JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 4.246.135.160

4.246.135.160 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 37%: ?

37%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 4.246.135.160

Whois 4.246.135.160

IP Abuse Reports for 4.246.135.160:

This IP address has been reported a total of 28 times from 21 distinct sources. 4.246.135.160 was first reported on July 31st 2025, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-14 04:12:29 (12 hours ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-06-13 21:51:28 (19 hours ago)	Honeypot hit: Empty payload (likely service probe); 2078 [1], 2077 [1], 2087 [1] TCP Reported by: ht ... show more Honeypot hit: Empty payload (likely service probe); 2078 [1], 2077 [1], 2087 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 RAP	2026-06-13 21:44:42 (19 hours ago)	2026-06-13 21:44:42 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇱🇹 NotACaptcha	2026-06-13 20:10:33 (20 hours ago)	Unauthorised access (Jun 13 23:10) SRC=4.246.135.160 LEN=60 TTL=40 ID=5958 DF TCP DPT=8080 WINDOW=64 ... show more Unauthorised access (Jun 13 23:10) SRC=4.246.135.160 LEN=60 TTL=40 ID=5958 DF TCP DPT=8080 WINDOW=64240 SYN show less	Port Scan
🇺🇸 Axel	2026-06-13 17:46:56 (23 hours ago)	Blocked by UFW on MVI [8880/tcp] \| SPT: 31776 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [8880/tcp] \| SPT: 31776 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇯🇵 demonsword	2026-05-09 07:57:47 (1 month ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: example.com:443 show less	Open Proxy Port Scan
🇳🇱 homeshowdomain.nl	2026-04-09 22:03:11 (2 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-04-08. show less	Web App Attack SSH Hacking
🇨🇦 polycoda	2026-04-09 10:45:54 (2 months ago)	🔥 VERY AGGRESSIVE SCANNER probed over 100 inexistent files and PHP scripts in less than an hour.	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-04-08 23:01:20 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 4.246.135.160 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 4.246.135.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 19:01:13.739049 2026] [security2:error] [pid 2650392:tid 2650392] [client 4.246.135.160:39772] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marcosbarraza.net"] [uri "/.git/config"] [unique_id "adbeOeOvdmYWCmE2DWSICgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ambor	2026-04-08 22:36:43 (2 months ago)	L0ss Honeypot: Git configuration file access attempt. Path: /.git/config	Web App Attack
🇨🇦 polycoda	2026-04-08 21:44:37 (2 months ago)	AutoBlock: 🎯 Vulnerability Scanner (Non Decay-Based)	Hacking Web App Attack
Anonymous	2026-04-08 21:17:28 (2 months ago)	Trying to access config files	Web App Attack
🇺🇸 interbiznw.com	2026-04-08 19:46:14 (2 months ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇺🇸 Rayulcifer	2026-04-06 18:09:51 (2 months ago)	4.246.135.160 - - [06/Apr/2026:13:09:05 -0500] "CONNECT graph.vshield.pro:443:443 HTTP/1.1" 400 392 ... show more 4.246.135.160 - - [06/Apr/2026:13:09:05 -0500] "CONNECT graph.vshield.pro:443:443 HTTP/1.1" 400 392 "-" "-" 4.246.135.160 - - [06/Apr/2026:13:09:50 -0500] "CONNECT h2.dstat.love:443 HTTP/1.1" 502 488 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
🇺🇸 Rayulcifer	2026-03-31 14:55:03 (2 months ago)	4.246.135.160 - - [31/Mar/2026:09:55:01 -0500] "CONNECT www.ezglobalyazilim.com:443:443 HTTP/1.1" 40 ... show more 4.246.135.160 - - [31/Mar/2026:09:55:01 -0500] "CONNECT www.ezglobalyazilim.com:443:443 HTTP/1.1" 400 392 "-" "-" 4.246.135.160 - - [31/Mar/2026:09:55:02 -0500] "CONNECT www.ezglobalyazilim.com:443:443 HTTP/1.1" 400 392 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 220.121.38.45

🇺🇸 185.88.100.68

🇨🇦 148.113.221.241

🇲🇾 121.121.60.194

🇳🇱 45.148.10.152

🇯🇵 35.187.222.91

🇺🇸 34.145.226.92

🇺🇸 2604:a880:400:d1:0:4:9632:c001

🇧🇪 198.235.24.201

🇳🇱 45.148.10.157

🇹🇿 41.93.28.23

🇰🇷 34.158.199.217

🇺🇸 34.23.30.196

🇩🇪 8.211.3.254

🇩🇪 5.9.102.138

🇮🇳 122.168.194.41

🇻🇳 113.161.39.122

🇮🇩 110.137.210.102

🇭🇰 101.36.109.176

🇫🇷 85.69.240.210