JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 20.84.145.84

20.84.145.84 was found in our database!

This IP was reported 6,680 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Hostname(s)	azpdcsh6i6dg.stretchoid.com
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Des Moines, Iowa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 20.84.145.84

Whois 20.84.145.84

IP Abuse Reports for 20.84.145.84:

This IP address has been reported a total of 6,680 times from 463 distinct sources. 20.84.145.84 was first reported on October 18th 2023, and the most recent report was 34 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 security.rdmc.fr	2026-06-08 16:26:39 (34 minutes ago)	IP in Malicious Database	Web App Attack
🇬🇧 sandra361	2026-06-08 16:22:01 (39 minutes ago)	Port scan detected: 8 attempts across 1 ports (5631). \| Evidence: REAPER_TARPIT:IN=enp1s0f0 OUT= SRC ... show more Port scan detected: 8 attempts across 1 ports (5631). \| Evidence: REAPER_TARPIT:IN=enp1s0f0 OUT= SRC=20.84.145.84 LEN=52 TOS=0x00 PREC=0x00 TTL=44 ID=43337 PROTO=TCP SPT=49969 DPT=5631 WINDOW=65535 RES=0x00 SYN URGP=0 show less	Port Scan
🇩🇪 Admins@FBN	2026-06-08 14:50:49 (2 hours ago)	FW-PortScan: Traffic Blocked srcport=46821 dstport=50070	Port Scan
🇲🇹 neilcaruana	2026-06-08 14:17:49 (2 hours ago)	Sentinel detected an attack on port [10250]	Hacking
🇩🇪 femboy.cat	2026-06-08 12:00:25 (5 hours ago)	Port scan to tcp/1527 from 20.84.145.84	Brute-Force
🇺🇸 MPL	2026-06-08 11:54:32 (5 hours ago)	tcp/11740	Port Scan
🇫🇷 zulzeen	2026-06-08 11:01:23 (5 hours ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (SSH Attack)	SSH Brute-Force
🇸🇬 drewf.ink	2026-06-08 09:10:16 (7 hours ago)	[09:10] Port scanning. Port(s) scanned: TCP/8080	Port Scan
🇺🇸 RAP	2026-06-08 07:29:39 (9 hours ago)	2026-06-08 07:29:39 UTC Unauthorized activity to TCP port 9200.	Port Scan
🇺🇸 cwytech	2026-06-08 07:18:10 (9 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/pf-geofence-high.	Hacking
🇺🇸 MPL	2026-06-08 06:15:39 (10 hours ago)	tcp ports: 520,8001 (2 or more attempts)	Port Scan
🇺🇸 donarev419	2026-06-08 05:41:32 (11 hours ago)	Connection to port 2082 with data transfer. Data preview: GET / HTTP/1.1 Host: 198.23.188.201:2082 ... show more Connection to port 2082 with data transfer. Data preview: GET / HTTP/1.1 Host: 198.23.188.201:2082 User-Agent: Mozilla/5.0 zgrab/0.x Accept: / Accept-En show less	Port Scan Hacking
🇺🇸 MPL	2026-06-08 05:18:31 (11 hours ago)	tcp/2000	Port Scan
🇳🇱 donarev419	2026-06-08 04:54:04 (12 hours ago)	Connection to port 8098 with data transfer. Data preview: GET /stats HTTP/1.1 Host: 109.110.170.76: ... show more Connection to port 8098 with data transfer. Data preview: GET /stats HTTP/1.1 Host: 109.110.170.76:8098 User-Agent: Mozilla/5.0 zgrab/0.x Accept: / Acce show less	Port Scan Hacking
🇪🇸 librebit	2026-06-08 04:12:29 (12 hours ago)	Brute force	Brute-Force

Showing 1 to 15 of 6680 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 182.119.230.87

🇨🇳 121.229.156.69

🇨🇳 218.25.89.208

🇺🇸 107.172.251.42

🇸🇬 43.133.60.94

🇧🇪 35.190.202.214

🇩🇪 185.228.36.75

🇨🇳 171.114.229.249

🇦🇪 132.243.121.237

🇩🇪 103.75.196.199

🇳🇱 45.148.10.121

🇧🇩 45.120.115.150

🇮🇩 36.83.60.167

🇰🇷 34.22.83.183

🇨🇳 1.24.229.209

🇻🇳 203.210.239.249

🇩🇪 64.89.163.50

🇳🇱 45.148.10.141

🇧🇪 35.190.210.255

🇧🇷 2a09:bac5:aa4:24be::3a9:6d