JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.180.246.223

216.180.246.223 was found in our database!

This IP was reported 783 times. Confidence of Abuse is 0%: ?

ISP	NETWORK TRANSIT HOLDINGS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	crawler223.deepfield.net
Domain Name	networktransit.net
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Important Note: 216.180.246.223 is an IP address from within our whitelist belonging to the subnet 216.180.246.0/24, which we identify as: "Deepfield Genome".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 216.180.246.223

Whois 216.180.246.223

IP Abuse Reports for 216.180.246.223:

This IP address has been reported a total of 783 times from 250 distinct sources. 216.180.246.223 was first reported on December 27th 2025, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 JCB	2026-06-29 15:01:00 (2 hours ago)	216.180.246.223 - - [28/Jun/2026:16:54:28 +0300] "GET /manage/account/login HTTP/1.1" 404 236 216.1 ... show more 216.180.246.223 - - [28/Jun/2026:16:54:28 +0300] "GET /manage/account/login HTTP/1.1" 404 236 216.180.246.223 - - [28/Jun/2026:16:54:31 +0300] "GET /admin/index.html HTTP/1.1" 404 236 ... show less	Web App Attack
🇺🇸 rellim.com	2026-06-29 01:04:58 (16 hours ago)	Jun 28 18:04:40 alice kernel: HACK IN=enp3s0 OUT=enp1s0f1 MAC=68:05:ca:2e:ce:bc:00:24:dc:78:a0:01:08 ... show more Jun 28 18:04:40 alice kernel: HACK IN=enp3s0 OUT=enp1s0f1 MAC=68:05:ca:2e:ce:bc:00:24:dc:78:a0:01:08:00 SRC=216.180.246.223 DST=204.17.205.254 LEN=44 TOS=0x00 PREC=0x00 TTL=58 ID=9081 PROTO=TCP SPT=21478 DPT=22 WINDOW=1025 RES=0x00 SYN URGP=0 Jun 28 18:04:49 alice kernel: HACK IN=enp3s0 OUT=enp1s0f1 MAC=68:05:ca:2e:ce:bc:00:24:dc:78:a0:01:08:00 SRC=216.180.246.223 DST=204.17.205.254 LEN=44 TOS=0x00 PREC=0x00 TTL=58 ID=9081 PROTO=TCP SPT=21478 DPT=22 WINDOW=1025 RES=0x00 SYN URGP=0 Jun 28 18:04:58 alice kernel: HACK IN=enp3s0 OUT=enp1s0f1 MAC=68:05:ca:2e:ce:bc:00:24:dc:78:a0:01:08:00 SRC=216.180.246.223 DST=204.17.205.254 LEN=44 TOS=0x00 PREC=0x00 TTL=58 ID=9081 PROTO=TCP SPT=21478 DPT=22 WINDOW=1025 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 mw	2026-06-29 00:57:01 (17 hours ago)	Web App Attack	Web App Attack
🇺🇸 Luis Fernando Camargo	2026-06-28 23:00:49 (18 hours ago)	Honeytrapped	Port Scan Brute-Force
🇩🇪 Justin F. \| AS204464	2026-06-28 16:15:40 (1 day ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 2086 [3] TCP Reported by: Justin ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 2086 [3] TCP Reported by: Justin F. show less	Port Scan
🇺🇸 xmission.com	2026-06-28 10:33:36 (1 day ago)	Blocked by UFW (TCP on 443) Source port: 21745 TTL: 60 Packet length: 44 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 443) Source port: 21745 TTL: 60 Packet length: 44 TOS: 0x00 This report (for 216.180.246.223) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇩🇪 itsolon	2026-06-28 07:26:57 (1 day ago)	[28/Jun/2026:09:26:49 +0200] 178263160911.733475 216.180.246.223 26964 217.154.7.177 80 [28/Jun/2026 ... show more [28/Jun/2026:09:26:49 +0200] 178263160911.733475 216.180.246.223 26964 217.154.7.177 80 [28/Jun/2026:09:26:50 +0200] 178263161023.216911 216.180.246.223 26964 217.154.7.177 80 [28/Jun/2026:09:26:54 +0200] 17826316146.493381 216.180.246.223 26964 217.154.7.177 80 [28/Jun/2026:09:26:55 +0200] 178263161585.966756 216.180.246.223 26964 217.154.7.177 80 [28/Jun/2026:09:26:56 +0200] 178263161699.671046 216.180.246.223 26964 217.154.7.177 80 ... show less	Port Scan Hacking Brute-Force Web App Attack
🇫🇷 CYBER-SECURITY-MM	2026-06-28 05:01:57 (1 day ago)	Bloqueada por Fail2Ban jail postfix-auth-abort por intentos de login fallidos	Web App Attack
🇺🇸 cwytech	2026-06-27 21:54:51 (1 day ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/pf-geofence-high.	Hacking
🇵🇾 armandosaucedo.me	2026-06-27 15:45:42 (2 days ago)	Threat Intelligence via ARMTI, Web Attack: GET /	Web App Attack
🇵🇱 Tankudoraiba	2026-06-27 14:02:41 (2 days ago)	Unauthorized connection attempts on ports 443\|80	Port Scan Bad Web Bot
🇨🇿 huginet	2026-06-27 10:41:45 (2 days ago)	216.180.246.223 - - [27/Jun/2026:12:41:43 +0200] "GET / HTTP/1.1" 403 32175 "-" "Mozilla/5.0 (compat ... show more 216.180.246.223 - - [27/Jun/2026:12:41:43 +0200] "GET / HTTP/1.1" 403 32175 "-" "Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)" 216.180.246.223 - - [27/Jun/2026:12:41:44 +0200] "GET /manage/account/login HTTP/1.1" 403 32175 "-" "Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)" ... show less	Web Spam Web App Attack
🇳🇱 Savvii	2026-06-27 06:42:30 (2 days ago)	15 attempts against mh-modsecurity-ban on hostbillst4	Brute-Force Web App Attack
🇳🇱 VMHeaven.io	2026-06-27 05:57:41 (2 days ago)	Blocked by UFW [80/tcp] Source port: 21784 TTL: 60 Packet length: 44	Port Scan Web App Attack
🇩🇪 Justin F. \| AS204464	2026-06-27 03:26:10 (2 days ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 8252 [1] TCP Reported by: Justin ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 8252 [1] TCP Reported by: Justin F. show less	Port Scan

Showing 1 to 15 of 783 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 217.216.122.141

🇫🇷 207.180.238.18

🇺🇸 147.185.132.14

🇺🇸 141.11.88.9

🇺🇸 70.107.191.235

🇳🇱 45.155.90.234

🇨🇭 37.120.213.10

🇯🇵 8.216.3.56

🇰🇷 211.238.237.254

🇳🇱 195.178.110.30

🇬🇧 185.247.137.81

🇭🇰 165.154.43.179

🇫🇮 147.185.133.92

🇨🇳 111.39.8.182

🇱🇺 64.89.161.90

🇧🇷 45.177.33.84

🇳🇱 45.153.34.112

🇳🇱 45.148.10.147

🇺🇸 173.252.87.139

🇺🇸 173.160.85.205