JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 121.29.149.223

121.29.149.223 was found in our database!

This IP was reported 118 times. Confidence of Abuse is 75%: ?

75%

ISP	China Unicom Hebei province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shijiazhuang, Hebei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 121.29.149.223

Whois 121.29.149.223

IP Abuse Reports for 121.29.149.223:

This IP address has been reported a total of 118 times from 39 distinct sources. 121.29.149.223 was first reported on December 1st 2025, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 iNetWorker	2026-06-16 12:30:48 (13 hours ago)	firewall-block, port(s): 9151/tcp	Port Scan
🇺🇸 MPL	2026-06-15 16:12:51 (1 day ago)	tcp/17780 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-15 01:29:22 (2 days ago)	Honeypot detection: OS command injection in HTTP parameters on port 27017. Severity: MEDIUM. Aaran.c ... show more Honeypot detection: OS command injection in HTTP parameters on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Web App Attack
🇺🇸 MPL	2026-06-14 14:57:00 (2 days ago)	tcp/8983	Port Scan
🇳🇱 BIV	2026-06-14 11:40:48 (2 days ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 51003. Automated tiere ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 51003. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
Anonymous	2026-06-13 08:10:28 (3 days ago)	Honeypot hit: Large payload (1457 bytes); 6080 [1] TCP Reported by: https://github.com/sefinek/T-Pot ... show more Honeypot hit: Large payload (1457 bytes); 6080 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-10 22:30:40 (6 days ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇵🇱 sefinek.net	2026-06-10 17:45:40 (6 days ago)	Honeypot hit: Large payload (1457 bytes); 3002 [1] TCP Reported by: https://github.com/sefinek/T-Pot ... show more Honeypot hit: Large payload (1457 bytes); 3002 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇧🇷 ICS Labs	2026-06-09 19:57:42 (1 week ago)	ICS Labs identified 121.29.149.223 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇳🇱 ByeByte API	2026-06-06 23:37:16 (1 week ago)	Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 20. Single burst at 2026- ... show more Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 20. Single burst at 2026-06-06 23:37 UTC. show less	Port Scan
🇬🇧 PeravixGroup	2026-06-06 05:35:29 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 dispaisyenterprises	2026-06-05 12:09:48 (1 week ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 5236 [1] TCP Reported by Dis ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 5236 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇹🇭 Sawasdee	2026-06-05 03:18:07 (1 week ago)	SSH break in attempt ...	SSH
🇬🇧 PeravixGroup	2026-06-04 19:35:58 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 20:18:34 (2 weeks ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 118 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.93

🇰🇷 220.88.220.59

🇲🇾 180.75.233.65

🇺🇸 170.254.179.234

🇵🇰 163.61.128.98

🇨🇳 124.117.195.81

🇨🇳 122.235.79.246

🇨🇳 118.212.121.146

🇨🇳 118.212.120.150

🇵🇰 103.182.14.11

🇬🇧 90.252.113.99

🇬🇧 81.19.219.245

🇹🇭 49.229.157.48

🇸🇨 45.194.67.20

🇳🇱 45.148.10.157

🇬🇧 35.203.211.163

🇺🇸 20.29.56.247

🇮🇷 5.232.122.78

🇬🇧 2a00:1450:4009:c19::12b

🇺🇸 165.154.162.98