JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.132.52.94

161.132.52.94 was found in our database!

This IP was reported 249 times. Confidence of Abuse is 100%: ?

100%

ISP	Red Cientifica Peruana
Usage Type	Data Center/Web Hosting/Transit
ASN	AS3132
Domain Name	rcp.pe
Country	🇵🇪 Peru
City	Lima, Lima Province

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.132.52.94

Whois 161.132.52.94

IP Abuse Reports for 161.132.52.94:

This IP address has been reported a total of 249 times from 179 distinct sources. 161.132.52.94 was first reported on June 7th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ecs.ge	2026-06-15 21:33:16 (1 day ago)	Automatic Fail2Ban report from jail ssh: multiple matching events detected.	Brute-Force SSH
🇳🇱 GG UNLUCKI	2026-06-10 11:10:03 (6 days ago)	Fail2Ban SSH brute-force ban on MainVps.aurorix.net. jail=sshd; source=fail2ban; no raw log lines in ... show more Fail2Ban SSH brute-force ban on MainVps.aurorix.net. jail=sshd; source=fail2ban; no raw log lines included. show less	Brute-Force SSH
🇿🇦 agentics	2026-06-10 02:43:58 (6 days ago)	161.132.52.94 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale ... show more 161.132.52.94 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale industrial operation attempting unrelenting brute-force login attempts for months on end - between all CIDR ranges in the botnet, our servers receive over 800 authentication attempts per minute on smtp, imap and relative mail ports, as well as ssh, and other protocols. IP INFO: - IP 161.132.52.94 - Anycast false - City N/A - Region N/A - Region Code N/A - Country N/A (N/A) - Continent N/A (N/A) - Range N/A - Provider N/A - Organisation N/A - Proxy N/A - Type N/A show less	Brute-Force SSH
🇳🇱 Godert Jan van Manen	2026-06-09 20:36:02 (1 week ago)	Jun 9 22:29:52 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<P+1 ... show more Jun 9 22:29:52 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<P+1E/ddTbqGhhDRe>): unknown user Jun 9 22:29:54 odin dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=178.162.131.122, TLS, session=<P+1E/ddTbqGhhDRe> Jun 9 22:31:46 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<e+cUBNhTlK+hhDRe>): unknown user Jun 9 22:31:48 odin dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=178.162.131.122, TLS, session=<e+cUBNhTlK+hhDRe> Jun 9 22:36:01 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<NxxIE9hTGtShhDRe>): unknown user show less	Brute-Force
🇫🇷 bongcloud.de	2026-06-09 20:10:24 (1 week ago)	Jun 9 21:55:28 web dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<sup ... show more Jun 9 21:55:28 web dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=62.171.133.42, TLS, session=<mDclgtdTdLmhhDRe> Jun 9 22:10:24 web dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=62.171.133.42, TLS, session=<vweKt9dTPJShhDRe> ... show less	Brute-Force SSH
🇳🇱 Godert Jan van Manen	2026-06-09 19:51:15 (1 week ago)	Jun 9 21:45:05 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<49E ... show more Jun 9 21:45:05 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<49EeXddTkKOhhDRe>): unknown user Jun 9 21:45:07 odin dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=178.162.131.122, TLS, session=<49EeXddTkKOhhDRe> Jun 9 21:46:59 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<DY7oY9dTAuChhDRe>): unknown user Jun 9 21:47:01 odin dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=178.162.131.122, TLS, session=<DY7oY9dTAuChhDRe> Jun 9 21:51:14 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<TsIic9dTrOGhhDRe>): unknown user show less	Brute-Force
🇩🇪 eebh.hu	2026-06-09 19:37:22 (1 week ago)	Jun 9 21:37:22 mail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<hr ... show more Jun 9 21:37:22 mail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=194.36.88.23, TLS, session=<M4VgQddTzuGhhDRe> ... show less	Brute-Force
