Anonymous
2026-07-10 01:51:01
(1 day ago)
2026-07-10T03:51:00.485924+02:00 polaris wp(sahpa.co.za)[169725]: Blocked authentication attempt for ...
show more
2026-07-10T03:51:00.485924+02:00 polaris wp(sahpa.co.za)[169725]: Blocked authentication attempt for admin from 65.111.26.111
...
show less
Brute-Force
Web App Attack
๐ฉ๐ช
london2038.com
2026-06-24 10:24:39
(2 weeks ago)
Detected by WP fail2ban
2026-06-24T12:24:38.708126+02:00 wordpress: Authentication attempt from 65.1 ...
show more
Detected by WP fail2ban
2026-06-24T12:24:38.708126+02:00 wordpress: Authentication attempt from 65.111.26.111
show less
Brute-Force
Web App Attack
๐ซ๐ท
ELYAZ
2026-06-20 05:59:29
(2 weeks ago)
(y4) Failed scan -byebye- from 65.111.26.111 (ES/Spain/-): (CF_ENABLE)
Hacking
๐ฉ๐ช
Packets-Decreaser.NET
2025-12-29 14:02:02
(6 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
๐บ๐ธ
TPI-Abuse
2025-12-02 21:57:34
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.26.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.26.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 16:57:29.683622 2025] [security2:error] [pid 10561:tid 10561] [client 65.111.26.111:60979] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jessiedavison.com"] [uri "/.git/HEAD"] [unique_id "aS9gyTDrlxphazpQIr_k5gAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-02 20:10:04
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.26.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.26.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 15:09:58.682201 2025] [security2:error] [pid 15088:tid 15088] [client 65.111.26.111:39357] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pages4you.com"] [uri "/.git/HEAD"] [unique_id "aS9Hlvxi_d8gT6vluSq4wwAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-02 15:59:03
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.26.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.26.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 10:58:57.402065 2025] [security2:error] [pid 1593:tid 1604] [client 65.111.26.111:18211] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seattlefamilydoula.com"] [uri "/.svn/wc.db"] [unique_id "aS8MwTHZSzFK0PbwTkD3uAAAAQc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-02 12:56:18
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.26.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.26.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 07:56:12.803348 2025] [security2:error] [pid 12634:tid 12634] [client 65.111.26.111:23175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "morivercloggers.com"] [uri "/.env"] [unique_id "aS7h7LwjPODug4cJkqXdxwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-02 05:56:32
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.26.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.26.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:56:25.046497 2025] [security2:error] [pid 11876:tid 11876] [client 65.111.26.111:24931] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sharperform.com"] [uri "/.svn/wc.db"] [unique_id "aS5_iS1IYFV1GITArt_LTgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-12-02 01:17:13
(7 months ago)
(mod_security) mod_security (id:210492) triggered by 65.111.26.111 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 65.111.26.111 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 20:17:06.204262 2025] [security2:error] [pid 1733602:tid 1733602] [client 65.111.26.111:32863] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "franchiseconsultants.biz"] [uri "/.svn/wc.db"] [unique_id "aS4-EhYZSFBs3rW0nxMIcgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
Progetto1
2025-03-15 05:11:03
(1 year ago)
Mail - Multiple failed login attempts
Brute-Force
Exploited Host
๐จ๐ฟ
lp
2024-11-25 10:34:42
(1 year ago)
Unauthorized VPN login attempts: 2 attempts were recorded from 65.111.26.111
2024-11-25T10:57:14+01: ...
show more
Unauthorized VPN login attempts: 2 attempts were recorded from 65.111.26.111
2024-11-25T10:57:14+01:00 vpn Access-Reject '1xbajs00' station: 65.111.26.111 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
2024-11-25T10:57:53+01:00 vpn Access-Reject 'brichoni' station: 65.111.26.111 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>'
show less
Brute-Force
Web App Attack
๐ฉ๐ช
Bedios GmbH
2024-10-03 17:29:19
(1 year ago)
Wordpress hacking attempt
Web App Attack
Anonymous
2024-07-09 01:48:43
(2 years ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH