Ban Hackers

Back in the day, hackers were unemployed or unemployable programmers or teenagers with nothing to do.
Now days, it's criminal organizations and Programmers (with a capital P) with masters degrees hired by foreign (and not so foreign) governments to hack into every server they can find. They even try to scan every possible IP address for web servers. When they find one, somebody later tries to hack it.
So, I set up a website for them to visit. It says Coming Soon.
Then, it records their IP Address and bans it from the server with iptables. It also adds their IP Address and User Agent string to the database.

Here are the IP addresses I've banned over the last week:

BannedID	IP	User Agent String	Date Hacked	Banned Reason
66863	20.163.58.125	Mozilla/5.0 zgrab/0.x	7/2/2025 07:32:01 PM	User Agent Mozilla/5.0 zgrab/0.x
66862	13.214.209.226	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	7/2/2025 05:17:46 PM	Evil 404 /wp-includes/wlwmanifest.xml
66861	147.185.132.22	Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scan	7/2/2025 05:14:59 PM	Tried to access http ip directly.
66860	20.119.74.72	Mozilla/5.0 zgrab/0.x	7/2/2025 04:59:56 PM	User Agent Mozilla/5.0 zgrab/0.x
66859	185.247.137.180	Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)	7/2/2025 04:05:18 PM	Tried to access http ip directly.
66858	54.229.179.86	Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)	7/2/2025 02:03:45 PM	Tried to access http ip directly.
66857	185.133.214.138	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	7/2/2025 01:47:28 PM	Tried to access http ip directly.
66856	134.122.30.191	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	7/2/2025 01:41:12 PM	Evil 404 .env (AWS vulnerability)
66855	43.165.189.110	Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1	7/2/2025 11:02:03 AM	Tried to access http ip directly.
66854	159.203.10.69	curl/8.1.2	7/2/2025 08:51:36 AM	User Agent curl/8.1.2
66853	115.76.223.110	Custom-AsyncHttpClient	7/2/2025 07:46:17 AM	Evil 404 /admin/vendor/phpunit/phpunit/src/Util/PHP/eval-st
66852	51.210.223.51	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36	7/2/2025 06:48:32 AM	Evil 404 /admin/sqladmin/index.php?lang=en
66851	134.209.251.42	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	7/2/2025 02:28:00 AM	Evil 404 .env (AWS vulnerability)
66850	65.49.1.142	Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0	7/2/2025 01:53:23 AM	Tried to access http ip directly.
66849	194.53.114.74	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	7/2/2025 01:05:15 AM	Tried to access http ip directly.
66848	40.124.80.149	Mozilla/5.0 zgrab/0.x	7/2/2025 12:15:25 AM	Tried to access http ip directly.
66847	5.32.176.113	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	7/1/2025 11:04:17 PM	Tried to access http ip directly.
66846	104.248.144.225	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0	7/1/2025 10:35:16 PM	Evil 404 /boaform/admin/formLogin
66845	35.203.211.63	Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scan	7/1/2025 10:27:16 PM	Tried to access http ip directly.
66844	34.140.130.215	python-requests/2.32.4	7/1/2025 09:23:12 PM	Tried to access http ip directly.
66843	87.121.84.149	curl/7.81.0	7/1/2025 08:58:29 PM	Tried to access http ip directly.
66842	20.163.15.107	Mozilla/5.0 zgrab/0.x	7/1/2025 08:47:37 PM	User Agent Mozilla/5.0 zgrab/0.x
66841	157.245.60.6	curl/8.1.2	7/1/2025 08:03:11 PM	User Agent curl/8.1.2
66840	199.45.154.114	Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)	7/1/2025 06:22:12 PM	Tried to access http ip directly.
66839	176.65.148.183	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	7/1/2025 06:03:12 PM	Evil 404 .env (AWS vulnerability)
66838	217.182.68.199	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36	7/1/2025 05:34:45 PM	Evil 404 /wp-includes/wlwmanifest.xml
66837	104.152.52.65	curl/7.61.1	7/1/2025 05:02:55 PM	Tried to access http ip directly.
66836	116.204.171.17	Mozilla/5.0 (iPhone; CPU iPhone OS 18_3_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3.1 Mobile/15E148 Safari/604.1	7/1/2025 04:45:47 PM	Tried to access http ip directly.
