JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.83.158.35

20.83.158.35 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 57%: ?

57%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.83.158.35

Whois 20.83.158.35

IP Abuse Reports for 20.83.158.35:

This IP address has been reported a total of 30 times from 24 distinct sources. 20.83.158.35 was first reported on April 10th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Rayulcifer	2026-06-24 07:40:30 (1 day ago)	20.83.158.35 - - [24/Jun/2026:02:40:29 -0500] "GET http://cachefly.cachefly.net/200mb.test HTTP/1.1" ... show more 20.83.158.35 - - [24/Jun/2026:02:40:29 -0500] "GET http://cachefly.cachefly.net/200mb.test HTTP/1.1" 403 363 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36" 20.83.158.35 - - [24/Jun/2026:02:40:29 -0500] "GET http://speedtest.tele2.net/1MB.zip HTTP/1.1" 403 363 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36" 20.83.158.35 - - [24/Jun/2026:02:40:29 -0500] "GET http://ipv4.download.thinkbroadband.com/1MB.zip HTTP/1.1" 403 363 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0 Safari/537.36" 20.83.158.35 - - [24/Jun/2026:02:40:29 -0500] "CONNECT speed.hetzner.de:443 HTTP/1.1" 403 344 "-" "-" 20.83.158.35 - - [24/Jun/2026:02:40:29 -0500] "CONNECT proof.ovh.net:443 HTTP/1.1" 403 344 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
🇯🇵 SentinalX by uzumaru	2026-06-24 07:36:09 (1 day ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: speed.cloudflare.com:443 show less	Open Proxy Port Scan
🇹🇼 kk_it_man	2026-06-13 11:10:12 (1 week ago)		Port Scan
🇺🇸 Axel	2026-06-13 10:39:12 (1 week ago)	Blocked by UFW on MVI [8443/tcp] \| SPT: 28696 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [8443/tcp] \| SPT: 28696 \| TTL: 47 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-02 06:16:26 (3 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
Anonymous	2026-06-02 01:07:30 (3 weeks ago)	2026-06-02T02:07:29.494956+01:00 vps kernel: [42102618.018442] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-02T02:07:29.494956+01:00 vps kernel: [42102618.018442] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=20.83.158.35 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=35354 DF PROTO=TCP SPT=49176 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇷🇸 Scan	2026-06-02 00:02:34 (3 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇩🇪 iNetWorker	2026-06-01 21:47:05 (3 weeks ago)	trying to access non-authorized port	Port Scan
🇬🇧 PeravixGroup	2026-06-01 21:06:38 (3 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇫🇮 [email protected]	2026-06-01 02:41:59 (3 weeks ago)	Attack attempt against Interwebbi servers; Port Scan detected from 20.83.158.35 (US/United States/ ... show more Attack attempt against Interwebbi servers; Port Scan detected from 20.83.158.35 (US/United States/-). 5 hits in the last 95 seconds; IP: 20.83.158.35; Ports: *; Direction: 0; Trigger: PS_LIMIT; show less	Brute-Force
🇨🇦 Blinker73	2026-06-01 01:35:01 (3 weeks ago)	2026-05-31T21:35 kernel: OUT= SRC=20.83.158.35 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=53512 DF PR ... show more 2026-05-31T21:35 kernel: OUT= SRC=20.83.158.35 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=53512 DF PROTO=TCP SPT=45056 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 2026-05-31T21:35 kernel: OUT= SRC=20.83.158.35 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=27185 DF PROTO=TCP SPT=45056 DPT=8443 WINDOW=64240 RES=0x00 SYN URGP=0 2026-05-31T21:35 kernel: OUT= SRC=20.83.158.35 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=38264 DF PROTO=TCP SPT=45056 DPT=2086 WINDOW=64240 RES=0x00 SYN URGP= show less	Port Scan
🇩🇪 ValtonTahiri	2026-06-01 00:49:17 (3 weeks ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=20.83.158.35; proto=TCP; source_port=45056; target_port=2087; flags=ACK,RST show less	Port Scan
Anonymous	2026-06-01 00:02:15 (3 weeks ago)	Unauthorized access (tcp/8080 - Scan for open web proxy)	Port Scan
🇩🇪 psauxit	2026-05-31 23:43:49 (3 weeks ago)	Fail2Ban - UFW port probing on unauthorized port	Port Scan
Anonymous	2026-05-31 22:52:40 (3 weeks ago)	2026-05-31T23:52:39.551061+01:00 vps kernel: [42008129.118126] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-05-31T23:52:39.551061+01:00 vps kernel: [42008129.118126] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=20.83.158.35 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=36395 DF PROTO=TCP SPT=44993 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.30

🇧🇷 191.254.91.78

🇻🇳 171.251.239.20

🇩🇪 148.251.47.87

🇲🇾 118.101.207.193

🇳🇱 91.92.40.13

🇩🇪 87.122.21.81

🇩🇪 87.106.204.59

🇺🇸 23.227.187.220

🇻🇳 14.191.215.205

🇬🇧 5.226.140.70

🇧🇬 5.188.206.34

🇮🇳 223.181.35.53

🇨🇳 218.25.89.208

🇬🇧 194.50.235.145

🇺🇸 174.166.227.197

🇪🇸 158.158.43.25

🇨🇳 120.48.78.121

🇮🇳 103.206.97.150

🇱🇻 81.30.98.49