JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.201.192.35

42.201.192.35 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 18%: ?

18%

ISP	Huawei-Cloud-HK
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136907
Domain Name	huawei.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.201.192.35

Whois 42.201.192.35

IP Abuse Reports for 42.201.192.35:

This IP address has been reported a total of 9 times from 3 distinct sources. 42.201.192.35 was first reported on March 27th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 netmagnet	2026-06-07 09:14:33 (1 week ago)	Automated HTTP request flood (1653 requests in ~10 min) to lovecpokladu.cz using spam ?backlink= que ... show more Automated HTTP request flood (1653 requests in ~10 min) to lovecpokladu.cz using spam ?backlink= query params; bad web bot / web app attack from Huawei Cloud HK. show less	Web Spam Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 12:37:38 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 08:37:33.425157 2026] [security2:error] [pid 3454:tid 3454] [client 42.201.192.35:21868] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.evolute.io\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.evolute.io"] [uri "/top-5-learnings-moving-software-to-containers"] [unique_id "aiQUjd1BLxYDfqQUSUDU2wAAABE"], referer: https://www.evolute.io/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-05-28 11:33:07 (2 weeks ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 kosada.com	2026-05-17 21:42:47 (1 month ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-12 07:38:29 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 12 03:38:25.503867 2026] [security2:error] [pid 23828:tid 23828] [client 42.201.192.35:52437] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|arsenalfordemocracy.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "arsenalfordemocracy.com"] [uri "/2014/09/29/zimbabwe-first-lady-rising"] [unique_id "agLY8csq7AKrXnz6LFq2DgAAABg"], referer: http://arsenalfordemocracy.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-07 19:32:28 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 15:32:23.977299 2026] [security2:error] [pid 21056:tid 21056] [client 42.201.192.35:47407] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.valkyriepanthers.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.valkyriepanthers.com"] [uri "/index.phtml"] [unique_id "afzox7VuPh7mXsxlJ4jwTwAAABs"], referer: http://www.valkyriepanthers.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-30 17:54:20 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 13:54:16.865459 2026] [security2:error] [pid 25720:tid 25779] [client 42.201.192.35:62650] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|dulemba.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "dulemba.com"] [uri "/2008/11/coloring-page-tuesday-thanksgiving.html"] [unique_id "afOXSPwfwpl-4LDYRhQ2vgAAAdY"], referer: http://dulemba.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-31 02:10:49 (2 months ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 22:10:42.249076 2026] [security2:error] [pid 18889:tid 18889] [client 42.201.192.35:23753] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.transcapitalsolutions.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.transcapitalsolutions.com"] [uri "/"] [unique_id "acstIuutgj-ZDelLdIR2QAAAAAs"], referer: https://armed4battle.com/single-people-seeking-dating-relationships show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-27 09:41:19 (2 months ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 27 05:41:12.293347 2026] [security2:error] [pid 4281:tid 4341] [client 42.201.192.35:53790] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.alicefaye.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.alicefaye.com"] [uri "/"] [unique_id "acZQuMl8_S7Pp1zrpE_CsQAAAJg"], referer: https://www.csfd.cz/tvurce/779-alice-faye show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 139.59.6.237

🇹🇭 202.183.141.133

🇬🇧 185.247.137.196

🇺🇸 104.232.209.191

🇮🇷 79.127.66.250

🇹🇼 211.75.210.109

🇺🇸 192.241.141.178

🇺🇸 192.227.213.228

🇺🇸 52.186.170.77

🇺🇸 50.116.57.24

🇱🇻 31.170.22.196

🇩🇪 5.231.70.98

🇷🇺 212.107.233.209

🇨🇳 211.140.151.12

🇳🇱 195.178.110.30

🇬🇧 195.96.139.21

🇧🇩 103.171.69.94

🇸🇬 43.134.177.47

🇳🇱 31.58.51.38

🇺🇸 162.216.150.115