JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 121.29.149.253

121.29.149.253 was found in our database!

This IP was reported 74 times. Confidence of Abuse is 32%: ?

32%

ISP	China Unicom Hebei province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shijiazhuang, Hebei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 121.29.149.253

Whois 121.29.149.253

IP Abuse Reports for 121.29.149.253:

This IP address has been reported a total of 74 times from 33 distinct sources. 121.29.149.253 was first reported on December 6th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-10 04:28:08 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇮🇳 evicky2002	2026-05-04 06:00:00 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=88, sources=1)	Hacking Brute-Force SSH
🇨🇳 ThreatBook.io	2026-05-02 22:35:21 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/121.29.149.253 2 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/121.29.149.253 2026-05-02 06:07:16 //www.voanews.com:443 show less	Web App Attack
🇨🇳 ThreatBook.io	2026-04-27 22:37:26 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/121.29.149.253 2 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/121.29.149.253 2026-04-27 07:46:13 http://www.rfa.org/english/ show less	Web App Attack
🇬🇧 PeravixGroup	2026-04-27 12:42:22 (1 month ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: HI ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-04-27 03:12:29 (1 month ago)	tcp/9042 (3 or more attempts)	Port Scan
🇦🇺 trentwiles.com	2026-04-25 08:57:52 (1 month ago)	Unauthorized connection attempt detected from IP address 121.29.149.253 to port 6612 [SYD]	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-22 16:00:32 (1 month ago)	Honeypot hit: Empty payload (likely service probe); 32773 [1] TCP	Port Scan
🇨🇦 Largnet SOC	2026-04-22 00:45:37 (1 month ago)	121.29.149.253 triggered Icarus honeypot on port 3389. Check us out on github.	Port Scan Hacking
🇦🇺 trentwiles.com	2026-04-22 00:39:33 (1 month ago)	Unauthorized connection attempt detected from IP address 121.29.149.253 to port 30019 [SYD]	Port Scan
🇯🇵 jay hung	2026-04-21 21:21:39 (1 month ago)	2026-04-21T21:21:33.085306+00:00 quarktech kernel: [2884767.053013] [UFW BLOCK] IN=eth0 OUT= MAC=22: ... show more 2026-04-21T21:21:33.085306+00:00 quarktech kernel: [2884767.053013] [UFW BLOCK] IN=eth0 OUT= MAC=22:00:92:2e:84:93:fe:ff:ff:ff:ff:ff:08:00 SRC=121.29.149.253 DST=172.237.29.33 LEN=44 TOS=0x00 PREC=0x00 TTL=232 ID=40329 PROTO=TCP SPT=18055 DPT=4505 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇩🇪 KPS	2026-04-21 01:18:06 (1 month ago)	PortscanM	Port Scan
🇫🇮 6kilowatti	2026-04-17 10:04:10 (1 month ago)	2026-04-17T13:04:09.564640+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-04-17T13:04:09.564640+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=121.29.149.253 DST=5.61.88.83 LEN=44 TOS=0x00 PREC=0x00 TTL=228 ID=19466 PROTO=TCP SPT=20051 DPT=8213 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
Anonymous	2026-04-17 06:46:35 (1 month ago)	Unauthorized connection attempt. Port 50000	Port Scan
🇺🇸 MPL	2026-04-14 04:35:36 (1 month ago)	tcp/9200 (2 or more attempts)	Port Scan

Showing 1 to 15 of 74 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.102.22.123

🇵🇱 212.23.222.144

🇮🇩 210.79.191.61

🇨🇳 182.244.0.150

🇨🇳 120.239.147.134

🇨🇳 223.152.110.45

🇩🇪 213.209.159.66

🇺🇸 205.210.31.45

🇲🇽 189.188.79.35

🇨🇳 118.145.164.82

🇨🇳 111.9.22.102

🇺🇸 104.243.43.7

🇷🇺 78.138.168.46

🇺🇸 2607:f8b0:4001:c11::12b

🇨🇳 220.162.35.40

🇪🇹 196.189.126.17

🇬🇧 185.247.137.29

🇨🇳 103.44.237.71

🇺🇸 78.153.155.152

🇩🇪 212.30.36.132