 14:11:12 Host: 217.45.174.161/217.45.174.161 Port: 445 TCP Blocked	2020-08-31 03:33:29
124.251.110.164	attackspambots	2020-08-30T15:58:51.033382ks3355764 sshd[23888]: Invalid user liz from 124.251.110.164 port 56244 2020-08-30T15:58:53.338342ks3355764 sshd[23888]: Failed password for invalid user liz from 124.251.110.164 port 56244 ssh2 ...	2020-08-31 03:29:12
110.49.70.241	attackbotsspam	Aug 30 19:58:47 icinga sshd[26426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.70.241 Aug 30 19:58:49 icinga sshd[26426]: Failed password for invalid user dal from 110.49.70.241 port 52493 ssh2 Aug 30 20:48:05 icinga sshd[39073]: Failed password for root from 110.49.70.241 port 15525 ssh2 ...	2020-08-31 03:03:36
107.179.117.186	attack	Email rejected due to spam filtering	2020-08-31 03:18:29
184.22.187.82	attackbotsspam	Aug 30 14:04:29 hidden sshd[11420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.22.187.82 Aug 30 14:04:31 hidden sshd[11420]: Failed password for invalid user oracle from 184.22.187.82 port 34425 ssh2 Aug 30 14:11:09 hidden sshd[12386]: Invalid user cac from 184.22.187.82 port 58709	2020-08-31 03:36:09
208.180.16.38	attack	Aug 30 14:11:18 h2829583 sshd[23141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.180.16.38	2020-08-31 03:29:29
198.23.251.238	attack	Aug 30 12:11:19 *** sshd[15636]: User root from 198.23.251.238 not allowed because not listed in AllowUsers	2020-08-31 03:26:37
51.77.212.235	attackbots	Aug 30 14:02:17 ns382633 sshd\[11281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.212.235 user=root Aug 30 14:02:19 ns382633 sshd\[11281\]: Failed password for root from 51.77.212.235 port 43540 ssh2 Aug 30 14:11:24 ns382633 sshd\[13675\]: Invalid user scaner from 51.77.212.235 port 48058 Aug 30 14:11:24 ns382633 sshd\[13675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.212.235 Aug 30 14:11:26 ns382633 sshd\[13675\]: Failed password for invalid user scaner from 51.77.212.235 port 48058 ssh2	2020-08-31 03:21:53
159.65.162.189	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-30T18:38:34Z and 2020-08-30T18:46:55Z	2020-08-31 03:21:11
111.229.174.65	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-30T16:32:16Z and 2020-08-30T16:37:18Z	2020-08-31 03:03:11
156.219.26.216	attackbots	1598789490 - 08/30/2020 14:11:30 Host: 156.219.26.216/156.219.26.216 Port: 445 TCP Blocked	2020-08-31 03:20:06
96.92.139.225	attackspambots	2020-08-30T12:11:31.064Z Portscan drop, PROTO=TCP SPT=8767 DPT=23 2020-08-30T12:11:30.108Z Portscan drop, PROTO=TCP SPT=8767 DPT=23	2020-08-31 03:20:21
140.143.3.2	attack	Aug 30 09:11:33 firewall sshd[15650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.3.2 Aug 30 09:11:33 firewall sshd[15650]: Invalid user joser from 140.143.3.2 Aug 30 09:11:35 firewall sshd[15650]: Failed password for invalid user joser from 140.143.3.2 port 39884 ssh2 ...	2020-08-31 03:14:15

Recently Reported IPs

113.56.149.96	121.40.91.169	103.60.24.169	200.12.31.216
116.98.157.91	178.244.212.222	51.211.172.195	186.37.205.231
124.41.213.201	45.133.172.12	200.38.238.108	175.107.10.26
176.8.209.39	188.208.151.199	112.164.215.98	42.224.240.116
85.9.95.138	103.141.138.118	217.64.167.65	190.112.64.77