Ban Hackers

Back in the day, hackers were unemployed or unemployable programmers or teenagers with nothing to do.
Now days, it's criminal organizations and Programmers (with a capital P) with masters degrees hired by foreign (and not so foreign) governments to hack into every server they can find. They even try to scan every possible IP address for web servers. When they find one, somebody later tries to hack it.
So, I set up a website for them to visit. It says Coming Soon.
Then, it records their IP Address and bans it from the server with iptables. It also adds their IP Address and User Agent string to the database.

Here are the IP addresses I've banned over the last week:

BannedID	IP	User Agent String	Date Hacked	Banned Reason
73605	147.93.179.130	libredtail-http	3/20/2026 04:08:13 AM	Tried to access http ip directly.
73604	20.221.68.122	Mozilla/5.0 zgrab/0.x	3/20/2026 03:20:27 AM	User Agent Mozilla/5.0 zgrab/0.x
73603	20.63.209.197	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/20/2026 03:16:27 AM	Evil 404 /wp-content/themes/haha.php
73602	213.152.162.187	rs_scan/1.0	3/20/2026 02:18:21 AM	Tried to access http ip directly.
73601	20.219.138.200	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/20/2026 12:56:50 AM	Evil 404 /wp-content/themes/admin.php
73600	52.243.57.116	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/20/2026 12:13:25 AM	Evil 404 /wp-admin/css/bolt.php
73599	164.68.106.39	Go-http-client/1.1	3/19/2026 11:15:58 PM	Tried to access http ip directly.
73598	23.101.4.52	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/19/2026 09:46:45 PM	Evil 404 /wp-content/plugins/hello-dolly/
73597	20.212.0.99	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/19/2026 06:59:39 PM	Evil 404 /wp-content/plugins/hello-dolly/
73596	20.169.53.154	Mozilla/5.0 zgrab/0.x	3/19/2026 06:13:49 PM	User Agent Mozilla/5.0 zgrab/0.x
73595	147.185.133.87	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	3/19/2026 05:29:51 PM	Tried to access http ip directly.
73594	13.89.124.216	Mozilla/5.0 zgrab/0.x	3/19/2026 05:23:13 PM	User Agent Mozilla/5.0 zgrab/0.x
73593	89.187.187.79	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	3/19/2026 03:49:49 PM	Evil 404 /wp-includes/wlwmanifest.xml
73592	78.41.63.2	Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36	3/19/2026 03:22:36 PM	Evil 404 /wp-content/txets.php
73591	147.224.146.77	Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15	3/19/2026 03:14:19 PM	Evil 404 /wp-login.php
73590	15.235.118.77	Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Mobile Safari/537.36	3/19/2026 01:47:46 PM	Evil 404 .env (AWS vulnerability)
73589	46.151.178.11	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36	3/19/2026 01:21:11 PM	Tried to access http ip directly.
73588	163.245.216.35	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.183 Safari/537.36	3/19/2026 12:45:50 PM	Evil 404 .env (AWS vulnerability)
73587	54.242.125.209	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	3/19/2026 11:59:16 AM	Tried to access http ip directly.
73586	43.228.157.68	Go-http-client/1.1	3/19/2026 11:26:58 AM	Evil 404 /wp-content/.git/HEAD
73585	20.222.18.47	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/19/2026 09:49:50 AM	Evil 404 /wp-content/themes/admin.php
73584	103.217.111.233	Mozilla/5.0	3/19/2026 09:17:28 AM	Evil 404 /wp-login.php
73583	192.109.200.8	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36	3/19/2026 06:09:37 AM	Evil 404 /wp-login.php
73582	34.52.173.82	python-requests/2.32.5	3/19/2026 05:37:55 AM	Tried to access http ip directly.
73581	155.2.192.235	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36	3/19/2026 05:26:43 AM	Evil 404 .env (AWS vulnerability)
73580	165.227.210.249	Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36	3/19/2026 02:04:43 AM	Evil 404 /wp-content/plugins/profile-builder/readme.txt
73579	91.213.46.177	Go-http-client/1.1	3/19/2026 01:51:47 AM	Tried to access http ip directly.
73578	35.173.201.178	Go-http-client/1.1	3/19/2026 01:46:02 AM	Evil 404 /wp-includes/css/buttons.css
73577	64.23.237.155	Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0	3/18/2026 10:11:50 PM	Tried to access http ip directly.
