JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.109.200.215

192.109.200.215 was found in our database!

This IP was reported 1,689 times. Confidence of Abuse is 100%: ?

100%

ISP	Telco power Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51396
Domain Name	telcopower.eu
Country	🇩🇪 Germany
City	Aachen, North Rhine-Westphalia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.109.200.215

Whois 192.109.200.215

IP Abuse Reports for 192.109.200.215:

This IP address has been reported a total of 1,689 times from 508 distinct sources. 192.109.200.215 was first reported on April 5th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Hagen Schoebel	2026-05-30 00:15:04 (5 days ago)	Blocked by CrowdSec - crowdsecurity/vpatch-symfony-profiler (SE)	Port Scan Brute-Force Web App Attack SSH
🇺🇸 VanKoh	2026-05-30 00:07:43 (5 days ago)	192.109.200.215 - - [29/May/2026:18:07:27 -0600] "GET /phpinfo HTTP/1.1" 301 162 "-" "Mozilla/5.0 (W ... show more 192.109.200.215 - - [29/May/2026:18:07:27 -0600] "GET /phpinfo HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 192.109.200.215 - - [29/May/2026:18:07:28 -0600] "GET /phpinfo.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 192.109.200.215 - - [29/May/2026:18:07:42 -0600] "GET /test.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" ... show less	DDoS Attack Web App Attack
🇺🇸 jfz-abuse	2026-05-29 21:16:05 (5 days ago)	fail2ban: apache-php-recon ...	Web App Attack
🇺🇸 decisionconcepts	2026-05-29 20:40:43 (5 days ago)	192.109.200.215 - - [29/May/2026:13:40:32 -0700] "GET /.env.local HTTP/2.0" 403 199 "http://birdcage ... show more 192.109.200.215 - - [29/May/2026:13:40:32 -0700] "GET /.env.local HTTP/2.0" 403 199 "http://birdcageheights.com/.env.local" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 192.109.200.215 - - [29/May/2026:13:40:42 -0700] "GET /.env.backup HTTP/2.0" 403 199 "http://birdcageheights.com/.env.backup" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" show less	Brute-Force SSH
🇿🇦 slartybartfast69420blazit	2026-05-29 20:36:58 (5 days ago)	Fail2ban picked up 192.109.200.215 attacking nginx	Web App Attack
🇩🇪 MarkGGN	2026-05-29 20:13:05 (5 days ago)	Web attack. 192.109.200.215 - - [29/May/2026:22:13:04 +0200] "GET /info.php HTTP/2.0" 404 36 "http:/ ... show more Web attack. 192.109.200.215 - - [29/May/2026:22:13:04 +0200] "GET /info.php HTTP/2.0" 404 36 "http://laura-klein.com/info.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 192.109.200.215 - - [29/May/2026:22:13:04 +0200] "GET /pi.php HTTP/2.0" 404 36 "http://*/pi.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" show less	Web App Attack
🇫🇮 ngonghillsbikers	2026-05-29 19:00:07 (5 days ago)	Date: May 29 21:56:54 2026 EAT \| Reported IP: 192.109.200.215 mod_security \| id: 930130 949110 92044 ... show more Date: May 29 21:56:54 2026 EAT \| Reported IP: 192.109.200.215 mod_security \| id: 930130 949110 920440 \| DE/my_domain/- \| Connections: 1 \| Blocked: Permanent Block: [LF_MODSEC] \| Logs: ; Restricted File Access Attempt; Inbound Anomaly Score Exceeded (Total Score: 5); Restricted File Access Attempt; Inbound Anomaly Score Exceeded (Total Score: 5); URL file extension is restricted by policy; Restricted File Access Attempt; Inbound Anomaly Score Exceeded (Total Score: 10) show less	SQL Injection Brute-Force Bad Web Bot
