JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.201.192.41

42.201.192.41 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 19%: ?

19%

ISP	Huawei-Cloud-HK
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136907
Domain Name	huawei.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.201.192.41

Whois 42.201.192.41

IP Abuse Reports for 42.201.192.41:

This IP address has been reported a total of 6 times from 3 distinct sources. 42.201.192.41 was first reported on May 12th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-13 06:08:54 (3 days ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.41 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 02:08:47.802380 2026] [security2:error] [pid 21850:tid 21850] [client 42.201.192.41:13726] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|peacecampus.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "peacecampus.org"] [uri "/"] [unique_id "aizz73QhdKe0-GvbSzGQvwAAAGQ"], referer: http://peacecampus.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 23:32:50 (6 days ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.41 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 19:32:45.773183 2026] [security2:error] [pid 8068:tid 8068] [client 42.201.192.41:52242] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|evolute.io\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "evolute.io"] [uri "/top-5-learnings-moving-software-to-containers"] [unique_id "aiiinSrS_SYLDP_7IGtUEwAAAAg"], referer: http://evolute.io/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 netmagnet	2026-06-07 09:14:33 (1 week ago)	Automated HTTP request flood (1678 requests in ~10 min) to lovecpokladu.cz using spam ?backlink= que ... show more Automated HTTP request flood (1678 requests in ~10 min) to lovecpokladu.cz using spam ?backlink= query params; bad web bot / web app attack from Huawei Cloud HK. show less	Web Spam Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-05-28 11:27:24 (2 weeks ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 kosada.com	2026-05-17 23:27:15 (4 weeks ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-12 07:38:34 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 42.201.192.41 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 42.201.192.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 12 03:38:27.308581 2026] [security2:error] [pid 707:tid 707] [client 42.201.192.41:50770] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|arsenalfordemocracy.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "arsenalfordemocracy.com"] [uri "/2014/09/29/zimbabwe-first-lady-rising/"] [unique_id "agLY81W0iC-UR6k3NeeVLwAAAAo"], referer: http://arsenalfordemocracy.com/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.5

🇳🇱 193.176.31.239

🇺🇸 192.9.150.144

🇨🇷 179.48.248.245

🇺🇾 179.24.154.185

🇺🇸 162.216.149.95

🇩🇪 162.55.27.181

🇳🇱 89.21.67.153

🇰🇷 222.239.251.12

🇫🇷 207.180.236.46

🇨🇷 190.112.222.28

🇮🇳 182.95.103.150

🇨🇳 115.190.138.119

🇳🇱 109.236.86.20

🇮🇳 103.85.132.114

🇸🇬 45.145.154.113

🇺🇸 20.83.167.28

🇺🇸 2607:f8b0:400e:c08::12a

🇦🇺 203.123.104.194

🇹🇼 198.235.24.100