Anonymous
2026-07-09 18:20:01
(1 day ago)
Web attack blocked by Wordfence on vestingstadvalkenburg.nl (1 hit). Reported by CRMON.
Web App Attack
๐ฉ๐ช
4server
2026-07-09 18:03:34
(1 day ago)
[ThuJul0920:03:29.8095752026][security2:error][pid232332:tid232408][client34.46.54.206:0]ModSecurity ...
show more
[ThuJul0920:03:29.8095752026][security2:error][pid232332:tid232408][client34.46.54.206:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"170\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"vg13.ch\"][uri\"/xmlrpc.php\"][unique_id\"ak_icYk-GTP8lmuP3jWIAgAAANE\"]
show less
Port Scan
Brute-Force
Web App Attack
๐ซ๐ท
dwmp
2026-07-09 17:58:33
(1 day ago)
WordPress login Brute-Force
Brute-Force
Web App Attack
๐ซ๐ท
LRob
2026-07-09 17:57:12
(1 day ago)
CrowdSec: crowdsecurity/http-probing | req: ["/","//wp-includes/wlwmanifest.xml","//xmlrpc.php?rsd", ...
show more
CrowdSec: crowdsecurity/http-probing | req: ["/","//wp-includes/wlwmanifest.xml","//xmlrpc.php?rsd","//blog/wp-includes/wlwmanifest.xml","//web/wp-includes/wlwmanifest.xml","//wordpress/wp-includes/wlwmanifest.xml","//website/wp-includes/wlwmanifest.xml","//wp/wp-includes/wlwmanifest.xml","//n | UA: ["-","Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36"]
show less
Port Scan
Web App Attack
Anonymous
2026-07-09 17:56:08
(1 day ago)
[redacted]i 34.46.54.206 - - [09/Jul/2026:19:56:04 +0200] "POST /cms//xmlrpc.php HTTP/1.1" 200 415 " ...
show more
[redacted]i 34.46.54.206 - - [09/Jul/2026:19:56:04 +0200] "POST /cms//xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36"
[redacted]i 34.46.54.206 - - [09/Jul/2026:19:56:04 +0200] "POST /cms//xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36"
[redacted]i 34.46.54.206 - - [09/Jul/2026:19:56:04 +0200] "POST /cms//xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36"
[redacted]i 34.46.54.206 - - [09/Jul/2026:19:56:05 +0200] "POST /cms//xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36"
[redacted]i 34.46.54.206 - - [09/Jul/2026:19:56:05 +0200] "POST /cms//xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/5.0 (Windows NT
...
show less
Hacking
Web App Attack
Anonymous
2026-07-09 17:50:16
(1 day ago)
34.46.54.206 - - [09/Jul/2026:19:50:13 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 567 "- ...
show more
34.46.54.206 - - [09/Jul/2026:19:50:13 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 567 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36"
34.46.54.206 - - [09/Jul/2026:19:50:15 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 567 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36"
34.46.54.206 - - [09/Jul/2026:19:50:15 +0200] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 567 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36"
34.46.54.206 - - [09/Jul/2026:19:50:15 +0200] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 567 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36"
34.46.54.206 - - [09/Jul/2026:19:50:16 +0200] "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 404
...
show less
Brute-Force
Web App Attack
๐ฎ๐น
VHosting
2026-07-09 17:40:03
(1 day ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐ฎ๐ฉ
Burayot
2026-07-09 17:32:10
(1 day ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 34.46.54.206 (US/United States/206. ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 34.46.54.206 (US/United States/206.54.46.34.bc.googleusercontent.com): 1 in the last 3600 secs
show less
Web App Attack
๐ฌ๐ง
venus.launch.bz
2026-07-09 17:26:53
(1 day ago)
(wpscan) WordPress probe detected from 34.46.54.206 (US/United States/206.54.46.34.bc.googleusercont ...
show more
(wpscan) WordPress probe detected from 34.46.54.206 (US/United States/206.54.46.34.bc.googleusercontent.com)
show less
Hacking
๐ซ๐ฎ
as211431.net
2026-07-09 17:25:18
(1 day ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET metho ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: BLOCK
Protocol: HTTP/1.1 (GET method)
Endpoint: //2019/wp-includes/wlwmanifest.xml
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ธ๐ช
nekopavel
2026-07-09 17:22:56
(1 day ago)
34.46.54.206 - - [09/Jul/2026:19:22:54 +0200]"GET //wp-includes/wlwmanifest.xml HTTP/1.1" 200 1223"- ...
show more
34.46.54.206 - - [09/Jul/2026:19:22:54 +0200]"GET //wp-includes/wlwmanifest.xml HTTP/1.1" 200 1223"-" uwu.so "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36""0.225" "0.000""Council Bluffs" "US"
34.46.54.206 - - [09/Jul/2026:19:22:54 +0200]"GET //xmlrpc.php?rsd HTTP/1.1" 404 1183"-" uwu.so "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36""0.144" "0.000""Council Bluffs" "US"
34.46.54.206 - - [09/Jul/2026:19:22:55 +0200]"GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 200 1223"-" uwu.so "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36""0.169" "0.000""Council Bluffs" "US"
...
show less
Hacking
Bad Web Bot
Web App Attack