Anonymous	2026-05-29 17:33:20 (5 days ago)	$f2bV_matches	Brute-Force Web App Attack
🇺🇸 paulo.apoloni	2026-05-29 15:15:52 (5 days ago)	192.109.200.215 - - [29/May/2026:12:15:22 -0300] "GET /.aws/credentials HTTP/2.0" 444 0 "http://cown ... show more 192.109.200.215 - - [29/May/2026:12:15:22 -0300] "GET /.aws/credentials HTTP/2.0" 444 0 "http://cownter.agr.br/.aws/credentials" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 192.109.200.215 - - [29/May/2026:12:15:27 -0300] "GET /.aws/credentials HTTP/2.0" 444 0 "http://cownter.agr.br/.aws/credentials" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 192.109.200.215 - - [29/May/2026:12:15:40 -0300] "GET /.env HTTP/2.0" 444 0 "http://cownter.agr.br/.env" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 192.109.200.215 - - [29/May/2026:12:15:47 -0300] "GET /.env.backup HTTP/2.0" 444 0 "http://cownter.agr.br/.env.backup" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 192.109.200.215 - - [29/May/2026:12:15:51 -0 ... show less	Bad Web Bot Web App Attack
🇩🇪 Nevermind	2026-05-29 12:33:02 (5 days ago)	192.109.200.215 - - [29/May/2026:14:33:02 +0200] "GET /info.php HTTP/2.0" 404 808 "http://gadowmail. ... show more 192.109.200.215 - - [29/May/2026:14:33:02 +0200] "GET /info.php HTTP/2.0" 404 808 "http://gadowmail.de/info.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 192.109.200.215 - - [29/May/2026:14:33:02 +0200] "GET /php.php HTTP/2.0" 404 808 "http://gadowmail.de/php.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 192.109.200.215 - - [29/May/2026:14:33:02 +0200] "GET /php_info.php HTTP/2.0" 404 808 "http://gadowmail.de/php_info.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 192.109.200.215 - - [29/May/2026:14:33:02 +0200] "GET /i.php HTTP/2.0" 404 808 "http://gadowmail.de/i.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" ... show less	Web App Attack
🇫🇷 dwmp	2026-05-29 12:32:51 (5 days ago)	Url probing: /info.php/	Web App Attack
🇩🇪 Fnek	2026-05-29 12:00:04 (5 days ago)	crowdsecurity/vpatch-env-access - 202605291400	Hacking
🇩🇪 YF	2026-05-29 11:20:07 (5 days ago)	404 errors Vulnerability scan	Web App Attack
Anonymous	2026-05-29 10:05:48 (5 days ago)	IncogNET WAF local CrowdSec decision. Scenario=crowdsecurity/appsec-vpatch; Action=ban; Events=2; Co ... show more IncogNET WAF local CrowdSec decision. Scenario=crowdsecurity/appsec-vpatch; Action=ban; Events=2; Country=SE; ASN=0 show less	Hacking
Anonymous	2026-05-29 09:18:33 (5 days ago)	FortiWeb WAF: 168 attacks detected. Threat Score: 23800. Types: Client Management(84), Block IP List ... show more FortiWeb WAF: 168 attacks detected. Threat Score: 23800. Types: Client Management(84), Block IP List(84). Origin: Sweden. show less	Web App Attack

Showing 151 to 165 of 1689 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇪 197.248.207.139

🇮🇳 106.192.189.220

🇮🇩 103.125.103.201

🇪🇸 79.117.252.125

🇺🇸 2.24.102.152

🇿🇦 192.143.16.111

🇺🇸 162.216.149.67

🇺🇸 162.144.153.253

🇮🇳 103.158.144.186

🇻🇳 103.90.224.22

🇮🇳 103.77.238.18

🇺🇸 40.121.200.75

🇺🇸 31.57.63.242

🇸🇬 20.212.10.209

🇺🇸 18.190.15.50

🇺🇸 12.20.48.229

🇮🇳 202.83.25.241

🇲🇿 197.242.170.10

🇳🇱 192.142.24.156

🇪🇸 185.227.215.222