JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 122.180.31.197

122.180.31.197 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 65%: ?

65%

ISP	BHARTI Airtel Ltd.
Usage Type	Mobile ISP
ASN	AS24560
Hostname(s)	nsg-corporate-197.31.180.122.airtel.in
Domain Name	airtel.in
Country	🇮🇳 India
City	New Delhi, Delhi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 122.180.31.197

Whois 122.180.31.197

IP Abuse Reports for 122.180.31.197:

This IP address has been reported a total of 33 times from 13 distinct sources. 122.180.31.197 was first reported on June 11th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-16 18:08:10 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.ai ... show more (mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.airtel.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 14:08:02.578431 2026] [security2:error] [pid 16930:tid 16930] [client 122.180.31.197:54876] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.intra.es"] [uri "/.env"] [unique_id "ajGRAohKeenFMQXhWqobBQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 16:27:36 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.ai ... show more (mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.airtel.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 12:27:33.032742 2026] [security2:error] [pid 20975:tid 20975] [client 122.180.31.197:58588] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.husman.es"] [uri "/.env"] [unique_id "ajF5dcRekzq1n0IZe--17wAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 15:00:15 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.ai ... show more (mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.airtel.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 11:00:08.260444 2026] [security2:error] [pid 1479:tid 1479] [client 122.180.31.197:55030] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.toepfer.org"] [uri "/.env"] [unique_id "ajFk-M6B4qq-xDhsqAXWkAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 13:45:50 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.ai ... show more (mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.airtel.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 09:45:45.583796 2026] [security2:error] [pid 6710:tid 6710] [client 122.180.31.197:42108] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tigerpathteam.org"] [uri "/.env"] [unique_id "ajFTiXzkkkNknGdvo9SbXAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-16 05:29:09 (1 week ago)	[TueJun1607:29:01.6819932026][security2:error][pid2705758:tid2706032][client122.180.31.197:0]ModSecu ... show more [TueJun1607:29:01.6819932026][security2:error][pid2705758:tid2706032][client122.180.31.197:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"benvenutialfood.ch\"][uri\"/.env\"][unique_id\"ajDfHdO-WiJAvl-fFk8N8QAAARg\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 21:10:01 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.ai ... show more (mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.airtel.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 17:09:54.024388 2026] [security2:error] [pid 607:tid 607] [client 122.180.31.197:47088] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tribalvisions.net"] [uri "/.env"] [unique_id "ajBqInBMrbG8rH-8U7bv_AAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 23:28:37 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.ai ... show more (mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.airtel.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 19:28:32.992941 2026] [security2:error] [pid 25925:tid 25941] [client 122.180.31.197:42888] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rdumail.us"] [uri "/.env"] [unique_id "ai85IPWLhT7Vi976L837KgAAAEI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 conrad10781	2026-06-14 23:24:56 (1 week ago)	nginx-dot-env	Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 22:42:37 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.ai ... show more (mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.airtel.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 18:42:29.450995 2026] [security2:error] [pid 6173:tid 6173] [client 122.180.31.197:51900] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "qxz.rcto.us"] [uri "/.env"] [unique_id "ai8uVWdMvKyKI50DayLjEgAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 17:57:14 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.ai ... show more (mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.airtel.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 13:57:07.530741 2026] [security2:error] [pid 14206:tid 14206] [client 122.180.31.197:35598] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.regal.com.tr"] [uri "/.env"] [unique_id "ai7rcyfAkH8KAVhQeJaL7QAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 16:45:23 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.ai ... show more (mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.airtel.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 12:45:15.883451 2026] [security2:error] [pid 15721:tid 15721] [client 122.180.31.197:34266] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.hisim.com.tr"] [uri "/.env"] [unique_id "ai7am0p6XXm7O32n5G0GEQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 14:11:41 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.ai ... show more (mod_security) mod_security (id:210492) triggered by 122.180.31.197 (nsg-corporate-197.31.180.122.airtel.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 10:11:36.794211 2026] [security2:error] [pid 30900:tid 30900] [client 122.180.31.197:35800] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.galvez.cc"] [uri "/.env"] [unique_id "ai62mMgxYlf5DQcZFLWgOgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 ALPHANET	2026-06-14 09:48:56 (1 week ago)	web exploits	Hacking Exploited Host Web App Attack
Anonymous	2026-06-14 06:09:43 (1 week ago)	"GET /.env HTTP/1.1"	Hacking Web App Attack
🇬🇧 openstrike.co.uk	2026-06-14 05:14:02 (1 week ago)	2 attacks on env grabbing URLs: GET /.env HTTP/1.1	Hacking

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 160.187.174.22

🇺🇸 174.35.25.181

🇸🇬 148.66.132.204

🇰🇷 119.200.229.33

🇨🇳 116.233.54.153

🇺🇸 65.49.1.48

🇮🇳 49.36.181.252

🇧🇪 34.52.224.171

🇬🇧 188.240.59.18

🇪🇸 185.121.15.184

🇨🇦 167.114.156.169

🇺🇸 128.203.204.165

🇨🇳 124.174.17.2

🇻🇳 103.9.204.47

🇮🇳 49.47.11.22

🇩🇪 43.228.157.9

🇬🇧 35.203.210.213

🇻🇳 14.225.7.70

🇬🇧 13.40.113.216

🇮🇪 3.255.84.127