JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 156.59.197.102

156.59.197.102 was found in our database!

This IP was reported 486 times. Confidence of Abuse is 100%: ?

100%

ISP	ZEN-HK
Usage Type	Data Center/Web Hosting/Transit
ASN	AS21859
Domain Name	zenlayer.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 156.59.197.102

Whois 156.59.197.102

IP Abuse Reports for 156.59.197.102:

This IP address has been reported a total of 486 times from 116 distinct sources. 156.59.197.102 was first reported on February 19th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 ScanThe.Net	2026-06-10 15:52:34 (2 days ago)	ID: 4033625410 \| PORT: 18080 \| https://156-59-197-102.scanthe.net	Port Scan
🇩🇪 Axel	2026-06-08 21:29:34 (4 days ago)	[2026-06-08 21:29:34 UTC] Honeypot HTTPS-Alt connection attempt \| AXFRA HONEYPOT	Web App Attack
🇩🇪 anycast_ac	2026-06-08 13:20:58 (4 days ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/8443 (generic). Commands captur ... show more [mirai-detector honeypot] Inbound attack against our honeypot on tcp/8443 (generic). Commands captured: $ {"id": 1, "method": "mining.subscribe", "params": ["StratumSim/1.0"]} show less	DDoS Attack IoT Targeted Brute-Force
🇩🇪 guldkage	2026-06-07 10:50:37 (5 days ago)	Unauthorized connection attempt detected from IP address 156.59.197.102 to port 8443 (ger-03) [O]	Brute-Force Exploited Host
🇰🇷 enp0s1	2026-06-06 22:06:08 (6 days ago)	Auto-reported by Fail2Ban (UFW Block, Port Scan)	Port Scan
🇯🇵 mkaraki	2026-06-06 14:56:58 (6 days ago)	1780757817 # Service_probe # SIGNATURE_SEND # source_ip:156.59.197.102 # dst_port:3344 ...	Port Scan
🇩🇪 femboy.cat	2026-06-06 10:19:01 (6 days ago)	Port scan to tcp/3034 from 156.59.197.102	Brute-Force
🇯🇵 S.O.B.A. Dev.	2026-06-05 01:18:49 (1 week ago)	Persistent port scanning or vulnerability scanning	Port Scan
Anonymous	2026-06-04 22:19:02 (1 week ago)	$f2bV_matches	Port Scan Hacking Brute-Force
🇩🇪 Axel	2026-06-03 22:31:35 (1 week ago)	[2026-06-03 22:31:35 UTC] Honeypot HTTPS-Alt connection attempt \| AXFRA HONEYPOT	Web App Attack
🇫🇷 pm33	2026-06-03 17:52:14 (1 week ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇩🇪 femboy.cat	2026-06-02 19:39:39 (1 week ago)	Port scan to tcp/4567 from 156.59.197.102	Brute-Force
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-02 10:32:21 (1 week ago)	Honeypot hit: Incoming HTTP traffic on port 81	Web App Attack Bad Web Bot
🇦🇺 LiftUp Hosting	2026-05-31 18:03:58 (1 week ago)	Honeypot hit: Unauthorized traffic (70 bytes of payload); 3889 [1] TCP	Port Scan
🇫🇷 pm33	2026-05-31 05:32:21 (1 week ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack

Showing 1 to 15 of 486 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 162.158.182.203

🇮🇳 117.213.202.34

🇨🇳 223.109.255.154

🇵🇾 186.16.46.105

🇺🇸 162.216.149.121

🇩🇪 69.5.169.55

🇩🇪 47.91.79.97

🇸🇬 43.134.96.24

🇧🇪 34.156.248.95

🇲🇽 187.170.65.227

🇹🇭 159.192.132.34

🇨🇳 125.94.146.123

🇩🇪 92.211.89.198

🇷🇴 85.121.176.178

🇮🇳 66.116.232.20

🇸🇬 47.79.206.237

🇿🇦 41.168.10.139

🇯🇵 34.104.199.73

🇺🇸 18.232.11.247

🇳🇱 5.61.209.224