Ban Hackers

Back in the day, hackers were unemployed or unemployable programmers or teenagers with nothing to do.
Now days, it's criminal organizations and Programmers (with a capital P) with masters degrees hired by foreign (and not so foreign) governments to hack into every server they can find. They even try to scan every possible IP address for web servers. When they find one, somebody later tries to hack it.
So, I set up a website for them to visit. It says Coming Soon.
Then, it records their IP Address and bans it from the server with iptables. It also adds their IP Address and User Agent string to the database.

Here are the IP addresses I've banned over the last week:

BannedID	IP	User Agent String	Date Hacked	Banned Reason
71365	44.212.53.44	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	12/18/2025 01:47:24 PM	Tried to access http ip directly.
71364	20.214.243.12	Mozilla/5.0 (iPhone; CPU iPhone OS 15_7_9 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.5 Mobile/15E148 Safari/604.1	12/18/2025 12:54:48 PM	Evil 404 /wp-content/admin-header.php
71363	170.64.207.120	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36	12/18/2025 12:30:49 PM	Evil 404 .env (AWS vulnerability)
71362	104.215.29.182	Mozilla/5.0 (Linux; Android 13; SM-G991U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36	12/18/2025 11:08:58 AM	Evil 404 /wp-admin/css/colors/blue
71361	91.230.168.213	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0	12/18/2025 10:52:20 AM	Tried to access http ip directly.
71360	91.230.168.91	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0	12/18/2025 10:22:41 AM	Tried to access http ip directly.
71359	128.203.200.175	Mozilla/5.0 zgrab/0.x	12/18/2025 08:31:01 AM	User Agent Mozilla/5.0 zgrab/0.x
71358	37.46.115.27	Mozilla/5.0 (X11; Linux x86_64; WanscannerBot/1.2; +https://abuse.pend.re) Gecko/20100101 Firefox/10.0	12/18/2025 06:30:15 AM	Tried to access http ip directly.
71357	40.124.116.246	Mozilla/5.0 zgrab/0.x	12/18/2025 06:28:14 AM	User Agent Mozilla/5.0 zgrab/0.x
71356	72.146.234.81	Mozilla/5.0 (X11; Linux x86_64; rv:101.0) Gecko/20100101 Firefox/101.0	12/18/2025 05:48:18 AM	Evil 404 /cgi-bin/luci/;stok=/locale?form=country
71355	34.75.255.111	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36	12/18/2025 05:19:12 AM	Evil 404 /wp-includes/wlwmanifest.xml
71354	13.89.124.214	Mozilla/5.0 zgrab/0.x	12/18/2025 03:00:39 AM	User Agent Mozilla/5.0 zgrab/0.x
71353	109.105.210.97	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36	12/18/2025 02:24:39 AM	Tried to access http ip directly.
71352	172.174.244.189	Mozilla/5.0 zgrab/0.x	12/17/2025 10:37:21 PM	Tried to access http ip directly.
71351	216.180.246.28	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	12/17/2025 07:24:03 PM	Tried to access http ip directly.
71350	35.234.83.229	Mozilla/5.0 (X11; Linux x86_64)	12/17/2025 07:23:19 PM	Evil 404 .env (AWS vulnerability)
71349	35.234.83.229	Mozilla/5.0 (X11; Linux x86_64)	12/17/2025 07:23:19 PM	Evil 404 .env (AWS vulnerability)
71348	35.234.83.229	Mozilla/5.0 (X11; Linux x86_64)	12/17/2025 07:23:19 PM	Evil 404 .env (AWS vulnerability)
71347	52.163.124.79	Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1	12/17/2025 06:51:31 PM	Evil 404 /cgi-bin/file.php
71346	167.99.223.58	Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0	12/17/2025 06:20:31 PM	Tried to access http ip directly.
71345	101.36.108.9	Mozilla/5.0 (Windows NT 9_2_1; Win64; x64) AppleWebKit/602.43 (KHTML, like Gecko) Chrome/86.0.634 Safari/537.36	12/17/2025 04:50:50 PM	Tried to access http ip directly.
71344	152.32.188.207	curl/7.29.0	12/17/2025 04:49:49 PM	Tried to access http ip directly.
