JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.180.246.231

216.180.246.231 was found in our database!

This IP was reported 790 times. Confidence of Abuse is 0%: ?

ISP	NETWORK TRANSIT HOLDINGS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	crawler231.deepfield.net
Domain Name	networktransit.net
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Important Note: 216.180.246.231 is an IP address from within our whitelist belonging to the subnet 216.180.246.0/24, which we identify as: "Deepfield Genome".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 216.180.246.231

Whois 216.180.246.231

IP Abuse Reports for 216.180.246.231:

This IP address has been reported a total of 790 times from 243 distinct sources. 216.180.246.231 was first reported on December 27th 2025, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Justin F. \| AS204464	2026-06-16 08:52:43 (10 hours ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 7080 [7] TCP Reported by: Justin ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 7080 [7] TCP Reported by: Justin F. show less	Port Scan
🇺🇸 donarev419	2026-06-16 03:44:05 (15 hours ago)	Connection to port 5004 with data transfer. Data preview:	Port Scan Hacking
🇺🇸 mw	2026-06-16 00:27:21 (18 hours ago)	Web App Attack	Web App Attack
🇫🇷 bellovacorp	2026-06-16 00:10:16 (19 hours ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇩🇪 Justin F. \| AS204464	2026-06-15 23:48:35 (19 hours ago)	Honeypot [nx-infrastructure]: Unauthorized traffic on 135/epmapper Reported by: Justin F.	Port Scan
🇲🇿 delsio	2026-06-15 23:40:25 (19 hours ago)	AS37697 ntopng observed inbound attack; alert=Live Flow High Score; source=216.180.246.231; destinat ... show more AS37697 ntopng observed inbound attack; alert=Live Flow High Score; source=216.180.246.231; destination=102.210.72.249; destination_port=4567; score=110; action=bgp_blackhole_and_flowspec_discard; block_duration=18000s; reason=high-confidence ntopng_blacklisted alert=Live Flow High Score dst=102.210.72.249 port=4567 show less	Port Scan
🇧🇷 opastorello	2026-06-15 04:10:05 (1 day ago)	T-Pot honeypot: 94 hits in 15min on port(s) 3390 (P0f/Suricata/Honeytrap). Port scan / unsolicited c ... show more T-Pot honeypot: 94 hits in 15min on port(s) 3390 (P0f/Suricata/Honeytrap). Port scan / unsolicited connection. Automated report. show less	Port Scan
🇸🇪 KIDOS	2026-06-14 16:54:05 (2 days ago)	Apache monitor: ssrf_log_spoofing	Brute-Force SSH
🇩🇪 celestialcity	2026-06-14 13:11:36 (2 days ago)	Blocked by UFW on celestialcityeu [61234/tcp] \| SPT: 21587 \| TTL: 51 \| LEN: 44 \| TOS: 0x00 • Reporte ... show more Blocked by UFW on celestialcityeu [61234/tcp] \| SPT: 21587 \| TTL: 51 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-14 13:09:59 (2 days ago)	Blocked by UFW on MVI [61234/tcp] \| SPT: 21587 \| TTL: 58 \| LEN: 44 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on MVI [61234/tcp] \| SPT: 21587 \| TTL: 58 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-14 12:58:18 (2 days ago)	Honeypot hit: Empty payload (likely service probe); 9020 [1], 9100 [1] TCP	Port Scan
🇺🇸 CBJ	2026-06-14 10:08:06 (2 days ago)	fail2ban: apache-proxy ...	Web App Attack
🇳🇴 Bots.go.to.hell	2026-06-14 06:54:53 (2 days ago)	This IP was detected by CrowdSec triggering custom/ip-honeypot	Web App Attack Bad Web Bot
🇩🇪 Bedios GmbH	2026-06-14 06:01:30 (2 days ago)	Web App hacking attempt	Web App Attack
🇺🇸 pixiekat	2026-06-14 05:40:53 (2 days ago)	[Sun Jun 14 05:36:58.155496 2026] [authz_core:error] [pid 104473:tid 104486] [client 216.180.246.231 ... show more [Sun Jun 14 05:36:58.155496 2026] [authz_core:error] [pid 104473:tid 104486] [client 216.180.246.231:21841] AH01630: client denied by server configuration: /var/www/html/ [Sun Jun 14 05:38:09.497727 2026] [authz_core:error] [pid 104473:tid 104484] [client 216.180.246.231:21841] AH01630: client denied by server configuration: /var/www/html/ [Sun Jun 14 05:40:48.955568 2026] [authz_core:error] [pid 104473:tid 104483] [client 216.180.246.231:26170] AH01630: client denied by server configuration: /var/www/html/ [Sun Jun 14 05:40:51.264382 2026] [authz_core:error] [pid 104473:tid 104501] [client 216.180.246.231:26170] AH01630: client denied by server configuration: /var/www/html/manage [Sun Jun 14 05:40:52.961380 2026] [authz_core:error] [pid 104473:tid 104482] [client 216.180.246.231:26170] AH01630: client denied by server configuration: /var/www/html/admin ... show less	Brute-Force

Showing 1 to 15 of 790 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.224.37.162

🇨🇳 125.124.183.254

🇮🇳 34.93.128.179

🇺🇸 31.59.40.94

🇸🇪 16.171.140.117

🇩🇪 167.94.145.17

🇺🇸 147.185.132.237

🇺🇸 146.235.214.154

🇷🇺 94.243.9.140

🇨🇳 47.98.157.200

🇹🇷 45.155.159.61

🇸🇪 13.60.172.24

🇧🇪 198.235.24.240

🇺🇸 198.62.0.246

🇺🇸 172.253.244.150

🇩🇪 167.94.145.26

🇰🇷 61.76.112.4

🇸🇬 47.241.108.227

🇱🇹 45.227.254.170

🇧🇷 2804:868:d040:923f:7933:8492:79:75f2