103.59.103.159

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '103.59.102.0 - 103.59.103.255'

% Abuse contact for '103.59.102.0 - 103.59.103.255' is 'yisuhutong@foxmail.com'

inetnum:        103.59.102.0 - 103.59.103.255
netname:        CLOUD-YISUHUTONG
descr:          YISUHUTONG Network Technology Co., Ltd.
country:        HK
admin-c:        YNTC1-AP
tech-c:         YNTC1-AP
abuse-c:        AC2809-AP
status:         ALLOCATED NON-PORTABLE
mnt-by:         MAINT-CLOUD-YISUHUTONG
mnt-irt:        IRT-CLOUD-YISUHUTONG
last-modified:  2024-08-03T00:31:53Z
source:         APNIC

irt:            IRT-CLOUD-YISUHUTONG
address:        Sha Tin Data Center
e-mail:         yisuhutong@foxmail.com
abuse-mailbox:  yisuhutong@foxmail.com
admin-c:        YNTC1-AP
tech-c:         YNTC1-AP
auth:           # Filtered
remarks:        yisuhutong@foxmail.com was validated on 2026-01-15
mnt-by:         MAINT-CLOUD-YISUHUTONG
last-modified:  2026-01-15T05:52:14Z
source:         APNIC

role:           ABUSE CLOUDYISUHUTONG
country:        ZZ
address:        Sha Tin Data Center
phone:          +000000000
e-mail:         yisuhutong@foxmail.com
admin-c:        YNTC1-AP
tech-c:         YNTC1-AP
nic-hdl:        AC2809-AP
remarks:        Generated from irt object IRT-CLOUD-YISUHUTONG
remarks:        yisuhutong@foxmail.com was validated on 2026-01-15
abuse-mailbox:  yisuhutong@foxmail.com
mnt-by:         APNIC-ABUSE
last-modified:  2026-01-15T05:52:34Z
source:         APNIC

role:           YISUHUTONG Network Technology Co Ltd
address:        Sha Tin Data Center
country:        HK
phone:          +8653286635030
e-mail:         sudu100@gmail.com
admin-c:        QYSH1-AP
tech-c:         QYSH1-AP
nic-hdl:        YNTC1-AP
mnt-by:         MAINT-QYSHTNTCL-CN
last-modified:  2024-08-23T11:28:34Z
source:         APNIC

% Information related to '103.59.102.0/23AS134121'

route:          103.59.102.0/23
descr:          Rainbow Network AS
origin:         AS134121
mnt-by:         MAINT-QYSHTNTCL-CN
last-modified:  2015-06-23T03:31:43Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.59.103.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41627
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.59.103.159.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026060800 1800 900 604800 86400

;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 08 20:24:14 CST 2026
;; MSG SIZE  rcvd: 107

