๐บ๐ธ
TPI-Abuse
2026-07-07 06:04:39
(4 days ago)
(mod_security) mod_security (id:240335) triggered by 120.29.76.164 (164.76.29.120-rev.convergeict.co ...
show more
(mod_security) mod_security (id:240335) triggered by 120.29.76.164 (164.76.29.120-rev.convergeict.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 02:04:31.425675 2026] [security2:error] [pid 31236:tid 31236] [client 120.29.76.164:29131] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 120.29.76.164 (+1 hits since last alert)|dancingbearprinting.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "dancingbearprinting.com"] [uri "/xmlrpc.php"] [unique_id "akyW79kEi5_OL1Y27zXbdAAAACc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 17:48:54
(5 days ago)
(mod_security) mod_security (id:240335) triggered by 120.29.76.164 (164.76.29.120-rev.convergeict.co ...
show more
(mod_security) mod_security (id:240335) triggered by 120.29.76.164 (164.76.29.120-rev.convergeict.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 13:48:48.596432 2026] [security2:error] [pid 18523:tid 18523] [client 120.29.76.164:34322] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 120.29.76.164 (+1 hits since last alert)|automatebi.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "automatebi.com"] [uri "/xmlrpc.php"] [unique_id "akvqgHBAlWGKmZqtgBaXUgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฒ๐พ
Rizzy
2026-07-06 14:36:33
(5 days ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-23 00:41:22
(2 weeks ago)
(mod_security) mod_security (id:240335) triggered by 120.29.76.164 (164.76.29.120-rev.convergeict.co ...
show more
(mod_security) mod_security (id:240335) triggered by 120.29.76.164 (164.76.29.120-rev.convergeict.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 20:41:15.431577 2026] [security2:error] [pid 15354:tid 15354] [client 120.29.76.164:48800] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 120.29.76.164 (+1 hits since last alert)|insidemilb.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "insidemilb.com"] [uri "/xmlrpc.php"] [unique_id "ajnWK2IUpSkP9StivRamwwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-23 00:10:33
(2 weeks ago)
(mod_security) mod_security (id:240335) triggered by 120.29.76.164 (164.76.29.120-rev.convergeict.co ...
show more
(mod_security) mod_security (id:240335) triggered by 120.29.76.164 (164.76.29.120-rev.convergeict.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 20:10:28.009499 2026] [security2:error] [pid 17211:tid 17211] [client 120.29.76.164:63574] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 120.29.76.164 (+1 hits since last alert)|weird.eco|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "weird.eco"] [uri "/xmlrpc.php"] [unique_id "ajnO9KudSOEQfJb7q9RumwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2025-12-04 12:07:58
(7 months ago)
Detected mail brute force attack from 4 different servers
Brute-Force
Anonymous
2025-01-14 00:45:34
(1 year ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ป๐ณ
Xuan Can
2025-01-07 02:27:03
(1 year ago)
(mod_security) mod_security (id:6) triggered by 120.29.76.164 (PH/Philippines/164.76.29.120-rev.conv ...
show more
(mod_security) mod_security (id:6) triggered by 120.29.76.164 (PH/Philippines/164.76.29.120-rev.convergeict.com): 1 in the last 3600 secs; Ports: 80,443; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 07 09:26:54.961568 2025] [security2:error] [pid 29715:tid 29763] [client 120.29.76.164:0] [client 120.29.76.164] ModSecurity: Access denied with connection close (phase 2). Pattern match "wp-login.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "62"] [id "6"] [severity "CRITICAL"] [hostname "www.diendanmaychu.vn"] [uri "/wp-login.php"] [unique_id "Z3yQ7hh44zd7OaS-LrVygwAAARU"]
show less
Brute-Force
SSH
๐ฆ๐บ
MAGIC
2024-12-31 07:11:25
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2024-12-15 21:08:31
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 120.29.76.164 (164.76.29.120-rev.convergeict.co ...
show more
(mod_security) mod_security (id:225170) triggered by 120.29.76.164 (164.76.29.120-rev.convergeict.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 15 16:08:25.362450 2024] [security2:error] [pid 6217:tid 6240] [client 120.29.76.164:11567] [client 120.29.76.164] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||whatismetamodern.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "whatismetamodern.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "Z19FST9E9cxLQWVAL7zlIQAAARU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
MAGIC
2024-12-15 06:02:12
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2024-12-12 09:22:20
(1 year ago)
(mod_security) mod_security (id:225170) triggered by 120.29.76.164 (164.76.29.120-rev.convergeict.co ...
show more
(mod_security) mod_security (id:225170) triggered by 120.29.76.164 (164.76.29.120-rev.convergeict.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 12 04:22:15.025146 2024] [security2:error] [pid 9456:tid 9523] [client 120.29.76.164:40666] [client 120.29.76.164] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.killasgarage.bike|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.killasgarage.bike"] [uri "/wp-json/wp/v2/users/1"] [unique_id "Z1qrRxgRN8IE9zZiWyr9gwAAAJQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
danskefilm.dk
2024-10-21 00:00:01
(1 year ago)
wordpress login attempts
Web App Attack
๐ฆ๐บ
MAGIC
2024-08-03 06:06:27
(1 year ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ฉ๐ช
ps-center
2024-06-26 04:13:56
(2 years ago)
MYH: Web Attack GET /wp-login.php
Web Spam
Hacking
Bad Web Bot
Web App Attack