JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 152.52.165.34

152.52.165.34 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 47%: ?

47%

ISP	BHARTI-AIRTEL
Usage Type	Fixed Line ISP
ASN	AS9498
Domain Name	airtel.in
Country	🇮🇳 India
City	Chennai, Tamil Nadu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 152.52.165.34

Whois 152.52.165.34

IP Abuse Reports for 152.52.165.34:

This IP address has been reported a total of 13 times from 7 distinct sources. 152.52.165.34 was first reported on May 25th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-10 10:11:42 (2 hours ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-10 09:39:15 (3 hours ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
Anonymous	2026-06-09 10:30:21 (1 day ago)	[redacted] 152.52.165.34 - - [09/Jun/2026:12:29:16 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "J ... show more [redacted] 152.52.165.34 - - [09/Jun/2026:12:29:16 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/13.0; WordPress/6.4; http://site39943647.com" [redacted] 152.52.165.34 - - [09/Jun/2026:12:29:25 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 152.52.165.34 - - [09/Jun/2026:12:29:48 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.5; WordPress/6.4; http://site49792123.com" [redacted] 152.52.165.34 - - [09/Jun/2026:12:29:58 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 152.52.165.34 - - [09/Jun/2026:12:30:20 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.1; WordPress/6.1; http://site79960514.com" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 10:27:47 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 152.52.165.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 152.52.165.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:27:41.665046 2026] [security2:error] [pid 23449:tid 23449] [client 152.52.165.34:58590] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 152.52.165.34 (+1 hits since last alert)\|desdier.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "desdier.com"] [uri "/xmlrpc.php"] [unique_id "aifqnQ2qVoPuJM_0t6g8XQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-08 09:18:53 (2 days ago)	(wordpress) Failed wordpress login from 152.52.165.34 (IN/India/-)	Brute-Force
🇺🇸 integrantservices.com	2026-06-08 05:39:23 (2 days ago)	(wordpress) Failed wordpress login from 152.52.165.34 (IN/India/-)	Brute-Force
🇺🇸 integrantservices.com	2026-06-06 07:17:43 (4 days ago)	(wordpress) Failed wordpress login from 152.52.165.34 (IN/India/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-06 04:06:26 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 152.52.165.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 152.52.165.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 00:06:19.010300 2026] [security2:error] [pid 3153:tid 3153] [client 152.52.165.34:50678] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 152.52.165.34 (+1 hits since last alert)\|ciptaconindotara.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ciptaconindotara.com"] [uri "/xmlrpc.php"] [unique_id "aiOcu8D9uvJJ0cQTP3jEGgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 09:04:50 (5 days ago)	(mod_security) mod_security (id:240335) triggered by 152.52.165.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 152.52.165.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 05:04:44.176904 2026] [security2:error] [pid 3181:tid 3181] [client 152.52.165.34:64421] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 152.52.165.34 (+1 hits since last alert)\|avalderlaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "avalderlaw.com"] [uri "/xmlrpc.php"] [unique_id "aiKRLMlW99SjRD7_SU_ekAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 09:02:17 (5 days ago)	Attac	Brute-Force
Anonymous	2026-06-05 05:23:33 (5 days ago)	(wordpress) Failed wordpress login from 152.52.165.34 (IN/India/-/-/-/[redacted])	Brute-Force
Anonymous	2026-06-01 05:27:13 (1 week ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-05-25 04:14:40 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 152.52.165.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 152.52.165.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 00:14:34.713696 2026] [security2:error] [pid 31088:tid 31088] [client 152.52.165.34:61168] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 152.52.165.34 (+1 hits since last alert)\|localpetsitters.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "localpetsitters.com"] [uri "/xmlrpc.php"] [unique_id "ahPMqtH7RmcIMgBKs79ZdQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 217.154.38.181

🇭🇰 199.45.154.136

🇧🇷 192.141.147.34

🇫🇮 185.94.33.98

🇧🇷 131.161.249.165

🇱🇹 81.30.98.144

🇺🇸 76.79.213.70

🇺🇸 45.26.184.5

🇨🇳 27.25.69.169

🇪🇬 196.202.38.199

🇩🇪 193.174.89.19

🇳🇱 192.42.116.97

🇺🇸 103.81.231.188

🇨🇳 101.96.203.52

🇺🇸 67.20.76.238

🇰🇪 41.60.246.80

🇪🇬 41.38.21.211

🇷🇴 2.57.121.25

🇲🇦 196.92.7.249

🇮🇳 171.61.17.222