JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.41.169.95

45.41.169.95 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 12%: ?

12%

ISP	HostRoyale LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46516
Hostname(s)	ip-45-41-169-95.fibre.fibrestream.ca
Domain Name	hostroyale.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.41.169.95

Whois 45.41.169.95

IP Abuse Reports for 45.41.169.95:

This IP address has been reported a total of 9 times from 4 distinct sources. 45.41.169.95 was first reported on October 30th 2023, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-01 02:51:40 (6 days ago)	(mod_security) mod_security (id:210730) triggered by 45.41.169.95 (ip-45-41-169-95.fibre.fibrestream ... show more (mod_security) mod_security (id:210730) triggered by 45.41.169.95 (ip-45-41-169-95.fibre.fibrestream.ca): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 22:51:35.159010 2026] [security2:error] [pid 12707:tid 12733] [client 45.41.169.95:51291] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kettlehill.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.com"] [uri "/windows/win.ini"] [unique_id "ahzzt_r1zQOtbkd9viU10wAAABY"], referer: http://www.kettlehill.com/windows/win.ini show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-22 13:41:46 (2 weeks ago)	LH-Watcher: FAKE_ID [Fake Googlebot]	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-13 08:58:03 (6 months ago)	(mod_security) mod_security (id:212620) triggered by 45.41.169.95 (ip-45-41-169-95.fibre.fibrestream ... show more (mod_security) mod_security (id:212620) triggered by 45.41.169.95 (ip-45-41-169-95.fibre.fibrestream.ca): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 03:57:35.882239 2025] [security2:error] [pid 2553:tid 2553] [client 45.41.169.95:52195] ModSecurity: Access denied with code 403 (phase 2). Pattern match "<script\\\\b" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "65"] [id "212620"] [rev "4"] [msg "COMODO WAF: Cross-site Scripting (XSS) Attack\|\|ftp.nbcnewsradio.com\|F\|2"] [data "Matched Data: <script found within REQUEST_URI: /squid.svg?title=notfound&text=thisisnotthepageyouarelookingfor!&background=\\x22><script>alert(document.domain)</script><imgsrc=\\x22&small"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "ftp.nbcnewsradio.com"] [uri "/squid.svg"] [unique_id "aRWdf2ETCUZUljy3Z9ayfAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-27 00:56:26 (10 months ago)	(mod_security) mod_security (id:221260) triggered by 45.41.169.95 (ip-45-41-169-95.fibre.fibrestream ... show more (mod_security) mod_security (id:221260) triggered by 45.41.169.95 (ip-45-41-169-95.fibre.fibrestream.ca): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 20:56:18.859679 2025] [security2:error] [pid 404370:tid 404559] [client 45.41.169.95:51325] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\\(\\\\)\\\\s{" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)\|\|cpanel.staging.kettlehill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.staging.kettlehill.com"] [uri "/cgi-bin/stats"] [unique_id "aIV5Msy-cZtwxEkIWL83_gAAAMY"], referer: () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 16:15:08 (1 year ago)	(mod_security) mod_security (id:222550) triggered by 45.41.169.95 (ip-45-41-169-95.fibre.fibrestream ... show more (mod_security) mod_security (id:222550) triggered by 45.41.169.95 (ip-45-41-169-95.fibre.fibrestream.ca): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 12:14:41.134424 2025] [security2:error] [pid 2949520:tid 2949520] [client 45.41.169.95:47167] ModSecurity: Access denied with code 403 (phase 2). Pattern match "[^\\\\w\\\\ \\\\.]" at ARGS:list[fullordering]. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "82"] [id "222550"] [rev "1"] [msg "COMODO WAF: SQL injection vulnerability in Joomla! 3.7.x before 3.7.1 (CVE-2017-8917)\|\|ftp.farmers123.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "ftp.farmers123.com"] [uri "/index.php"] [unique_id "aDiH8bUsHhn6ydxoKNdT0AAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-01-15 12:40:54 (1 year ago)	\| XSS (Cross Site Scripting) attempt.	Hacking SQL Injection Web App Attack
🇺🇸 ChamberofCommerce.com	2023-11-06 04:59:16 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-11-02 04:51:40 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:227 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-30 21:13:12 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇴 182.93.50.90

🇵🇱 172.253.206.52

🇨🇦 167.99.182.39

🇺🇸 162.216.149.127

🇫🇷 159.26.112.4

🇯🇵 156.227.232.198

🇺🇸 154.12.242.76

🇨🇦 148.113.180.195

🇫🇮 147.185.133.156

🇬🇧 132.145.48.213

🇮🇩 124.40.252.3

🇺🇸 71.6.240.149

🇺🇸 45.33.85.107

🇸🇬 8.222.250.116

🇬🇧 172.71.241.116

🇺🇸 154.83.197.107

🇹🇼 111.70.32.6

🇨🇳 111.47.243.219

🇺🇸 107.150.104.176

🇳🇬 102.88.137.213