JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 181.215.182.200

181.215.182.200 was found in our database!

This IP was reported 55 times. Confidence of Abuse is 3%: ?

ISP	Cyber Assets FZCO
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	cyberassets.ae
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 181.215.182.200

Whois 181.215.182.200

IP Abuse Reports for 181.215.182.200:

This IP address has been reported a total of 55 times from 43 distinct sources. 181.215.182.200 was first reported on May 21st 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-21 22:00:41 (1 week ago)	(mod_security) mod_security (id:210580) triggered by 181.215.182.200 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210580) triggered by 181.215.182.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 18:00:34.518291 2026] [security2:error] [pid 16319:tid 16319] [client 181.215.182.200:54275] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "etc/passwd" at ARGS:log_filename. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "57"] [id "210580"] [rev "2"] [msg "COMODO WAF: OS File Access Attempt\|\|girardonline.net\|F\|2"] [data "Matched Data: etc/passwd found within ARGS:log_filename: ../../../../../../../../../../../../../etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "girardonline.net"] [uri "/wp-admin/admin-ajax.php"] [unique_id "ajhfAoyA8lpBd6r6hG3xyQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2026-04-06 01:45:02 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇧🇷 Peregrine	2026-03-26 20:58:20 (3 months ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 181.215.182.200 162.158.175.218 - - [20/Mar/2026:22:13:31 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 181.215.182.200 162.158.175.218 - - [20/Mar/2026:22:13:31 -0300] "GET /.env HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-03-25 11:41:11 (3 months ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 181.215.182.200 162.158.175.218 - - [20/Mar/2026:22:13:31 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 181.215.182.200 162.158.175.218 - - [20/Mar/2026:22:13:31 -0300] "GET /.env HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-03-24 11:19:45 (3 months ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 181.215.182.200 162.158.175.218 - - [20/Mar/2026:22:13:31 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 181.215.182.200 162.158.175.218 - - [20/Mar/2026:22:13:31 -0300] "GET /.env HTTP/1.1" 404 414 show less	Bad Web Bot
🇨🇭 zynex	2026-03-21 03:54:19 (3 months ago)	URL Probing: /.env	Web App Attack
🇺🇸 TPI-Abuse	2026-03-21 03:49:20 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 181.215.182.200 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 181.215.182.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 23:49:14.027084 2026] [security2:error] [pid 11463:tid 11463] [client 181.215.182.200:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "site.kimbrothersusa.com"] [uri "/.env"] [unique_id "ab4VOkoOPdkHLAnXTIMVCQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-03-21 03:33:22 (3 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇧🇪 cmbplf	2026-03-21 03:28:46 (3 months ago)	5.038 requests with url.path *.env	Brute-Force Bad Web Bot
🇩🇪 ger-stg-sifi1	2026-03-21 03:18:53 (3 months ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇨🇦 cubie	2026-03-21 03:02:20 (3 months ago)	Web Attack: Config File Probe - Reported by CubieCloud Firewall [CFW_H186-003]	Hacking Web App Attack
🇪🇸 librebit	2026-03-21 02:58:09 (3 months ago)	Brute force	Brute-Force
🇩🇪 big-cloud.nl	2026-03-21 02:09:09 (3 months ago)	Try to access /.env	Web App Attack
🇺🇸 TPI-Abuse	2026-03-21 01:56:59 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 181.215.182.200 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 181.215.182.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 21:56:55.162724 2026] [security2:error] [pid 31650:tid 31688] [client 181.215.182.200:20074] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tamarkummel.com"] [uri "/.env"] [unique_id "ab365-C80wPqD-WtJuNSngAAAIs"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Swiptly	2026-03-21 01:41:51 (3 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack

Showing 1 to 15 of 55 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 186.250.190.247

🇸🇪 146.19.44.170

🇨🇴 130.250.228.127

🇻🇳 125.212.244.35

🇳🇬 102.88.108.11

🇷🇴 92.118.39.71

🇺🇸 91.193.232.26

🇳🇱 91.92.40.13

🇺🇸 72.44.51.76

🇺🇸 66.132.172.38

🇸🇬 43.160.197.242

🇮🇳 34.131.62.238

🇧🇷 20.206.104.0

🇧🇷 200.80.123.201

🇩🇪 194.88.98.118

🇺🇸 185.223.152.154

🇸🇬 185.200.116.52

🇺🇸 184.105.139.99

🇦🇷 181.116.201.190

🇧🇷 177.159.150.111