66835	161.35.172.243	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36	7/1/2025 03:27:49 PM	Tried to access http ip directly.
66834	195.182.25.241	Mozilla/5.0 (Linux; Android 8.0.0; d-02K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.105 Safari/537.36	7/1/2025 03:00:18 PM	Evil 404 .env (AWS vulnerability)
66833	157.230.248.242	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	7/1/2025 02:23:23 PM	Evil 404 .env (AWS vulnerability)
66832	34.235.167.104	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	7/1/2025 02:15:52 PM	Tried to access http ip directly.
66831	171.97.16.167	Hello-World/1.0	7/1/2025 01:01:27 PM	Tried to access http ip directly.
66830	123.58.209.112		7/1/2025 12:06:11 PM	Tried to log in as root with no password.
66829	179.32.129.233	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	7/1/2025 10:44:06 AM	Tried to access http ip directly.
66828	43.155.157.239	Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1	7/1/2025 10:37:12 AM	Tried to access http ip directly.
66827	20.150.192.39	Mozilla/5.0 zgrab/0.x	7/1/2025 10:26:05 AM	User Agent Mozilla/5.0 zgrab/0.x
66826	41.90.65.112	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	7/1/2025 07:32:22 AM	Tried to access http ip directly.
66825	139.59.180.173	curl/8.1.2	7/1/2025 06:45:23 AM	User Agent curl/8.1.2
66824	164.92.105.39	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36	7/1/2025 02:56:38 AM	Tried to access http ip directly.
66823	157.230.212.28	masscan/1.0 (https://github.com/robertdavidgraham/masscan)	7/1/2025 02:28:14 AM	Tried to access http ip directly.
66822	205.169.39.23	Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36	7/1/2025 02:14:24 AM	Tried to access http ip directly.
66821	64.227.71.153	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	7/1/2025 12:40:48 AM	Evil 404 .env (AWS vulnerability)
66820	92.60.40.205	Python/3.11 aiohttp/3.12.13	6/30/2025 11:24:46 PM	User Agent Python/3.11 aiohttp/3.12.13
66819	45.33.14.197	Mozilla/5.0 zgrab/0.x	6/30/2025 10:35:31 PM	Tried to access http ip directly.
66818	135.237.126.9	Mozilla/5.0 zgrab/0.x	6/30/2025 10:12:30 PM	Tried to access http ip directly.
66817	104.234.115.33	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	6/30/2025 10:11:21 PM	Tried to access http ip directly.
66816	157.245.33.129	Yoohoo	6/30/2025 09:51:48 PM	Evil 404 .env (AWS vulnerability)
66815	157.245.33.129	Yoohoo	6/30/2025 09:51:48 PM	Evil 404 .env (AWS vulnerability)
66814	34.66.88.210	Mozilla/5.0 (Kubuntu; Linux x86_64; rv:127.0) Gecko/20100101 Firefox/127.0	6/30/2025 08:56:31 PM	Tried to access http ip directly.
66813	20.65.194.143	Mozilla/5.0 zgrab/0.x	6/30/2025 07:03:50 PM	User Agent Mozilla/5.0 zgrab/0.x
66812	91.244.197.102	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	6/30/2025 06:27:29 PM	Tried to access http ip directly.
66811	159.223.50.79	curl/8.1.2	6/30/2025 06:15:04 PM	User Agent curl/8.1.2
66810	80.251.153.117	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	6/30/2025 05:31:45 PM	Tried to access http ip directly.
66809	92.118.39.86	Mozilla/5.0 zgrab/0.x	6/30/2025 05:17:24 PM	User Agent Mozilla/5.0 zgrab/0.x
66808	204.76.203.233	Go-http-client/1.1	6/30/2025 03:44:30 PM	Tried to access http ip directly.
66807	34.76.0.248	python-requests/2.32.4	6/30/2025 02:07:57 PM	Tried to access http ip directly.
66806	44.211.43.45	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	6/30/2025 02:06:47 PM	Tried to access http ip directly.
66805	198.199.85.41	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	6/30/2025 12:58:36 PM	Evil 404 .env (AWS vulnerability)
66804	93.123.72.134	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	6/30/2025 11:56:46 AM	Tried to access http ip directly.
66803	123.160.221.131	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36	6/30/2025 11:13:41 AM	Tried to access http ip directly.
