106.13.67.90 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Baidu Netcom Science and Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Feb 16 19:57:46 sshd\[27244\]: Invalid user webuser from 106.13.67.90Feb 16 19:57:49 sshd\[27244\]: Failed password for invalid user webuser from 106.13.67.90 port 58018 ssh2 ...	2020-02-17 05:43:39
attackbots	Feb 9 05:49:27 srv-ubuntu-dev3 sshd[56504]: Invalid user qfm from 106.13.67.90 Feb 9 05:49:27 srv-ubuntu-dev3 sshd[56504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.90 Feb 9 05:49:27 srv-ubuntu-dev3 sshd[56504]: Invalid user qfm from 106.13.67.90 Feb 9 05:49:29 srv-ubuntu-dev3 sshd[56504]: Failed password for invalid user qfm from 106.13.67.90 port 41546 ssh2 Feb 9 05:53:01 srv-ubuntu-dev3 sshd[56813]: Invalid user omj from 106.13.67.90 Feb 9 05:53:01 srv-ubuntu-dev3 sshd[56813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.90 Feb 9 05:53:01 srv-ubuntu-dev3 sshd[56813]: Invalid user omj from 106.13.67.90 Feb 9 05:53:04 srv-ubuntu-dev3 sshd[56813]: Failed password for invalid user omj from 106.13.67.90 port 38554 ssh2 Feb 9 05:56:31 srv-ubuntu-dev3 sshd[57113]: Invalid user mqm from 106.13.67.90 ...	2020-02-09 14:46:36
attackspambots	Jan 26 19:39:25 eddieflores sshd\[13038\]: Invalid user rachel from 106.13.67.90 Jan 26 19:39:25 eddieflores sshd\[13038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.90 Jan 26 19:39:27 eddieflores sshd\[13038\]: Failed password for invalid user rachel from 106.13.67.90 port 48950 ssh2 Jan 26 19:43:16 eddieflores sshd\[13788\]: Invalid user alex from 106.13.67.90 Jan 26 19:43:16 eddieflores sshd\[13788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.90	2020-01-27 13:58:11
attackbotsspam	Invalid user jperez from 106.13.67.90 port 35764	2020-01-21 07:42:39
attackspam	Unauthorized connection attempt detected from IP address 106.13.67.90 to port 2220 [J]	2020-01-19 00:37:02
attackspambots	ssh failed login	2020-01-18 03:46:30
attackbots	Unauthorized connection attempt detected from IP address 106.13.67.90 to port 2220 [J]	2020-01-17 02:55:59
attack	$f2bV_matches	2020-01-06 22:19:19
attackspam	Dec 19 17:16:08 localhost sshd\[30071\]: Invalid user leesa from 106.13.67.90 port 39362 Dec 19 17:16:08 localhost sshd\[30071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.90 Dec 19 17:16:10 localhost sshd\[30071\]: Failed password for invalid user leesa from 106.13.67.90 port 39362 ssh2	2019-12-20 00:20:24
attack	Dec 16 21:03:19 firewall sshd[19372]: Invalid user pano from 106.13.67.90 Dec 16 21:03:21 firewall sshd[19372]: Failed password for invalid user pano from 106.13.67.90 port 59788 ssh2 Dec 16 21:08:55 firewall sshd[19549]: Invalid user arnold from 106.13.67.90 ...	2019-12-17 08:22:52
attackbots	Dec 15 07:46:37 lnxmail61 sshd[22859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.90 Dec 15 07:46:37 lnxmail61 sshd[22859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.90	2019-12-15 14:55:48
attack	2019-12-07 03:55:47,089 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 106.13.67.90 2019-12-07 04:28:32,127 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 106.13.67.90 2019-12-07 05:03:54,279 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 106.13.67.90 2019-12-07 05:44:38,318 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 106.13.67.90 2019-12-07 06:20:33,583 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 106.13.67.90 ...	2019-12-09 04:18:58
attackbotsspam	DATE:2019-12-04 07:29:53,IP:106.13.67.90,MATCHES:11,PORT:ssh	2019-12-04 15:20:05
attack	Brute-force attempt banned	2019-11-28 18:24:11
attackspam	Nov 24 11:56:29 localhost sshd\[809\]: Invalid user p2p from 106.13.67.90 port 60952 Nov 24 11:56:29 localhost sshd\[809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.90 Nov 24 11:56:31 localhost sshd\[809\]: Failed password for invalid user p2p from 106.13.67.90 port 60952 ssh2	2019-11-24 19:54:42
