JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.41.173.147

45.41.173.147 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 0%: ?

ISP	HostRoyale LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46516
Hostname(s)	ip-45-41-173-147.fibre.fibrestream.ca
Domain Name	hostroyale.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.41.173.147

Whois 45.41.173.147

IP Abuse Reports for 45.41.173.147:

This IP address has been reported a total of 10 times from 4 distinct sources. 45.41.173.147 was first reported on October 30th 2023, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-17 11:05:25 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 45.41.173.147 (ip-45-41-173-147.fibre.fibrestre ... show more (mod_security) mod_security (id:210492) triggered by 45.41.173.147 (ip-45-41-173-147.fibre.fibrestream.ca): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 06:05:21.496890 2026] [security2:error] [pid 25635:tid 25635] [client 45.41.173.147:56085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nbcnewsradio.com"] [uri "/htaccess_for_page_not_found_redirects.htaccess"] [unique_id "aWts8TdYr-sfFyAsRS5k5QAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 17:18:36 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 45.41.173.147 (ip-45-41-173-147.fibre.fibrestre ... show more (mod_security) mod_security (id:210730) triggered by 45.41.173.147 (ip-45-41-173-147.fibre.fibrestream.ca): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 12:12:25.448787 2025] [security2:error] [pid 12847:tid 12916] [client 45.41.173.147:54537] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mail.kettlehill.net\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.kettlehill.net"] [uri "/file=http:/example.com"] [unique_id "aVK2eaLrABXCW5a44Sq-7QAAAYE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-13 09:35:07 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 45.41.173.147 (ip-45-41-173-147.fibre.fibrestre ... show more (mod_security) mod_security (id:210730) triggered by 45.41.173.147 (ip-45-41-173-147.fibre.fibrestream.ca): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 04:34:58.104913 2025] [security2:error] [pid 26490:tid 26490] [client 45.41.173.147:35889] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.nbcnewsradio.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.nbcnewsradio.com"] [uri "/admin/logs/errors.log"] [unique_id "aRWmQq4eaR80yXf08B9HTAAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇪 RoboSOC	2025-10-16 08:37:29 (7 months ago)	Sonatype Nexus Repository Manager Remote Code Execution Vulnerability, PTR: ip-45-41-173-147.fibre.f ... show more Sonatype Nexus Repository Manager Remote Code Execution Vulnerability, PTR: ip-45-41-173-147.fibre.fibrestream.ca. show less	Hacking
🇺🇸 TPI-Abuse	2025-07-27 00:18:43 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 45.41.173.147 (ip-45-41-173-147.fibre.fibrestre ... show more (mod_security) mod_security (id:210492) triggered by 45.41.173.147 (ip-45-41-173-147.fibre.fibrestream.ca): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 20:18:35.291516 2025] [security2:error] [pid 172229:tid 172471] [client 45.41.173.147:39835] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.net"] [uri "/.svn/entries"] [unique_id "aIVwW-Zd-uShJ73phjvsEgAAAQY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 19:34:46 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 45.41.173.147 (ip-45-41-173-147.fibre.fibrestre ... show more (mod_security) mod_security (id:210492) triggered by 45.41.173.147 (ip-45-41-173-147.fibre.fibrestream.ca): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 15:34:35.838088 2025] [security2:error] [pid 3323490:tid 3323490] [client 45.41.173.147:58043] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.farmers123.com"] [uri "/js../.git/config"] [unique_id "aDi2yxf1-FFlcuj8-LIFjgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-01-17 14:20:20 (1 year ago)	\| PHPMyAdmin scans (looking for setup.php).	Hacking SQL Injection Web App Attack
🇺🇸 ChamberofCommerce.com	2023-11-06 01:54:30 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-11-02 03:24:55 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-30 20:04:11 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 162.19.18.198

🇫🇷 51.68.226.87

🇷🇴 2.57.121.112

🇨🇳 221.203.38.3

🇹🇼 210.61.64.135

🇺🇸 172.255.80.98

🇺🇸 172.234.192.95

🇩🇪 164.92.186.144

🇵🇾 143.202.209.23

🇺🇸 137.184.66.175

🇻🇳 118.70.182.193

🇨🇳 106.13.182.16

🇩🇪 102.220.160.160

🇨🇳 101.126.81.144

🇷🇴 92.118.39.74

🇺🇸 66.132.186.205

🇳🇱 45.148.10.157

🇸🇰 31.134.101.69

🇫🇮 204.168.239.13

🇪🇸 185.243.92.96