๐บ๐ธ
xmission.com
2026-07-06 00:47:29
(8 hours ago)
Blocked by UFW (TCP on 51413)
Source port: 23146
TTL: 51
Packet length: 60
TOS: 0x08
This report (f ...
show more
Blocked by UFW (TCP on 51413)
Source port: 23146
TTL: 51
Packet length: 60
TOS: 0x08
This report (for 79.127.134.103) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
xmission.com
2026-06-20 13:42:39
(2 weeks ago)
Blocked by UFW (TCP on 42668)
Source port: 20391
TTL: 51
Packet length: 60
TOS: 0x08
This report (f ...
show more
Blocked by UFW (TCP on 42668)
Source port: 20391
TTL: 51
Packet length: 60
TOS: 0x08
This report (for 79.127.134.103) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐จ๐ณ
pengpeng
2026-05-02 03:07:53
(2 months ago)
monitor: on VM-0-7-ubuntu | port: 5035 | ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter
Port Scan
๐บ๐ธ
mnsf
2026-02-06 17:05:19
(4 months ago)
Too many Status 40X (13)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-06 03:42:00
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 79.127.134.103 (unn-79-127-134-103.datapacket.c ...
show more
(mod_security) mod_security (id:210492) triggered by 79.127.134.103 (unn-79-127-134-103.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 05 22:41:56.069089 2026] [security2:error] [pid 1935088:tid 1935127] [client 79.127.134.103:1364] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.michaelrandon.com"] [uri "/wp-content/plugins/codecanyon-5293356-ajax-store-locator-wordpress/sl_file_download.php"] [unique_id "aYVjBFAAUVaMp4lnnzbWvAAAANg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
BlueWire Hosting
2026-02-06 03:08:19
(5 months ago)
Probing websites for vulnerabilities
Web App Attack
๐ฌ๐ง
Apache
2026-02-06 02:49:21
(5 months ago)
(mod_security) mod_security (id:210730) triggered by 79.127.134.103 (FR/France/unn-79-127-134-103.da ...
show more
(mod_security) mod_security (id:210730) triggered by 79.127.134.103 (FR/France/unn-79-127-134-103.datapacket.com): 5 in the last 300 secs
show less
Brute-Force
Web App Attack
๐ณ๐ฑ
debestelapp
2026-02-06 00:35:03
(5 months ago)
Web App Attack
๐ฉ๐ช
LRob
2026-02-05 22:53:00
(5 months ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-05 21:34:57
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 79.127.134.103 (unn-79-127-134-103.datapacket.c ...
show more
(mod_security) mod_security (id:210492) triggered by 79.127.134.103 (unn-79-127-134-103.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 05 16:34:54.194632 2026] [security2:error] [pid 21335:tid 21335] [client 79.127.134.103:40372] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kawkacevents.com"] [uri "/wp-content/plugins/codecanyon-5293356-ajax-store-locator-wordpress/sl_file_download.php"] [unique_id "aYUM_rHzKyt4xnHlAZPO5AAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐พ
Rizzy
2026-02-05 19:20:52
(5 months ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐บ๐ธ
mnsf
2026-02-05 16:05:23
(5 months ago)
Too many Status 40X (11)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-05 12:15:05
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 79.127.134.103 (unn-79-127-134-103.datapacket.c ...
show more
(mod_security) mod_security (id:210492) triggered by 79.127.134.103 (unn-79-127-134-103.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 05 07:15:00.653666 2026] [security2:error] [pid 15042:tid 15042] [client 79.127.134.103:53762] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rochesterhistorical.org"] [uri "/wp-admin/admin-ajax.php"] [unique_id "aYSJxMcOBOwOPB8S8GcxWQAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-05 10:03:41
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 79.127.134.103 (unn-79-127-134-103.datapacket.c ...
show more
(mod_security) mod_security (id:210492) triggered by 79.127.134.103 (unn-79-127-134-103.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 05 05:03:36.121202 2026] [security2:error] [pid 780890:tid 780890] [client 79.127.134.103:46008] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "natickvillagerentals.com"] [uri "/wp-admin/admin-ajax.php"] [unique_id "aYRq-ClIse2d1WDNNH8B0wAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-05 09:47:38
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 79.127.134.103 (unn-79-127-134-103.datapacket.c ...
show more
(mod_security) mod_security (id:210492) triggered by 79.127.134.103 (unn-79-127-134-103.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 05 04:47:30.797374 2026] [security2:error] [pid 11641:tid 11641] [client 79.127.134.103:14721] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lockdownclaim.com"] [uri "/wp-admin/admin-ajax.php"] [unique_id "aYRnMt3AndToYp7nb1nIbwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack