πΊπΈ
TPI-Abuse
2026-07-10 11:45:07
(2 days ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 07:44:57.872444 2026] [security2:error] [pid 3658348:tid 3658348] [client 117.161.143.173:42790] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||cauchosindustrialesespeciales.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "cauchosindustrialesespeciales.com"] [uri "/cgi-sys/suspendedpage.cgi"] [unique_id "alDbOUbxc5K8tOYGTtYyWwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-10 11:08:13
(2 days ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 07:08:06.088243 2026] [security2:error] [pid 8269:tid 8295] [client 117.161.143.173:57104] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.gryphix.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.gryphix.com"] [uri "/wp-content/uploads/2014/09/MalibuRealEstate-1024x569.png"] [unique_id "alDSltX7Ipz0OFFI4-QZMAAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-10 10:28:50
(2 days ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 06:28:42.764322 2026] [security2:error] [pid 10202:tid 10248] [client 117.161.143.173:60696] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.buick-reatta.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.buick-reatta.com"] [uri "/images/gallery/1989-46.jpg"] [unique_id "alDJWkIHQT3j7k4lKKo0bAAAAYk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-03 12:12:15
(1 week ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 08:12:06.693243 2026] [security2:error] [pid 11127:tid 11127] [client 117.161.143.173:40430] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.ohwaitiforgot.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.ohwaitiforgot.com"] [uri "/wp-content/uploads/2017/01/wildwood-232x300.jpg"] [unique_id "akenFqAQdL9ZS_LqSfw-HQAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-01 10:07:20
(1 week ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 06:07:13.711354 2026] [security2:error] [pid 2296:tid 2296] [client 117.161.143.173:37394] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||frankpollicino.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "frankpollicino.com"] [uri "/products/media/49131.jpg"] [unique_id "akTm0VvIO6qSzISk47NaXgAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-05 15:30:20
(1 month ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 11:30:13.241701 2026] [security2:error] [pid 21590:tid 21590] [client 117.161.143.173:51828] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||advancedmotorsports.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "advancedmotorsports.com"] [uri "/cgi-sys/suspendedpage.cgi"] [unique_id "aiLrhWOpFJUBmhjq6ctxfwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-11 15:10:23
(2 months ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 11 11:10:17.024790 2026] [security2:error] [pid 6859:tid 6859] [client 117.161.143.173:44690] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.peterjohnsonauthor.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.peterjohnsonauthor.com"] [uri "/wp-content/uploads/2017/04/PJ_FeaturedBox03-350x197.jpg"] [unique_id "agHxWffDm_3a-UnvtibC1gAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-08 07:53:46
(2 months ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 03:53:37.959286 2026] [security2:error] [pid 24122:tid 24122] [client 117.161.143.173:54470] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.themadwriter.us|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.themadwriter.us"] [uri "/wp-content/uploads/2016/09/Pig-with-an-attitude-Beale-Street.jpg"] [unique_id "af2WgZCl8Pkug8Iz7P-F4AAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-08 04:36:57
(2 months ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 00:36:51.930491 2026] [security2:error] [pid 4851:tid 4851] [client 117.161.143.173:44482] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||thenewplantation.org|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "thenewplantation.org"] [uri "/403.html"] [unique_id "af1oY23N8haKaz4SKWHnmwAAACg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-07 15:18:25
(2 months ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 11:18:21.214390 2026] [security2:error] [pid 25925:tid 25925] [client 117.161.143.173:37314] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||cosplayculture.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "cosplayculture.com"] [uri "/sites/default/files/frankenstein_3.jpg"] [unique_id "afytPZE0GCaj6PCetPzEngAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-06 07:41:25
(7 months ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 02:41:21.649402 2025] [security2:error] [pid 9804:tid 9804] [client 117.161.143.173:52018] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.backtosleep.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.backtosleep.com"] [uri "/backstore/pics/Stressless-Granada-Low.jpg"] [unique_id "aTPeIR9giN-QppHK--aPiAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-05 01:59:58
(7 months ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 20:59:52.129960 2025] [security2:error] [pid 10039:tid 10039] [client 117.161.143.173:37982] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||watermarks.info|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "watermarks.info"] [uri "/jpg/000355.jpg"] [unique_id "aTI8mNWQ1G48juER9rhIAwAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-03 19:49:37
(7 months ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 03 14:49:31.201903 2025] [security2:error] [pid 16102:tid 16102] [client 117.161.143.173:60898] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||saramics.net|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "saramics.net"] [uri "/mugs04.jpg"] [unique_id "aTCUS286Dn9CvPCVzXwDOAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-03 14:46:06
(7 months ago)
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.143.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 03 09:46:00.375983 2025] [security2:error] [pid 1157:tid 1157] [client 117.161.143.173:53460] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||neff.family.name|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "neff.family.name"] [uri "/unwiki/lib/exe/fetch.php"] [unique_id "aTBNKJmtcm6byNANCKrkDAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπ¦
URAN Publishing Service
2025-12-02 21:07:53
(7 months ago)
117.161.143.173 - - [02/Dec/2025:23:07:53 +0200] "GET /wp-content/uploads/sites/58/2016/11/33-26.pdf ...
show more
117.161.143.173 - - [02/Dec/2025:23:07:53 +0200] "GET /wp-content/uploads/sites/58/2016/11/33-26.pdf HTTP/1.1" 404 444 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
...
show less
Web App Attack