JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.180.246.235

216.180.246.235 was found in our database!

This IP was reported 760 times. Confidence of Abuse is 0%: ?

ISP	NETWORK TRANSIT HOLDINGS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396982
Hostname(s)	crawler235.deepfield.net
Domain Name	networktransit.net
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Important Note: 216.180.246.235 is an IP address from within our whitelist belonging to the subnet 216.180.246.0/24, which we identify as: "Deepfield Genome".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 216.180.246.235

Whois 216.180.246.235

IP Abuse Reports for 216.180.246.235:

This IP address has been reported a total of 760 times from 267 distinct sources. 216.180.246.235 was first reported on December 27th 2025, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Justin F. \| AS204464	2026-06-22 22:46:35 (2 hours ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 3500 [4] TCP Reported by: Justin ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 3500 [4] TCP Reported by: Justin F. show less	Port Scan
🇬🇧 sandra361	2026-06-22 21:15:03 (3 hours ago)	Port scan detected: 28 attempts across 1 ports (3001). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=21 ... show more Port scan detected: 28 attempts across 1 ports (3001). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=216.180.246.235 LEN=44 TOS=0x00 PREC=0x00 TTL=57 ID=17267 PROTO=TCP SPT=21063 DPT=3001 WINDOW=1025 RES=0x00 SYN URGP=0 show less	Port Scan
Anonymous	2026-06-22 18:26:32 (6 hours ago)	Honeypot hit: Empty payload (likely service probe); 3125 [6] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 3125 [6] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇩🇪 Hans Wurst	2026-06-22 11:05:59 (13 hours ago)	1782126359 - 06/22/2026 13:05:59 Host: 216.180.246.235/216.180.246.235 Port: 161 UDP Blocked	Port Scan
🇩🇪 Nightreaver	2026-06-22 08:12:25 (16 hours ago)	216.180.246.235 - - [22/Jun/2026:10:12:23 0200] "GET /admin/index.html HTTP/1.1" 404 438 "-" "Mozil ... show more 216.180.246.235 - - [22/Jun/2026:10:12:23 0200] "GET /admin/index.html HTTP/1.1" 404 438 "-" "Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; https://www.nokia.com/genomecrawler)" 216.180.246.235 - - [22/Jun/2026:10:12:24 0200] "GET /index.html HTTP/1.1" 404 438 "-" "Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; https://www.nokia.com/genomecrawler)" 216.180.246.235 - - [22/Jun/2026:10:12:24 0200] "GET /index.html HTTP/1.1" 404 438 "-" "Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; https://www.nokia.com/genomecrawler)" 216.180.246.235 - - [22/Jun/2026:10:12:24 0200] "GET / CSCOE /logon.html HTTP/1.1" 404 438 "-" "Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; https://www.nokia.com/genomecrawler)" 216.180.246.235 - - [22/Jun/2026:10:12:24 0200] "GET / CSCOE /logon.html HTTP/1.1" 404 438 "-" "Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; https://www.nokia.com/genomecrawler)"[...] show less	Bad Web Bot Web App Attack
🇩🇪 Justin F. \| AS204464	2026-06-22 05:39:43 (19 hours ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 13502 [6] TCP Reported by: Justi ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 13502 [6] TCP Reported by: Justin F. show less	Port Scan
🇺🇸 Luis Fernando Camargo	2026-06-21 23:01:09 (1 day ago)	Honeytrapped	Port Scan Brute-Force
🇺🇸 MPL	2026-06-21 21:20:01 (1 day ago)	tcp/8080 (16 or more attempts)	Port Scan
🇩🇪 WinnieHoneypots	2026-06-21 08:56:21 (1 day ago)	Sends email spam or probes for mailboxes to send spam to or tries to bruteforce one, 4 hit(s) on por ... show more Sends email spam or probes for mailboxes to send spam to or tries to bruteforce one, 4 hit(s) on port(s) 465,587 show less	Phishing Email Spam
🇩🇪 london2038.com	2026-06-21 06:58:18 (1 day ago)	Malformed or malicious web request 216.180.246.235 - - [21/Jun/2026:08:58:14 +0200] "GET / HTTP/1.0" ... show more Malformed or malicious web request 216.180.246.235 - - [21/Jun/2026:08:58:14 +0200] "GET / HTTP/1.0" 400 255 "-" "-" show less	Hacking Web App Attack
🇬🇧 Smish	2026-06-21 06:07:22 (1 day ago)	HONEYPOT HIT --> Fail2ban time=1782022041 log=2026-06-21T07:07:21+01:00 ip=216.180.246.235 host=89.3 ... show more HONEYPOT HIT --> Fail2ban time=1782022041 log=2026-06-21T07:07:21+01:00 ip=216.180.246.235 host=89.39.211.7 method=GET uri="/admin/index.html" status=404 ua="Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)" ref="-" rid=92ac359a6efdef6ec720344c3158d772 show less	Web App Attack
🇩🇰 RhQM	2026-06-21 05:23:33 (1 day ago)		Bad Web Bot Exploited Host Web App Attack
🇦🇹 centurion	2026-06-21 05:21:20 (1 day ago)	Blocked by UFW on ns03 [443/tcp] Source port: 21915 TTL: 59 Packet length: 44 TOS: 0x00 This report ... show more Blocked by UFW on ns03 [443/tcp] Source port: 21915 TTL: 59 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇩🇪 Hans Wurst	2026-06-20 22:21:35 (2 days ago)	Many 404-Error: Suspicion of URL-Fuzzing/Bot-Scan.	Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-20 22:20:06 (2 days ago)	Request Missing a Host Header. Operator EQ matched 0 at REQUEST_HEADERS. (920280-iad5-2)	Hacking

Showing 1 to 15 of 760 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.191.38.176

🇺🇸 162.216.150.27

🇳🇱 91.92.40.233

🇮🇹 91.80.187.229

🇧🇾 81.30.98.142

🇺🇸 66.132.195.15

🇺🇸 64.62.197.45

🇰🇷 59.12.160.91

🇺🇸 52.224.109.126

🇲🇾 49.124.148.195

🇧🇷 45.226.104.1

🇳🇱 45.198.224.46

🇳🇱 45.142.193.169

🇸🇬 43.159.51.254

🇺🇸 34.41.211.48

🇬🇧 31.14.254.50

🇨🇳 27.8.44.168

🇧🇷 20.226.100.179

🇩🇪 8.211.16.92

🇪🇸 5.182.83.231