JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.220.42.101

124.220.42.101 was found in our database!

This IP was reported 192 times. Confidence of Abuse is 100%: ?

100%

ISP	Tencent cloud computing (Beijing) Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45090
Domain Name	tencentcloud.com
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.220.42.101

Whois 124.220.42.101

IP Abuse Reports for 124.220.42.101:

This IP address has been reported a total of 192 times from 71 distinct sources. 124.220.42.101 was first reported on May 19th 2026, and the most recent report was 7 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 zulzeen	2026-06-22 07:22:34 (7 minutes ago)	[incypit-web] Blocked by SysWarden Firewall [GEO] (Web Attack)	Hacking Web App Attack
🇺🇸 Epimetheus	2026-06-22 01:06:11 (6 hours ago)	Unauthorized access attempts: [GET] / UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) ... show more Unauthorized access attempts: [GET] / UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 show less	Web App Attack
🇷🇺 Mga Admin	2026-06-21 17:40:49 (13 hours ago)	[Mon Jun 22 00:40:49.080944 2026] [authz_core:error] [pid 2740360:tid 2740408] [client 124.220.42.10 ... show more [Mon Jun 22 00:40:49.080944 2026] [authz_core:error] [pid 2740360:tid 2740408] [client 124.220.42.101:58746] AH01630: client denied by server configuration: /etc/httpd/htdocs ... show less	Web App Attack
🇫🇷 Sklurk	2026-06-21 11:21:03 (20 hours ago)	Web App Attack	Web App Attack
🇫🇷 masterguru	2026-06-21 09:22:10 (22 hours ago)	Multiple/Conflicting Connection Header Data Found. Pattern match "\\\\b(?:keep-alive\|close),\\\\s?(? ... show more Multiple/Conflicting Connection Header Data Found. Pattern match "\\\\b(?:keep-alive\|close),\\\\s?(?:keep-alive\|close)\\\\b" at REQUEST_HEADERS:Connection. (920210-193) show less	Hacking
Anonymous	2026-06-21 09:20:54 (22 hours ago)	FortiWeb WAF: 68 attacks detected. Threat Score: 22400. Types: Client Management(34), GEO IP(34). Or ... show more FortiWeb WAF: 68 attacks detected. Threat Score: 22400. Types: Client Management(34), GEO IP(34). Origin: China. show less	Web App Attack
🇦🇹 Pingger Shikkoken	2026-06-21 02:09:33 (1 day ago)	2026-06-21T02:09:33+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC ... show more 2026-06-21T02:09:33+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=124.220.42.101 DST=10.1.1.2 LEN=60 TOS=0x00 PREC=0x00 TTL=43 ID=49101 DF PROTO=TCP SPT=42994 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 2026-06-21T02:09:34+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=124.220.42.101 DST=10.1.1.2 LEN=60 TOS=0x00 PREC=0x00 TTL=43 ID=49102 DF PROTO=TCP SPT=42994 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 2026-06-21T02:09:36+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC=b6:ab:74:e6:2e:14:84:03:28:62:58:1a:08:00 SRC=124.220.42.101 DST=10.1.1.2 LEN=60 TOS=0x00 PREC=0x00 TTL=43 ID=49103 DF PROTO=TCP SPT=42994 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 ... show less	Hacking Bad Web Bot
🇩🇪 sdos.es	2026-06-21 00:28:12 (1 day ago)	"Multiple/Conflicting Connection Header Data Found - keep-alive, close"	Web App Attack
🇺🇸 Charlesiv	2026-06-20 20:21:23 (1 day ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK ASN: 45090 (Shenzhen Tencent ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK ASN: 45090 (Shenzhen Tencent Computer Systems Company Limited) Protocol: HTTP/1.1 (GET method) Endpoint: / Timestamp: 2026-06-20T20:19:39Z Ray ID: a0ed783d6fbf9f64 UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 show less	Bad Web Bot
Anonymous	2026-06-20 16:45:08 (1 day ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇨🇦 dispensight	2026-06-20 16:19:57 (1 day ago)	SSL log traffic to dispensight.com: 1 req(s). URIs: /. UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_. ... show more SSL log traffic to dispensight.com: 1 req(s). URIs: /. UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_. Flag: spoofed legacy UA (documented botnet fingerprint). show less	Bad Web Bot
🇫🇷 masterguru	2026-06-20 14:06:06 (1 day ago)	Multiple/Conflicting Connection Header Data Found. Pattern match "\\\\b(?:keep-alive\|close),\\\\s?(? ... show more Multiple/Conflicting Connection Header Data Found. Pattern match "\\\\b(?:keep-alive\|close),\\\\s?(?:keep-alive\|close)\\\\b" at REQUEST_HEADERS:Connection. (920210-195) show less	Hacking
🇨🇦 1gz	2026-06-20 06:51:53 (2 days ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: CHALLENGE Protocol: HTTP/1.1 (GET m ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇬🇷 setupgr	2026-06-20 03:13:18 (2 days ago)	(mod_security) mod_security (id:100011) triggered by 124.220.42.101 (CN/China/Shanghai/Shanghai/-/[A ... show more (mod_security) mod_security (id:100011) triggered by 124.220.42.101 (CN/China/Shanghai/Shanghai/-/[AS45090 TENCENT-NET-AP Shenzhen Tencent Computer Systems Company Limited]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 20 06:13:14.340844 2026] [security2:error] [pid 2277:tid 2386] [client 124.220.42.101:40802] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(www\\\\.)?ftiaxtomonosou\\\\.gr" at SERVER_NAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "54"] [id "100011"] [msg "CSF-TRIGGER: Country Block CN/SG for ftiaxtomonosou.gr"] [hostname "ftiaxtomonosou.gr"] [uri "/"] [unique_id "ajYFSlVjV5VR3hAZ4rkoqAAAAEs"] show less	Port Scan
🇭🇳 unph	2026-06-19 22:47:34 (2 days ago)	Intento de acceso sospechoso bloqueado por AbuseIPDB Blocker Plugin	Brute-Force

Showing 1 to 15 of 192 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 91.230.168.10

🇱🇹 81.30.98.158

🇧🇭 212.2.32.124

🇺🇸 185.180.141.42

🇨🇳 175.167.250.238

🇧🇷 167.249.94.189

🇭🇰 103.43.191.43

🇧🇷 201.71.9.99

🇺🇸 165.154.173.17

🇬🇧 165.154.129.188

🇮🇩 163.7.3.26

🇷🇺 91.219.151.4

🇺🇸 18.190.15.50

🇪🇸 5.182.83.231

🇺🇸 2a04:c300:400::1cc

🇹🇿 197.186.57.243

🇩🇪 194.88.98.116

🇩🇪 151.243.11.37

🇮🇳 103.153.12.245

🇸🇬 101.47.159.125