JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 122.172.86.213

122.172.86.213 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 49%: ?

49%

ISP	ABTS (Karnataka),
Usage Type	Fixed Line ISP
ASN	AS24560
Hostname(s)	abts-kk-dynamic-213.86.172.122.airtelbroadband.in
Domain Name	airtel.in
Country	🇮🇳 India
City	Bengaluru, Karnataka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 122.172.86.213

Whois 122.172.86.213

IP Abuse Reports for 122.172.86.213:

This IP address has been reported a total of 14 times from 8 distinct sources. 122.172.86.213 was first reported on June 22nd 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 masterguru	2026-06-24 10:09:39 (2 days ago)	(xmlrpc) Failed xmlrpc access from 122.172.86.213 (IN/India/abts-kk-dynamic-213.86.172.122.airtelbro ... show more (xmlrpc) Failed xmlrpc access from 122.172.86.213 (IN/India/abts-kk-dynamic-213.86.172.122.airtelbroadband.in): 5 in the last 3600 secs (0-122) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-24 07:37:25 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 122.172.86.213 (abts-kk-dynamic-213.86.172.122. ... show more (mod_security) mod_security (id:240335) triggered by 122.172.86.213 (abts-kk-dynamic-213.86.172.122.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 03:37:20.701832 2026] [security2:error] [pid 26142:tid 26142] [client 122.172.86.213:7062] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.172.86.213 (+1 hits since last alert)\|smilingorc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "smilingorc.com"] [uri "/xmlrpc.php"] [unique_id "ajuJMBOEc94XFGRKm1wWDQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 06:41:13 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 122.172.86.213 (abts-kk-dynamic-213.86.172.122. ... show more (mod_security) mod_security (id:240335) triggered by 122.172.86.213 (abts-kk-dynamic-213.86.172.122.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 02:41:07.969775 2026] [security2:error] [pid 8328:tid 8328] [client 122.172.86.213:5785] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.172.86.213 (+1 hits since last alert)\|adlc18.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "adlc18.org"] [uri "/xmlrpc.php"] [unique_id "ajt8A_diGV4Fx4xeY_lElQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 05:59:42 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 122.172.86.213 (abts-kk-dynamic-213.86.172.122. ... show more (mod_security) mod_security (id:240335) triggered by 122.172.86.213 (abts-kk-dynamic-213.86.172.122.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 01:59:36.122642 2026] [security2:error] [pid 5709:tid 5709] [client 122.172.86.213:5518] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.172.86.213 (+1 hits since last alert)\|odinathletes.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "odinathletes.com"] [uri "/xmlrpc.php"] [unique_id "ajtySMxOQqhfOzlDZ4wTQQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-24 05:57:54 (2 days ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
Anonymous	2026-06-24 05:27:01 (2 days ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
Anonymous	2026-06-23 10:03:10 (3 days ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-06-23 06:52:22 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 122.172.86.213 (abts-kk-dynamic-213.86.172.122. ... show more (mod_security) mod_security (id:240335) triggered by 122.172.86.213 (abts-kk-dynamic-213.86.172.122.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 02:52:17.010361 2026] [security2:error] [pid 27697:tid 27697] [client 122.172.86.213:28715] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.172.86.213 (+1 hits since last alert)\|williamfitzsimmons.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "williamfitzsimmons.com"] [uri "/xmlrpc.php"] [unique_id "ajotIaSmqgok27UrPJVSegAAADM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 rh24	2026-06-22 12:21:17 (4 days ago)	(xmlrpc_405) XMLRPC-Bot 405 122.172.86.213 (IN/India/abts-kk-dynamic-213.86.172.122.airtelbroadband. ... show more (xmlrpc_405) XMLRPC-Bot 405 122.172.86.213 (IN/India/abts-kk-dynamic-213.86.172.122.airtelbroadband.in) show less	Hacking
🇧🇪 brechtr	2026-06-22 11:49:05 (4 days ago)	[Press84-BanHammer] bad username — Sourced from: brechtryckaert.com — Request: POST /xmlrpc.php	Brute-Force
Anonymous	2026-06-22 11:19:31 (4 days ago)	122.172.86.213 - - [22/Jun/2026:13:19:10 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "WordPress.c ... show more 122.172.86.213 - - [22/Jun/2026:13:19:10 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "WordPress.com; https://wordpress.com" 122.172.86.213 - - [22/Jun/2026:13:19:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com" 122.172.86.213 - - [22/Jun/2026:13:19:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack/13.0; WordPress/6.3; http://site13317886.com" 122.172.86.213 - - [22/Jun/2026:13:19:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Jetpack/13.0; WordPress/6.3; http://site13317886.com" 122.172.86.213 - - [22/Jun/2026:13:19:30 +0200] "POST /xmlrpc.php HTTP/1.1" 200 624 "-" "Jetpack by WordPress.com" ... show less	Brute-Force Web App Attack
🇺🇸 integrantservices.com	2026-06-22 09:37:40 (4 days ago)	(wordpress) Failed wordpress login from 122.172.86.213 (IN/India/abts-kk-dynamic-213.86.172.122.airt ... show more (wordpress) Failed wordpress login from 122.172.86.213 (IN/India/abts-kk-dynamic-213.86.172.122.airtelbroadband.in) show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-22 06:24:02 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 122.172.86.213 (abts-kk-dynamic-213.86.172.122. ... show more (mod_security) mod_security (id:240335) triggered by 122.172.86.213 (abts-kk-dynamic-213.86.172.122.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 02:23:56.346942 2026] [security2:error] [pid 1303:tid 1317] [client 122.172.86.213:3060] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.172.86.213 (+1 hits since last alert)\|koalacogs.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "koalacogs.com"] [uri "/xmlrpc.php"] [unique_id "ajjU_OG1mcAxj6jbkoUrMQAAAIw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 05:22:24 (4 days ago)	(mod_security) mod_security (id:240335) triggered by 122.172.86.213 (abts-kk-dynamic-213.86.172.122. ... show more (mod_security) mod_security (id:240335) triggered by 122.172.86.213 (abts-kk-dynamic-213.86.172.122.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 01:22:14.769978 2026] [security2:error] [pid 7897:tid 7897] [client 122.172.86.213:27678] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.172.86.213 (+1 hits since last alert)\|kimbrothersduluth.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kimbrothersduluth.com"] [uri "/xmlrpc.php"] [unique_id "ajjGhpsZjqi43ofxifNx_QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.160.58

🇰🇷 193.123.242.254

🇸🇦 188.48.70.197

🇮🇳 152.56.10.254

🇺🇸 216.25.89.137

🇧🇾 178.120.54.59

🇳🇱 176.65.149.180

🇮🇹 158.47.230.165

🇨🇳 124.117.195.154

🇨🇳 115.190.155.149

🇨🇳 114.248.6.201

🇿🇦 105.186.237.86

🇳🇱 93.123.72.183

🇳🇱 91.92.42.120

🇨🇦 85.217.149.53

🇩🇪 69.5.169.201

🇳🇱 45.156.87.216

🇲🇿 41.220.201.130

🇻🇳 27.79.40.148

🇺🇸 20.65.193.242