Anonymous
2026-07-08 16:20:30
(2 days ago)
Web attack blocked by Wordfence on www.historischarchiefvalkenburg.nl (1 hit). Reported by CRMON.
Web App Attack
Anonymous
2026-07-08 16:19:17
(2 days ago)
35.245.49.113 - - [08/Jul/2026:18:19:16 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 13300 ...
show more
35.245.49.113 - - [08/Jul/2026:18:19:16 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 13300 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
35.245.49.113 - - [08/Jul/2026:18:19:16 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 13304 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
35.245.49.113 - - [08/Jul/2026:18:19:16 +0200] "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 13302 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
35.245.49.113 - - [08/Jul/2026:18:19:16 +0200] "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 13314 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
35.245.49.113 - - [08/Jul/2026:18:19:17 +0200] "GET /website/wp-includes/wlwmanifest.xml
...
show less
Brute-Force
Web App Attack
๐ฎ๐น
ciccio diddo
2026-07-08 16:18:44
(2 days ago)
High Burst multiple 40X port:Tcp/80,443
Brute-Force
Web App Attack
๐ง๐ท
dominioz
2026-07-08 16:18:38
(2 days ago)
2026-07-08 15:43:16 GET /xmlrpc.php rsd - 35.245.49.113 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64 ...
show more
2026-07-08 15:43:16 GET /xmlrpc.php rsd - 35.245.49.113 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/78.0.3904.108+Safari/537.36 - 301 607
2026-07-08 16:18:10 GET /wp-includes/wlwmanifest.xml - - 35.245.49.113 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/78.0.3904.108+Safari/537.36 - 404 104631
2026-07-08 16:18:11 GET / author=2 - 35.245.49.113 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/78.0.3904.108+Safari/537.36 - 404 104631
2026-07-08 16:18:12 POST /xmlrpc.php - - 35.245.49.113 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/78.0.3904.108+Safari/537.36 - 301 595
...
show less
Web App Attack
๐ฉ๐ช
Blexyel
2026-07-08 16:17:37
(2 days ago)
35.245.49.113 - - [08/Jul/2026:18:17:37 +0200] "GET /admin/wp-includes/wlwmanifest.xml HTTP/1.1" 200 ...
show more
35.245.49.113 - - [08/Jul/2026:18:17:37 +0200] "GET /admin/wp-includes/wlwmanifest.xml HTTP/1.1" 200 463 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 16:09:04
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 35.245.49.113 (113.49.245.35.bc.googleuserconte ...
show more
(mod_security) mod_security (id:240335) triggered by 35.245.49.113 (113.49.245.35.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 12:08:55.579083 2026] [security2:error] [pid 23554:tid 23554] [client 35.245.49.113:59929] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 35.245.49.113 (+1 hits since last alert)|brbcar.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "brbcar.com"] [uri "/xmlrpc.php"] [unique_id "ak52F_IV5WcEY3Kg7sNtCAAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-08 16:08:16
(2 days ago)
[redacted] 35.245.49.113 - - [08/Jul/2026:18:07:55 +0200] "POST //xmlrpc.php HTTP/1.1" 200 416 "-" " ...
show more
[redacted] 35.245.49.113 - - [08/Jul/2026:18:07:55 +0200] "POST //xmlrpc.php HTTP/1.1" 200 416 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
[redacted] 35.245.49.113 - - [08/Jul/2026:18:07:57 +0200] "POST //xmlrpc.php HTTP/1.1" 200 416 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
[redacted] 35.245.49.113 - - [08/Jul/2026:18:07:59 +0200] "POST //xmlrpc.php HTTP/1.1" 200 416 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
[redacted] 35.245.49.113 - - [08/Jul/2026:18:08:01 +0200] "POST //xmlrpc.php HTTP/1.1" 200 416 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
[redacted] 35.245.49.113 - - [08/Jul/2026:18:08:03 +0200] "POST //xmlrpc.php HTTP/1.1" 200 416 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) A
...
show less
Hacking
Web App Attack
๐บ๐ธ
mnsf
2026-07-08 16:06:39
(2 days ago)
Abuse Detected (10)
Brute-Force
Web App Attack
๐ง๐พ
lns.bz
2026-07-08 16:03:17
(2 days ago)
Too many 404 requests [BY]
Web App Attack
๐ซ๐ท
LRob
2026-07-08 16:00:41
(2 days ago)
CrowdSec: crowdsecurity/http-probing | req: ["//wp-includes/wlwmanifest.xml","//xmlrpc.php?rsd","//b ...
show more
CrowdSec: crowdsecurity/http-probing | req: ["//wp-includes/wlwmanifest.xml","//xmlrpc.php?rsd","//blog/wp-includes/wlwmanifest.xml","//web/wp-includes/wlwmanifest.xml","//wordpress/wp-includes/wlwmanifest.xml","//website/wp-includes/wlwmanifest.xml","//wp/wp-includes/wlwmanifest.xml","//news/ | UA: ["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"]
show less
Port Scan
Web App Attack
Anonymous
2026-07-08 15:58:03
(2 days ago)
Bot / scanning and/or hacking attempts: POST //xmlrpc.php HTTP/1.1
Hacking
Web App Attack
๐บ๐ธ
Major Hostility
2026-07-08 15:53:37
(2 days ago)
"GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404
"GET /xmlrpc.php?rsd HTTP/1.1" 403
"GET /blog/wp-inc ...
show more
"GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404
"GET /xmlrpc.php?rsd HTTP/1.1" 403
"GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404
"GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404
"GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404
"GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 404
"GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404
"GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 404
"GET /2018/wp-includes/wlwmanifest.xml HTTP/1.1" 404
"GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1" 404
"GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 404
"GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 404
show less
Web App Attack
๐ซ๐ท
Lunix
2026-07-08 15:53:26
(2 days ago)
Brute-Force
Web App Attack
Anonymous
2026-07-08 15:50:43
(2 days ago)
Web App Attack
Brute-Force
Web App Attack
๐บ๐ธ
nyt
2026-07-08 15:43:14
(2 days ago)
Empty UA + error, WP Author Enumeration
Web App Attack