Host info

Host 159.103.59.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 159.103.59.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.146.201.193	spam	Spam from sheepish.pnpbe.com (sheepish.jovenesarrechas.com )	2019-09-07 13:55:59
45.82.153.36	attack	09/07/2019-01:04:00.632090 45.82.153.36 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-07 13:20:07
36.103.245.31	attackspambots	Sep 7 05:51:36 www sshd\[27674\]: Invalid user bip from 36.103.245.31Sep 7 05:51:38 www sshd\[27674\]: Failed password for invalid user bip from 36.103.245.31 port 42126 ssh2Sep 7 05:54:03 www sshd\[27701\]: Invalid user user1 from 36.103.245.31 ...	2019-09-07 13:47:03
101.68.81.66	attackbots	Sep 7 05:41:37 localhost sshd\[14345\]: Invalid user admin from 101.68.81.66 port 57442 Sep 7 05:41:37 localhost sshd\[14345\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.68.81.66 Sep 7 05:41:39 localhost sshd\[14345\]: Failed password for invalid user admin from 101.68.81.66 port 57442 ssh2	2019-09-07 14:03:06
139.59.63.244	attack	Sep 7 05:43:13 web8 sshd\[6366\]: Invalid user gituser from 139.59.63.244 Sep 7 05:43:13 web8 sshd\[6366\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.244 Sep 7 05:43:16 web8 sshd\[6366\]: Failed password for invalid user gituser from 139.59.63.244 port 33622 ssh2 Sep 7 05:48:13 web8 sshd\[8625\]: Invalid user test from 139.59.63.244 Sep 7 05:48:13 web8 sshd\[8625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.244	2019-09-07 13:52:18
188.31.18.144	attackspam	home news feed -not quite right -144/31/188 -already got info -this site is duplicated by illegal networks -control thing -some are freemasons -mention freemasons GSTATIC BBC -mostly Macs with English education fooling the world -illegal networks still running -	2019-09-07 13:23:02
106.75.45.180	attack	Sep 6 19:15:07 auw2 sshd\[19879\]: Invalid user vagrant from 106.75.45.180 Sep 6 19:15:07 auw2 sshd\[19879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180 Sep 6 19:15:09 auw2 sshd\[19879\]: Failed password for invalid user vagrant from 106.75.45.180 port 44184 ssh2 Sep 6 19:20:53 auw2 sshd\[20290\]: Invalid user testftp from 106.75.45.180 Sep 6 19:20:53 auw2 sshd\[20290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.45.180	2019-09-07 13:27:31
206.189.122.133	attack	Sep 7 06:58:41 rpi sshd[21057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.122.133 Sep 7 06:58:43 rpi sshd[21057]: Failed password for invalid user 1q1q1q from 206.189.122.133 port 48040 ssh2	2019-09-07 13:08:51
107.172.46.82	attack	Sep 7 04:00:34 lnxweb61 sshd[431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.46.82	2019-09-07 13:29:51
45.146.201.129	spam	from field.zdray.com (field.jovenesarrechas.com)	2019-09-07 13:59:10
177.9.16.225	attackspambots	Honeypot attack, port: 23, PTR: 177-9-16-225.dsl.telesp.net.br.	2019-09-07 14:01:48
128.199.211.214	attackspambots	Sep 6 18:58:28 hanapaa sshd\[17371\]: Invalid user 123admin123 from 128.199.211.214 Sep 6 18:58:28 hanapaa sshd\[17371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.211.214 Sep 6 18:58:30 hanapaa sshd\[17371\]: Failed password for invalid user 123admin123 from 128.199.211.214 port 45696 ssh2 Sep 6 19:03:33 hanapaa sshd\[17749\]: Invalid user password123 from 128.199.211.214 Sep 6 19:03:33 hanapaa sshd\[17749\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.211.214	2019-09-07 13:58:54
112.186.77.118	attack	Tried sshing with brute force.	2019-09-07 13:44:54
190.64.137.171	attackbotsspam	Sep 6 16:52:31 kapalua sshd\[29107\]: Invalid user newuser from 190.64.137.171 Sep 6 16:52:31 kapalua sshd\[29107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=r190-64-137-171.ir-static.anteldata.net.uy Sep 6 16:52:33 kapalua sshd\[29107\]: Failed password for invalid user newuser from 190.64.137.171 port 33192 ssh2 Sep 6 16:57:36 kapalua sshd\[29514\]: Invalid user dspace from 190.64.137.171 Sep 6 16:57:36 kapalua sshd\[29514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=r190-64-137-171.ir-static.anteldata.net.uy	2019-09-07 13:41:21
185.181.210.221	attackspam	Sep 7 07:11:15 lenivpn01 kernel: \[65889.989998\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=185.181.210.221 DST=195.201.121.15 LEN=44 TOS=0x00 PREC=0x00 TTL=41 ID=38519 PROTO=TCP SPT=54167 DPT=6673 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 7 07:11:15 lenivpn01 kernel: \[65890.177704\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=185.181.210.221 DST=195.201.121.15 LEN=44 TOS=0x00 PREC=0x00 TTL=36 ID=38901 PROTO=TCP SPT=54168 DPT=6673 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 7 07:13:04 lenivpn01 kernel: \[65999.009166\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=185.181.210.221 DST=195.201.121.15 LEN=44 TOS=0x00 PREC=0x00 TTL=34 ID=58646 PROTO=TCP SPT=48978 DPT=6513 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 7 07:13:04 lenivpn01 kernel: \[65999.178102\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=185.181.210.221 DST=195.201.121.15 LEN=44 TOS=0x00 PREC=0x00 TTL=27 ID= ...	2019-09-07 13:26:30

Recently Reported IPs

175.6.77.135	190.203.194.75	120.204.56.41	58.145.196.74
185.93.89.147	77.90.185.16	85.17.55.241	172.94.9.55
222.126.169.182	223.26.5.24	2606:4700:10::6816:421	2606:4700:10::6814:7316
192.253.248.142	123.1.183.108	2606:4700:10::ac43:1747	2606:4700:10::6814:7915
89.37.172.158	5.226.140.86	2606:4700:10::6816:2101	14.207.194.53