JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 121.29.84.196

121.29.84.196 was found in our database!

This IP was reported 61 times. Confidence of Abuse is 100%: ?

100%

ISP	China Unicom Hebei province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shijiazhuang, Hebei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 121.29.84.196

Whois 121.29.84.196

IP Abuse Reports for 121.29.84.196:

This IP address has been reported a total of 61 times from 26 distinct sources. 121.29.84.196 was first reported on December 5th 2025, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 drewf.ink	2026-06-09 06:15:17 (6 hours ago)	[06:15] Port scanning. Port(s) scanned: TCP/5432	Port Scan
🇸🇪 donarev419	2026-06-09 06:11:32 (6 hours ago)	Connection to port 2068 with data transfer. Data preview: USER anonymous	Port Scan Hacking
🇺🇸 MPL	2026-06-08 19:06:31 (18 hours ago)	tcp/4000	Port Scan
🇩🇪 iNetWorker	2026-06-08 17:23:20 (19 hours ago)	trying to access non-authorized port	Port Scan
🇺🇸 MPL	2026-06-08 09:45:41 (1 day ago)	tcp/47001	Port Scan
🇺🇸 MPL	2026-06-07 05:09:42 (2 days ago)	tcp/1626 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-06-07 04:44:19 (2 days ago)	tcp/12239 (2 or more attempts)	Port Scan
🇩🇪 guldkage	2026-06-07 02:30:16 (2 days ago)	Unauthorized connection attempt detected from IP address 121.29.84.196 to port 6379 (ger-02) [REDIS]	Exploited Host
🇸🇬 securejdprop	2026-06-06 20:12:52 (2 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing. crowdsecurity/http-probing	Hacking Web App Attack
🇺🇸 MPL	2026-06-06 14:55:00 (2 days ago)	tcp/16102	Port Scan
🇩🇪 dispaisyenterprises	2026-06-06 08:03:50 (3 days ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 8015 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 8015 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇩🇪 _ArminS_	2026-06-06 07:12:22 (3 days ago)	SP-Scan 11967:6561 detected 2026.06.06 09:12:22 blocked until 2026.07.26 02:15:09	Port Scan
🇩🇪 femboy.cat	2026-06-06 06:03:20 (3 days ago)	Port scan to tcp/5432 from 121.29.84.196	Brute-Force
🇬🇧 PeravixGroup	2026-06-05 20:10:37 (3 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-05 18:05:34 (3 days ago)	Honeypot hit: Large payload (1457 bytes); 7070 [1] TCP Reported by: https://github.com/sefinek/T-Pot ... show more Honeypot hit: Large payload (1457 bytes); 7070 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 61 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 153.117.33.139

🇱🇹 81.30.98.49

🇨🇳 14.103.115.5

🇹🇼 220.134.189.56

🇨🇳 218.59.201.12

🇦🇺 209.38.27.219

🇪🇹 196.190.41.137

🇨🇳 183.247.171.186

🇹🇭 171.100.156.38

🇷🇺 104.128.141.243

🇩🇪 89.44.198.56

🇩🇪 64.89.163.139

🇮🇳 59.145.160.158

🇺🇸 47.251.143.69

🇺🇸 40.126.7.32

🇮🇩 34.50.104.10

🇺🇸 20.168.121.101

🇮🇳 125.19.194.166

🇻🇳 123.30.240.7

🇮🇩 103.186.0.19