JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.52.161.203

64.52.161.203 was found in our database!

This IP was reported 454 times. Confidence of Abuse is 100%: ?

100%

ISP	Leonore Mutual Telephone Company Inc.
Usage Type	Fixed Line ISP
ASN	AS53610
Domain Name	lmtc.net
Country	🇺🇸 United States of America
City	Tonica, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.52.161.203

Whois 64.52.161.203

IP Abuse Reports for 64.52.161.203:

This IP address has been reported a total of 454 times from 149 distinct sources. 64.52.161.203 was first reported on January 10th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 basing	2026-02-06 08:33:34 (3 months ago)	2026-02-06 09:33:34 idz SASL PLAIN auth failed: rhost=64.52.161.203...	Brute-Force
🇫🇷 solution.it	2026-02-06 07:46:20 (3 months ago)	Feb 6 08:46:01 vps789997 smtpd[835997]: 4e6b172fa54c9111 smtp connected address=64.52.161.203 host= ... show more Feb 6 08:46:01 vps789997 smtpd[835997]: 4e6b172fa54c9111 smtp connected address=64.52.161.203 host=<unknown> Feb 6 08:46:19 vps789997 smtpd[835997]: 4e6b172fa54c9111 smtp failed-command command="AUTH LOGIN (password)" result="535 Authentication failed" show less	Brute-Force
Anonymous	2026-02-06 05:00:11 (3 months ago)	BruteForce IMAP/POP3/SMTP	Brute-Force
🇩🇪 _ArminS_	2026-02-06 04:51:52 (3 months ago)	Bad AUTH 2026.02.06 05:51:52 blocked until 2026.03.27 22:53:52	Email Spam Brute-Force
🇺🇸 entangled_mongoose	2026-02-06 03:44:41 (3 months ago)	Failed IMAP authentication with username 'user_sha_f528b@domain_sha_70fc2'.	Hacking Brute-Force
🇬🇧 stom	2026-02-06 03:17:37 (3 months ago)	2026-02-06T03:17:34.904872ls1.tom2.co.uk postfix/smtpd[4693]: warning: unknown[64.52.161.203]: SASL ... show more 2026-02-06T03:17:34.904872ls1.tom2.co.uk postfix/smtpd[4693]: warning: unknown[64.52.161.203]: SASL LOGIN authentication failed: authentication failure ... show less	Email Spam Brute-Force
🇩🇪 Paul Smith	2026-02-06 02:58:48 (3 months ago)	Email Auth Brute force attack 10/10 in last day	Brute-Force
🇩🇪 kreativstrecke	2026-02-06 01:01:20 (3 months ago)	2026-02-06T02:01:18.229328+01:00 srv03 postfix/smtpd[460257]: warning: unknown[64.52.161.203]: SASL ... show more 2026-02-06T02:01:18.229328+01:00 srv03 postfix/smtpd[460257]: warning: unknown[64.52.161.203]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=r.boensch 2026-02-06T02:01:19.513322+01:00 srv03 postfix/smtpd[460257]: lost connection after AUTH from unknown[64.52.161.203] 2026-02-06T02:01:19.513549+01:00 srv03 postfix/smtpd[460257]: disconnect from unknown[64.52.161.203] ehlo=1 auth=0/1 commands=1/2 ... show less	Brute-Force
Anonymous	2026-02-05 21:37:43 (3 months ago)	SMTP brute force - auth failed	Brute-Force Exploited Host
🇦🇺 Lazarus	2026-02-05 21:04:21 (3 months ago)	SMTP probe.	Brute-Force
🇹🇷 rtbh.com.tr	2026-02-05 20:11:24 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇫🇷 basing	2026-02-05 20:02:42 (3 months ago)	2026-02-05 21:02:42 pzb SASL PLAIN auth failed: rhost=64.52.161.203...	Brute-Force
🇧🇷 hostseries	2026-02-05 19:23:26 (3 months ago)	Trigger: LF_DISTATTACK	Brute-Force
🇮🇩 xveil	2026-02-05 19:03:48 (3 months ago)	2026-02-06T02:03:46.130245 mail-honeypot postfix/submission/smtpd[21267]: warning: unknown[64.52.161 ... show more 2026-02-06T02:03:46.130245 mail-honeypot postfix/submission/smtpd[21267]: warning: unknown[64.52.161.203]: SASL LOGIN authentication failed: authentication failure ... show less	Brute-Force
🇩🇪 kkeyser	2026-02-05 17:26:32 (3 months ago)	warning: unknown[64.52.161.203]: SASL LOGIN authentication failed: authentication failure	Brute-Force

Showing 406 to 420 of 454 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 195.201.228.157

🇲🇽 189.194.140.170

🇳🇱 176.65.131.192

🇺🇸 172.174.221.225

🇳🇱 104.23.166.166

🇺🇸 98.81.136.43

🇩🇪 64.226.90.210

🇸🇬 54.255.246.168

🇰🇷 52.79.251.118

🇧🇷 45.165.14.197

🇳🇱 45.92.1.242

🇺🇸 13.222.197.225

🇺🇸 186.65.116.4

🇺🇸 173.211.51.38

🇨🇦 172.96.179.9

🇺🇸 165.22.34.238

🇺🇸 154.29.12.153

🇺🇸 148.153.56.170

🇨🇳 114.238.27.130

🇨🇬 102.129.75.237