71343	4.213.179.32	Mozilla/5.0 (Linux; Android 12; V2134) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36	12/17/2025 03:13:06 PM	Evil 404 /cgi-bin/file.php
71342	45.8.19.150	python-requests/2.26.0	12/17/2025 03:10:48 PM	User Agent python-requests/2.26.0
71341	36.250.221.177	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36	12/17/2025 01:20:58 PM	Tried to access http ip directly.
71340	116.197.130.59	Mozilla/5.0 (X11; Linux x86_64)	12/17/2025 11:59:22 AM	Evil 404 .env (AWS vulnerability)
71339	34.205.74.42	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	12/17/2025 11:11:10 AM	Tried to access http ip directly.
71338	107.170.63.43	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	12/17/2025 10:47:17 AM	Evil 404 .env (AWS vulnerability)
71337	91.224.92.184	Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/117.0	12/17/2025 09:39:24 AM	Evil 404 /wp-login.php
71336	172.236.228.198	Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36	12/17/2025 06:45:02 AM	Tried to access http ip directly.
71335	64.62.156.132	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36	12/17/2025 06:23:42 AM	Tried to access http ip directly.
71334	23.94.26.208	libredtail-http	12/17/2025 05:47:01 AM	Tried to access http ip directly.
71333	178.128.87.57	nvdorz	12/17/2025 05:19:24 AM	Evil 404 /admin/config.php
71332	40.119.41.94	Mozilla/5.0 zgrab/0.x	12/17/2025 04:35:13 AM	User Agent Mozilla/5.0 zgrab/0.x
71331	177.84.40.51	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	12/17/2025 03:54:27 AM	Tried to access http ip directly.
71330	211.145.47.70	python-requests/2.22.0	12/16/2025 09:30:47 PM	Tried to access http ip directly.
71329	213.209.143.116	python-requests/2.22.0	12/16/2025 07:31:49 PM	User Agent python-requests/2.22.0
71328	199.45.155.91	Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)	12/16/2025 07:05:51 PM	Tried to access http ip directly.
71327	147.185.132.38	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	12/16/2025 06:33:08 PM	Tried to access http ip directly.
71326	193.24.123.42	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.6 Safari/605.1.15	12/16/2025 05:30:45 PM	Tried to access http ip directly.
71325	134.122.23.171	Mozilla/5.0	12/16/2025 05:28:25 PM	Evil 404 /wp-login.php
71324	194.180.49.168	python-httpx/0.28.1	12/16/2025 03:45:12 PM	User Agent python-httpx/0.28.1
71323	157.230.178.245	Mozilla/5.0 zgrab/0.x	12/16/2025 03:04:27 PM	Tried to access http ip directly.
71322	54.210.130.186	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	12/16/2025 11:25:20 AM	Tried to access http ip directly.
71321	129.212.234.114	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36	12/16/2025 10:13:57 AM	Evil 404 /wp-includes/ID3/license.txt
71320	85.217.149.20	Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)	12/16/2025 09:45:58 AM	Tried to access http ip directly.
71319	93.123.109.28	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36	12/16/2025 09:12:52 AM	Tried to access http ip directly.
71318	34.145.198.77	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36	12/16/2025 04:44:44 AM	Evil 404 /wp-includes/wlwmanifest.xml
71317	93.183.226.62	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	12/16/2025 04:15:50 AM	Tried to access http ip directly.
71316	167.71.151.192	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	12/16/2025 03:41:51 AM	Evil 404 .env (AWS vulnerability)
71315	20.65.193.234	Mozilla/5.0 zgrab/0.x	12/16/2025 03:12:49 AM	Tried to access http ip directly.
71314	209.38.88.92	Mozilla/5.0	12/16/2025 02:42:25 AM	Tried to access http ip directly.
71313	191.96.150.131	Mozilla/5.0 (X11; Linux x86_64; WanscannerBot/1.2; +https://abuse.pend.re) Gecko/20100101 Firefox/10.0	12/16/2025 02:23:16 AM	Tried to access http ip directly.
71312	209.38.28.227	Mozilla/5.0	12/16/2025 01:23:02 AM	Tried to access http ip directly.
71311	74.50.65.135	xfa1,nvdorz,nvd0rz	12/15/2025 11:12:24 PM	Evil 404 /admin/config.php
71310	64.226.73.132	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36	12/15/2025 11:00:53 PM	Tried to access http ip directly.
