Ban Hackers

Back in the day, hackers were unemployed or unemployable programmers or teenagers with nothing to do.
Now days, it's criminal organizations and Programmers (with a capital P) with masters degrees hired by foreign (and not so foreign) governments to hack into every server they can find. They even try to scan every possible IP address for web servers. When they find one, somebody later tries to hack it.
So, I set up a website for them to visit. It says Coming Soon.
Then, it records their IP Address and bans it from the server with iptables. It also adds their IP Address and User Agent string to the database.

Here are the IP addresses I've banned over the last week:

BannedID	IP	User Agent String	Date Hacked	Banned Reason
69750	216.26.243.183	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36	10/14/2025 02:50:34 AM	Evil 404 /wp-includes/ID3/license.txt
69749	136.117.141.2	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36	10/14/2025 02:47:35 AM	Evil 404 /wp-includes/wlwmanifest.xml
69748	165.154.206.35	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36	10/13/2025 11:27:33 PM	Tried to access http ip directly.
69747	104.248.12.66	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/13/2025 11:27:27 PM	Evil 404 .env (AWS vulnerability)
69746	34.201.39.46	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	10/13/2025 09:23:50 PM	Tried to access http ip directly.
69745	3.107.166.183	Mozilla/5.0 (Linux x86_64; X11) AppleWebKit/537.29 (KHTML, like Gecko) Chrome/25.0.1537.68 Safari/535.6	10/13/2025 08:53:15 PM	Evil 404 .env (AWS vulnerability)
69744	159.203.47.158	Mozilla/5.0 (X11; Linux x86_64; rv:139.0) Gecko/20100101 Firefox/139.0	10/13/2025 08:52:58 PM	Tried to access http ip directly.
69743	34.52.176.247	python-requests/2.32.5	10/13/2025 08:43:26 PM	Tried to access http ip directly.
69742	61.245.156.89	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	10/13/2025 08:31:30 PM	Tried to access http ip directly.
69741	162.216.150.182	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	10/13/2025 08:28:29 PM	Tried to access http ip directly.
69740	134.209.97.30	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36	10/13/2025 08:00:19 PM	Evil 404 /wp-includes/wlwmanifest.xml
69739	212.11.64.31	shodanscanprint(chr(49).chr(55).chr(73).chr(53).chr(51).chr(48).chr(86).chr(65).chr(117).chr(52))	10/13/2025 07:48:27 PM	Tried to access http ip directly.
69738	66.175.215.176	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36	10/13/2025 06:54:39 PM	Tried to access http ip directly.
69737	142.93.51.97	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36	10/13/2025 06:54:23 PM	Tried to access http ip directly.
69735	104.248.179.222	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36	10/13/2025 06:54:21 PM	Tried to access http ip directly.
69736	142.93.84.213	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36	10/13/2025 06:54:21 PM	Tried to access http ip directly.
69734	43.135.164.228	Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1	10/13/2025 06:17:05 PM	Tried to access http ip directly.
69733	194.163.129.51	xfa1	10/13/2025 05:59:32 PM	Evil 404 /admin/config.php
69732	194.195.215.27	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36	10/13/2025 02:28:26 PM	Tried to access http ip directly.
69731	23.92.30.48	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36	10/13/2025 02:28:16 PM	Tried to access http ip directly.
69730	173.255.247.94	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36	10/13/2025 02:28:14 PM	Tried to access http ip directly.
69729	45.56.126.58	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36	10/13/2025 02:28:14 PM	Tried to access http ip directly.
