13.66.0.58 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jul 18 06:02:07 server sshd[18590]: Failed password for invalid user admin from 13.66.0.58 port 35092 ssh2 Jul 18 06:39:59 server sshd[27458]: Failed password for invalid user admin from 13.66.0.58 port 11489 ssh2 Jul 18 06:46:30 server sshd[2135]: Failed password for invalid user admin from 13.66.0.58 port 20473 ssh2	2020-07-18 13:02:55
attackbotsspam	Jul 14 13:25:14 minden010 sshd[7352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58 Jul 14 13:25:14 minden010 sshd[7357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58 Jul 14 13:25:14 minden010 sshd[7355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58 Jul 14 13:25:14 minden010 sshd[7358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58 Jul 14 13:25:14 minden010 sshd[7351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58 Jul 14 13:25:14 minden010 sshd[7353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58 Jul 14 13:25:14 minden010 sshd[7356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58 ........ ----------------------------------------------- https:	2020-07-15 12:36:21

Type

Details

Datetime

attack

Jul 18 06:02:07 server sshd[18590]: Failed password for invalid user admin from 13.66.0.58 port 35092 ssh2
Jul 18 06:39:59 server sshd[27458]: Failed password for invalid user admin from 13.66.0.58 port 11489 ssh2
Jul 18 06:46:30 server sshd[2135]: Failed password for invalid user admin from 13.66.0.58 port 20473 ssh2

2020-07-18 13:02:55

attackbotsspam

Jul 14 13:25:14 minden010 sshd[7352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58
Jul 14 13:25:14 minden010 sshd[7357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58
Jul 14 13:25:14 minden010 sshd[7355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58
Jul 14 13:25:14 minden010 sshd[7358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58
Jul 14 13:25:14 minden010 sshd[7351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58
Jul 14 13:25:14 minden010 sshd[7353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58
Jul 14 13:25:14 minden010 sshd[7356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.66.0.58


........
-----------------------------------------------
https:

2020-07-15 12:36:21

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.66.0.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.66.0.58.			IN	A

;; AUTHORITY SECTION:
.			356	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071402 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 15 12:36:18 CST 2020
;; MSG SIZE  rcvd: 114

Host info

Host 58.0.66.13.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 58.0.66.13.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
115.249.205.29	attackspam	Jan 1 07:08:54 vpn01 sshd[23247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.249.205.29 Jan 1 07:08:56 vpn01 sshd[23247]: Failed password for invalid user chiquia from 115.249.205.29 port 54335 ssh2 ...	2020-01-01 14:14:03
222.186.173.226	attackspam	SSH bruteforce (Triggered fail2ban)	2020-01-01 13:56:37
172.105.25.220	attack	scan z	2020-01-01 14:21:29
222.186.175.155	attackbots	Jan 1 11:04:07 gw1 sshd[20599]: Failed password for root from 222.186.175.155 port 62550 ssh2 Jan 1 11:04:20 gw1 sshd[20599]: error: maximum authentication attempts exceeded for root from 222.186.175.155 port 62550 ssh2 [preauth] ...	2020-01-01 14:09:01
104.236.38.105	attackspam	Jan 1 05:57:14 ArkNodeAT sshd\[12174\]: Invalid user applmgr from 104.236.38.105 Jan 1 05:57:14 ArkNodeAT sshd\[12174\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.38.105 Jan 1 05:57:16 ArkNodeAT sshd\[12174\]: Failed password for invalid user applmgr from 104.236.38.105 port 58080 ssh2	2020-01-01 13:50:16
77.247.108.238	attack	SIPVicious Scanner Detection	2020-01-01 14:15:06
58.220.25.2	attackspambots	Unauthorized connection attempt detected from IP address 58.220.25.2 to port 1433	2020-01-01 14:11:41
122.144.131.93	attackspambots	Jan 1 05:56:15 vpn01 sshd[21927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.144.131.93 Jan 1 05:56:17 vpn01 sshd[21927]: Failed password for invalid user test from 122.144.131.93 port 39747 ssh2 ...	2020-01-01 14:18:23
112.85.42.176	attack	Jan 1 00:57:19 plusreed sshd[22279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root Jan 1 00:57:21 plusreed sshd[22279]: Failed password for root from 112.85.42.176 port 8790 ssh2 ...	2020-01-01 13:58:20
54.39.138.246	attackbots	$f2bV_matches	2020-01-01 13:55:38
222.186.175.217	attackspambots	2020-01-01T06:11:11.002115hub.schaetter.us sshd\[317\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-01-01T06:11:12.928064hub.schaetter.us sshd\[317\]: Failed password for root from 222.186.175.217 port 59084 ssh2 2020-01-01T06:11:15.958245hub.schaetter.us sshd\[317\]: Failed password for root from 222.186.175.217 port 59084 ssh2 2020-01-01T06:11:19.394884hub.schaetter.us sshd\[317\]: Failed password for root from 222.186.175.217 port 59084 ssh2 2020-01-01T06:11:21.911295hub.schaetter.us sshd\[317\]: Failed password for root from 222.186.175.217 port 59084 ssh2 ...	2020-01-01 14:12:24
113.172.33.194	attack	smtp probe/invalid login attempt	2020-01-01 14:02:24
117.34.72.236	attackspambots	117.34.72.236 - - [01/Jan/2020:05:57:03 +0100] "GET /test.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0" 117.34.72.236 - - [01/Jan/2020:05:57:05 +0100] "GET /webdav/ HTTP/1.1" 301 162 "-" "Mozilla/5.0" 117.34.72.236 - - [01/Jan/2020:05:57:05 +0100] "GET /help.php HTTP/1.1" 301 162 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)" ...	2020-01-01 13:56:00
72.210.252.149	attack	(imapd) Failed IMAP login from 72.210.252.149 (US/United States/-): 1 in the last 3600 secs	2020-01-01 13:55:21
222.186.180.147	attackspam	Jan 1 07:07:30 vps691689 sshd[3329]: Failed password for root from 222.186.180.147 port 22306 ssh2 Jan 1 07:07:33 vps691689 sshd[3329]: Failed password for root from 222.186.180.147 port 22306 ssh2 Jan 1 07:07:37 vps691689 sshd[3329]: Failed password for root from 222.186.180.147 port 22306 ssh2 ...	2020-01-01 14:21:02

Recently Reported IPs

211.123.216.97	59.183.152.250	185.8.19.14	108.123.216.69
32.133.173.137	36.154.122.164	179.12.229.82	141.217.51.42
57.176.145.96	141.32.37.105	23.40.188.202	43.170.226.208
156.235.120.43	170.202.6.114	85.24.109.14	0.254.135.19
6.63.21.94	97.25.130.235	204.3.130.238	132.105.69.113