71309	89.42.231.244	Mozilla/5.0 (Windows NT 10.0; Win64; x64) Assetnote/1.0.0	12/15/2025 10:34:15 PM	Tried to access http ip directly.
71308	109.171.30.19	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	12/15/2025 08:21:33 PM	Tried to access http ip directly.
71307	207.180.196.218	xfa1,nvdorz,nvd0rz	12/15/2025 07:58:14 PM	Evil 404 /admin/config.php
71306	95.214.55.71	python-requests/2.31.0	12/15/2025 07:42:18 PM	Tried to access http ip directly.
71305	40.124.175.58	Mozilla/5.0 zgrab/0.x	12/15/2025 07:10:50 PM	User Agent Mozilla/5.0 zgrab/0.x
71304	165.22.198.197	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36	12/15/2025 06:49:43 PM	Tried to access http ip directly.
71303	169.150.203.197	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	12/15/2025 06:19:10 PM	Evil 404 /wp-includes/wlwmanifest.xml
71302	87.121.84.177	Go-http-client/1.1	12/15/2025 05:24:07 PM	Tried to access http ip directly.
71301	74.63.235.247	Mozilla/5.0	12/15/2025 04:45:56 PM	Evil 404 /wp-login.php
71300	109.105.210.104	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36	12/15/2025 03:54:35 PM	Tried to access http ip directly.
71299	170.64.183.109	Mozilla/5.0	12/15/2025 02:29:35 PM	Tried to access http ip directly.
71298	212.41.8.97	Shodan-Pull/1.0	12/15/2025 02:28:06 PM	Tried to access http ip directly.
71297	4.197.92.55	Mozilla/5.0 (iPhone; CPU iPhone OS 15_7_9 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.6.5 Mobile/15E148 Safari/604.1	12/15/2025 02:20:37 PM	Evil 404 /cgi-bin/file.php
71296	46.151.178.49	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36	12/15/2025 12:31:02 PM	Tried to access http ip directly.
71295	20.40.209.173	Mozilla/5.0 zgrab/0.x	12/15/2025 11:41:35 AM	User Agent Mozilla/5.0 zgrab/0.x
71294	20.214.242.147	Mozilla/5.0 (Linux; Android 11; CPH2251) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36	12/15/2025 11:28:23 AM	Evil 404 /cgi-bin/file.php
71293	3.82.130.45	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	12/15/2025 11:27:20 AM	Tried to access http ip directly.
71292	45.156.131.25	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36	12/15/2025 10:46:41 AM	Tried to access http ip directly.
71291	170.64.226.123	Mozilla/5.0	12/15/2025 10:30:18 AM	Tried to access http ip directly.
71290	195.24.237.174	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36	12/15/2025 10:11:00 AM	Evil 404 .env (AWS vulnerability)
71289	38.248.90.23	Mozilla/5.0	12/15/2025 07:50:49 AM	Evil 404 /wp-login.php
71288	45.33.80.243	Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36	12/15/2025 07:09:51 AM	Tried to access http ip directly.
71287	135.237.125.195	Mozilla/5.0 zgrab/0.x	12/15/2025 06:38:33 AM	User Agent Mozilla/5.0 zgrab/0.x
71286	144.31.4.188	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36	12/15/2025 06:21:51 AM	Evil 404 /wp-admin/install.php
71285	40.67.161.175	Mozilla/5.0 zgrab/0.x	12/15/2025 05:46:36 AM	Tried to access http ip directly.
71284	157.245.209.233	xfa1,nvdorz,nvd0rz	12/15/2025 05:46:24 AM	Evil 404 /admin/config.php
71283	109.123.111.89	libredtail-http	12/15/2025 02:49:05 AM	Tried to access http ip directly.
71282	51.81.52.135	libredtail-http	12/14/2025 11:11:15 PM	Tried to access http ip directly.
71281	91.206.169.59	Go-http-client/1.1	12/14/2025 08:34:51 PM	Evil 404 /wp-content/txets.php
71280	62.60.135.189	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3	12/14/2025 07:38:30 PM	Tried to access http ip directly.
71279	4.230.0.145	Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1	12/14/2025 07:30:13 PM	Evil 404 /wp-content/admin-header.php
71278	206.81.13.89	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	12/14/2025 07:27:38 PM	Evil 404 .env (AWS vulnerability)
71277	74.7.227.178	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.3; +https://openai.com/gptbot)	12/14/2025 06:18:37 PM	Tried to access http ip directly.