69728	151.240.205.199	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36	10/13/2025 01:47:05 PM	Evil 404 /wp-includes/ID3/license.txt
69727	149.40.62.27	python-requests/2.32.5	10/13/2025 01:13:07 PM	User Agent python-requests/2.32.5
69726	143.198.29.77	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/13/2025 11:36:21 AM	Evil 404 .env (AWS vulnerability)
69725	20.118.202.126	Mozilla/5.0 zgrab/0.x	10/13/2025 10:46:05 AM	User Agent Mozilla/5.0 zgrab/0.x
69724	45.130.203.236	Python-urllib/3.10	10/13/2025 10:22:58 AM	User Agent Python-urllib/3.10
69723	45.3.39.109	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36	10/13/2025 09:59:51 AM	Evil 404 /wp-includes/ID3/license.txt
69721	167.99.253.24	Go-http-client/1.1	10/13/2025 09:59:33 AM	Evil 404 /solr/admin/info/system
69720	178.128.205.142	Go-http-client/1.1	10/13/2025 09:59:33 AM	Evil 404 /cgi-bin/authLogin.cgi
69722	207.154.254.128	Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)	10/13/2025 09:59:33 AM	Tried to access http ip directly.
69719	45.250.231.225	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7	10/13/2025 09:08:18 AM	Tried to access http ip directly.
69717	169.150.196.149	python-requests/2.32.5	10/13/2025 07:56:29 AM	User Agent python-requests/2.32.5
69718	169.150.196.149	python-requests/2.32.5	10/13/2025 07:56:29 AM	User Agent python-requests/2.32.5
69716	80.234.46.166	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7	10/13/2025 06:23:47 AM	Tried to access http ip directly.
69715	216.180.246.71	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	10/13/2025 04:39:32 AM	Tried to access http ip directly.
69714	65.111.9.183	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36	10/13/2025 01:49:49 AM	Evil 404 /wp-includes/ID3/license.txt
69713	144.172.106.240	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36	10/13/2025 01:20:54 AM	Tried to access http ip directly.
69712	176.65.148.164	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0	10/13/2025 12:31:19 AM	Evil 404 /boaform/admin/formLogin
69711	162.243.3.53	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/12/2025 11:31:35 PM	Evil 404 .env (AWS vulnerability)
69710	196.251.86.13	ALittle Client	10/12/2025 10:49:09 PM	Evil 404 /admin/plugins/fileupload/index.php
69709	114.55.179.101	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.84 Safari/537.36	10/12/2025 10:10:27 PM	Tried to access http ip directly.
69708	35.88.198.174	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.102 Safari/537.36	10/12/2025 09:06:54 PM	Tried to access http ip directly.
69707	47.236.42.190	curl/7.64.1	10/12/2025 09:03:32 PM	Tried to access http ip directly.
69706	34.48.202.234	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36	10/12/2025 08:13:06 PM	Evil 404 /wp-includes/wlwmanifest.xml
69705	34.48.50.53	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36	10/12/2025 07:59:58 PM	Evil 404 /wp-includes/wlwmanifest.xml
69704	162.216.150.82	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	10/12/2025 07:49:25 PM	Tried to access http ip directly.
69703	194.26.192.110	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36	10/12/2025 06:34:27 PM	Evil 404 .env (AWS vulnerability)
69702	135.237.125.174	Mozilla/5.0 zgrab/0.x	10/12/2025 06:24:34 PM	Tried to access http ip directly.
69701	109.105.209.5	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.117 Safari/537.36	10/12/2025 05:48:09 PM	Tried to access http ip directly.
69700	175.4.8.54	Go-http-client/1.1	10/12/2025 02:49:19 PM	Evil 404 /wp-login.php
69699	66.132.153.112	Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)	10/12/2025 02:20:01 PM	Tried to access http ip directly.
69698	196.251.70.47	Mozilla/5.0 (Kubuntu; Linux i686; rv:128.0) Gecko/20100101 Firefox/128.0	10/12/2025 02:15:36 PM	Evil 404 .env (AWS vulnerability)
69697	161.35.191.193	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/12/2025 11:10:44 AM	Evil 404 .env (AWS vulnerability)
69696	200.53.24.207	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	10/12/2025 10:06:59 AM	Tried to access http ip directly.
69695	34.34.144.227	python-requests/2.32.5	10/12/2025 09:19:29 AM	Tried to access http ip directly.
