JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 180.149.126.16

180.149.126.16 was found in our database!

This IP was reported 763 times. Confidence of Abuse is 91%: ?

91%

ISP	Shine LLC
Usage Type	Fixed Line ISP
ASN	AS45204
Domain Name	gemnet.mn
Country	🇲🇳 Mongolia
City	Ulan Bator, Ulaanbaatar

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 180.149.126.16

Whois 180.149.126.16

IP Abuse Reports for 180.149.126.16:

This IP address has been reported a total of 763 times from 205 distinct sources. 180.149.126.16 was first reported on December 4th 2020, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 sefinek.net	2026-06-09 16:35:07 (1 day ago)	Honeypot hit: HTTP/1.1 request on 8630 GET / User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) A ... show more Honeypot hit: HTTP/1.1 request on 8630 GET / User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36 Accept: / Accept-Encoding: gzip; 8630 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇦🇺 LiftUp Hosting	2026-06-09 16:34:01 (1 day ago)	Honeypot hit: HTTP/1.1 request on 8630 GET / User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) A ... show more Honeypot hit: HTTP/1.1 request on 8630 GET / User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36 Accept: / Accept-Encoding: gzip; 8630 [1] TCP show less	Hacking Bad Web Bot
🇺🇸 donarev419	2026-06-09 06:51:21 (2 days ago)	Connection to port 8888 with data transfer. Data preview: GET / HTTP/1.1 Host: 67.215.244.172:8888 ... show more Connection to port 8888 with data transfer. Data preview: GET / HTTP/1.1 Host: 67.215.244.172:8888 User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) Appl show less	Port Scan Hacking
🇯🇵 mkaraki	2026-06-09 06:51:02 (2 days ago)	1780987861 # Service_probe # SIGNATURE_SEND # source_ip:180.149.126.16 # dst_port:8888 ...	Port Scan
🇵🇱 sefinek.net	2026-06-09 05:45:34 (2 days ago)	Honeypot hit: HTTP/1.1 request on 5500 GET / User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) A ... show more Honeypot hit: HTTP/1.1 request on 5500 GET / User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36 Accept: / Accept-Encoding: gzip; 5500 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇳🇱 donarev419	2026-06-09 05:39:37 (2 days ago)	Connection to port 5500 with data transfer. Data preview: GET / HTTP/1.1 Host: 109.110.170.76:5500 ... show more Connection to port 5500 with data transfer. Data preview: GET / HTTP/1.1 Host: 109.110.170.76:5500 User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) Appl show less	Port Scan Hacking
🇳🇱 i-turnradio.nl	2026-06-09 01:07:00 (2 days ago)	2026-06-09 @ 03:07:00 (CET) ~ Blocked for trying to access: /c/	Web App Attack
🇳🇱 donarev419	2026-06-09 01:06:19 (2 days ago)	Connection to port 80 with data transfer. Data preview: GET /c/ HTTP/1.1 Host: 87.229.95.155 User- ... show more Connection to port 80 with data transfer. Data preview: GET /c/ HTTP/1.1 Host: 87.229.95.155 User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWeb show less	Port Scan Hacking
🇦🇺 LiftUp Hosting	2026-06-08 23:33:57 (2 days ago)	Honeypot hit: HTTP/1.1 request on 8000 GET /c/ User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) ... show more Honeypot hit: HTTP/1.1 request on 8000 GET /c/ User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36 Accept: / Accept-Encoding: gzip; 8000 [1] TCP show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-08 18:03:10 (2 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 knock	2026-06-02 14:03:41 (1 week ago)	Knock-Knock honeypot brute-force: proto8 (1 total hits)	Brute-Force
Anonymous	2026-06-02 06:57:35 (1 week ago)	Honeypot hit: HTTP/1.1 request on 8000 GET /c/ User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) ... show more Honeypot hit: HTTP/1.1 request on 8000 GET /c/ User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36 Accept: / Accept-Encoding: gzip; 8000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇩🇪 Axel	2026-06-02 06:52:49 (1 week ago)	[2026-06-02 06:52:49 UTC] Honeypot Dev Web Server connection attempt \| AXFRA HONEYPOT	Web App Attack
🇸🇪 donarev419	2026-06-02 03:39:11 (1 week ago)	Connection to port 5555 with data transfer. Data preview: GET / HTTP/1.1 Host: 51.21.134.169:5555 ... show more Connection to port 5555 with data transfer. Data preview: GET / HTTP/1.1 Host: 51.21.134.169:5555 User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) Apple show less	Port Scan Hacking
🇩🇪 Justin F. \| AS204464	2026-06-02 02:47:11 (1 week ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 5500 GET / User-Agent: Mozilla/5.0 (Windows NT 5. ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 5500 GET / User-Agent: Mozilla/5.0 (Windows NT 5.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.90 Safari/537.36 Accept: / Accept-Encoding: gzip; 5500 [1] TCP Reported by: Justin F. show less	Hacking Bad Web Bot

Showing 1 to 15 of 763 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 194.61.41.54

🇧🇷 177.72.87.7

🇷🇸 77.105.37.219

🇧🇷 35.198.40.112

🇲🇾 175.138.132.10

🇮🇩 157.10.160.103

🇻🇳 116.110.152.230

🇺🇸 107.173.242.112

🇷🇺 95.215.0.144

🇺🇸 205.210.31.65

🇺🇸 205.210.31.60

🇲🇽 186.96.151.198

🇲🇽 186.96.145.241

🇺🇸 172.237.155.29

🇩🇪 159.223.30.144

🇵🇭 154.18.197.35

🇺🇸 150.107.38.251

🇺🇸 146.190.135.238

🇮🇳 123.253.162.254

🇮🇩 103.180.165.3