71276	182.10.225.208	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	12/14/2025 05:56:45 PM	Tried to access http ip directly.
71275	64.225.14.40	Mozilla/5.0	12/14/2025 05:26:44 PM	Evil 404 /wp-login.php
71274	120.48.109.87	libredtail-http	12/14/2025 04:31:58 PM	Tried to access http ip directly.
71273	20.89.217.198	Mozilla/5.0 (iPhone; CPU iPhone OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1	12/14/2025 04:26:02 PM	Evil 404 /wp-admin/css/colors/blue
71272	93.186.215.227	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	12/14/2025 02:45:42 PM	Tried to access http ip directly.
71271	102.22.20.125	xfa1,nvdorz,nvd0rz	12/14/2025 02:41:52 PM	Evil 404 /admin/config.php
71270	183.82.115.127	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0	12/14/2025 12:49:33 PM	Tried to access http ip directly.
71269	212.73.148.21	Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)	12/14/2025 12:39:55 PM	Tried to access http ip directly.
71268	20.78.177.7	Mozilla/5.0 (Linux; Android 12; 2201116SG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36	12/14/2025 12:16:13 PM	Evil 404 /wp-content/admin-header.php
71267	169.197.85.172	python-requests/2.32.3	12/14/2025 11:49:58 AM	Tried to access http ip directly.
71266	170.64.178.22	Mozilla/5.0	12/14/2025 11:47:20 AM	Tried to access http ip directly.
71265	20.65.169.214	Mozilla/5.0 zgrab/0.x	12/14/2025 11:42:02 AM	User Agent Mozilla/5.0 zgrab/0.x
71264	204.76.203.27	hi from sparixx and silverpath	12/14/2025 11:26:01 AM	Evil 404 /cgi-bin/luci/;stok=/locale?form=country
71263	34.207.182.99	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	12/14/2025 11:24:49 AM	Tried to access http ip directly.
71262	84.21.171.145	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.5615.137 Safari/537.36	12/14/2025 11:22:12 AM	Evil 404 .env (AWS vulnerability)
71261	4.194.76.130	Mozilla/5.0 (Linux; Android 13; SM-G991U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36	12/14/2025 11:10:21 AM	Evil 404 /wp-admin/css/colors/blue
71260	194.180.49.171	python-httpx/0.28.1	12/14/2025 10:57:31 AM	User Agent python-httpx/0.28.1
71259	144.172.114.121	Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:109.0) Gecko/20100101 Firefox/115.0	12/14/2025 10:47:59 AM	Tried to access http ip directly.
71258	103.224.243.145	libredtail-http	12/14/2025 10:34:39 AM	Tried to access http ip directly.
71257	35.162.5.34	python-httpx/0.28.1	12/14/2025 09:54:22 AM	User Agent python-httpx/0.28.1
71256	135.119.89.68	Mozilla/5.0 zgrab/0.x	12/14/2025 09:29:19 AM	Tried to access http ip directly.
71255	209.38.31.222	Mozilla/5.0	12/14/2025 08:11:12 AM	Tried to access http ip directly.
71254	104.199.46.221	python-requests/2.32.5	12/14/2025 06:51:49 AM	Tried to access http ip directly.
71253	142.111.146.31	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	12/14/2025 05:23:37 AM	Evil 404 .env (AWS vulnerability)
71252	35.203.210.208	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	12/14/2025 05:18:46 AM	Tried to access http ip directly.
