JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.152.145.203

5.152.145.203 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 28%: ?

28%

ISP	ALCONN SRL
Usage Type	Fixed Line ISP
ASN	AS60530
Domain Name	alconn.it
Country	🇮🇹 Italy
City	Rome, Lazio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.152.145.203

Whois 5.152.145.203

IP Abuse Reports for 5.152.145.203:

This IP address has been reported a total of 19 times from 15 distinct sources. 5.152.145.203 was first reported on June 2nd 2022, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 aaKenshin	2026-06-21 21:33:14 (3 hours ago)	Suspicious activity detected from IP 5.152.145.203 based on mailserver logs. Sample logs: 2026-06-22 ... show more Suspicious activity detected from IP 5.152.145.203 based on mailserver logs. Sample logs: 2026-06-22 05:33:03,546 INFO [ImapServer-4800] [ip=172.16.0.182;cid=5702;oip=5.152.145.203;via=172.16.0.182(nginx/1.24.0);ua=Zimbra/24.9.7_ZEXTRAS_202410;] imap - ID elapsed=0 (NIO) 2026-06-22 05:33:03,546 INFO [ImapServer-4800] [ip=172.16.0.182;oip=5.152.145.203;via=172.16.0.182(nginx/1.24.0);ua=Zimbra/24.9.7_ZEXTRAS_202410;cid=5702;] imap - AUTHENTICATE elapsed=0 (NIO) 2026-06-22 05:33:03,547 INFO [ImapServer-4800] [ip=172.16.0.182;oip=5.152.145.203;via=172.16.0.182(nginx/1.24.0);ua=Zimbra/24.9.7_ZEXTRAS_202410;cid=5702;] imap - authentication failed for [] (LDAP error: - unable to ldap authenticate: invalid credentials) 2026-06-22 05:33:03,547 INFO [ImapServer-4800] [ip=172.16.0.182;oip=5.152.145.203;via=172.16.0.182(nginx/1.24.0);ua=Zimbra/24.9.7_ZEXTRAS_202410;cid=5702;] account - Error occurred during authentication: authentication failed for []. Reason: LDAP error: - unable to lda show less	Brute-Force
🇮🇹 Inartis	2026-06-21 10:12:35 (15 hours ago)	Jun 21 12:12:23 mail1 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 4 secs): user=<c ... show more Jun 21 12:12:23 mail1 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 4 secs): user=<[email protected]>, method=PLAIN, rip=5.152.145.203, lip=93.39.247.192, TLS, session=<yDvOwsBU7boFmJHL> Jun 21 12:12:34 mail1 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 8 secs): user=<[email protected]>, method=PLAIN, rip=5.152.145.203, lip=93.39.247.192, TLS, session=<YzQ7w8BU+boFmJHL> ... show less	Port Scan Brute-Force
🇨🇿 Countryman	2026-06-20 13:26:28 (1 day ago)	2026-06-20T15:21:58.537137 orbis.img.cas.cz dovecot[1147122]: pop3-login: Disconnected: Connection c ... show more 2026-06-20T15:21:58.537137 orbis.img.cas.cz dovecot[1147122]: pop3-login: Disconnected: Connection closed (auth failed, 1 attempts in 2 secs): user=<glendaalquicer>, method=PLAIN, rip=5.152.145.203, lip=147.231.150.3, TLS, session=<H14eS69U8dwFmJHL> 2026-06-20T15:23:17.276126 orbis.img.cas.cz dovecot[1147122]: pop3-login: Disconnected: Connection closed (auth failed, 1 attempts in 2 secs): user=<olga>, method=PLAIN, rip=5.152.145.203, lip=147.231.150.3, TLS, session=<w0TRT69Uu94FmJHL> 2026-06-20T15:23:35.571901 orbis.img.cas.cz dovecot[1147122]: pop3-login: Disconnected: Connection closed (auth failed, 1 attempts in 6 secs): user=<skultetyovalubica>, method=PLAIN, rip=5.152.145.203, lip=147.231.150.3, TLS, session=<77CnUK9UCN8FmJHL> 2026-06-20T15:23:55.284332 orbis.img.cas.cz dovecot[1147122]: pop3-login: Disconnected: Connection closed (auth failed, 1 attempts in 2 secs): user=<kamila_hviscova>, method=PLAIN, rip=5.152.145.203, lip=147.231.150.3, TLS, session=<jHkUUq9Uvt8FmJHL> 2026-0 ... show less	Brute-Force
🇷🇴 gtheo99	2026-06-20 11:41:17 (1 day ago)	(imapd) Failed IMAP login from 5.152.145.203 (IT/Italy/-): 2 in the last 900 secs	Brute-Force Email Spam
🇹🇷 rtbh.com.tr	2026-03-17 20:12:07 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
Anonymous	2026-03-17 04:33:15 (3 months ago)	Authentication failure	Brute-Force
🇳🇱 maxxsense	2026-03-16 11:19:51 (3 months ago)	5.152.145.203 (IT/Italy/-), 12 distributed imapd attacks on account [redacted]	Brute-Force
🇫🇷 GabrielJST	2026-03-16 07:15:00 (3 months ago)	5.152.145.203 (IT/Italy/-), 3 distributed pop3d attacks on account [redacted]	Brute-Force
Anonymous	2026-03-16 03:22:02 (3 months ago)	...	Brute-Force
Anonymous	2026-03-15 22:41:10 (3 months ago)	Authentication failure	Brute-Force
Anonymous	2026-03-13 01:20:05 (3 months ago)	BruteForce IMAP/POP3/SMTP	Brute-Force
Anonymous	2025-05-28 17:36:19 (1 year ago)	Ports: 110,995; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
🇲🇾 syokadmin	2025-05-28 17:04:03 (1 year ago)	5.152.145.203 (IT/Italy/-), 2 distributed imapd attacks on account [[email protected]] in the last ... show more 5.152.145.203 (IT/Italy/-), 2 distributed imapd attacks on account [[email protected]] in the last 3600 secs show less	Brute-Force
Anonymous	2025-05-28 11:07:01 (1 year ago)	Ports: 143,993; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
Anonymous	2025-04-26 01:53:52 (1 year ago)	Ports: 20,21,25,53,80,110,143,443,465,587,993,995,2077,2078,2079,2080,2082,2083,2086,2087,2095,2096, ... show more Ports: 20,21,25,53,80,110,143,443,465,587,993,995,2077,2078,2079,2080,2082,2083,2086,2087,2095,2096,3306,2195; Direction: 0; Trigger: LF_CUSTOMTRIGGER show less	Brute-Force SSH

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.83

🇦🇫 149.54.62.170

🇳🇱 91.92.40.231

🇨🇳 36.140.123.73

🇩🇪 213.209.159.236

🇧🇷 187.45.134.88

🇦🇺 172.69.186.120

🇺🇸 134.122.28.88

🇨🇳 118.145.246.44

🇨🇳 117.57.74.161

🇨🇳 111.228.46.221

🇳🇱 91.92.40.176

🇺🇿 87.192.249.66

🇳🇱 86.54.31.38

🇺🇸 76.49.199.97

🇮🇳 72.61.248.205

🇨🇳 60.174.205.133

🇺🇸 50.6.248.168

🇺🇸 20.163.32.168

🇰🇷 14.63.196.175