JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.109.200.215

192.109.200.215 was found in our database!

This IP was reported 1,687 times. Confidence of Abuse is 100%: ?

100%

ISP	Telco power Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51396
Domain Name	telcopower.eu
Country	🇩🇪 Germany
City	Aachen, North Rhine-Westphalia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.109.200.215

Whois 192.109.200.215

IP Abuse Reports for 192.109.200.215:

This IP address has been reported a total of 1,687 times from 508 distinct sources. 192.109.200.215 was first reported on April 5th 2026, and the most recent report was 45 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-03 07:44:49 (17 hours ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-06-03 07:32:56 (17 hours ago)	192.109.200.215 - - [03/Jun/2026:07:32:55 +0000] "GET /.aws/credentials HTTP/1.1" 301 538 "-" "Mozil ... show more 192.109.200.215 - - [03/Jun/2026:07:32:55 +0000] "GET /.aws/credentials HTTP/1.1" 301 538 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" ... show less	Brute-Force Web App Attack
🇨🇿 ptlab	2026-06-03 06:45:48 (18 hours ago)	Detected env_leak attack from WP-host.	Hacking Web App Attack
🇧🇪 boxed-it	2026-06-03 06:05:09 (19 hours ago)	GET /.env (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
🇺🇸 MPL	2026-06-03 05:35:47 (19 hours ago)	tcp/80 (1598 or more attempts)	Port Scan
🇩🇪 s@ch@	2026-06-03 04:45:01 (20 hours ago)	Jail: plesk-modsecurity \| Web application attack (Plesk ModSecurity)	Web App Attack
🇩🇪 Dennis	2026-06-03 04:34:19 (20 hours ago)	192.109.200.215 has been banned for triggering http-probing (11 events over 338.798553ms).	Brute-Force Web App Attack
🇩🇪 Melle	2026-06-03 04:07:21 (21 hours ago)	Blocked by CrowdSec \| Scenario: crowdsecurity/http-admin-interface-probing \| 192.109.200.215 trigger ... show more Blocked by CrowdSec \| Scenario: crowdsecurity/http-admin-interface-probing \| 192.109.200.215 triggered 3 events \| Detected: 2026-06-03T04:07:20.336343973Z show less	Web App Attack Hacking
Anonymous	2026-06-03 03:46:07 (21 hours ago)		Bad Web Bot
🇩🇪 conseilgouz	2026-06-03 03:22:55 (21 hours ago)	mae-6 : Trying access system files=>/phpinfo.php(phpinfo.php)	Hacking
🇺🇸 Dave Hansen	2026-06-03 03:19:36 (21 hours ago)	(mod_security) mod_security triggered on hostname [redacted] 192.109.200.215 (BG/Bulgaria/-)	SQL Injection
🇺🇸 kadour	2026-06-03 03:03:02 (22 hours ago)	[Tue Jun 02 22:03:00.970401 2026] [proxy_fcgi:error] [pid 432079:tid 432113] [client 192.109.200.215 ... show more [Tue Jun 02 22:03:00.970401 2026] [proxy_fcgi:error] [pid 432079:tid 432113] [client 192.109.200.215:52960] AH01071: Got error 'Primary script unknown', referer: http://mail.ravenloft.net/phpinfo.php [Tue Jun 02 22:03:01.197469 2026] [proxy_fcgi:error] [pid 432079:tid 432114] [client 192.109.200.215:52960] AH01071: Got error 'Primary script unknown', referer: http://mail.ravenloft.net/test.php [Tue Jun 02 22:03:01.626981 2026] [proxy_fcgi:error] [pid 432079:tid 432118] [client 192.109.200.215:52960] AH01071: Got error 'Primary script unknown', referer: http://mail.ravenloft.net/info.php [Tue Jun 02 22:03:01.867057 2026] [proxy_fcgi:error] [pid 432079:tid 432120] [client 192.109.200.215:52960] AH01071: Got error 'Primary script unknown', referer: http://mail.ravenloft.net/php.php [Tue Jun 02 22:03:02.122384 2026] [proxy_fcgi:error] [pid 432079:tid 432122] [client 192.109.200.215:52960] AH01071: Got error 'Primary script unknown', referer: http://mail.ravenloft.net/php_info.php ... show less	Web App Attack
🇺🇸 agenciahypelab.com.br	2026-06-03 02:00:34 (23 hours ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
Anonymous	2026-06-03 00:02:12 (1 day ago)	$f2bV_matches	Brute-Force Web App Attack
🇺🇸 walnuts	2026-06-02 21:50:41 (1 day ago)	Automated: Triggered nginx security jail (nginx-444) - probing blocked paths on web server	Bad Web Bot Web App Attack

Showing 31 to 45 of 1687 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 200.150.204.244

🇩🇪 104.23.239.69

🇺🇸 66.132.195.111

🇳🇱 45.148.10.147

🇪🇪 217.159.190.24

🇺🇸 209.141.46.71

🇫🇷 157.173.112.247

🇫🇮 147.185.133.250

🇺🇸 100.50.17.159

🇺🇸 96.91.51.126

🇨🇦 85.217.149.74

🇨🇦 85.217.149.43

🇩🇪 77.91.71.12

🇨🇳 60.177.61.167

🇺🇸 47.251.70.202

🇸🇬 47.82.11.87

🇺🇸 2a03:2880:f804:45::

🇳🇱 185.93.89.167

🇮🇹 185.15.170.232

🇩🇪 172.69.151.225