71251	208.84.102.151	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	12/14/2025 05:15:47 AM	Evil 404 /wp-includes/wlwmanifest.xml
71250	85.215.117.38	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36	12/14/2025 04:32:59 AM	Evil 404 /wp-login.php
71249	187.110.175.195	xfa1,nvdorz,nvd0rz	12/14/2025 03:19:37 AM	Evil 404 /admin/config.php
71248	20.64.105.19	Mozilla/5.0 zgrab/0.x	12/14/2025 01:55:11 AM	User Agent Mozilla/5.0 zgrab/0.x
71247	104.28.240.86	Mozilla/5.0	12/14/2025 12:41:31 AM	Evil 404 /wp-login.php
71246	20.196.91.230	Mozilla/5.0 (iPhone; CPU iPhone OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1	12/14/2025 12:34:34 AM	Evil 404 /wp-content/admin-header.php
71245	45.59.163.167	xfa1,nvdorz,nvd0rz	12/14/2025 12:26:19 AM	Evil 404 /admin/config.php
71244	157.245.117.239	Mozilla/5.0	12/13/2025 10:45:35 PM	Evil 404 /wp-login.php
71243	34.170.25.29	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36	12/13/2025 09:42:51 PM	Evil 404 /wp-includes/wlwmanifest.xml
71242	138.68.183.19	Mozilla/5.0	12/13/2025 09:39:52 PM	Evil 404 /wp-login.php
71241	4.241.241.191	Mozilla/5.0 (Linux; Android 11; 21081111RG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36	12/13/2025 08:54:19 PM	Evil 404 /wp-content/admin-header.php
71240	167.172.80.128	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36	12/13/2025 08:44:45 PM	Tried to access http ip directly.
71239	137.184.7.209	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36	12/13/2025 07:56:20 PM	Tried to access http ip directly.
71238	144.31.4.112	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36	12/13/2025 07:36:12 PM	Evil 404 /wp-admin/install.php
71237	216.180.246.148	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	12/13/2025 07:08:24 PM	Tried to access http ip directly.
71236	208.84.101.251	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	12/13/2025 06:44:30 PM	Evil 404 /wp-includes/wlwmanifest.xml
71235	4.197.248.250	Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1	12/13/2025 05:58:59 PM	Evil 404 /wp-admin/css/colors/blue
71234	5.187.35.156	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	12/13/2025 05:36:34 PM	Tried to access http ip directly.
71233	13.71.30.28	Mozilla/5.0 (Linux; Android 13; SM-G991U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36	12/13/2025 05:13:41 PM	Evil 404 /wp-admin/css/colors/blue
71232	165.154.41.152	curl/7.29.0	12/13/2025 05:12:40 PM	Tried to access http ip directly.
71231	52.230.92.201	Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1	12/13/2025 03:39:09 PM	Evil 404 /wp-admin/css/colors/blue
71230	20.64.104.78	Mozilla/5.0 zgrab/0.x	12/13/2025 03:03:05 PM	Tried to access http ip directly.
71229	20.37.217.241	Mozilla/5.0 (iPad; CPU OS 16_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Mobile/15E148 Safari/604.1	12/13/2025 02:58:09 PM	Evil 404 /wp-content/admin-header.php
71228	20.188.106.95	Mozilla/5.0 (Linux; Android 12; 2201116SG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36	12/13/2025 01:35:13 PM	Evil 404 /wp-content/admin-header.php
71227	52.180.136.250	Mozilla/5.0 zgrab/0.x	12/13/2025 01:34:39 PM	User Agent Mozilla/5.0 zgrab/0.x
71226	194.163.172.10	Mozilla/5.0	12/13/2025 10:48:24 AM	Tried to access http ip directly.
71225	143.198.43.101	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	12/13/2025 09:56:27 AM	Evil 404 .env (AWS vulnerability)
71224	87.110.104.6	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	12/13/2025 07:55:27 AM	Tried to access http ip directly.
71223	130.180.33.226	ntopng 5.6.240304/amd64/FreeBSD 14.0	12/13/2025 07:27:04 AM	Tried to access http ip directly.
71222	192.3.138.26	Mozilla/5.0 (compatible; LumeWebScan/2.0; +https://lumeweaver.com/)	12/13/2025 06:19:47 AM	Tried to access http ip directly.
71221	18.246.62.107	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36	12/13/2025 05:34:55 AM	Tried to access http ip directly.
71220	216.180.246.54	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	12/13/2025 05:23:04 AM	Tried to access http ip directly.
71219	94.251.19.230	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	12/13/2025 04:49:52 AM	Tried to access http ip directly.
71218	152.42.183.90	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36	12/13/2025 04:00:36 AM	Evil 404 /wp-includes/ID3/license.txt
71217	173.212.203.116	libredtail-http	12/13/2025 02:25:51 AM	Tried to access http ip directly.
71216	52.186.182.60	Mozilla/5.0 zgrab/0.x	12/13/2025 01:25:11 AM	User Agent Mozilla/5.0 zgrab/0.x
71215	80.72.18.211	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	12/12/2025 11:02:46 PM	Tried to access http ip directly.