attack	Nov 23 02:53:38 Tower sshd[9388]: Connection from 106.13.67.90 port 36864 on 192.168.10.220 port 22 Nov 23 02:53:40 Tower sshd[9388]: Failed password for root from 106.13.67.90 port 36864 ssh2 Nov 23 02:53:40 Tower sshd[9388]: Received disconnect from 106.13.67.90 port 36864:11: Bye Bye [preauth] Nov 23 02:53:40 Tower sshd[9388]: Disconnected from authenticating user root 106.13.67.90 port 36864 [preauth]	2019-11-23 19:13:20
attack	2019-10-30T09:15:52.225597abusebot-6.cloudsearch.cf sshd\[29454\]: Invalid user 123456 from 106.13.67.90 port 48364	2019-10-30 17:41:12

Comments on same subnet:

IP	Type	Details	Datetime
106.13.67.1	attackbots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-08-03 02:33:19
106.13.67.187	attackspam	SSH login attempts brute force.	2020-03-23 18:33:14
106.13.67.22	attackbots	SSH Invalid Login	2020-03-18 09:25:17
106.13.67.22	attack	Mar 11 05:19:20 ns382633 sshd\[27212\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.22 user=root Mar 11 05:19:22 ns382633 sshd\[27212\]: Failed password for root from 106.13.67.22 port 60024 ssh2 Mar 11 05:23:00 ns382633 sshd\[27941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.22 user=root Mar 11 05:23:02 ns382633 sshd\[27941\]: Failed password for root from 106.13.67.22 port 42560 ssh2 Mar 11 05:25:15 ns382633 sshd\[28615\]: Invalid user ftptest from 106.13.67.22 port 41224 Mar 11 05:25:15 ns382633 sshd\[28615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.22	2020-03-11 12:40:24
106.13.67.22	attack	Mar 8 07:58:55 jane sshd[16951]: Failed password for root from 106.13.67.22 port 46346 ssh2 ...	2020-03-08 16:30:44
106.13.67.187	attackspambots	Mar 4 02:20:57 silence02 sshd[22790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.187 Mar 4 02:20:59 silence02 sshd[22790]: Failed password for invalid user zhucm from 106.13.67.187 port 59786 ssh2 Mar 4 02:30:35 silence02 sshd[23555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.187	2020-03-04 09:44:55
106.13.67.22	attackbots	20 attempts against mh-ssh on cloud	2020-03-03 20:17:29
106.13.67.22	attack	Feb 9 15:39:38 hpm sshd\[14149\]: Invalid user qcf from 106.13.67.22 Feb 9 15:39:38 hpm sshd\[14149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.22 Feb 9 15:39:40 hpm sshd\[14149\]: Failed password for invalid user qcf from 106.13.67.22 port 46542 ssh2 Feb 9 15:43:02 hpm sshd\[14561\]: Invalid user ywr from 106.13.67.22 Feb 9 15:43:02 hpm sshd\[14561\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.22	2020-02-10 09:46:41
106.13.67.127	attackspambots	Invalid user rdc from 106.13.67.127 port 55904	2020-02-02 07:23:51
106.13.67.22	attack	"SSH brute force auth login attempt."	2020-01-23 18:28:27
106.13.67.22	attackbotsspam	Unauthorized connection attempt detected from IP address 106.13.67.22 to port 2220 [J]	2020-01-18 23:42:07
106.13.67.22	attackspam	Unauthorized connection attempt detected from IP address 106.13.67.22 to port 2220 [J]	2020-01-18 03:06:19
106.13.67.54	attackbots	4x Failed Password	2020-01-13 14:17:43
106.13.67.127	attack	Jan 11 23:10:49 srv206 sshd[11905]: Invalid user vnc from 106.13.67.127 Jan 11 23:10:49 srv206 sshd[11905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.127 Jan 11 23:10:49 srv206 sshd[11905]: Invalid user vnc from 106.13.67.127 Jan 11 23:10:51 srv206 sshd[11905]: Failed password for invalid user vnc from 106.13.67.127 port 44822 ssh2 ...	2020-01-12 08:05:00
106.13.67.22	attackspam	[Aegis] @ 2019-12-22 09:03:11 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-22 16:34:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.67.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8109
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.67.90.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103000 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 30 17:41:09 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 90.67.13.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 90.67.13.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.112.87.125	attack	Jun 28 10:07:16 meumeu sshd[18407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.87.125 Jun 28 10:07:19 meumeu sshd[18407]: Failed password for invalid user vyatta from 193.112.87.125 port 44206 ssh2 Jun 28 10:08:58 meumeu sshd[18616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.87.125 ...	2019-06-28 17:05:31
