AbuseIPDB » 120.48.24.221
120.48.24.221 was found in our database!
This IP was reported 7 times. Confidence of
Abuse
is 19%: ?
| ISP |
Beijing Baidu Netcom Science and Technology Co., Ltd.
|
| Usage Type |
Data Center/Web Hosting/Transit
|
| ASN |
AS38365
|
| Domain Name |
baidu.com
|
| Country |
๐จ๐ณ
China
|
| City |
Beijing, Beijing
|
IP info including ISP, Usage Type, and Location provided
by IPInfo. Updated weekly.
IP Abuse Reports for 120.48.24.221:
This IP address has been reported a total of
7
times from
7 distinct
sources.
120.48.24.221 was first reported on
, and the most recent report was
.
Old Reports:
The most recent abuse report for this IP address is from
. It is possible that this IP is no longer involved in abusive activities.
| Reporter |
IoA Timestamp (UTC)
|
Comment |
Categories |
|
|
๐ซ๐ฎ
ValtonTahiri
|
|
Windows IPBan blocked brute-force / failed login activity. Source=RDP; Username=6; Count=; LogonType ...
show more
Windows IPBan blocked brute-force / failed login activity. Source=RDP; Username=6; Count=; LogonType=3; SourcePort=0; Status=0xc000006d; SubStatus=0xc000006a; Auth=NTLM
show less
|
Port Scan
Brute-Force
|
|
|
๐ฉ๐ช
DoSammy
|
|
neu-RDP-Brute-Force
|
Brute-Force
|
|
|
๐ฉ๐ช
EinfxchFinn
|
|
Unauthorized connection attempt to port 3389 from 120.48.24.221
|
Port Scan
|
|
|
๐ซ๐ฎ
iamxorum
|
|
2026-05-15T18:01:25.871770+00:00 XRM-01 kernel: [HONEYPORT] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74 ...
show more
2026-05-15T18:01:25.871770+00:00 XRM-01 kernel: [HONEYPORT] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74:7f:6e:37:e3:08:00 SRC=120.48.24.221 DST=46.62.222.43 LEN=52 TOS=0x02 PREC=0x00 TTL=110 ID=20539 DF PROTO=TCP SPT=50293 DPT=3389 WINDOW=64240 RES=0x00 CWR ECE SYN URGP=0
...
show less
|
Port Scan
|
|
|
๐น๐ท
Threat.live
|
|
Suspicious Connection Attempts
|
Brute-Force
|
|
|
๐ฉ๐ช
iNetWorker
|
|
trying to access non-authorized port
|
Port Scan
|
|
|
๐ซ๐ท
remifr4
|
|
[2026-04-25 04:25:33] [info] 04:25:33.077 [http-nio-8080-exec-8] WARN o.a.g.r.auth.AuthenticationSe ...
show more
[2026-04-25 04:25:33] [info] 04:25:33.077 [http-nio-8080-exec-8] WARN o.a.g.r.auth.AuthenticationService - Authentication attempt from 120.48.24.221 for user "johan" failed.
[2026-04-25 04:26:39] [info] 04:26:39.506 [http-nio-8080-exec-5] WARN o.a.g.r.auth.AuthenticationService - Authentication attempt from 120.48.24.221 for user "scans" failed.
[2026-04-25 04:28:10] [info] 04:28:10.943 [http-nio-8080-exec-10] WARN o.a.g.r.auth.AuthenticationService - Authentication attempt from 120.48.24.221 for user "Steve" failed.
[2026-04-25 04:29:32] [info] 04:29:32.738 [http-nio-8080-exec-4] WARN o.a.g.r.auth.AuthenticationService - Authentication attempt from 120.48.24.221 for user "admsci" failed.
[2026-04-25 04:30:47] [info] 04:30:47.385 [http-nio-8080-exec-2] WARN o.a.g.r.auth.AuthenticationService - Authentication attempt from 120.48.24.221 for user "canon" failed.
...
show less
|
Brute-Force
Web App Attack
|
|
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: