JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 120.48.152.13

120.48.152.13 was found in our database!

This IP was reported 865 times. Confidence of Abuse is 100%: ?

100%

ISP	Beijing Baidu Netcom Science and Technology Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS38365
Domain Name	baidu.com
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 120.48.152.13

Whois 120.48.152.13

IP Abuse Reports for 120.48.152.13:

This IP address has been reported a total of 865 times from 379 distinct sources. 120.48.152.13 was first reported on April 14th 2026, and the most recent report was 36 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-05-25 17:58:48 (1 week ago)	tcp/80 (2 or more attempts)	Port Scan
🇮🇪 AutosOnShow	2026-05-25 17:52:05 (1 week ago)	blocked for webapp attack \| path requested: / \| seen at 2026-05-25 17:51:26.114 \|	Web App Attack
Anonymous	2026-05-25 13:58:21 (1 week ago)	PROTO=TCP DPT=23	Port Scan Hacking
🇺🇸 rjdefrancisco	2026-05-25 07:08:16 (1 week ago)	Unwanted traffic detected by honeypot on May 24, 2026: port scans (1 port 22 scan).	Port Scan Brute-Force SSH
🇺🇸 RAP	2026-05-25 06:17:49 (1 week ago)	2026-05-25 06:17:49 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇬🇧 venus.launch.bz	2026-05-25 02:52:18 (1 week ago)	(wpscan) WordPress probe detected from 120.48.152.13 (CN/China/-)	Hacking
🇷🇺 punctualsuspension968	2026-05-25 01:20:22 (1 week ago)	blocked by ufw on TCP 22	Port Scan
🇫🇷 fallwest	2026-05-24 23:42:32 (1 week ago)	2026-05-25T01:40:47.745884+02:00 vmi768479 sshd[2135721]: Connection closed by authenticating user a ... show more 2026-05-25T01:40:47.745884+02:00 vmi768479 sshd[2135721]: Connection closed by authenticating user admin 120.48.152.13 port 36740 [preauth] 2026-05-25T01:41:58.875271+02:00 vmi768479 sshd[2135724]: Invalid user orangepi from 120.48.152.13 port 41980 2026-05-25T01:42:31.871064+02:00 vmi768479 sshd[2135724]: Connection closed by invalid user orangepi 120.48.152.13 port 41980 [preauth] ... show less	Brute-Force SSH
🇺🇸 MPL	2026-05-24 22:55:02 (1 week ago)	tcp/443 (2 or more attempts)	Port Scan
🇺🇸 vertali	2026-05-24 22:31:01 (1 week ago)	CSF/LFD blocked 120.48.152.13 after LF_SSHD on * (inout, perm=1, ttl=1s). Reason: (sshd) Failed SSH ... show more CSF/LFD blocked 120.48.152.13 after LF_SSHD on * (inout, perm=1, ttl=1s). Reason: (sshd) Failed SSH login from 120.48.152.13 (CN/China/-): 5 in the last 3600 secs. Evidence: May 24 17:29:28 paladin sshd[1537426]: Invalid user admin from 120.48.152.13 port 47376 show less	Brute-Force SSH
🇮🇪 AutosOnShow	2026-05-24 22:29:06 (1 week ago)	blocked for webapp attack \| path requested: / \| seen at 2026-05-24 22:28:14.627 \|	Web App Attack
Anonymous	2026-05-24 21:06:01 (1 week ago)	Repeated unauthorized connection attempts to restricted service observed.	Port Scan Hacking Bad Web Bot Web App Attack
🇺🇸 MPL	2026-05-24 17:16:48 (1 week ago)	tcp/2222 (4 or more attempts)	Port Scan
🇺🇸 dpinse	2026-05-24 16:45:33 (1 week ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-cve-2021-41773	Web App Attack Hacking
🇩🇪 invalidLuca	2026-05-24 15:28:52 (1 week ago)	[SSH2] Unauthorized connection attempt from 120.48.152.13	Brute-Force SSH

Showing 166 to 180 of 865 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 192.109.200.78

🇺🇸 172.217.36.85

🇺🇸 162.240.12.204

🇺🇸 162.216.150.172

🇺🇸 135.237.122.43

🇮🇹 91.80.152.183

🇺🇸 69.73.187.130

🇨🇳 36.106.167.11

🇺🇸 15.204.132.78

🇳🇱 188.166.24.130

🇫🇷 91.231.89.229

🇵🇱 87.251.64.156

🇬🇧 81.19.219.213

🇷🇺 72.56.238.74

🇬🇧 51.195.215.16

🇺🇸 50.116.2.219

🇮🇳 43.229.90.49

🇬🇧 35.203.211.130

🇬🇧 193.163.125.215

🇬🇧 193.163.125.154