71214	89.117.148.254	libredtail-http	12/12/2025 10:49:21 PM	Tried to access http ip directly.
71213	167.71.90.72	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36	12/12/2025 08:51:20 PM	Tried to access http ip directly.
71212	152.42.163.164	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36	12/12/2025 08:20:28 PM	Tried to access http ip directly.
71211	34.141.136.63	python-requests/2.32.3	12/12/2025 07:18:50 PM	User Agent python-requests/2.32.3
71210	46.101.111.185	Mozilla/5.0 (l9scan/2.0.63e2232323e2238313e22373; +https://leakix.net)	12/12/2025 07:18:37 PM	Evil 404 .env (AWS vulnerability)
71209	143.110.217.244	Mozilla/5.0 (l9scan/2.0.63e2232323e2238313e22373; +https://leakix.net)	12/12/2025 07:18:36 PM	Evil 404 .env (AWS vulnerability)
71208	206.189.95.232	Mozilla/5.0 (l9scan/2.0.63e2232323e2238313e22373; +https://leakix.net)	12/12/2025 07:16:04 PM	Evil 404 .env (AWS vulnerability)
71207	164.90.208.56	Mozilla/5.0 (l9scan/2.0.63e2232323e2238313e22373; +https://leakix.net)	12/12/2025 07:15:58 PM	Evil 404 .env (AWS vulnerability)
71206	164.92.244.132	Mozilla/5.0 (l9scan/2.0.63e2232323e2238313e22373; +https://leakix.net)	12/12/2025 07:15:57 PM	Evil 404 .env (AWS vulnerability)
71205	35.203.210.189	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	12/12/2025 05:47:56 PM	Tried to access http ip directly.
71204	85.217.149.27	Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)	12/12/2025 05:25:21 PM	Tried to access http ip directly.
71203	74.235.185.122	Mozilla/5.0 zgrab/0.x	12/12/2025 04:36:13 PM	User Agent Mozilla/5.0 zgrab/0.x
71202	14.135.74.149	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36	12/12/2025 03:26:52 PM	Tried to access http ip directly.
71201	212.73.148.12	Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)	12/12/2025 02:17:03 PM	Tried to access http ip directly.
71200	172.192.48.198	Mozilla/5.0 (Linux; Android 12; 2201116SG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36	12/12/2025 02:10:26 PM	Evil 404 /wp-content/admin-header.php
71199	20.196.106.26	Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1	12/12/2025 01:40:21 PM	Evil 404 /cgi-bin/file.php
71198	144.31.4.124	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36	12/12/2025 01:36:16 PM	Evil 404 /wp-admin/install.php
71197	184.72.127.184	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	12/12/2025 11:24:25 AM	Tried to access http ip directly.
71196	216.180.246.83	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	12/12/2025 10:09:49 AM	Tried to access http ip directly.
71195	101.36.97.80	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0	12/12/2025 09:44:37 AM	Tried to access http ip directly.
71194	141.98.11.172	Go-http-client/1.1	12/12/2025 09:33:22 AM	Evil 404 /cgi-bin/luci/;stok=/locale?form=country&operation
71193	20.163.15.225	Mozilla/5.0 zgrab/0.x	12/12/2025 08:08:41 AM	Tried to access http ip directly.
71192	185.188.61.239	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.1508.111 Safari/537.36	12/12/2025 06:51:50 AM	Evil 404 /static/admin/js/ueditor/ueditor.config.js/x.php
71191	81.12.77.13	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7	12/12/2025 04:39:40 AM	Tried to access http ip directly.
71190	207.154.210.164	Go-http-client/1.1	12/12/2025 03:34:04 AM	Tried to access http ip directly.
71189	64.226.77.155	Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)	12/12/2025 03:34:04 AM	Tried to access http ip directly.
71188	104.248.19.191	Go-http-client/1.1	12/12/2025 03:34:04 AM	Evil 404 /solr/admin/info/system
71187	68.183.122.201	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36	12/12/2025 03:24:05 AM	Tried to access http ip directly.
