JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.20.52.174

64.20.52.174 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 0%: ?

ISP	Interserver, Inc
Usage Type	Data Center/Web Hosting/Transit
ASN	AS19318
Domain Name	interserver.net
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.20.52.174

Whois 64.20.52.174

IP Abuse Reports for 64.20.52.174:

This IP address has been reported a total of 23 times from 13 distinct sources. 64.20.52.174 was first reported on September 25th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 bigscoots.com	2025-01-24 19:35:40 (1 year ago)	(smtpauth) Failed SMTP AUTH login from 64.20.52.174 (US/United States/blastingnews.sortional.online) ... show more (smtpauth) Failed SMTP AUTH login from 64.20.52.174 (US/United States/blastingnews.sortional.online): 5 in the last 3600 secs; Ports: 25,465,587; Direction: 0; Trigger: LF_SMTPAUTH; Logs: 2025-01-24 14:29:45 dovecot_plain authenticator failed for (plesk6300) [64.20.52.174]:63874: 535 Incorrect authentication data ([email protected]) 2025-01-24 14:30:37 dovecot_plain authenticator failed for (plesk6300) [64.20.52.174]:51276: 535 Incorrect authentication data ([email protected]) 2025-01-24 14:31:01 dovecot_plain authenticator failed for (plesk6300) [64.20.52.174]:52489: 535 Incorrect authentication data ([email protected]) 2025-01-24 14:31:39 dovecot_plain authenticator failed for (plesk6300) [64.20.52.174]:53923: 535 Incorrect authentication data ([email protected]) 2025-01-24 14:35:38 dovecot_plain authenticator failed for (plesk6300) [64.20.52.174]:59831: 535 Incorrect authentication data ([email protected]) show less	Brute-Force SSH
🇩🇪 Ba-Yu	2023-10-13 10:27:27 (2 years ago)	WP-xmlrpc exploit	Web Spam Blog Spam Hacking Exploited Host Web App Attack
Anonymous	2023-10-12 06:37:20 (2 years ago)	chaangnoifulda.de 64.20.52.174 [12/Oct/2023:08:37:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5878 "-" ... show more chaangnoifulda.de 64.20.52.174 [12/Oct/2023:08:37:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5878 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/44.0.2403.157 Safari/537.36" chaangnoifulda.de 64.20.52.174 [12/Oct/2023:08:37:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5878 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/44.0.2403.157 Safari/537.36" show less	Web App Attack
🇫🇷 Kenshin869	2023-10-12 03:39:52 (2 years ago)	Wordpress unauthorized access attempt	Brute-Force
🇩🇰 wnbhosting.dk	2023-10-12 02:21:45 (2 years ago)	WP xmlrpc [2023-10-12T04:21:45+02:00]	Hacking Web App Attack
🇩🇰 wnbhosting.dk	2023-10-11 07:05:18 (2 years ago)	WP xmlrpc [2023-10-11T09:05:18+02:00]	Hacking Web App Attack
🇩🇪 Marc	2023-10-10 16:51:50 (2 years ago)		Brute-Force Web App Attack
🇨🇿 plzenskypruvodce.cz	2023-10-10 08:08:03 (2 years ago)	[Tue Oct 10 10:08:01.019834 2023] [access_compat:error] [pid 4016139:tid 140148859721472] [client 64 ... show more [Tue Oct 10 10:08:01.019834 2023] [access_compat:error] [pid 4016139:tid 140148859721472] [client 64.20.52.174:58266] AH01797: client denied by server configuration: /var/www/opusarium.cz/www/xmlrpc.php [Tue Oct 10 10:08:01.687717 2023] [access_compat:error] [pid 4016139:tid 140148725438208] [client 64.20.52.174:58271] AH01797: client denied by server configuration: /var/www/opusarium.cz/www/xmlrpc.php ... show less	Web App Attack
🇺🇸 mawan	2023-10-09 21:32:37 (2 years ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack
Anonymous	2023-10-08 08:01:20 (2 years ago)	joshuajohannes.de 64.20.52.174 [05/Oct/2023:02:03:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5845 "-" ... show more joshuajohannes.de 64.20.52.174 [05/Oct/2023:02:03:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5845 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.135 Safari/537.36" joshuajohannes.de 64.20.52.174 [05/Oct/2023:02:03:50 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5845 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.135 Safari/537.36" show less	Web App Attack
Anonymous	2023-10-05 00:03:50 (2 years ago)	joshuajohannes.de 64.20.52.174 [05/Oct/2023:02:03:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5845 "-" ... show more joshuajohannes.de 64.20.52.174 [05/Oct/2023:02:03:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5845 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.135 Safari/537.36" joshuajohannes.de 64.20.52.174 [05/Oct/2023:02:03:50 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5845 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.135 Safari/537.36" show less	Web App Attack
🇧🇷 leolemos	2023-10-04 21:31:05 (2 years ago)	64.20.52.174 - - [04/Oct/2023:18:31:02 -0300] "POST /xmlrpc.php HTTP/1.1" 301 458 "-" "Mozilla/5.0 ( ... show more 64.20.52.174 - - [04/Oct/2023:18:31:02 -0300] "POST /xmlrpc.php HTTP/1.1" 301 458 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0" 64.20.52.174 - - [04/Oct/2023:18:31:03 -0300] "POST /xmlrpc.php HTTP/1.1" 200 6489 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0" 64.20.52.174 - - [04/Oct/2023:18:31:04 -0300] "POST /xmlrpc.php HTTP/1.1" 301 458 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0" 64.20.52.174 - - [04/Oct/2023:18:31:04 -0300] "POST /xmlrpc.php HTTP/1.1" 200 6489 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0" show less	Brute-Force Web App Attack
🇧🇪 taivas.nl	2023-10-04 13:32:13 (2 years ago)	Wordpress_xmlrpc_attack	Bad Web Bot
🇦🇺 MAGIC	2023-10-04 08:01:27 (2 years ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇮🇪 Jim Keir	2023-09-30 23:47:03 (2 years ago)	2023-09-30 23:47:02 64.20.52.174 File scanning, blocking 64.20.52.174 for 5 minutes	Web App Attack

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 45.165.244.226

🇩🇪 193.124.20.228

🇺🇾 190.134.246.6

🇧🇷 186.200.104.66

🇦🇹 185.24.11.144

🇲🇦 160.174.129.232

🇺🇸 136.144.33.84

🇧🇬 79.124.62.178

🇺🇸 74.82.47.53

🇺🇸 66.132.195.69

🇺🇸 65.49.1.193

🇳🇱 45.148.10.141

🇩🇪 45.8.68.170

🇳🇱 40.126.32.136

🇳🇱 34.91.103.129

🇺🇸 3.19.63.57

🇹🇭 202.29.221.2

🇺🇸 184.105.247.195

🇨🇳 182.119.131.250

🇮🇳 103.117.12.12