73576	176.65.139.52	Mozilla/5.0 zgrab/0.x	3/18/2026 08:56:00 PM	Tried to access http ip directly.
73575	172.237.102.96	Mozilla/5.0 (Windows NT 6.1; WOW64; rv:8.0) Gecko/20100101 Firefox/8.0	3/18/2026 08:54:57 PM	Tried to access http ip directly.
73574	146.19.24.191	Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15) Gecko/20100101 Firefox/121.0	3/18/2026 08:07:58 PM	Evil 404 /wp-login.php
73573	20.118.232.75	Mozilla/5.0 zgrab/0.x	3/18/2026 07:45:55 PM	Tried to access http ip directly.
73572	85.105.253.144	libredtail-http	3/18/2026 05:46:09 PM	Tried to access http ip directly.
73571	91.231.89.43	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0	3/18/2026 05:25:25 PM	Tried to access http ip directly.
73570	91.196.152.44	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0	3/18/2026 05:25:17 PM	Tried to access http ip directly.
73569	85.217.149.63	Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)	3/18/2026 05:17:20 PM	Tried to access http ip directly.
73567	185.180.141.40	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0	3/18/2026 04:12:35 PM	Tried to access http ip directly.
73568	185.180.141.37	python-httpx/0.28.1	3/18/2026 04:12:35 PM	User Agent python-httpx/0.28.1
73566	147.224.183.254	Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0	3/18/2026 01:31:13 PM	Evil 404 /wp-login.php
73565	167.71.86.48	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36	3/18/2026 01:01:19 PM	Tried to access http ip directly.
73564	3.92.61.245	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	3/18/2026 12:02:19 PM	Tried to access http ip directly.
73563	64.181.211.198	Mozilla/5.0 (compatible; websiphon/0.2)	3/18/2026 10:09:48 AM	Tried to access http ip directly.
73562	13.89.124.208	Mozilla/5.0 zgrab/0.x	3/18/2026 08:42:57 AM	User Agent Mozilla/5.0 zgrab/0.x
73561	104.28.164.44	Mozilla/5.0	3/18/2026 06:40:27 AM	Evil 404 /wp-login.php
73560	185.177.72.61	l9tcpid/v1.1.0	3/18/2026 06:08:54 AM	Tried to access http ip directly.
73559	103.106.22.9	Go-http-client/1.1	3/18/2026 04:15:54 AM	Tried to access http ip directly.
73558	164.90.141.229	Mozilla/5.0 (Macintosh; Intel Mac OS X 11) AppleWebKit/538.41 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36	3/18/2026 04:07:05 AM	Tried to access http ip directly.
73557	45.82.78.107	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36	3/18/2026 04:05:02 AM	Tried to access http ip directly.
73556	20.164.216.39	Go-http-client/1.1	3/18/2026 02:30:35 AM	Tried to access http ip directly.
73555	35.233.42.65	python-requests/2.32.5	3/18/2026 02:11:03 AM	Tried to access http ip directly.
73554	143.44.164.245	Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Mobile Safari/537.36	3/18/2026 01:35:38 AM	Evil 404 .env (AWS vulnerability)
73553	142.93.167.198	libredtail-http	3/18/2026 12:22:53 AM	Tried to access http ip directly.
73552	57.151.106.164	Mozilla/5.0 zgrab/0.x	3/18/2026 12:22:14 AM	User Agent Mozilla/5.0 zgrab/0.x
73551	20.196.201.66	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/17/2026 10:41:11 PM	Evil 404 /wp-admin/images/
73550	45.79.207.252	Mozilla/5.0 zgrab/0.x	3/17/2026 10:32:14 PM	Tried to access http ip directly.
73549	195.154.59.230	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36	3/17/2026 09:32:58 PM	Tried to access http ip directly.
73548	148.135.200.21	python-requests/2.32.5	3/17/2026 09:12:05 PM	User Agent python-requests/2.32.5
73547	34.77.177.64	python-requests/2.32.5	3/17/2026 08:57:04 PM	Tried to access http ip directly.
73546	52.35.118.240	Go-http-client/1.1	3/17/2026 08:16:08 PM	Tried to access http ip directly.
73545	20.104.208.128	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/17/2026 08:05:27 PM	Evil 404 /wp-content/uploads/index.php
73544	35.203.211.84	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	3/17/2026 06:48:54 PM	Tried to access http ip directly.
