JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 120.48.152.13

120.48.152.13 was found in our database!

This IP was reported 859 times. Confidence of Abuse is 100%: ?

100%

ISP	Beijing Baidu Netcom Science and Technology Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS38365
Domain Name	baidu.com
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 120.48.152.13

Whois 120.48.152.13

IP Abuse Reports for 120.48.152.13:

This IP address has been reported a total of 859 times from 375 distinct sources. 120.48.152.13 was first reported on April 14th 2026, and the most recent report was 16 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 helix	2026-05-28 04:33:28 (6 days ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (3 attempts). show less	Brute-Force SSH
🇺🇸 CBJ	2026-05-28 01:13:02 (6 days ago)	fail2ban: apache-filepath-recon ...	Web App Attack
🇩🇪 iNetWorker	2026-05-28 00:58:37 (6 days ago)	trolling for resource vulnerabilities	Web App Attack
🇺🇸 Cyber Crusader	2026-05-27 23:29:05 (1 week ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇦🇹 urnilxfgbez	2026-05-27 22:45:00 (1 week ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇫🇮 Yachiyo Runami	2026-05-27 22:40:31 (1 week ago)	Port Scan on Honeypot \| Ports: 80/HTTP(2x) \| Proto: TCP(2) \| Flags: all SYN \| TTL: 39 \| Len: 44B(2x) ... show more Port Scan on Honeypot \| Ports: 80/HTTP(2x) \| Proto: TCP(2) \| Flags: all SYN \| TTL: 39 \| Len: 44B(2x) \| Win: 65535(2) \| F2B/ufw-honeypot@2026-05-27T22:40:31Z show less	Port Scan Hacking
🇩🇪 formality	2026-05-27 22:04:01 (1 week ago)	Invalid user admin from 120.48.152.13 port 47676	Brute-Force SSH
🇮🇪 AutosOnShow	2026-05-27 21:50:07 (1 week ago)	blocked for webapp attack \| path requested: / \| seen at 2026-05-27 21:49:08.350 \|	Web App Attack
🇺🇸 RAP	2026-05-27 21:04:32 (1 week ago)	2026-05-27 21:04:32 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇿🇦 slartybartfast69420blazit	2026-05-27 20:15:48 (1 week ago)	Fail2ban picked up 120.48.152.13 attacking nginx	Web App Attack
🇫🇷 security.rdmc.fr	2026-05-27 18:22:52 (1 week ago)	Port Scan Attack proto:TCP src:32865 dst:23	Port Scan
🇮🇪 AutosOnShow	2026-05-27 15:44:05 (1 week ago)	blocked for webapp attack \| path requested: /hello.world \| seen at 2026-05-27 15:43:42.668 \|	Web App Attack
🇩🇪 bogdanv	2026-05-27 14:13:57 (1 week ago)	$f2bV_matches	Brute-Force SSH
🇩🇪 xserverx.ru	2026-05-27 13:40:42 (1 week ago)	[UFW SCAN!!!!] SRC=120.48.152.13 LEN=40 TOS=0x00 PREC=0x00 TTL=39 PROTO=TCP SPT=47883 DPT=2222 WINDO ... show more [UFW SCAN!!!!] SRC=120.48.152.13 LEN=40 TOS=0x00 PREC=0x00 TTL=39 PROTO=TCP SPT=47883 DPT=2222 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇦🇺 CalmBrain	2026-05-27 13:03:11 (1 week ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-cve-2021-41773	Web App Attack Hacking

Showing 106 to 120 of 859 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇴 182.93.50.90

🇺🇸 173.255.204.203

🇵🇰 156.238.86.2

🇫🇷 84.247.189.133

🇩🇪 43.228.157.203

🇺🇸 192.3.218.12

🇦🇷 190.181.89.45

🇩🇪 176.65.132.39

🇫🇮 147.185.133.126

🇺🇸 129.212.181.73

🇸🇬 47.84.186.110

🇩🇪 46.4.120.162

🇬🇧 35.203.211.104

🇳🇱 185.211.155.139

🇧🇷 72.61.135.119

🇩🇪 172.71.148.30

🇮🇳 103.49.102.32

🇩🇪 69.5.169.192

🇧🇷 45.172.254.187

🇸🇬 45.43.63.68