🇳🇱 Godert Jan van Manen	2026-06-09 19:06:29 (1 week ago)	Jun 9 21:00:21 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<+ ... show more Jun 9 21:00:21 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<+tcgvdZTrtShhDRe>): unknown user Jun 9 21:00:23 odin dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=178.162.131.122, TLS, session=<+tcgvdZTrtShhDRe> Jun 9 21:02:15 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<xvXnw9ZTktqhhDRe>): unknown user Jun 9 21:02:17 odin dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=178.162.131.122, TLS, session=<xvXnw9ZTktqhhDRe> Jun 9 21:06:29 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<gUIR09ZTEOKhhDRe>): unknown user show less	Brute-Force
🇫🇷 bongcloud.de	2026-06-09 18:40:55 (1 week ago)	Jun 9 20:26:05 web dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<it@ ... show more Jun 9 20:26:05 web dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=62.171.133.42, TLS, session=<4ChzQtZTwLqhhDRe> Jun 9 20:40:54 web dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=62.171.133.42, TLS, session=<1m55d9ZTHMihhDRe> ... show less	Brute-Force SSH
🇳🇱 e.fierstra	2026-06-09 18:27:34 (1 week ago)	Failed IMAP logins over 24h	Brute-Force
🇳🇱 Godert Jan van Manen	2026-06-09 18:21:53 (1 week ago)	Jun 9 20:15:46 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<JpC3HdZT ... show more Jun 9 20:15:46 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<JpC3HdZT0ryhhDRe>): unknown user Jun 9 20:15:48 odin dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=178.162.131.122, TLS, session=<JpC3HdZT0ryhhDRe> Jun 9 20:17:40 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<hcR0JNZTBOahhDRe>): unknown user Jun 9 20:17:42 odin dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=178.162.131.122, TLS, session=<hcR0JNZTBOahhDRe> Jun 9 20:21:53 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<VoqLM9ZT4NWhhDRe>): unknown user show less	Brute-Force
🇩🇪 eebh.hu	2026-06-09 17:53:17 (1 week ago)	Jun 9 19:38:26 mail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<sa ... show more Jun 9 19:38:26 mail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=194.36.88.23, TLS, session=<PYEJmNVTwL6hhDRe> Jun 9 19:53:17 mail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=194.36.88.23, TLS, session=<iSQrzdVT6syhhDRe> ... show less	Brute-Force
🇫🇮 [email protected]	2026-06-09 17:51:54 (1 week ago)	Attack attempt against Interwebbi servers; (imapd) Failed IMAP login from 161.132.52.94 (PE/Peru/-): ... show more Attack attempt against Interwebbi servers; (imapd) Failed IMAP login from 161.132.52.94 (PE/Peru/-): 5 in the last 3600 secs; IP: 161.132.52.94; Ports: *; Direction: 0; Trigger: LF_IMAPD; show less	Brute-Force
🇳🇱 Godert Jan van Manen	2026-06-09 17:37:23 (1 week ago)	Jun 9 19:31:18 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<Z02mf ... show more Jun 9 19:31:18 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<Z02mftVTio+hhDRe>): unknown user Jun 9 19:31:20 odin dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=178.162.131.122, TLS, session=<Z02mftVTio+hhDRe> Jun 9 19:33:10 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<sqtahdVTlJahhDRe>): unknown user Jun 9 19:33:12 odin dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=178.162.131.122, TLS, session=<sqtahdVTlJahhDRe> Jun 9 19:37:23 odin dovecot: auth-worker(2515): sql([email protected],161.132.52.94,<cLRrlNVTCKyhhDRe>): unknown user show less	Brute-Force
🇩🇪 eebh.hu	2026-06-09 17:23:38 (1 week ago)	Jun 9 18:54:04 mail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<ma ... show more Jun 9 18:54:04 mail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=194.36.88.23, TLS, session=<cApr+dRTuJKhhDRe> Jun 9 19:08:52 mail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=194.36.88.23, TLS, session=<UlpKLtVTYs+hhDRe> Jun 9 19:23:38 mail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=<[email protected]>, method=PLAIN, rip=161.132.52.94, lip=194.36.88.23, TLS, session=<DFMmY9VTPImhhDRe> ... show less	Brute-Force

Showing 1 to 15 of 249 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 185.94.111.1

🇬🇧 118.26.104.19

🇩🇪 85.203.15.121

🇳🇱 85.11.167.118

🇨🇳 39.185.31.192

🇩🇪 213.179.69.181

🇺🇸 195.184.76.215

🇸🇬 188.253.120.46

🇨🇳 180.164.45.181

🇳🇱 87.229.95.129

🇳🇱 45.148.10.183

🇰🇷 211.178.165.251

🇳🇱 195.178.110.26

🇺🇸 186.179.47.170

🇩🇪 154.14.23.208

🇮🇩 103.99.214.16

🇫🇷 84.17.43.213

🇫🇷 83.202.163.22

🇩🇴 45.172.152.74

🇺🇸 205.210.31.82