JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 122.168.1.209

122.168.1.209 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 75%: ?

75%

ISP	1 Malviya Nagar,
Usage Type	Fixed Line ISP
ASN	AS24560
Hostname(s)	abts-mp-dynamic-209.1.168.122.airtelbroadband.in
Domain Name	airtel.in
Country	🇮🇳 India
City	Delhi, Delhi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 122.168.1.209

Whois 122.168.1.209

IP Abuse Reports for 122.168.1.209:

This IP address has been reported a total of 22 times from 16 distinct sources. 122.168.1.209 was first reported on January 2nd 2021, and the most recent report was 43 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-06-21 07:16:42 (43 minutes ago)	IM360 WAF: Rate limit exceeded for XMLRPC DoS	Web App Attack
🇺🇸 integrantservices.com	2026-06-21 06:27:26 (1 hour ago)	(wordpress) Failed wordpress login from 122.168.1.209 (IN/India/abts-mp-dynamic-209.1.168.122.airtel ... show more (wordpress) Failed wordpress login from 122.168.1.209 (IN/India/abts-mp-dynamic-209.1.168.122.airtelbroadband.in) show less	Brute-Force
🇫🇷 masterguru	2026-06-20 07:32:20 (1 day ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇦🇺 screwlooseit.com.au	2026-06-20 04:27:42 (1 day ago)	Blocked by CSF 13 firewall - Rule: XMLRPC IN/India/abts-mp-dynamic-209.1.168.122.airtelbroadband.in	Web App Attack
Anonymous	2026-06-19 06:02:36 (2 days ago)	(wordpress) Failed wordpress login from 122.168.1.209 (IN/India/abts-mp-dynamic-209.1.168.122.airtel ... show more (wordpress) Failed wordpress login from 122.168.1.209 (IN/India/abts-mp-dynamic-209.1.168.122.airtelbroadband.in) show less	Brute-Force
🇺🇸 cwytech	2026-06-19 06:01:04 (2 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wp-us-login-only-high.	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 04:57:05 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 122.168.1.209 (abts-mp-dynamic-209.1.168.122.ai ... show more (mod_security) mod_security (id:240335) triggered by 122.168.1.209 (abts-mp-dynamic-209.1.168.122.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 00:57:00.964972 2026] [security2:error] [pid 32291:tid 32291] [client 122.168.1.209:28351] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.168.1.209 (+1 hits since last alert)\|guarinofurnituredesigns.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "guarinofurnituredesigns.com"] [uri "/xmlrpc.php"] [unique_id "ajTMHB2bo_pdXrfBn1FUFQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-18 08:23:05 (2 days ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 02:49:31 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 122.168.1.209 (abts-mp-dynamic-209.1.168.122.ai ... show more (mod_security) mod_security (id:240335) triggered by 122.168.1.209 (abts-mp-dynamic-209.1.168.122.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 22:49:25.819746 2026] [security2:error] [pid 21359:tid 21359] [client 122.168.1.209:33041] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.168.1.209 (+1 hits since last alert)\|natickvillagerentals.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "natickvillagerentals.com"] [uri "/xmlrpc.php"] [unique_id "ajNctW48mQsx1MwJxoxiKgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 02:17:55 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 122.168.1.209 (abts-mp-dynamic-209.1.168.122.ai ... show more (mod_security) mod_security (id:240335) triggered by 122.168.1.209 (abts-mp-dynamic-209.1.168.122.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 22:17:47.775899 2026] [security2:error] [pid 5240:tid 5240] [client 122.168.1.209:14348] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.168.1.209 (+1 hits since last alert)\|rodzillacharters.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "rodzillacharters.com"] [uri "/xmlrpc.php"] [unique_id "ajNVSx_2G6fHqF1tAFYiewAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-17 08:29:21 (3 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-17 06:28:10 (4 days ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-06-17 06:08:33 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 122.168.1.209 (abts-mp-dynamic-209.1.168.122.ai ... show more (mod_security) mod_security (id:240335) triggered by 122.168.1.209 (abts-mp-dynamic-209.1.168.122.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 02:08:25.684894 2026] [security2:error] [pid 20947:tid 20947] [client 122.168.1.209:3664] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.168.1.209 (+1 hits since last alert)\|indoorsfinishing.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "indoorsfinishing.com"] [uri "/xmlrpc.php"] [unique_id "ajI52Zb64pAYjG3whBz2IQAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-17 04:25:11 (4 days ago)	IM360 WAF: Rate limit exceeded for XMLRPC DoS (fault code)	Web App Attack
🇪🇸 masterguru	2026-06-16 08:18:10 (4 days ago)	(xmlrpc) Failed xmlrpc access from 122.168.1.209 (IN/India/abts-mp-dynamic-209.1.168.122.airtelbroad ... show more (xmlrpc) Failed xmlrpc access from 122.168.1.209 (IN/India/abts-mp-dynamic-209.1.168.122.airtelbroadband.in): 5 in the last 3600 secs (0-122) show less	Hacking

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2001:19f0:9003:8b9:5400:4ff:fea6:6b22

🇳🇱 213.177.179.12

🇵🇱 172.253.255.52

🇺🇸 136.115.93.5

🇨🇳 14.153.0.74

🇳🇱 195.178.110.30

🇺🇸 159.223.169.92

🇫🇮 147.185.133.59

🇺🇸 144.172.104.239

🇮🇩 103.76.120.81

🇲🇾 47.254.214.117

🇳🇱 45.148.10.240

🇸🇬 43.173.175.230

🇺🇸 2a13:dcc6:d118:2c5e:7fc3:7f30:fc59:f67

🇫🇷 85.217.140.8

🇸🇬 47.84.62.21

🇸🇬 43.173.179.111

🇧🇪 35.195.128.171

🇲🇽 2001:19f0:b400:16a4:5400:4ff:fea6:6b0d

🇺🇸 216.73.217.2