66802	8.216.67.37	curl/7.64.1	6/30/2025 11:13:04 AM	Tried to access http ip directly.
66801	43.159.143.190	Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1	6/30/2025 11:09:57 AM	Tried to access http ip directly.
66800	135.237.123.203	Mozilla/5.0 zgrab/0.x	6/30/2025 10:59:00 AM	User Agent Mozilla/5.0 zgrab/0.x
66799	209.97.171.55	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36	6/30/2025 10:18:47 AM	Evil 404 .env (AWS vulnerability)
66798	83.229.17.125	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0	6/30/2025 08:44:11 AM	Evil 404 /boaform/admin/formLogin
66797	65.49.1.192	Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36	6/30/2025 07:49:38 AM	Tried to access http ip directly.
66796	35.203.210.227	Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scan	6/30/2025 06:08:26 AM	Tried to access http ip directly.
66795	185.176.42.146	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36	6/30/2025 05:55:43 AM	Evil 404 .env (AWS vulnerability)
66794	104.248.63.252	curl/8.1.2	6/30/2025 05:41:02 AM	User Agent curl/8.1.2
66793	164.90.230.1	curl/8.1.2	6/30/2025 04:47:08 AM	User Agent curl/8.1.2
66792	45.79.190.216	Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML	6/30/2025 04:24:01 AM	Tried to access http ip directly.
66791	13.49.240.229	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_3) AppleWebKit/537.75.14 (KHTML, like Gecko) Version/7.0.3 Safari/7046A194A	6/30/2025 03:23:34 AM	Evil 404 /wp-admin/install.php?step=1
66790	85.204.70.114	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	6/30/2025 02:20:31 AM	Evil 404 /wp-includes/wlwmanifest.xml
66789	64.225.58.250	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	6/30/2025 02:12:11 AM	Evil 404 .env (AWS vulnerability)
66788	43.165.190.5	Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1	6/30/2025 01:40:24 AM	Tried to access http ip directly.
66787	152.32.134.89	Mozilla/5.0 (Macintosh; Intel Mac OS X 8_2_2) AppleWebKit/542.38 (KHTML, like Gecko) Chrome/83.0.287 Safari/537.36	6/29/2025 11:32:08 PM	Tried to access http ip directly.
66786	165.154.40.42	curl/7.29.0	6/29/2025 11:31:57 PM	Tried to access http ip directly.
66785	169.150.196.14	Python/3.11 aiohttp/3.12.13	6/29/2025 08:35:26 PM	User Agent Python/3.11 aiohttp/3.12.13
66784	20.221.72.95	Mozilla/5.0 zgrab/0.x	6/29/2025 05:41:05 PM	User Agent Mozilla/5.0 zgrab/0.x
66783	142.93.208.13	curl/8.1.2	6/29/2025 04:14:27 PM	User Agent curl/8.1.2
66782	40.119.41.182	Mozilla/5.0 zgrab/0.x	6/29/2025 03:20:09 PM	User Agent Mozilla/5.0 zgrab/0.x
66781	44.220.188.172	Mozilla/5.0 (Windows NT 6.2;en-US) AppleWebKit/537.32.36 (KHTML, live Gecko) Chrome/60.0.3006.87 Safari/537.32	6/29/2025 03:08:49 PM	Tried to access http ip directly.
66780	165.227.179.99	Mozilla/5.0 (X11; Linux x86_64; rv:137.0) Gecko/20100101 Firefox/137.0	6/29/2025 02:44:55 PM	Tried to access http ip directly.
66779	34.229.138.24	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	6/29/2025 01:58:48 PM	Tried to access http ip directly.
66778	68.183.192.23	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	6/29/2025 11:56:22 AM	Evil 404 .env (AWS vulnerability)
66777	20.163.2.53	Mozilla/5.0 zgrab/0.x	6/29/2025 10:01:16 AM	User Agent Mozilla/5.0 zgrab/0.x
66776	75.128.48.101	Hello-World/1.0	6/29/2025 06:02:32 AM	Tried to access http ip directly.
66775	52.221.182.178	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	6/29/2025 05:11:56 AM	Evil 404 /wp-includes/wlwmanifest.xml
66774	43.128.88.125	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36	6/29/2025 04:44:19 AM	Evil 404 /wp-includes/js/jquery/jquery.js
66773	188.166.156.97	curl/8.1.2	6/29/2025 02:51:26 AM	User Agent curl/8.1.2
66772	107.170.21.14	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	6/29/2025 02:06:54 AM	Evil 404 .env (AWS vulnerability)
66771	104.234.115.122	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	6/29/2025 12:35:14 AM	Tried to access http ip directly.
