JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 4.246.135.67

4.246.135.67 was found in our database!

This IP was reported 51 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 4.246.135.67

Whois 4.246.135.67

IP Abuse Reports for 4.246.135.67:

This IP address has been reported a total of 51 times from 39 distinct sources. 4.246.135.67 was first reported on August 15th 2025, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-03 22:45:00 (15 hours ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇦🇹 urnilxfgbez	2026-06-02 22:45:00 (1 day ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 KiekerJan	2026-06-02 21:48:09 (1 day ago)	4.246.135.67 - - [02/Jun/2026:23:47:50 +0200] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X1 ... show more 4.246.135.67 - - [02/Jun/2026:23:47:50 +0200] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" 4.246.135.67 - - [02/Jun/2026:23:48:08 +0200] "GET /backup.sql HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ... show less	Web App Attack
🇬🇧 Aetherweb Ark	2026-06-02 21:33:10 (1 day ago)	(mod_security) mod_security (id:949110) triggered by 4.246.135.67 (US/United States/-): N in the las ... show more (mod_security) mod_security (id:949110) triggered by 4.246.135.67 (US/United States/-): N in the last X secs show less	Web App Attack
🇮🇪 AutosOnShow	2026-06-02 21:26:05 (1 day ago)	blocked for webapp attack \| path requested: /.git/config \| seen at 2026-06-02 21:25:46.923 \|	Web App Attack
🇫🇷 Version Net	2026-06-02 19:39:47 (1 day ago)	IPS Detection: Spring.Boot.Actuator.Unauthorized.Access	Hacking
🇬🇧 PeravixGroup	2026-06-02 18:38:35 (1 day ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-02 18:20:18 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 4.246.135.67 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 4.246.135.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 14:20:12.656233 2026] [security2:error] [pid 31337:tid 31337] [client 4.246.135.67:59878] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.144"] [uri "/.git/HEAD"] [unique_id "ah8e3JtqHuSxDyWYq7IdFgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Gabriel Camargo	2026-06-02 17:53:39 (1 day ago)	4.246.135.67 - - [02/Jun/2026:12:53:32 -0500] "GET /.git/HEAD HTTP/1.1" 404 197 "-" "Mozilla/5.0 (Wi ... show more 4.246.135.67 - - [02/Jun/2026:12:53:32 -0500] "GET /.git/HEAD HTTP/1.1" 404 197 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0" 4.246.135.67 - - [02/Jun/2026:12:53:36 -0500] "GET /.env.local HTTP/1.1" 404 134 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14.4; rv:125.0) Gecko/20100101 Firefox/125.0" 4.246.135.67 - - [02/Jun/2026:12:53:39 -0500] "GET /.env.save HTTP/1.1" 404 197 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ... show less	Brute-Force SSH
🇺🇸 MPL	2026-06-02 17:41:42 (1 day ago)	tcp port scan (10 or more attempts)	Port Scan
🇺🇸 RAP	2026-06-02 17:08:58 (1 day ago)	2026-06-02 17:08:58 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇺🇸 RAP	2026-06-02 11:22:38 (2 days ago)	2026-06-02 11:22:38 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇺🇸 xmission.com	2026-06-02 10:29:31 (2 days ago)	Blocked by UFW (TCP on 2087) Source port: 48064 TTL: 47 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 2087) Source port: 48064 TTL: 47 Packet length: 60 TOS: 0x00 This report (for 4.246.135.67) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 drewf.ink	2026-06-02 09:51:42 (2 days ago)	[09:51] Port scanning. Port(s) scanned: TCP/2086, TCP/2087	Port Scan
🇧🇷 SOC Blue Team	2026-06-02 09:27:52 (2 days ago)	IPs get by Hunting on SIEM	Phishing Web Spam Port Scan Hacking

Showing 1 to 15 of 51 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.60.252.187

🇺🇸 195.184.76.19

🇩🇪 192.109.200.78

🇳🇱 176.65.148.156

🇩🇪 141.11.250.239

🇨🇳 121.29.84.196

🇱🇹 81.30.98.158

🇨🇳 59.52.101.85

🇧🇷 45.71.123.226

🇮🇳 182.79.218.164

🇭🇰 152.32.189.59

🇩🇪 102.220.160.137

🇫🇷 38.242.232.20

🇺🇸 35.184.180.224

🇮🇳 27.123.93.186

🇺🇸 184.72.95.195

🇳🇱 156.255.1.208

🇺🇸 148.153.188.246

🇻🇳 123.21.92.245

🇸🇬 103.187.147.165