JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.203.186.214

159.203.186.214 was found in our database!

This IP was reported 96 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	North Bergen, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.203.186.214

Whois 159.203.186.214

IP Abuse Reports for 159.203.186.214:

This IP address has been reported a total of 96 times from 40 distinct sources. 159.203.186.214 was first reported on June 6th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 Luhte	2026-06-11 19:23:51 (2 weeks ago)	Unsolicited TCP connection from 159.203.186.214 to port 0 at 2026-06-11T19:23:51Z. Source IP complet ... show more Unsolicited TCP connection from 159.203.186.214 to port 0 at 2026-06-11T19:23:51Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking
🇩🇪 EnthecSolutions	2026-06-09 06:01:36 (2 weeks ago)	Detected by Enthec Solutions. \| Attempts: 46 in 24h \| Target port: 9202	Port Scan Hacking
🇩🇪 Justin F. \| AS204464	2026-06-08 14:22:44 (2 weeks ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 2181 GET /cgi-bin/authLogin.cgi User-Agent: Go-ht ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 2181 GET /cgi-bin/authLogin.cgi User-Agent: Go-http-client/1.1; 2181 [4] TCP Reported by: Justin F. show less	Hacking Bad Web Bot
🇦🇺 LiftUp Hosting	2026-06-08 14:03:59 (2 weeks ago)	Honeypot hit: HTTP/1.1 request on 9301 GET /query?q=SHOW+DIAGNOSTICS User-Agent: Go-http-client/1.1 ... show more Honeypot hit: HTTP/1.1 request on 9301 GET /query?q=SHOW+DIAGNOSTICS User-Agent: Go-http-client/1.1; 9301 [13] TCP show less	Hacking Bad Web Bot
🇺🇸 drewf.ink	2026-06-08 12:55:22 (2 weeks ago)	[12:55] Port scanning. Port(s) scanned: TCP/11211	Port Scan
Anonymous	2026-06-08 12:42:14 (2 weeks ago)	Honeypot hit: HTTP/1.1 request on 27019 GET /v2/_catalog User-Agent: Go-http-client/1.1; 27019 [3] ... show more Honeypot hit: HTTP/1.1 request on 27019 GET /v2/_catalog User-Agent: Go-http-client/1.1; 27019 [3] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇩🇪 dispaisyenterprises	2026-06-08 12:16:51 (2 weeks ago)	Honeypot [fra-de-honeypot]: HTTP/1.1 request on 15671 GET /v2/_catalog User-Agent: Go-http-client/1 ... show more Honeypot [fra-de-honeypot]: HTTP/1.1 request on 15671 GET /v2/_catalog User-Agent: Go-http-client/1.1; 15671 [3] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇩🇪 guldkage	2026-06-08 10:45:43 (2 weeks ago)	Unauthorized connection attempt detected from IP address 159.203.186.214 to port 3306 (ger-03) [n]	Brute-Force Exploited Host
🇩🇪 D3RP4UL	2026-06-08 10:16:30 (2 weeks ago)	HTTP/1.1 request on 11211 GET /v2/_catalog User-Agent: Go-http-client/1.1; 11211 [3] TCP	Hacking Bad Web Bot
🇱🇺 SiteXL	2026-06-08 08:54:02 (2 weeks ago)	{"event":{"DateTime":"2026-06-08T08:47:39Z","RemoteAddr":"159.203.186.214:33958","Protocol":"TCP","C ... show more {"event":{"DateTime":"2026-06-08T08:47:39Z","RemoteAddr":"159.203.186.214:33958","Protocol":"TCP","Command":"GET /query?q=SHOW+DIAGNOSTICS HTTP/1.1\r\nHost: 192.98.123.11:3306\r\nUser-Agent: Go-http-client/1.1\r\nConnection: close\r\n\r\n","CommandOutput":"","Status":"Stateless","Msg":"New TCP attempt","ID":"ac6a613a-7b81-4057-844c-b8906f1b133b","Environ":"","User":"","Password":"","Client":"","Headers":"","HeadersMap":null,"Cookies":"","UserAgent":"","HostHTTPRequest":"","Body":"","HTTPMethod":"","RequestURI":"","Description":"Mysql 8.0.29","SourceIp":"159.203.186.214","SourcePort":"33958","TLSServerName":"","Handler":""},"level":"info","msg":"New Event","status":"Stateless"} {"event":{"DateTime":"2026-06-08T08:47:39Z","RemoteAddr":"159.203.186.214:33934","Protocol":"TCP","Command":"GET / HTTP/1.1\r\nHost: 192.98.123.11:3306\r\nUser-Agent: Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)\r\nAccept: /\r\nAccept-Encoding: gzip\r\n\r\n","CommandOutput":"","Status":"Stateless","Msg":"New TCP attempt", show less	Hacking Port Scan Brute-Force
🇩🇪 Justin F. \| AS204464	2026-06-08 07:40:41 (2 weeks ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 29092 GET /cgi-bin/authLogin.cgi User-Agent: Go-h ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 29092 GET /cgi-bin/authLogin.cgi User-Agent: Go-http-client/1.1; 29092 [4] TCP Reported by: Justin F. show less	Hacking Bad Web Bot
🇫🇷 GoodOldTOS	2026-06-08 07:18:18 (2 weeks ago)	Connection to mysql honeypot	Hacking
🇫🇷 Faeeth	2026-06-08 07:06:15 (2 weeks ago)	Multiple hits on Honeypot UID:PTRW50NM46 Port:MySQL (3306)	Brute-Force
Anonymous	2026-06-08 06:36:12 (2 weeks ago)	Honeypot hit: HTTP/1.1 request on 15672 GET /cgi-bin/authLogin.cgi User-Agent: Go-http-client/1.1; ... show more Honeypot hit: HTTP/1.1 request on 15672 GET /cgi-bin/authLogin.cgi User-Agent: Go-http-client/1.1; 15672 [4] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇳🇱 donarev419	2026-06-08 06:32:50 (2 weeks ago)	Connection to port 8983 with data transfer. Data preview: GET /solr/admin/info/system HTTP/1.1 Host ... show more Connection to port 8983 with data transfer. Data preview: GET /solr/admin/info/system HTTP/1.1 Host: 109.110.170.76:8983 User-Agent: Go-http-client/1.1 Con show less	Port Scan Hacking

Showing 1 to 15 of 96 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 183.81.169.76

🇵🇭 136.158.0.134

🇮🇳 124.253.224.10

🇨🇳 121.41.165.15

🇬🇧 80.1.51.168

🇦🇪 31.215.191.250

🇸🇬 194.233.73.79

🇳🇱 176.65.132.24

🇮🇩 165.154.48.24

🇿🇦 102.64.34.107

🇫🇷 91.231.89.236

🇺🇸 65.49.20.105

🇳🇱 195.178.110.30

🇨🇴 186.1.175.54

🇩🇪 130.12.180.65

🇰🇷 49.247.37.22

🇶🇦 37.186.52.103

🇬🇧 193.163.125.175

🇧🇷 138.255.230.4

🇳🇱 45.148.10.151