66770	66.228.53.174	Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36	6/28/2025 09:14:17 PM	Tried to access http ip directly.
66769	36.72.215.196	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	6/28/2025 08:57:58 PM	Tried to access http ip directly.
66768	112.166.251.88	curl/7.88.1	6/28/2025 08:27:46 PM	Tried to access http ip directly.
66767	202.51.205.6		6/28/2025 07:10:57 PM	Tried to log in as root with no password.
66766	162.216.149.30	Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scan	6/28/2025 07:02:45 PM	Tried to access http ip directly.
66765	112.120.173.42	Hello-World/1.0	6/28/2025 04:58:39 PM	Tried to access http ip directly.
66764	172.202.118.10	Mozilla/5.0 zgrab/0.x	6/28/2025 03:41:31 PM	User Agent Mozilla/5.0 zgrab/0.x
66763	185.247.137.145	Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)	6/28/2025 03:40:16 PM	Tried to access http ip directly.
66762	209.38.31.230	curl/8.1.2	6/28/2025 02:09:41 PM	User Agent curl/8.1.2
66761	68.183.15.139	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	6/28/2025 12:24:07 PM	Evil 404 .env (AWS vulnerability)
66760	185.168.174.50	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	6/28/2025 11:56:53 AM	Tried to access http ip directly.
66759	1.83.125.213	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36	6/28/2025 11:36:33 AM	Tried to access http ip directly.
66758	159.223.72.122	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36	6/28/2025 11:16:09 AM	Evil 404 /wp-includes/ID3/license.txt
66757	91.196.152.127	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0	6/28/2025 09:25:46 AM	Tried to access http ip directly.
66756	34.22.221.223	python-requests/2.32.4	6/28/2025 07:02:06 AM	Tried to access http ip directly.
66755	152.42.211.85	Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36	6/28/2025 03:42:25 AM	Evil 404 /wp-content/plugins/litespeed-cache/readme.txt
66754	176.65.149.178	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0	6/28/2025 02:16:42 AM	Evil 404 /boaform/admin/formLogin
66753	169.150.196.25	Python/3.11 aiohttp/3.12.13	6/28/2025 01:26:38 AM	User Agent Python/3.11 aiohttp/3.12.13
66752	24.199.82.46	curl/8.1.2	6/28/2025 01:12:02 AM	User Agent curl/8.1.2
66751	43.134.106.236	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36	6/28/2025 12:16:14 AM	Evil 404 /wp-includes/js/jquery/jquery.js
66750	165.227.88.203	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	6/28/2025 12:05:50 AM	Evil 404 .env (AWS vulnerability)
66749	35.93.196.112	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36	6/27/2025 11:46:27 PM	Tried to access http ip directly.
66748	44.201.129.13	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	6/27/2025 11:16:30 PM	Tried to access http ip directly.
66747	147.185.133.141	Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scan	6/27/2025 10:08:08 PM	Tried to access http ip directly.
66746	35.226.27.221	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36	6/27/2025 06:26:29 PM	Tried to access http ip directly.
66745	194.26.29.129	python-requests/2.25.1	6/27/2025 04:37:37 PM	User Agent python-requests/2.25.1
66744	45.156.87.152	Mozilla/5.0 (X11; Linux x86_64)	6/27/2025 03:32:35 PM	Evil 404 .env (AWS vulnerability)
66743	117.89.91.8	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	6/27/2025 03:08:53 PM	Tried to access http ip directly.
