JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.201.192.12

42.201.192.12 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 30%: ?

30%

ISP	Huawei-Cloud-HK
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136907
Domain Name	huawei.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.201.192.12

Whois 42.201.192.12

IP Abuse Reports for 42.201.192.12:

This IP address has been reported a total of 11 times from 5 distinct sources. 42.201.192.12 was first reported on March 21st 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 08:11:17 (2 hours ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 04:11:11.809882 2026] [security2:error] [pid 2710:tid 2710] [client 42.201.192.12:58902] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|mavikalem.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "mavikalem.org"] [uri "/en/2022/03/30/mavi-kalem-consultation-line-90-850-441-62-84-is-open"] [unique_id "ajzin8RNgYBGB7ixx3vJtQAAAAQ"], referer: https://mavikalem.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 03:47:05 (6 hours ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 23:46:59.442330 2026] [security2:error] [pid 8877:tid 8877] [client 42.201.192.12:15383] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.whodatnation.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.whodatnation.com"] [uri "/2026/01/"] [unique_id "ajyks6lmx-a4xvi6trce8QAAAAg"], referer: https://www.whodatnation.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-06-21 19:46:42 (3 days ago)	Web bot: denial-of-service flood	DDoS Attack Bad Web Bot
Anonymous	2026-06-20 19:54:34 (4 days ago)	42.201.192.12 - - [20/Jun/2026:21:53:37 +0200] "GET /205-kolczyki-alkohol?q=R%C4%99kodzie%C5%82o-Nie ... show more 42.201.192.12 - - [20/Jun/2026:21:53:37 +0200] "GET /205-kolczyki-alkohol?q=R%C4%99kodzie%C5%82o-Nie/Materia%C5%82+kolczyk%C3%B3w-%C5%BBywica HTTP/2.0" 444 0 "https://krafciarka.pl/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.6668.59 Safari/537.36" 42.201.192.12 - - [20/Jun/2026:21:53:38 +0200] "GET /205-kolczyki-alkohol?q=R%C4%99kodzie%C5%82o-Nie/Materia%C5%82+kolczyk%C3%B3w-%C5%BBywica HTTP/2.0" 444 0 "https://krafciarka.pl/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.6668.59 Safari/537.36" 42.201.192.12 - - [20/Jun/2026:21:53:39 +0200] "GET /205-kolczyki-alkohol?q=R%C4%99kodzie%C5%82o-Nie/Materia%C5%82+kolczyk%C3%B3w-%C5%BBywica HTTP/2.0" 444 0 "https://krafciarka.pl/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.6668.59 Safari/537.36" 42.201.192.12 - - [20/Jun/2026:21:53:48 +0200] "GET /205-kolczyki-alkohol?q=R%C ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 09:09:52 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 05:09:45.800664 2026] [security2:error] [pid 10607:tid 10607] [client 42.201.192.12:18556] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|airtechconsulting.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "airtechconsulting.com"] [uri "/"] [unique_id "ai0eWcgUQrtC--3NMJgBcwAAAAU"], referer: https://chromeheartsofficial.shop/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 08:31:05 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 04:30:58.810355 2026] [security2:error] [pid 12623:tid 12623] [client 42.201.192.12:57167] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.crystalvisionsart.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.crystalvisionsart.com"] [uri "/index.phtml"] [unique_id "aipyQufaawE7J3AR5EDg7AAAAAk"], referer: http://www.crystalvisionsart.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 netmagnet	2026-06-07 09:14:33 (2 weeks ago)	Automated HTTP request flood (1896 requests in ~10 min) to lovecpokladu.cz using spam ?backlink= que ... show more Automated HTTP request flood (1896 requests in ~10 min) to lovecpokladu.cz using spam ?backlink= query params; bad web bot / web app attack from Huawei Cloud HK. show less	Web Spam Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-05-28 10:13:19 (4 weeks ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇵🇱 sefinek.net	2026-05-18 14:45:26 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from HK. Action: MANAGED_CHALLENGE \| Protocol: HTTP/2 (GET ... show more Triggered Cloudflare WAF (firewallCustom) from HK. Action: MANAGED_CHALLENGE \| Protocol: HTTP/2 (GET) \| Endpoint: /genshin-stella-mod \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 kosada.com	2026-05-17 23:01:34 (1 month ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-21 17:14:05 (3 months ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 13:14:00.510090 2026] [security2:error] [pid 17051:tid 17051] [client 42.201.192.12:15057] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.studioarts.net\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.studioarts.net"] [uri "/calligraphy"] [unique_id "ab7R2ENAuZd4yIuO1DdY2AAAABw"], referer: http://stressmanagementandotherthings.blogspot.com/2008/06 show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 199.68.231.198

🇫🇷 193.70.42.206

🇨🇭 172.161.73.175

🇩🇪 167.94.145.20

🇬🇧 152.37.110.173

🇫🇮 147.185.133.73

🇺🇸 147.185.132.65

🇰🇷 125.142.37.91

🇮🇳 122.172.201.123

🇮🇳 117.217.141.58

🇨🇳 111.53.168.254

🇳🇱 92.112.126.183

🇺🇿 84.54.94.59

🇮🇱 77.137.79.85

🇮🇳 49.36.144.70

🇦🇺 45.133.5.89

🇺🇸 23.251.43.5

🇮🇹 2a00:1450:4025:1805::12c

🇺🇸 216.180.246.92

🇺🇸 172.59.122.171