JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 120.55.92.241

120.55.92.241 was found in our database!

This IP was reported 193 times. Confidence of Abuse is 54%: ?

54%

ISP	Aliyun Computing Co., LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Hangzhou, Zhejiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 120.55.92.241

Whois 120.55.92.241

IP Abuse Reports for 120.55.92.241:

This IP address has been reported a total of 193 times from 58 distinct sources. 120.55.92.241 was first reported on February 23rd 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 _ArminS_	2026-06-11 12:24:57 (1 week ago)	SP-Scan 40692:13271 detected 2026.06.11 14:24:57 blocked until 2026.07.31 07:27:44	Port Scan
🇺🇸 sandra361	2026-06-11 07:02:44 (1 week ago)	Port scan detected: 58 attempts across 58 ports (10971,12043,15856,16294,17253,19735,20657,22256,224 ... show more Port scan detected: 58 attempts across 58 ports (10971,12043,15856,16294,17253,19735,20657,22256,22436,23056,23876,25206,2745,28505,29391,29979,30433,31802,32947,34543,35604,38329,38700,41347,41782,41792,42789,43854,44813,45240,45701,46784,52150,53086,53561,55059,55764,5649,56794,56954,57185,57498,57653,57719,58155,58587,59907,60416,60664,61722,63553,6367,64626,64682,6795,7582,7748,933). \| Evidence: GHOST_SCAN: IN=enp1s0 SRC=120.55.92.241 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=65113 PROTO=TCP SPT=41300 DPT=56954 WINDOW=1024 RES=0x00 SYN URGP=0 show less	Port Scan
🇬🇧 PeravixGroup	2026-06-08 19:10:02 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇹🇷 Threat.live	2026-06-08 11:30:02 (1 week ago)	Suspicious Connection Attempts	Brute-Force
🇨🇳 pengpeng	2026-06-08 04:38:18 (1 week ago)	monitor: on VM-0-7-ubuntu \| port: 103 \| ttl: 242 script: github.com/sefinek/UFW-AbuseIPDB-Reporter	Port Scan
🇩🇪 centurion	2026-06-05 01:56:55 (2 weeks ago)	Blocked by UFW on ns02 [8009/tcp] Source port: 44606 TTL: 238 Packet length: 40 TOS: 0x00 This repo ... show more Blocked by UFW on ns02 [8009/tcp] Source port: 44606 TTL: 238 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-31 10:50:55 (2 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
Anonymous	2026-05-31 08:01:04 (2 weeks ago)	May 31 04:01:03 localhost kernel: [108559784.596227] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:9 ... show more May 31 04:01:03 localhost kernel: [108559784.596227] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=120.55.92.241 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=233 ID=2887 PROTO=TCP SPT=54461 DPT=47626 WINDOW=1024 RES=0x00 SYN URGP=0 May 31 04:01:03 localhost kernel: [108559784.596248] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=120.55.92.241 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=233 ID=2887 PROTO=TCP SPT=54461 DPT=47626 SEQ=1225445683 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 May 31 04:01:03 localhost kernel: [108559784.604493] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=120.55.92.241 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=233 ID=38472 PROTO=TCP SPT=54461 DPT=18259 WINDOW=1024 RES=0x00 SYN URGP=0 May 31 04:01:03 localhost kernel: [108559784.604498] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=120.55.92.241 DST=[mungedIP2] LEN=40 TOS= show less	Port Scan
