πΊπΈ
TPI-Abuse
2026-07-05 18:52:02
(21 hours ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 14:51:53.456414 2026] [security2:error] [pid 12283:tid 12283] [client 117.161.79.36:39466] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.blaslandsporthorses.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.blaslandsporthorses.com"] [uri "/wp-content/uploads/5432CD02-F309-48EC-A35B-14EAC9E99103-199x300.jpg"] [unique_id "akqnycnKdGHXySuHne2-EQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-04 12:58:10
(2 days ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 08:58:05.260144 2026] [security2:error] [pid 31449:tid 31449] [client 117.161.79.36:27032] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||frankpollicino.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "frankpollicino.com"] [uri "/products/media/49122.jpg"] [unique_id "akkDXUzSUy_kmR8zGDrLBgAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-02 04:02:10
(4 days ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 00:02:05.960624 2026] [security2:error] [pid 22678:tid 22678] [client 117.161.79.36:45234] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.ohwaitiforgot.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.ohwaitiforgot.com"] [uri "/wp-content/uploads/2021/08/owiflogotrans.png"] [unique_id "akXivUxRJLNjSNYN-fk58AAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-07-01 17:04:58
(4 days ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 13:04:53.216773 2026] [security2:error] [pid 4268:tid 4268] [client 117.161.79.36:64622] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.midwayisland.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.midwayisland.com"] [uri "/cgi-sys/suspendedpage.cgi"] [unique_id "akVItRMU9TnoopYlOMTdZAAAACw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-04 08:42:33
(1 month ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 04:42:27.662565 2026] [security2:error] [pid 32313:tid 32313] [client 117.161.79.36:45500] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||advancedmotorsports.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "advancedmotorsports.com"] [uri "/cgi-sys/suspendedpage.cgi"] [unique_id "aiE6c7IEJNLa3PxcU1-d_wAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-09 12:39:14
(1 month ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 08:39:09.073966 2026] [security2:error] [pid 12148:tid 12148] [client 117.161.79.36:22546] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.studioyau.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.studioyau.com"] [uri "/img/gallery/paintings/06.jpg"] [unique_id "af8q7TCSE1z1dVc9-r7IdQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-08 17:38:28
(1 month ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 13:38:22.599334 2026] [security2:error] [pid 4295:tid 4295] [client 117.161.79.36:18434] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.peterjohnsonauthor.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.peterjohnsonauthor.com"] [uri "/wp-content/uploads/2017/04/PJ_FeaturedBox03-350x197.jpg"] [unique_id "af4fjgzLhVNjr8iuoJ7rQwAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-08 09:17:05
(1 month ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 05:16:59.135633 2026] [security2:error] [pid 4310:tid 4310] [client 117.161.79.36:38814] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.themadwriter.us|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.themadwriter.us"] [uri "/wp-content/uploads/2019/05/1936-nuremberg-rally-trump-pence.jpg"] [unique_id "af2qC2XG6UoghqkKjzFoegAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-07 13:54:46
(1 month ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 09:54:42.943014 2026] [security2:error] [pid 26427:tid 26427] [client 117.161.79.36:49556] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||cosplayculture.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "cosplayculture.com"] [uri "/sites/default/files/styles/article_image/public/field/image/UNIVERSAL-MONSTER-POSTERS-TOP.jpg"] [unique_id "afyZoriFOkaifooeJ4AoYQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-06 08:30:39
(7 months ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 03:30:32.874557 2025] [security2:error] [pid 9210:tid 9210] [client 117.161.79.36:13770] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||backstore.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "backstore.com"] [uri "/Stressless-Chair/stressless_images/Stressless-Skyline-Recliner-Chair-Ottoman-Paloma-Metal-Grey-Leather.jpg"] [unique_id "aTPpqKTZtmgNqsN5WU4mQgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-05 20:13:23
(7 months ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 15:13:18.812887 2025] [security2:error] [pid 4985:tid 4985] [client 117.161.79.36:42074] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.hookedupfishing.net|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.hookedupfishing.net"] [uri "/wp-content/uploads/2012/12/hookedupfishingcharters.jpg"] [unique_id "aTM83sCGwatWeqo0oC1JKQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π·πΊ
DZBOT
2025-12-05 16:05:06
(7 months ago)
Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-05 09:22:58
(7 months ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 04:22:54.135758 2025] [security2:error] [pid 11254:tid 11254] [client 117.161.79.36:45262] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||thoughtage.org|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "thoughtage.org"] [uri "/forum-images/future-humans.png"] [unique_id "aTKkbuUWC1LoAenObK8GrAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-03 18:40:24
(7 months ago)
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210740) triggered by 117.161.79.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 03 13:40:19.917779 2025] [security2:error] [pid 1584:tid 1584] [client 117.161.79.36:44696] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||discountphotogifts.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "discountphotogifts.com"] [uri "/allproducts/images/urns.jpg"] [unique_id "aTCEE_YFDdd5TQyFzYP5LwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπ¦
URAN Publishing Service
2025-12-02 21:07:34
(7 months ago)
117.161.79.36 - - [02/Dec/2025:23:07:33 +0200] "GET /wp-content/uploads/sites/58/2016/11/33-28.pdf H ...
show more
117.161.79.36 - - [02/Dec/2025:23:07:33 +0200] "GET /wp-content/uploads/sites/58/2016/11/33-28.pdf HTTP/1.1" 404 444 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
...
show less
Web App Attack