71186	23.98.90.121	Mozilla/5.0 (iPad; CPU OS 17_0_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.1 Mobile/15E148 Safari/604.1	12/12/2025 03:18:05 AM	Evil 404 /cgi-bin/file.php
71185	4.189.149.100	Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/118.0 Mobile/15E148 Safari/605.1.15	12/12/2025 03:14:57 AM	Evil 404 /cgi-bin/file.php
71184	68.218.61.6	Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36	12/12/2025 03:02:58 AM	Evil 404 /cgi-bin/file.php
71183	172.237.114.104	Mozilla/5.0 (Windows NT 6.1; WOW64; rv:8.0) Gecko/20100101 Firefox/8.0	12/12/2025 03:01:16 AM	Tried to access http ip directly.
71182	134.209.86.24	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0	12/12/2025 02:08:35 AM	Tried to access http ip directly.
71181	98.80.4.44	Mozilla/5.0 (Windows NT 6.2;en-US) AppleWebKit/537.32.36 (KHTML, live Gecko) Chrome/58.0.3099.52 Safari/537.32	12/12/2025 02:02:51 AM	Tried to access http ip directly.
71180	180.143.228.3	"Mozilla/5.0	12/12/2025 01:40:56 AM	Tried to access http ip directly.
71179	20.89.208.225	Mozilla/5.0 (Linux; Android 13; M2101K6G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36	12/12/2025 01:37:07 AM	Evil 404 /cgi-bin/file.php
71178	164.92.138.29	Go-http-client/1.1	12/12/2025 01:15:09 AM	Tried to access http ip directly.
71177	209.38.247.79	Go-http-client/1.1	12/12/2025 01:13:46 AM	Evil 404 /cgi-bin/authLogin.cgi
71175	164.92.225.162	Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)	12/12/2025 01:13:46 AM	Tried to access http ip directly.
71176	161.35.216.245	Go-http-client/1.1	12/12/2025 01:13:46 AM	Evil 404 /solr/admin/info/system
71174	159.65.183.154	Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)	12/12/2025 12:49:05 AM	Tried to access http ip directly.
71173	20.189.203.24	Mozilla/5.0 (iPhone; CPU iPhone OS 17_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/119.0.6045.109 Mobile/15E148 Safari/604.1	12/11/2025 11:53:01 PM	Evil 404 /cgi-bin/file.php
71172	4.218.15.157	Mozilla/5.0 (iPhone; CPU iPhone OS 17_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/119.0.6045.109 Mobile/15E148 Safari/604.1	12/11/2025 10:49:02 PM	Evil 404 /cgi-bin/file.php
71171	4.241.233.183	Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) FxiOS/118.0 Mobile/15E148 Safari/605.1.15	12/11/2025 10:31:10 PM	Evil 404 /wp-content/admin-header.php
71170	142.93.21.253	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	12/11/2025 09:11:34 PM	Evil 404 .env (AWS vulnerability)
71169	91.224.92.118	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	12/11/2025 09:09:36 PM	Tried to access http ip directly.
71168	150.40.178.176	libredtail-http	12/11/2025 08:39:19 PM	Tried to access http ip directly.
71167	20.58.146.18	Mozilla/5.0 (Linux; Android 10; LM-Q720) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36	12/11/2025 08:32:48 PM	Evil 404 /wp-content/admin-header.php
71166	4.189.122.191	Mozilla/5.0 (Linux; Android 12; V2134) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Mobile Safari/537.36	12/11/2025 06:09:17 PM	Evil 404 /cgi-bin/file.php
71165	204.76.203.8	Linux Gnu (cow)	12/11/2025 05:21:08 PM	Tried to access http ip directly.
71164	35.203.210.246	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	12/11/2025 04:59:30 PM	Tried to access http ip directly.
71163	89.42.231.242	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	12/11/2025 04:57:17 PM	Tried to access http ip directly.
71162	4.197.195.62	Mozilla/5.0 (Linux; Android 13; SM-G991U) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Mobile Safari/537.36	12/11/2025 04:01:34 PM	Evil 404 /cgi-bin/file.php
71161	119.42.144.140	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0	12/11/2025 03:04:15 PM	Tried to access http ip directly.
71160	160.30.179.245	Mozilla/5.0 (X11; Linux x86_64)	12/11/2025 02:49:27 PM	Evil 404 .env (AWS vulnerability)
71159	160.30.179.245	Mozilla/5.0 (X11; Linux x86_64)	12/11/2025 02:49:27 PM	Evil 404 .env (AWS vulnerability)
71158	160.30.179.245	Mozilla/5.0 (X11; Linux x86_64)	12/11/2025 02:49:27 PM	Evil 404 .env (AWS vulnerability)