JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 120.48.14.72

120.48.14.72 was found in our database!

This IP was reported 309 times. Confidence of Abuse is 100%: ?

100%

ISP	Beijing Baidu Netcom Science and Technology Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS38365
Domain Name	baidu.com
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 120.48.14.72

Whois 120.48.14.72

IP Abuse Reports for 120.48.14.72:

This IP address has been reported a total of 309 times from 211 distinct sources. 120.48.14.72 was first reported on May 20th 2026, and the most recent report was 8 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 Yachiyo Runami	2026-05-31 18:36:57 (3 days ago)	Port Scan on Honeypot \| Ports: 22/SSH \| Proto: TCP(1) \| Flags: all SYN \| TTL: 41 \| Len: 60B \| Win: 2 ... show more Port Scan on Honeypot \| Ports: 22/SSH \| Proto: TCP(1) \| Flags: all SYN \| TTL: 41 \| Len: 60B \| Win: 27200(1) \| F2B/ufw-honeypot@2026-05-31T18:36:57Z show less	Port Scan Hacking
🇫🇷 elf	2026-05-31 14:43:02 (3 days ago)	[Fail2Ban]: Jail sshd triggered 3 time(s) for 120.48.14.72. May 31 16:31:09 - sshd[3244382]: Disconn ... show more [Fail2Ban]: Jail sshd triggered 3 time(s) for 120.48.14.72. May 31 16:31:09 - sshd[3244382]: Disconnected from authenticating user root 120.48.14.72 port 32878 [preauth] May 31 16:42:59 - sshd[3246164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.48.14.72 user=root May 31 16:43:01 - sshd[3246164]: Failed password for root from 120.48.14.72 port 59714 ssh2 ... show less	Brute-Force SSH
🇳🇱 jonathanselea.se	2026-05-31 14:19:10 (3 days ago)	"Exessive login attempts"	Brute-Force
Anonymous	2026-05-31 13:34:51 (3 days ago)	May 31 13:34:50 scw-6657dc sshd[16084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more May 31 13:34:50 scw-6657dc sshd[16084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.48.14.72 May 31 13:34:50 scw-6657dc sshd[16084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.48.14.72 May 31 13:34:51 scw-6657dc sshd[16084]: Failed password for invalid user ttt from 120.48.14.72 port 54020 ssh2 ... show less	Brute-Force SSH
🇨🇭 TOCE	2026-05-31 11:12:02 (3 days ago)	17 hits seen on 2026-05-31, ports 22 (SSH) on a honeypot from www.toce.ch	SSH
Anonymous	2026-05-31 10:40:58 (3 days ago)	May 31 10:40:57 f2b auth.info sshd[5090]: Invalid user tt from 120.48.14.72 port 38064 May 31 10:40: ... show more May 31 10:40:57 f2b auth.info sshd[5090]: Invalid user tt from 120.48.14.72 port 38064 May 31 10:40:57 f2b auth.info sshd[5090]: Failed password for invalid user tt from 120.48.14.72 port 38064 ssh2 May 31 10:40:57 f2b auth.info sshd[5090]: Disconnected from invalid user tt 120.48.14.72 port 38064 [preauth] ... show less	Brute-Force SSH
🇩🇪 ghostwarriors	2026-05-31 09:20:51 (3 days ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇺🇸 CGT Software Webmaster	2026-05-31 08:21:16 (3 days ago)	2026-05-31T16:13:47.046762+08:00 CVM24121 sshd[2965888]: pam_unix(sshd:auth): authentication failure ... show more 2026-05-31T16:13:47.046762+08:00 CVM24121 sshd[2965888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.48.14.72 2026-05-31T16:13:48.956264+08:00 CVM24121 sshd[2965888]: Failed password for invalid user syncuser from 120.48.14.72 port 49380 ssh2 2026-05-31T16:21:15.542735+08:00 CVM24121 sshd[2966792]: Invalid user newuser from 120.48.14.72 port 60706 ... show less	Port Scan Brute-Force