66742	40.86.155.29	curl/8.5.0	6/27/2025 01:51:35 PM	User Agent curl/8.5.0
66741	4.151.1.31	curl/8.5.0	6/27/2025 01:50:42 PM	User Agent curl/8.5.0
66740	4.151.179.171	curl/8.5.0	6/27/2025 01:50:16 PM	User Agent curl/8.5.0
66739	4.151.110.145	curl/8.5.0	6/27/2025 01:49:38 PM	User Agent curl/8.5.0
66738	20.165.46.105	curl/8.5.0	6/27/2025 01:48:29 PM	User Agent curl/8.5.0
66737	4.151.211.119	curl/8.5.0	6/27/2025 01:48:09 PM	User Agent curl/8.5.0
66736	4.150.40.48	curl/8.5.0	6/27/2025 01:47:54 PM	User Agent curl/8.5.0
66735	4.151.67.164	curl/8.5.0	6/27/2025 01:47:45 PM	User Agent curl/8.5.0
66734	64.227.69.144	curl/8.1.2	6/27/2025 12:26:38 PM	User Agent curl/8.1.2
66733	206.123.145.134	Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_8; en-us) AppleWebKit/534.50 (KHTML, like Gecko) Version/5.1 Safari/534.50	6/27/2025 12:15:59 PM	Evil 404 .env (AWS vulnerability)
66732	139.59.180.47	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	6/27/2025 11:52:05 AM	Evil 404 .env (AWS vulnerability)
66731	87.121.84.130	Mozilla/5.0	6/27/2025 10:21:04 AM	Tried to access http ip directly.
66730	165.154.11.52	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0	6/27/2025 10:06:23 AM	Tried to access http ip directly.
66729	57.151.98.114	Mozilla/5.0 zgrab/0.x	6/27/2025 09:05:15 AM	User Agent Mozilla/5.0 zgrab/0.x
66728	150.109.22.45	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36	6/27/2025 07:59:17 AM	Evil 404 /wp-includes/js/jquery/jquery.js
66727	185.218.84.47	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36	6/27/2025 07:41:03 AM	Tried to access http ip directly.
66726	2.183.87.223	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	6/27/2025 07:23:59 AM	Tried to access http ip directly.
66725	185.218.84.46	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36	6/27/2025 07:05:23 AM	Tried to access http ip directly.
66724	185.218.84.45	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36	6/27/2025 07:02:06 AM	Tried to access http ip directly.
66723	5.101.64.6	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.88 Safari/537.36	6/27/2025 06:58:13 AM	Tried to access http ip directly.
66722	186.151.92.222	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7	6/27/2025 06:09:22 AM	Tried to access http ip directly.
66721	108.165.153.7	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	6/27/2025 05:49:10 AM	Tried to access http ip directly.
66720	154.126.201.150	xfa1	6/27/2025 04:17:30 AM	Evil 404 /admin/config.php
66719	108.165.153.6	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	6/27/2025 03:43:30 AM	Tried to access http ip directly.
66718	185.213.154.247	Python/3.11 aiohttp/3.12.13	6/27/2025 03:26:09 AM	User Agent Python/3.11 aiohttp/3.12.13
66717	123.58.204.200	Mozilla/5.0 (Macintosh; Intel Mac OS X 11) AppleWebKit/538.41 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36	6/27/2025 03:05:37 AM	Tried to access http ip directly.
66716	167.71.79.163	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0	6/27/2025 03:00:14 AM	Tried to access http ip directly.
66715	20.55.88.105	Mozilla/5.0 zgrab/0.x	6/27/2025 02:34:13 AM	User Agent Mozilla/5.0 zgrab/0.x
66714	85.204.222.135	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7	6/27/2025 02:11:53 AM	Tried to access http ip directly.
66713	178.210.187.82	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	6/27/2025 01:48:22 AM	Tried to access http ip directly.
66712	34.22.164.219	python-requests/2.32.4	6/27/2025 01:13:56 AM	Tried to access http ip directly.
66711	152.42.166.7	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	6/27/2025 12:18:25 AM	Evil 404 .env (AWS vulnerability)
66710	104.234.115.161	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	6/27/2025 12:16:12 AM	Tried to access http ip directly.
66709	128.199.68.101	curl/8.1.2	6/26/2025 11:31:35 PM	User Agent curl/8.1.2
66708	35.203.210.140	Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scan	6/26/2025 10:28:59 PM	Tried to access http ip directly.
66707	20.163.74.20	Mozilla/5.0 zgrab/0.x	6/26/2025 10:08:39 PM	User Agent Mozilla/5.0 zgrab/0.x
66706	218.144.21.147	Mozilla/5.0 (Linux; U; Android 4.0.3; ko-kr; LG-L160L Build/IML74K) AppleWebkit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30	6/26/2025 10:05:13 PM	Tried to access http ip directly.
