JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 152.59.35.222

152.59.35.222 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 63%: ?

63%

ISP	Reliance Jio Infocomm Limited
Usage Type	Fixed Line ISP
ASN	AS55836
Domain Name	jio.com
Country	🇮🇳 India
City	Surat, Gujarat

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 152.59.35.222

Whois 152.59.35.222

IP Abuse Reports for 152.59.35.222:

This IP address has been reported a total of 19 times from 15 distinct sources. 152.59.35.222 was first reported on July 25th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 applemooz	2026-06-25 13:56:02 (1 day ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 10:06:19 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 152.59.35.222 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 152.59.35.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 06:06:06.073565 2026] [security2:error] [pid 1151:tid 1173] [client 152.59.35.222:52494] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 152.59.35.222 (+1 hits since last alert)\|planmytrust.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "planmytrust.com"] [uri "/xmlrpc.php"] [unique_id "ajusDoPw1BderthOwjwV7QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 08:43:14 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 152.59.35.222 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 152.59.35.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 04:43:04.730512 2026] [security2:error] [pid 7536:tid 7536] [client 152.59.35.222:54370] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 152.59.35.222 (+1 hits since last alert)\|renomarsh.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "renomarsh.com"] [uri "/xmlrpc.php"] [unique_id "ajuYmP-cmwJJpI3f760qwAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 ConsulHosting	2026-06-24 05:51:06 (2 days ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
Anonymous	2026-06-23 05:04:40 (3 days ago)	Attac	Brute-Force
🇫🇷 masterguru	2026-06-22 12:36:00 (4 days ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇺🇸 TPI-Abuse	2026-06-22 07:57:07 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 152.59.35.222 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 152.59.35.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 03:56:54.883794 2026] [security2:error] [pid 20542:tid 20542] [client 152.59.35.222:55394] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 152.59.35.222 (+1 hits since last alert)\|semisysteme.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "semisysteme.com"] [uri "/xmlrpc.php"] [unique_id "ajjqxpeIINHuNrHeOgWqBQAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-22 04:59:04 (4 days ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇩🇪 Marc	2026-06-21 13:21:24 (5 days ago)	152.59.35.222 - - [21/Jun/2026:15:21:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3419 "-" "Jetpack by ... show more 152.59.35.222 - - [21/Jun/2026:15:21:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3419 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.2)" 152.59.35.222 - - [21/Jun/2026:15:21:13 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3467 "-" "Jetpack/12.1; WordPress/6.1; http://site94322824.com" 152.59.35.222 - - [21/Jun/2026:15:21:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3466 "-" "Jetpack/12.0; WordPress/6.3; http://site63316488.com" show less	Brute-Force Web App Attack
Anonymous	2026-06-21 12:19:27 (5 days ago)	(wordpress) Failed wordpress login from 152.59.35.222 (IN/India/-)	Brute-Force
🇦🇺 screwlooseit.com.au	2026-06-21 10:47:39 (5 days ago)	Blocked by CSF 13 firewall - Rule: XMLRPC IN/India/-	Web App Attack
🇪🇸 alferez	2026-06-20 15:01:20 (6 days ago)	xmlrpc.php attack DOS	Hacking Exploited Host Web App Attack
🇨🇳 ThreatBook.io	2026-05-12 01:03:06 (1 month ago)	ThreatBook Intelligence: Edu,Dynamic IP more details on https://threatbook.io/ip/152.59.35.222	SSH
Anonymous	2026-04-18 14:23:04 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-11-22 19:01:59 (7 months ago)	scanning http requests from known botnet	Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 91.132.144.59

🇫🇷 2001:41d0:303:2ec9::

🇨🇳 218.94.25.243

🇪🇹 196.191.61.84

🇳🇱 192.42.116.61

🇩🇪 185.220.101.164

🇩🇪 185.220.101.28

🇦🇹 109.70.100.10

🇨🇴 45.175.20.14

🇯🇵 218.33.111.9

🇳🇱 195.178.110.30

🇳🇱 192.42.116.94

🇩🇪 185.220.101.11

🇩🇪 185.220.100.254

🇸🇪 171.25.193.80

🇫🇮 157.22.125.171

🇮🇶 37.237.125.143

🇮🇪 20.223.152.187

🇰🇷 211.62.96.42

🇳🇱 203.159.90.218