49.231.7.50	attackbotsspam	445/tcp 445/tcp 445/tcp... [2019-05-04/06-28]12pkt,1pt.(tcp)	2019-06-28 16:42:17
201.87.233.60	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(06281018)	2019-06-28 16:52:13
42.52.83.21	attack	5500/tcp 5500/tcp 5500/tcp... [2019-06-21/28]8pkt,1pt.(tcp)	2019-06-28 16:52:43
178.128.217.135	attackbots	Jun 28 09:41:51 mail sshd\[32268\]: Invalid user test from 178.128.217.135 Jun 28 09:41:51 mail sshd\[32268\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.217.135 Jun 28 09:41:53 mail sshd\[32268\]: Failed password for invalid user test from 178.128.217.135 port 59056 ssh2 ...	2019-06-28 16:54:12
141.98.10.42	attackbots	2019-06-28T06:30:09.885766ns1.unifynetsol.net postfix/smtpd\[25513\]: warning: unknown\[141.98.10.42\]: SASL LOGIN authentication failed: authentication failure 2019-06-28T07:39:07.238861ns1.unifynetsol.net postfix/smtpd\[9366\]: warning: unknown\[141.98.10.42\]: SASL LOGIN authentication failed: authentication failure 2019-06-28T08:48:48.116191ns1.unifynetsol.net postfix/smtpd\[16315\]: warning: unknown\[141.98.10.42\]: SASL LOGIN authentication failed: authentication failure 2019-06-28T09:58:55.009634ns1.unifynetsol.net postfix/smtpd\[28441\]: warning: unknown\[141.98.10.42\]: SASL LOGIN authentication failed: authentication failure 2019-06-28T11:08:01.182110ns1.unifynetsol.net postfix/smtpd\[5108\]: warning: unknown\[141.98.10.42\]: SASL LOGIN authentication failed: authentication failure	2019-06-28 17:20:12
220.130.34.69	attackspambots	445/tcp 445/tcp 445/tcp... [2019-06-02/28]8pkt,1pt.(tcp)	2019-06-28 16:46:52
134.209.2.30	attackbots	Jun 28 09:36:23 lnxweb61 sshd[19155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.2.30 Jun 28 09:36:23 lnxweb61 sshd[19155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.2.30	2019-06-28 17:00:51
185.36.81.166	attackbotsspam	2019-06-28T09:26:26.424948ns1.unifynetsol.net postfix/smtpd\[19403\]: warning: unknown\[185.36.81.166\]: SASL LOGIN authentication failed: authentication failure 2019-06-28T10:27:39.518887ns1.unifynetsol.net postfix/smtpd\[1264\]: warning: unknown\[185.36.81.166\]: SASL LOGIN authentication failed: authentication failure 2019-06-28T11:28:19.445798ns1.unifynetsol.net postfix/smtpd\[9057\]: warning: unknown\[185.36.81.166\]: SASL LOGIN authentication failed: authentication failure 2019-06-28T12:29:07.046601ns1.unifynetsol.net postfix/smtpd\[19653\]: warning: unknown\[185.36.81.166\]: SASL LOGIN authentication failed: authentication failure 2019-06-28T13:29:54.199004ns1.unifynetsol.net postfix/smtpd\[24263\]: warning: unknown\[185.36.81.166\]: SASL LOGIN authentication failed: authentication failure	2019-06-28 16:40:50
121.226.56.180	attack	2019-06-28T04:46:20.222465 X postfix/smtpd[22858]: warning: unknown[121.226.56.180]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-28T07:10:08.061180 X postfix/smtpd[42764]: warning: unknown[121.226.56.180]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-28T07:11:36.060369 X postfix/smtpd[42764]: warning: unknown[121.226.56.180]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-28 17:16:54
35.198.139.43	attackbotsspam	Jun 28 07:11:47 dedicated sshd[15087]: Invalid user wwwroot from 35.198.139.43 port 40914	2019-06-28 17:08:09
125.227.255.81	attackspambots	SSH invalid-user multiple login try	2019-06-28 16:49:20
167.86.75.58	attackspambots	5070/udp 5080/udp 5065/udp... [2019-05-25/06-27]56pkt,7pt.(udp)	2019-06-28 16:36:22
118.45.201.226	attack	23/tcp 23/tcp [2019-05-12/06-28]2pkt	2019-06-28 16:59:21
124.153.29.157	attackbotsspam	445/tcp 445/tcp 445/tcp... [2019-05-31/06-28]5pkt,1pt.(tcp)	2019-06-28 17:10:34

Recently Reported IPs

110.68.143.239	170.211.59.131	96.92.58.97	146.127.55.36
180.94.201.38	42.19.197.159	106.192.233.145	48.165.26.161
43.106.214.79	50.245.237.54	192.210.171.229	178.136.76.111
58.214.102.166	192.195.55.73	45.123.165.217	114.254.117.196
59.148.119.36	216.144.215.169	23.127.25.39	225.183.141.38