JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.109.200.145

192.109.200.145 was found in our database!

This IP was reported 189 times. Confidence of Abuse is 100%: ?

100%

ISP	TechTies Inc.
Usage Type	Fixed Line ISP
ASN	AS197170
Domain Name	tech-ties.net
Country	🇩🇪 Germany
City	Aachen, North Rhine-Westphalia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.109.200.145

Whois 192.109.200.145

IP Abuse Reports for 192.109.200.145:

This IP address has been reported a total of 189 times from 115 distinct sources. 192.109.200.145 was first reported on April 22nd 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇭 Sawasdee	2026-06-17 09:06:06 (5 hours ago)	Port Scan ...	Port Scan
🇧🇷 ICS Labs	2026-06-08 13:31:31 (1 week ago)	ICS Labs identified 192.109.200.145 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇮🇩 Burayot	2026-05-26 16:43:45 (3 weeks ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 192.109.200.145 (BG/Bulgaria/-): 1 i ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 192.109.200.145 (BG/Bulgaria/-): 1 in the last 3600 secs show less	Web App Attack
🇳🇱 BellFix	2026-05-22 14:26:54 (3 weeks ago)	Fail2ban reported 192.109.200.145 for npm-docker	Web App Attack
🇯🇵 VXG-NET	2026-05-20 23:14:08 (3 weeks ago)	port=80, indicator_type=info-leak	Hacking
🇳🇱 BellFix	2026-05-19 16:11:33 (4 weeks ago)	Fail2ban reported 192.109.200.145 for npm-docker	Web App Attack
🇨🇭 ScanThe.Net	2026-05-19 09:05:50 (4 weeks ago)	ID: 3360010552 \| PORT: 3306 \| https://192-109-200-145.scanthe.net	Port Scan
🇺🇸 donarev419	2026-05-19 00:12:12 (4 weeks ago)	Port scan detected on port 3306 (connection without data transfer)	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-18 23:38:41 (4 weeks ago)	Honeypot hit: Unauthorized traffic on 3306/mysqld	Port Scan
🇦🇺 LiftUp Hosting	2026-05-18 23:28:32 (4 weeks ago)	Honeypot hit: Unauthorized traffic on 3306/mysqld	Port Scan
🇯🇵 mkaraki	2026-05-18 23:26:55 (4 weeks ago)	1779146813 # Service_probe # SIGNATURE_SEND # source_ip:192.109.200.145 # dst_port:3306 ...	Port Scan
🇺🇸 SuperCores Hosting	2026-05-18 23:23:24 (4 weeks ago)	[2026-05-18 23:23:24.634397] TELNET/8080 Unautorized connection, Suspicious Mirai Botnet.	IoT Targeted Brute-Force Hacking Port Scan DDoS Attack
🇬🇧 andypiper	2026-05-16 01:02:32 (1 month ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇨🇳 ThreatBook.io	2026-05-16 00:12:07 (1 month ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/192.109.200.145 2026-0 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/192.109.200.145 2026-05-15 09:05:53 /,{"body":"0x%5B%5D=x_X","content_type":"application/x-www-form-urlencoded","header":{"Accept":["text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,/;q=0.8"],"Accept-Encoding":["gzip, deflate"],"Accept-Language":["en-US,en;q=0.5"],"Connection":["keep-alive"],"Content-Length":["12"],"Content-Type":["application/x-www-form-urlencoded"],"Te":["Trailers"],"Upgrade-Insecure-Requests":["1"],"User-Agent":["Mozilla/5.0 (X11; Linux x86_64; rv:83.0) Gecko/20100101 Firefox/83.0"]},"host":"103.23.11.66","method":"POST","proto":"HTTP/1.1","remote_addr":"192.109.200.145:40236","status_code":200,"url":"/","user_agent":"Mozilla/5.0 (X11; Linux x86_64; rv:83.0) Gecko/20100101 Firefox/83.0"} 2026-05-15 09:05:53 /.env show less	Web App Attack
🇯🇵 HeliJP	2026-05-15 20:45:28 (1 month ago)	2026-05-15T20:19:41Z - Recognized attacks\bad behavior from IP address 192.109.200.145 on port 443\8 ... show more 2026-05-15T20:19:41Z - Recognized attacks\bad behavior from IP address 192.109.200.145 on port 443\80 (4 daily hits): client denied by server configuration show less	Port Scan Hacking SQL Injection Brute-Force Web App Attack

Showing 1 to 15 of 189 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.97

🇺🇸 134.122.11.130

🇨🇳 122.193.10.218

🇳🇱 104.238.9.171

🇨🇦 85.217.149.60

🇺🇸 64.62.156.202

🇺🇸 44.199.241.205

🇺🇦 23.27.184.98

🇨🇦 2604:a880:cad:d0::c4d:4001

🇧🇴 190.129.122.12

🇨🇳 171.14.207.239

🇭🇰 45.142.154.10

🇹🇿 41.93.28.9

🇩🇪 31.76.110.42

🇺🇸 198.144.190.219

🇪🇬 196.136.110.79

🇺🇸 157.55.39.202

🇺🇸 66.132.186.246

🇫🇷 46.202.79.5

🇺🇸 44.172.110.140