73543	23.180.120.131	Mozilla/5.0	3/17/2026 06:37:52 PM	Tried to access http ip directly.
73542	20.46.120.203	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/17/2026 05:21:42 PM	Evil 404 /wp-content/themes/admin.php
73541	178.128.214.41	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	3/17/2026 04:24:45 PM	Tried to access http ip directly.
73540	45.194.70.254	curl/7.29.0	3/17/2026 02:54:30 PM	Tried to access http ip directly.
73539	139.59.116.9	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	3/17/2026 02:17:17 PM	Tried to access http ip directly.
73538	20.168.11.130	Mozilla/5.0 zgrab/0.x	3/17/2026 01:17:38 PM	User Agent Mozilla/5.0 zgrab/0.x
73537	185.77.219.109	libredtail-http	3/17/2026 12:06:06 PM	Tried to access http ip directly.
73536	54.224.113.78	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	3/17/2026 12:03:41 PM	Tried to access http ip directly.
73535	150.136.253.162	Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/117.0	3/17/2026 11:53:30 AM	Evil 404 /wp-login.php
73534	206.189.88.255	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.57 Safari/537.36	3/17/2026 10:23:34 AM	Evil 404 /wp-login.php
73533	20.106.48.199	Mozilla/5.0 zgrab/0.x	3/17/2026 09:18:45 AM	Tried to access http ip directly.
73532	94.26.106.224	Mozilla/5.0 (Windows NT 10.0; Win64; x64) Gecko/20100101 Firefox/122.0	3/17/2026 09:08:13 AM	Evil 404 /wp-login.php
73531	207.166.168.14	libredtail-http	3/17/2026 09:02:29 AM	Tried to access http ip directly.
73530	24.199.124.239	Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0	3/17/2026 07:43:39 AM	Tried to access http ip directly.
73529	44.220.188.69	Mozilla/5.0 (Windows NT 6.2;en-US) AppleWebKit/537.32.36 (KHTML, live Gecko) Chrome/53.0.3107.68 Safari/537.32	3/16/2026 11:09:42 PM	Tried to access http ip directly.
73528	128.203.200.216	Mozilla/5.0 zgrab/0.x	3/16/2026 11:03:12 PM	User Agent Mozilla/5.0 zgrab/0.x
73527	85.215.47.212	Go-http-client/1.1	3/16/2026 10:55:02 PM	Tried to access http ip directly.
73526	147.182.167.165	Mozilla/5.0 zgrab/0.x	3/16/2026 10:06:36 PM	Tried to access http ip directly.
73525	62.164.177.15	Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.6998.166 Safari/537.36	3/16/2026 06:24:23 PM	Evil 404 /admin/login.php?referrer=/admin/
73524	20.78.129.228	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/16/2026 06:13:58 PM	Evil 404 /cgi-bin/xmrlpc.php
73523	207.211.186.94	Mozilla/5.0 (compatible; websiphon/0.2)	3/16/2026 04:51:02 PM	Tried to access http ip directly.
73522	85.217.149.25	Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)	3/16/2026 04:08:30 PM	Tried to access http ip directly.
73521	47.77.220.146	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/16/2026 03:36:27 PM	Tried to access http ip directly.
73520	47.254.249.98	curl/7.64.1	3/16/2026 03:35:55 PM	Tried to access http ip directly.
73519	20.204.115.200	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/16/2026 01:43:08 PM	Evil 404 /wp-content/themes/haha.php
73518	100.26.194.24	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	3/16/2026 12:03:10 PM	Tried to access http ip directly.
73517	34.78.202.168	python-requests/2.32.5	3/16/2026 12:02:02 PM	Tried to access http ip directly.
73516	20.55.99.64	Mozilla/5.0 zgrab/0.x	3/16/2026 11:17:20 AM	User Agent Mozilla/5.0 zgrab/0.x
73515	5.189.136.18	libredtail-http	3/16/2026 10:55:51 AM	Tried to access http ip directly.
73514	185.247.137.119	Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)	3/16/2026 09:03:40 AM	Tried to access http ip directly.
73513	161.97.67.38	libredtail-http	3/16/2026 03:21:17 AM	Tried to access http ip directly.
73512	20.64.105.251	Mozilla/5.0 zgrab/0.x	3/16/2026 02:59:35 AM	Tried to access http ip directly.
