JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.41.104.242

45.41.104.242 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 14%: ?

14%

ISP	KDDI Summit Global Myanmar Company Limited
Usage Type	Fixed Line ISP
ASN	AS9988
Domain Name	mptmmf.com
Country	🇲🇲 Myanmar
City	Yangon, Yangon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.41.104.242

Whois 45.41.104.242

IP Abuse Reports for 45.41.104.242:

This IP address has been reported a total of 18 times from 11 distinct sources. 45.41.104.242 was first reported on August 27th 2021, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-26 15:40:08 (2 hours ago)	(mod_security) mod_security (id:240335) triggered by 45.41.104.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.41.104.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 11:39:52.029687 2026] [security2:error] [pid 8896:tid 8896] [client 45.41.104.242:19937] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.41.104.242 (+1 hits since last alert)\|equipoperu.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "equipoperu.org"] [uri "/xmlrpc.php"] [unique_id "aj6dSKl_-kfKY0L4yLzwHAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 12:52:01 (5 hours ago)	(mod_security) mod_security (id:240335) triggered by 45.41.104.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.41.104.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 08:51:46.685652 2026] [security2:error] [pid 20773:tid 20773] [client 45.41.104.242:14734] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.41.104.242 (+1 hits since last alert)\|oowoah.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "oowoah.com"] [uri "/xmlrpc.php"] [unique_id "aj514rRChVKQoqFFFqwQaQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 11:48:54 (6 hours ago)	(mod_security) mod_security (id:240335) triggered by 45.41.104.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.41.104.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 07:48:38.423664 2026] [security2:error] [pid 27184:tid 27184] [client 45.41.104.242:28678] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.41.104.242 (+1 hits since last alert)\|limeroc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "limeroc.com"] [uri "/xmlrpc.php"] [unique_id "aj5nFmV6tIaRXx3AzFNUIAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 11:20:16 (7 hours ago)	(mod_security) mod_security (id:240335) triggered by 45.41.104.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.41.104.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 07:20:05.591421 2026] [security2:error] [pid 22821:tid 22821] [client 45.41.104.242:19030] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.41.104.242 (+1 hits since last alert)\|j3pr.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "j3pr.com"] [uri "/xmlrpc.php"] [unique_id "aj5gZcaNMVpEJEqCdzgGBgAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 10:48:51 (7 hours ago)	(mod_security) mod_security (id:240335) triggered by 45.41.104.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.41.104.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 06:48:41.645003 2026] [security2:error] [pid 18309:tid 18326] [client 45.41.104.242:23701] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.41.104.242 (+1 hits since last alert)\|seriousgames-system.info\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "seriousgames-system.info"] [uri "/xmlrpc.php"] [unique_id "aj5ZCb4glw8qWy5ZZK7UtAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 09:10:47 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 45.41.104.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 45.41.104.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 05:10:33.934867 2026] [security2:error] [pid 11466:tid 11466] [client 45.41.104.242:27918] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 45.41.104.242 (+1 hits since last alert)\|salernospizza.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "salernospizza.com"] [uri "/xmlrpc.php"] [unique_id "ajUHiZ2DcjUjsp__wQD-rgAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 hermawan	2026-06-12 07:03:13 (2 weeks ago)	[Fri Jun 12 14:03:05.938765 2026] [security2:error] [pid 2307994:tid 140114784089792] [client 45.41. ... show more [Fri Jun 12 14:03:05.938765 2026] [security2:error] [pid 2307994:tid 140114784089792] [client 45.41.104.242:60534] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "image/heif" at REQUEST_HEADERS:Accept. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "422"] [id "440009"] [msg " Image Heif"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: text/html found within REQUEST_HEADERS:Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/heif,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561581-mengenal-fenomena-la-nina-si-pembawa-hujan HTTP/2.0 Request URI RAW = /index.php/informasi-iklim/infografis-ikli..."] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/55556158 ... show less	Email Spam Hacking
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (6 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
Anonymous	2025-12-02 21:16:27 (6 months ago)	botnet	DDoS Attack
Anonymous	2025-11-03 11:11:18 (7 months ago)	Web app attack and vulnerability scan detected from IIS logs	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2024-07-28 13:01:38 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇷🇸 Smel	2024-07-03 15:07:18 (1 year ago)	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	Email Spam Hacking Brute-Force
Anonymous	2024-06-09 06:30:45 (2 years ago)	Automatic report - Vulnerability scan /autodiscover/autodiscover.xml	Web App Attack
🇩🇪 IP Analyzer	2022-12-31 15:31:19 (3 years ago)	Unauthorized connection attempt from IP address 45.41.104.242 on Port 445(SMB)	Port Scan
🇺🇸 vestibtech	2022-05-10 13:40:12 (4 years ago)	May 10 11:40:11 Host-KLAX-C postfix/in_clean/cleanup[2049806]: 183EE1C4795: reject: header Subject: ... show more May 10 11:40:11 Host-KLAX-C postfix/in_clean/cleanup[2049806]: 183EE1C4795: reject: header Subject: You have an outstanding payment. Debt settlement required. from unknown[45.41.104.242]; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<[45.41.104.242]>: 5.7.1 Message identified as SPAM - Rule #502 ... show less	Email Spam

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.78.67.22

🇪🇬 197.51.1.154

🇳🇱 185.226.197.50

🇳🇱 185.226.197.48

🇨🇳 182.34.50.66

🇿🇦 165.73.161.108

🇫🇮 147.185.133.239

🇺🇸 135.237.125.27

🇸🇬 43.156.60.15

🇭🇰 16.163.40.116

🇹🇼 198.235.24.44

🇨🇳 171.83.26.130

🇮🇶 169.224.19.134

🇺🇸 159.65.219.252

🇨🇿 158.115.241.19

🇺🇸 147.185.132.181

🇲🇰 146.255.74.226

🇧🇬 88.213.208.92

🇸🇦 82.167.220.144

🇯🇵 79.127.129.220