66705	64.62.156.10	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36 Edg/110.0.1587.46	6/26/2025 09:09:31 PM	Tried to access http ip directly.
66704	20.65.195.30	Mozilla/5.0 zgrab/0.x	6/26/2025 08:44:17 PM	User Agent Mozilla/5.0 zgrab/0.x
66703	20.163.34.47	Mozilla/5.0 zgrab/0.x	6/26/2025 08:28:51 PM	Tried to access http ip directly.
66702	159.65.152.66	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0	6/26/2025 06:43:58 PM	Evil 404 /www/wp-login.php
66701	91.121.145.32	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0	6/26/2025 06:11:22 PM	Evil 404 /www/wp-login.php
66700	45.156.128.79	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36	6/26/2025 04:16:28 PM	Tried to access http ip directly.
66699	203.205.6.137	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0	6/26/2025 04:02:40 PM	Evil 404 /www/wp-login.php
66698	83.23.152.168	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	6/26/2025 04:01:02 PM	Tried to access http ip directly.
66697	34.28.207.190	Mozilla/5.0 (Fedora; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	6/26/2025 02:47:30 PM	Tried to access http ip directly.
66696	205.209.114.190	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0	6/26/2025 02:29:35 PM	Evil 404 /www/wp-login.php
66693	64.225.101.100	Go-http-client/1.1	6/26/2025 02:28:33 PM	Evil 404 /cgi-bin/authLogin.cgi
66695	134.122.83.190	Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)	6/26/2025 02:28:33 PM	Tried to access http ip directly.
66694	64.225.101.100	Go-http-client/1.1	6/26/2025 02:28:33 PM	Evil 404 /solr/admin/info/system
66692	138.197.104.148	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	6/26/2025 11:42:26 AM	Evil 404 .env (AWS vulnerability)
66691	94.23.61.165	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0	6/26/2025 11:03:27 AM	Evil 404 /wordpress/wp-login.php
66690	192.250.235.158	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0	6/26/2025 10:39:08 AM	Evil 404 /wordpress/wp-login.php
66689	107.170.1.63	curl/8.1.2	6/26/2025 10:32:51 AM	User Agent curl/8.1.2
66688	45.156.130.45	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36	6/26/2025 10:26:46 AM	Tried to access http ip directly.
66687	148.72.214.194	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0	6/26/2025 08:31:25 AM	Evil 404 /wordpress/wp-login.php
66686	3.88.207.161	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	6/26/2025 05:46:31 AM	Tried to access http ip directly.
66685	194.187.179.151	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0	6/26/2025 04:04:28 AM	Tried to access http ip directly.
66684	185.49.25.194	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	6/26/2025 03:42:13 AM	Tried to access http ip directly.
66683	150.109.230.210	Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1	6/26/2025 03:36:11 AM	Tried to access http ip directly.
66682	143.110.135.118	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	6/26/2025 01:45:43 AM	Evil 404 .env (AWS vulnerability)
66681	82.102.18.220	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	6/26/2025 01:42:22 AM	Evil 404 /wp-includes/wlwmanifest.xml
66680	110.0.126.133	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	6/26/2025 12:47:43 AM	Tried to access http ip directly.
66679	162.241.62.242	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0	6/26/2025 12:34:37 AM	Evil 404 /wp/wp-login.php
66678	104.234.115.163	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	6/26/2025 12:26:39 AM	Tried to access http ip directly.
66677	147.185.133.240	Expanse, a Palo Alto Networks company, searches across the global IPv4 space multiple times per day to identify customers' presences on the Internet. If you would like to be excluded from our scan	6/25/2025 11:44:58 PM	Tried to access http ip directly.
66676	185.250.38.17	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:85.0) Gecko/20100101 Firefox/91.0	6/25/2025 11:20:01 PM	Evil 404 /wp/wp-login.php
66675	87.121.84.212	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	6/25/2025 11:08:44 PM	Tried to access http ip directly.
66674	134.199.238.126	curl/8.1.2	6/25/2025 10:13:40 PM	User Agent curl/8.1.2
66673	45.56.103.154	Mozilla/5.0 (Macintosh; Intel Mac OS X 11_2_2) AppleWebKit/605.1.15 (KHTML	6/25/2025 09:50:17 PM	Tried to access http ip directly.
66672	199.45.155.100	Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)	6/25/2025 09:34:09 PM	Tried to access http ip directly.