🇬🇧 sc user	2026-05-31 05:06:05 (3 days ago)	Fail2Ban sshd: repeated SSH login failures (possible brute-force) detected by automated security too ... show more Fail2Ban sshd: repeated SSH login failures (possible brute-force) detected by automated security tooling. Technical log details and local server identifiers intentionally omitted for privacy. show less	Brute-Force SSH
🇫🇷 LoneRider	2026-05-31 03:59:10 (3 days ago)	May 31 05:58:03 plsk sshd[412950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid= ... show more May 31 05:58:03 plsk sshd[412950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.48.14.72 user=root May 31 05:58:05 plsk sshd[412950]: Failed password for root from 120.48.14.72 port 43040 ssh2 May 31 05:59:07 plsk sshd[413050]: Invalid user multi from 120.48.14.72 port 53226 May 31 05:59:07 plsk sshd[413050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.48.14.72 May 31 05:59:10 plsk sshd[413050]: Failed password for invalid user multi from 120.48.14.72 port 53226 ssh2 ... show less	SSH
🇺🇸 Kim_KA1WCC_OZ1ARQ	2026-05-31 01:46:27 (4 days ago)	May 31 01:29:03 stn7875 sshd[15892]: Invalid user appuser from 120.48.14.72 port 37836 May 31 01:46: ... show more May 31 01:29:03 stn7875 sshd[15892]: Invalid user appuser from 120.48.14.72 port 37836 May 31 01:46:25 stn7875 sshd[18108]: Invalid user testuser from 120.48.14.72 port 40634 ... show less	Brute-Force SSH
🇨🇭 Boxis.net NOC	2026-05-31 01:23:24 (4 days ago)	(sshd) Failed SSH login from 120.48.14.72 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction ... show more (sshd) Failed SSH login from 120.48.14.72 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_SSHD; Logs: May 31 03:11:00 da057 sshd[4177782]: Invalid user soporte from 120.48.14.72 port 42248 May 31 03:19:49 da057 sshd[4188613]: Invalid user devops from 120.48.14.72 port 36868 May 31 03:20:37 da057 sshd[4190698]: Invalid user aditya from 120.48.14.72 port 44482 May 31 03:21:54 da057 sshd[4191742]: Invalid user docker from 120.48.14.72 port 59676 May 31 03:23:16 da057 sshd[4192989]: Invalid user ts3 from 120.48.14.72 port 46664 show less	Port Scan
🇩🇪 licen777	2026-05-30 22:46:56 (4 days ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-05-30T20:58:23Z and 2026-05-3 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-05-30T20:58:23Z and 2026-05-30T22:46:52Z show less	Brute-Force SSH
🇩🇪 anycast_ac	2026-05-30 22:39:39 (4 days ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/2222 (ssh). Family fingerprint: ... show more [mirai-detector honeypot] Inbound attack against our honeypot on tcp/2222 (ssh). Family fingerprint: ssh-bruteforce Commands captured: $ SSH-2.0-libssh_0.9.6 show less	DDoS Attack
Anonymous	2026-05-30 20:17:27 (4 days ago)	May 30 20:15:25 sftp-cognizant-san-jose-1 sshd[836585]: Failed password for root from 120.48.14.72 p ... show more May 30 20:15:25 sftp-cognizant-san-jose-1 sshd[836585]: Failed password for root from 120.48.14.72 port 55018 ssh2 May 30 20:17:25 sftp-cognizant-san-jose-1 sshd[836603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.48.14.72 user=root May 30 20:17:26 sftp-cognizant-san-jose-1 sshd[836603]: Failed password for root from 120.48.14.72 port 44942 ssh2 ... show less	Brute-Force SSH

Showing 61 to 75 of 309 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 91.231.89.128

🇷🇴 80.94.95.118

🇩🇪 213.209.159.45

🇲🇽 201.149.53.243

🇧🇪 198.235.24.252

🇧🇷 177.36.214.46

🇺🇸 167.71.95.42

🇺🇸 157.230.63.243

🇩🇪 138.68.108.171

🇺🇸 136.118.192.122

🇮🇳 122.166.223.194

🇺🇸 98.80.4.79

🇫🇷 91.231.89.130

🇺🇸 66.132.186.216

🇳🇱 45.148.10.151

🇺🇸 205.210.31.48

🇬🇧 193.163.125.64

🇧🇼 168.167.228.74

🇨🇳 153.0.124.53

🇩🇪 138.68.66.208