๐บ๐ธ
integrantservices.com
2026-07-17 08:41:10
(15 hours ago)
(PERMBLOCK) 185.96.37.34 (RU/Russia/-) has had more than 4 temp blocks
Hacking
๐บ๐ธ
integrantservices.com
2026-07-17 07:40:00
(16 hours ago)
(wordpress) Failed wordpress login from 185.96.37.34 (RU/Russia/-)
Brute-Force
๐ซ๐ท
Tilellit.PRO
2026-07-05 03:59:12
(1 week ago)
WP Armour Plugin detection
Web Spam
Brute-Force
๐ซ๐ท
Tilellit.PRO
2026-06-27 05:47:09
(2 weeks ago)
Fail2Ban banned 185.96.37.34 for security violations in jail wp-armour. Log: 2026/06/27 05:47:09 [er ...
show more
Fail2Ban banned 185.96.37.34 for security violations in jail wp-armour. Log: 2026/06/27 05:47:09 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 185.96.37.34 | Target: wplogin" , client: 185.96.37.34, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php"
...
show less
Web Spam
๐บ๐ธ
TPI-Abuse
2026-06-15 22:49:36
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 185.96.37.34 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 185.96.37.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 18:49:31.243522 2026] [security2:error] [pid 26142:tid 26142] [client 185.96.37.34:55139] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||chapa.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "chapa.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajCBe1ct3Z5Qroty3oaJkwAAAAY"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
nationaleventpros.com
2026-06-14 19:54:26
(1 month ago)
WordPress login attempt
Brute-Force
๐บ๐ธ
kosada.com
2026-06-11 14:09:36
(1 month ago)
Web password guessing
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-04 11:52:38
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 185.96.37.34 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 185.96.37.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 07:52:32.598390 2026] [security2:error] [pid 3242:tid 3242] [client 185.96.37.34:12275] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||rockwaychiropractic.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rockwaychiropractic.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiFnADqIn6vAAAoYjx_zwgAAAAA"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-03 10:12:34
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 185.96.37.34 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 185.96.37.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 06:12:27.218661 2026] [security2:error] [pid 20464:tid 20464] [client 185.96.37.34:34421] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||individualhealth.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "individualhealth.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ah_-CyzE_eORpCtKruIINAAAAAM"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-05-30 14:47:08
(1 month ago)
Web password guessing
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-05-24 22:07:09
(1 month ago)
(mod_security) mod_security (id:225170) triggered by 185.96.37.34 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:225170) triggered by 185.96.37.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 18:07:02.961527 2026] [security2:error] [pid 17831:tid 17831] [client 185.96.37.34:9701] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||cs-mall.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cs-mall.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahN2hm-uFgxt-_FsiCyohQAAAB4"], referer: https://www.google.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-05-24 19:11:01
(1 month ago)
Multiple WAF Violations
Web App Attack
Anonymous
2026-05-21 01:05:38
(1 month ago)
PARMACOM WEBEXPLOIT 185.96.37.34 (185.96.37.34)
Web App Attack
๐บ๐ธ
kosada.com
2026-05-13 04:57:47
(2 months ago)
Web password guessing
Brute-Force
๐บ๐ธ
nationaleventpros.com
2026-04-17 11:13:45
(3 months ago)
WordPress login attempt
Brute-Force