🇬🇧 PeravixGroup	2026-05-29 20:08:07 (3 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 139. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 139. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 pearbright	2026-05-29 09:15:39 (3 weeks ago)	2026-05-29T09:15:09.293526+00:00 srv1093252 kernel: [792106.047557] [UFW BLOCK] IN=eth0 OUT= MAC=28: ... show more 2026-05-29T09:15:09.293526+00:00 srv1093252 kernel: [792106.047557] [UFW BLOCK] IN=eth0 OUT= MAC=28:e8:d4:b5:be:84:44:38:39:ff:ff:41:08:00 SRC=120.55.92.241 DST=72.61.19.109 LEN=40 TOS=0x08 PREC=0x20 TTL=226 ID=30759 PROTO=TCP SPT=46108 DPT=49856 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-29T09:15:09.860190+00:00 srv1093252 kernel: [792106.614295] [UFW BLOCK] IN=eth0 OUT= MAC=28:e8:d4:b5:be:84:44:38:39:ff:ff:41:08:00 SRC=120.55.92.241 DST=72.61.19.109 LEN=40 TOS=0x08 PREC=0x20 TTL=226 ID=38956 PROTO=TCP SPT=46108 DPT=30743 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-29T09:15:10.037431+00:00 srv1093252 kernel: [792106.791688] [UFW BLOCK] IN=eth0 OUT= MAC=28:e8:d4:b5:be:84:44:38:39:ff:ff:41:08:00 SRC=120.55.92.241 DST=72.61.19.109 LEN=40 TOS=0x08 PREC=0x20 TTL=226 ID=7972 PROTO=TCP SPT=46108 DPT=37304 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-29T09:15:10.062985+00:00 srv1093252 kernel: [792106.815153] [UFW BLOCK] IN=eth0 OUT= MAC=28:e8:d4:b5:be:84:44:38:39:ff:ff:41:08:00 SRC=120.55.92.241 DST= ... show less	Port Scan
🇺🇸 sandra361	2026-05-27 07:44:02 (3 weeks ago)	Port scan detected: 71 attempts across 71 ports (12282,12469,1505,15246,1557,15909,16590,16763,1806, ... show more Port scan detected: 71 attempts across 71 ports (12282,12469,1505,15246,1557,15909,16590,16763,1806,18421,18661,18851,20292,22875,24561,26154,27720,27858,2790,27904,29471,29618,29984,31790,31980,32055,32705,34077,34506,34961,35493,35655,35781,3740,38399,38468,39037,40467,41339,43457,45103,46050,47567,47633,48754,48850,50320,50614,50772,5250,54343,54564,54782,55466,55701,55728,56565,57468,58369,59358,59425,59965,61039,61067,61072,6146,63559,63701,7427,7561,9472). \| Evidence: GHOST_SCAN:IN=enp1s0 OUT= SRC=120.55.92.241 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=33914 PROTO=TCP SPT=47774 DPT=16590 WINDOW=1024 RES=0x00 SYN URGP=0 show less	Port Scan
🇬🇧 PeravixGroup	2026-05-22 21:16:07 (4 weeks ago)	Honeypot detection: MS-RPC / Windows RPC service exploitation attempt on port 135. Severity: MEDIUM. ... show more Honeypot detection: MS-RPC / Windows RPC service exploitation attempt on port 135. Severity: MEDIUM. Aaran.cloud show less	Hacking
🇫🇷 Little Iguana	2026-05-18 16:15:34 (1 month ago)	trying to access non-authorized port	Port Scan
🇨🇳 ThreatBook.io	2026-05-18 00:45:27 (1 month ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/120.55.92.241 2026- ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/120.55.92.241 2026-05-17 09:04:54 /favicon.ico 2026-05-17 00:17:40 / 2026-05-17 00:17:40 /favicon.ico 2026-05-17 09:04:54 /images/favicons/webmin/favicon-16x16.png 2026-05-17 09:04:54 /images/favicons/webmin/safari-pinned-tab.svg 2026-05-17 09:04:54 / 2026-05-17 09:04:54 /images/favicons/webmin/favicon-32x32.png show less	Web App Attack
🇩🇪 acadeova	2026-05-17 17:58:53 (1 month ago)	🚨 Recon detected (nft drop) SRC=120.55.92.241 Observed=TCP dpt=39354 in=enp0s6 ttl=241 Time=recent(j ... show more 🚨 Recon detected (nft drop) SRC=120.55.92.241 Observed=TCP dpt=39354 in=enp0s6 ttl=241 Time=recent(journalctl: 10 minutes ago) Assessment=Generic scanning / reconnaissance (PORT_SCAN) show less	Port Scan

Showing 1 to 15 of 193 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.145

🇺🇸 72.207.109.5

🇳🇱 45.198.224.21

🇧🇷 191.5.119.21

🇳🇱 185.242.3.224

🇮🇳 103.194.243.199

🇨🇳 101.126.64.76

🇩🇪 93.90.180.80

🇺🇸 44.43.151.21

🇺🇸 2602:80d:1007::20

🇺🇸 198.74.56.46

🇳🇱 176.65.148.176

🇺🇸 141.11.88.10

🇧🇩 113.11.34.221

🇮🇩 110.239.95.16

🇳🇱 45.148.10.147

🇨🇳 222.184.31.28

🇨🇳 139.227.161.84

🇺🇸 54.92.171.106

🇳🇱 45.148.10.121