JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 118.212.121.168

118.212.121.168 was found in our database!

This IP was reported 87 times. Confidence of Abuse is 42%: ?

42%

ISP	China Unicom Jiangxi province network
Usage Type	Fixed Line ISP
ASN	AS4837
Hostname(s)	168.121.212.118.adsl-pool.jx.chinaunicom.com
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Nanchang, Jiangxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 118.212.121.168

Whois 118.212.121.168

IP Abuse Reports for 118.212.121.168:

This IP address has been reported a total of 87 times from 33 distinct sources. 118.212.121.168 was first reported on January 20th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-21 02:40:02 (4 days ago)	Honeypot detection: Server-Side Template Injection (SSTI) attempt on port 11211. Severity: HIGH. Aar ... show more Honeypot detection: Server-Side Template Injection (SSTI) attempt on port 11211. Severity: HIGH. Aaran.cloud show less	Hacking Web App Attack
Anonymous	2026-06-20 13:32:14 (4 days ago)	2026-06-20T14:32:12.491819+01:00 vps kernel: [43702483.224734] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-20T14:32:12.491819+01:00 vps kernel: [43702483.224734] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=118.212.121.168 DST=54.37.14.118 LEN=44 TOS=0x00 PREC=0x00 TTL=231 ID=49319 PROTO=TCP SPT=22105 DPT=6001 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇩🇪 David Ferneding	2026-06-16 02:56:25 (1 week ago)	Blocked by UFW (TCP on 1188) Source port: 22099 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 1188) Source port: 22099 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 118.212.121.168) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 donarev419	2026-06-11 06:16:42 (1 week ago)	Connection to port 1217 with data transfer. Data preview: GET / HTTP/1.1 Host: 87.229.95.155:1217 ... show more Connection to port 1217 with data transfer. Data preview: GET / HTTP/1.1 Host: 87.229.95.155:1217 Accept: / show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-05 01:59:02 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 00:40:40 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-30 18:40:47 (3 weeks ago)	tcp/8086 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-05-27 18:51:20 (4 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-27 17:13:59 (4 weeks ago)	tcp/2078 (3 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-05-27 14:01:03 (4 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-26 08:58:06 (4 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇩🇪 femboy.cat	2026-05-20 19:59:22 (1 month ago)	Port scan to tcp/8085 from 118.212.121.168	Brute-Force
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-19 21:59:42 (1 month ago)	Honeypot hit: Empty payload (likely service probe); 1958 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-05-11 16:30:04 (1 month ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-05-09 06:50:43 (1 month ago)	Blocked by UFW (TCP on 6050) Source port: 45367 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 6050) Source port: 45367 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 118.212.121.168) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 87 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 135.237.126.211

🇸🇬 116.87.40.27

🇺🇸 65.49.20.77

🇺🇸 64.62.197.85

🇬🇧 35.203.210.30

🇺🇸 20.163.15.176

🇺🇸 2400:cb00:1281:1000:fa2d:7540:4f50:fa76

🇷🇺 213.180.203.4

🇧🇷 207.248.18.218

🇧🇷 205.210.31.140

🇭🇰 183.87.99.252

🇨🇳 180.153.236.32

🇫🇮 147.185.133.15

🇨🇳 124.67.120.106

🇮🇳 103.54.101.248

🇺🇸 100.50.17.159

🇳🇱 89.21.67.134

🇮🇷 88.218.18.16

🇳🇱 81.19.216.67

🇫🇷 62.210.142.21