73511	77.83.39.58	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36	3/16/2026 02:39:27 AM	Evil 404 .env (AWS vulnerability)
73510	185.244.104.207	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36	3/16/2026 01:36:54 AM	Tried to access http ip directly.
73509	197.254.15.186	Go-http-client/1.1	3/16/2026 12:38:21 AM	Tried to access http ip directly.
73508	51.38.104.193	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36	3/16/2026 12:36:00 AM	Evil 404 /wp-includes/js/quicktags.js
73507	89.248.173.217	Mozilla/5.0 (X11; Linux x86_64; rv:139.0) Gecko/20100101 Firefox/139.0	3/15/2026 09:59:38 PM	Tried to access http ip directly.
73506	144.76.188.149	Go-http-client/1.1	3/15/2026 09:12:16 PM	Tried to access http ip directly.
73503	164.90.214.16	Go-http-client/1.1	3/15/2026 08:33:57 PM	Evil 404 /solr/admin/info/system
73502	164.92.178.52	Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)	3/15/2026 08:33:57 PM	Tried to access http ip directly.
73505	161.35.25.112	Go-http-client/1.1	3/15/2026 08:33:57 PM	Tried to access http ip directly.
73504	167.71.46.204	Go-http-client/1.1	3/15/2026 08:33:57 PM	Evil 404 /cgi-bin/authLogin.cgi
73501	87.121.84.97	ALittle Client	3/15/2026 07:53:47 PM	Evil 404 /admin/server/php/index.php?file=tf2rghf.jpg
73500	216.26.255.198	Mozilla/5.0 (iPhone; CPU iPhone OS 17_7 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/134.0.6998.99 Mobile/15E148 Safari/604.1	3/15/2026 07:23:50 PM	Evil 404 /config.inc.php
73499	178.104.39.75	Go-http-client/1.1	3/15/2026 06:20:58 PM	Tried to access http ip directly.
73498	35.77.156.228	Go-http-client/1.1	3/15/2026 05:46:58 PM	Tried to access http ip directly.
73497	162.216.150.22	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	3/15/2026 03:23:17 PM	Tried to access http ip directly.
73496	170.39.194.162	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36	3/15/2026 02:33:13 PM	Tried to access http ip directly.
73495	45.142.154.116	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36	3/15/2026 01:45:47 PM	Tried to access http ip directly.
73494	18.210.58.122	Go-http-client/1.1	3/15/2026 01:34:36 PM	Tried to access http ip directly.
73493	84.227.238.107	raw-fast/1	3/15/2026 12:13:29 PM	Tried to access http ip directly.
73492	13.218.94.63	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	3/15/2026 12:01:52 PM	Tried to access http ip directly.
73491	51.15.142.157	Go-http-client/1.1	3/15/2026 10:12:13 AM	Tried to access http ip directly.
73490	220.167.233.55	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36	3/15/2026 09:21:14 AM	Tried to access http ip directly.
73489	149.102.225.177	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	3/15/2026 08:28:29 AM	Evil 404 /wp-includes/wlwmanifest.xml
73488	168.144.23.162	Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0	3/15/2026 05:52:48 AM	Tried to access http ip directly.
73487	93.77.177.126	libredtail-http	3/15/2026 04:47:56 AM	Tried to access http ip directly.
73486	87.121.84.71	ALittle Client	3/15/2026 02:56:18 AM	Evil 404 /admin/plugins/jquery-file-upload/server/php/index
73485	52.139.198.173	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/15/2026 02:48:39 AM	Evil 404 /cgi-bin/xmrlpc.php
73484	194.87.96.189	Go-http-client/1.1	3/15/2026 02:08:57 AM	Tried to access http ip directly.
73483	46.151.182.72	Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0	3/15/2026 02:03:32 AM	Evil 404 .env (AWS vulnerability)
73482	34.79.80.71	python-requests/2.32.5	3/15/2026 01:26:12 AM	Tried to access http ip directly.
73481	45.153.34.154	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36	3/15/2026 12:46:23 AM	Evil 404 .env (AWS vulnerability)
73480	103.88.242.21	Go-http-client/1.1	3/14/2026 10:11:47 PM	Tried to access http ip directly.
73479	20.214.141.70	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/14/2026 08:52:02 PM	Evil 404 /cgi-bin/xmrlpc.php
73478	20.29.57.212	Mozilla/5.0 zgrab/0.x	3/14/2026 08:31:15 PM	Tried to access http ip directly.
