JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 198.46.241.165

198.46.241.165 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 0%: ?

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	198-46-241-165-host.colocrossing.com
Domain Name	hostpapa.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 198.46.241.165

Whois 198.46.241.165

IP Abuse Reports for 198.46.241.165:

This IP address has been reported a total of 4 times from 3 distinct sources. 198.46.241.165 was first reported on October 26th 2024, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 i-turnradio.nl	2025-09-18 23:56:21 (8 months ago)	2025-09-19 @ 01:56:21 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
🇺🇸 TPI-Abuse	2025-09-18 13:24:16 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 198.46.241.165 (198-46-241-165-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 198.46.241.165 (198-46-241-165-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 18 09:24:10.087711 2025] [security2:error] [pid 321794:tid 321806] [client 198.46.241.165:58623] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|unitedonegroup.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "unitedonegroup.com"] [uri "/orders.sql"] [unique_id "aMwH-ubHhBiHiKI8SW-udwAAAEo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-17 14:06:03 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 198.46.241.165 (198-46-241-165-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 198.46.241.165 (198-46-241-165-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 17 10:05:59.975197 2025] [security2:error] [pid 11867:tid 11867] [client 198.46.241.165:40129] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|alsdepot.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "alsdepot.com"] [uri "/backup2.sql"] [unique_id "aMrAR2vGmE3cWfYo3SUl1wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2024-10-26 13:30:06 (1 year ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇹 196.189.236.162

🇨🇳 182.119.229.64

🇺🇸 147.185.132.63

🇨🇳 117.174.24.34

🇸🇬 101.32.242.137

🇳🇱 45.153.34.112

🇬🇧 35.203.211.52

🇷🇴 2.57.122.177

🇬🇧 213.166.84.36

🇹🇼 198.235.24.65

🇫🇷 176.149.246.125

🇺🇸 162.216.149.48

🇨🇳 111.231.164.195

🇳🇱 45.148.10.62

🇬🇧 35.203.210.159

🇺🇸 34.27.246.226

🇧🇦 195.222.57.183

🇧🇬 193.24.211.107

🇮🇳 103.226.200.45

🇨🇳 60.188.58.133