JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.201.192.34

42.201.192.34 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 19%: ?

19%

ISP	Huawei-Cloud-HK
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136907
Domain Name	huawei.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.201.192.34

Whois 42.201.192.34

IP Abuse Reports for 42.201.192.34:

This IP address has been reported a total of 8 times from 3 distinct sources. 42.201.192.34 was first reported on March 29th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-17 16:16:12 (2 days ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 12:16:08.176959 2026] [security2:error] [pid 22034:tid 22099] [client 42.201.192.34:30413] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.royallawsociety.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.royallawsociety.com"] [uri "/"] [unique_id "ajLISEXl_tDuvG07zgQ9TgAAApc"], referer: http://www.royallawsociety.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 08:58:28 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 04:58:21.414051 2026] [security2:error] [pid 2416:tid 2416] [client 42.201.192.34:35428] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.evolute.io\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.evolute.io"] [uri "/top-5-learnings-moving-software-to-containers"] [unique_id "aiknLXtOYBkyqNmVG7d-swAAACM"], referer: https://www.evolute.io/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 netmagnet	2026-06-07 09:14:33 (1 week ago)	Automated HTTP request flood (1659 requests in ~10 min) to lovecpokladu.cz using spam ?backlink= que ... show more Automated HTTP request flood (1659 requests in ~10 min) to lovecpokladu.cz using spam ?backlink= query params; bad web bot / web app attack from Huawei Cloud HK. show less	Web Spam Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-05-28 10:08:25 (3 weeks ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-20 05:57:02 (4 weeks ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 01:56:54.451030 2026] [security2:error] [pid 10963:tid 10963] [client 42.201.192.34:44086] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|portalvasco.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "portalvasco.com"] [uri "/blog/tag/ganan"] [unique_id "ag1NJgKtVPh-d-ZM_QmH5QAAAAM"], referer: https://portalvasco.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-05-17 23:41:15 (1 month ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-02 12:24:08 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 02 08:24:04.237440 2026] [security2:error] [pid 4253:tid 4253] [client 42.201.192.34:30375] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.elcalamo.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.elcalamo.com"] [uri "/index.phtml"] [unique_id "afXs5MNsPAiF3SjI61zAKwAAAAc"], referer: http://www.elcalamo.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-29 04:13:52 (2 months ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 00:13:44.687365 2026] [security2:error] [pid 19151:tid 19151] [client 42.201.192.34:47039] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.danafrostick.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.danafrostick.com"] [uri "/artwork/2007/dreams_visions/icarus.htm"] [unique_id "acim-JT_3aOndcfZfyAq3wAAAAU"], referer: http://www.danafrostick.com/artwork/pastwork.htm show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.212.164.21

🇺🇸 161.35.232.196

🇪🇬 156.209.73.252

🇦🇹 156.146.61.52

🇰🇷 106.243.155.71

🇳🇱 93.123.109.20

🇳🇱 91.92.40.13

🇷🇴 80.94.92.177

🇨🇳 60.255.191.112

🇺🇸 35.245.124.132

🇵🇰 202.70.139.37

🇺🇸 195.184.76.108

🇦🇷 190.151.162.102

🇨🇴 179.1.127.196

🇫🇮 135.181.182.250

🇨🇳 101.96.203.52

🇷🇴 80.94.95.88

🇷🇴 80.94.92.166

🇷🇴 80.94.92.165

🇺🇸 66.132.172.209