73477	37.27.132.170	Go-http-client/1.1	3/14/2026 06:58:52 PM	Tried to access http ip directly.
73476	205.210.31.199	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	3/14/2026 06:10:34 PM	Tried to access http ip directly.
73475	85.137.48.194	Go-http-client/1.1	3/14/2026 12:15:50 PM	Tried to access http ip directly.
73474	3.90.41.152	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	3/14/2026 12:02:00 PM	Tried to access http ip directly.
73473	202.61.192.208	Go-http-client/1.1	3/14/2026 11:35:30 AM	Tried to access http ip directly.
73472	103.39.109.165	libredtail-http	3/14/2026 10:45:47 AM	Tried to access http ip directly.
73471	103.142.62.35	libredtail-http	3/14/2026 10:32:32 AM	Tried to access http ip directly.
73470	45.61.187.196	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36	3/14/2026 10:03:34 AM	Evil 404 /wp-login.php
73469	94.250.203.99	ivre-masscan/1.3 https://github.com/robertdavidgraham/	3/14/2026 10:02:59 AM	Tried to access http ip directly.
73468	160.119.76.44	Mozilla/5.0	3/14/2026 09:35:35 AM	Tried to access http ip directly.
73467	44.246.192.219	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36	3/14/2026 08:27:30 AM	Tried to access http ip directly.
73466	167.172.65.58	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36	3/14/2026 07:35:08 AM	Evil 404 /wp-includes/ID3/license.txt
73465	35.233.78.239	python-requests/2.32.5	3/14/2026 04:15:08 AM	Tried to access http ip directly.
73464	82.197.71.28	libredtail-http	3/14/2026 03:52:16 AM	Tried to access http ip directly.
73463	34.170.93.75	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	3/14/2026 03:27:10 AM	Evil 404 /wp-includes/wlwmanifest.xml
73462	154.65.110.21	Go-http-client/1.1	3/14/2026 12:38:08 AM	Tried to access http ip directly.
73461	161.97.89.137	libredtail-http	3/13/2026 11:47:02 PM	Tried to access http ip directly.
73460	20.78.168.104	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/13/2026 10:12:10 PM	Evil 404 /wp-content/themes/haha.php
73459	35.189.212.100	python-requests/2.32.5	3/13/2026 09:18:11 PM	Tried to access http ip directly.
73458	177.190.67.44	xfa1	3/13/2026 07:47:05 PM	Evil 404 /admin/config.php
73457	185.234.123.176	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	3/13/2026 05:02:53 PM	Tried to access http ip directly.
73456	54.147.177.214	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	3/13/2026 05:02:30 PM	Tried to access http ip directly.
73455	34.182.19.77	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	3/13/2026 01:56:57 PM	Evil 404 /wp-includes/wlwmanifest.xml
73454	20.151.4.179	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/13/2026 01:27:19 PM	Evil 404 /wp-admin.php
73453	20.64.105.68	Mozilla/5.0 zgrab/0.x	3/13/2026 01:25:27 PM	User Agent Mozilla/5.0 zgrab/0.x
73452	104.194.152.134	Python-urllib/2.7	3/13/2026 11:45:13 AM	User Agent Python-urllib/2.7
73451	152.42.161.112	Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/119.0.1	3/13/2026 11:05:14 AM	Evil 404 /wp-login.php
73450	20.169.85.177	Mozilla/5.0 zgrab/0.x	3/13/2026 11:02:35 AM	Tried to access http ip directly.
73449	4.204.233.55	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/13/2026 10:39:38 AM	Evil 404 /wp-admin.php
73448	13.62.199.253	Go-http-client/1.1	3/13/2026 09:25:07 AM	Tried to access http ip directly.
73447	148.223.224.70	Go-http-client/1.1	3/13/2026 07:00:41 AM	Tried to access http ip directly.
73446	34.212.7.230	Go-http-client/1.1	3/13/2026 06:09:39 AM	Tried to access http ip directly.
73445	146.190.124.39	Go-http-client/1.1	3/13/2026 06:02:23 AM	Tried to access http ip directly.
73444	216.180.246.111	Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)	3/13/2026 05:12:45 AM	Tried to access http ip directly.
73443	192.159.99.113	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0	3/13/2026 04:42:40 AM	Tried to access http ip directly.
73442	185.209.228.254	Go-http-client/1.1	3/13/2026 04:17:47 AM	Tried to access http ip directly.