69694	13.86.117.6	Mozilla/5.0 zgrab/0.x	10/12/2025 08:39:52 AM	User Agent Mozilla/5.0 zgrab/0.x
69693	148.135.200.30	Mozilla/5.0	10/12/2025 07:52:17 AM	Evil 404 /wp-login.php
69692	152.32.183.231	curl/7.29.0	10/12/2025 07:37:52 AM	Tried to access http ip directly.
69691	50.117.3.87	Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Firefox/45.0	10/12/2025 05:15:01 AM	Evil 404 /wp-login.php
69690	165.154.213.142	masscan/1.0 (https://github.com/robertdavidgraham/masscan)	10/12/2025 04:52:05 AM	Tried to access http ip directly.
69689	143.198.149.255	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	10/12/2025 04:46:57 AM	Evil 404 /wp-includes/wlwmanifest.xml
69688	162.216.150.168	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	10/12/2025 04:35:13 AM	Tried to access http ip directly.
69687	125.82.243.31	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36	10/12/2025 04:27:31 AM	Tried to access http ip directly.
69686	205.169.39.2	Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36	10/12/2025 02:52:25 AM	Tried to access http ip directly.
69685	45.130.200.116	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	10/12/2025 12:33:23 AM	Evil 404 .env (AWS vulnerability)
69684	104.248.209.33	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/11/2025 11:27:17 PM	Evil 404 .env (AWS vulnerability)
69683	159.223.82.35	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36	10/11/2025 10:49:23 PM	Tried to access http ip directly.
69682	3.84.134.30	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	10/11/2025 09:26:56 PM	Tried to access http ip directly.
69681	196.251.71.69	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36	10/11/2025 09:10:24 PM	Evil 404 /wp-login.php
69680	103.9.188.83	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:122.0) Gecko/20100101 Firefox/122.0	10/11/2025 08:21:51 PM	Evil 404 /wp-login.php
69679	198.235.24.80	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	10/11/2025 08:17:12 PM	Tried to access http ip directly.
69678	104.131.34.169	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36	10/11/2025 08:11:05 PM	Tried to access http ip directly.
69677	194.187.178.171	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0	10/11/2025 07:48:31 PM	Tried to access http ip directly.
69676	194.187.178.217	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0	10/11/2025 07:48:30 PM	Tried to access http ip directly.
69675	178.252.184.130	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	10/11/2025 07:44:29 PM	Tried to access http ip directly.
69674	92.60.40.231	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	10/11/2025 07:02:52 PM	Evil 404 .env (AWS vulnerability)
69673	79.124.40.174	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	10/11/2025 04:58:26 PM	Tried to access http ip directly.
69672	151.234.85.142	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	10/11/2025 04:38:25 PM	Tried to access http ip directly.
69671	66.132.153.113	Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)	10/11/2025 01:09:56 PM	Tried to access http ip directly.
69670	34.94.32.98	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36	10/11/2025 01:02:18 PM	Evil 404 .env (AWS vulnerability)
69669	185.247.137.162	Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)	10/11/2025 12:52:26 PM	Tried to access http ip directly.
69668	195.96.138.145	python-requests/2.26.0	10/11/2025 12:24:10 PM	User Agent python-requests/2.26.0
69667	165.154.226.195	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36	10/11/2025 12:09:05 PM	Tried to access http ip directly.
69666	142.93.10.9	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/11/2025 11:22:25 AM	Evil 404 .env (AWS vulnerability)
69665	5.235.189.81	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	10/11/2025 10:48:17 AM	Tried to access http ip directly.
69664	5.235.189.81	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7	10/11/2025 10:48:17 AM	Tried to access http ip directly.
69663	5.235.189.81	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	10/11/2025 10:48:17 AM	Tried to access http ip directly.
69662	172.245.214.40	Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0	10/11/2025 09:04:11 AM	Evil 404 .env (AWS vulnerability)
69661	216.180.246.72	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	10/11/2025 08:21:45 AM	Tried to access http ip directly.
69660	87.120.191.91	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	10/11/2025 04:48:06 AM	Tried to access http ip directly.
69659	87.120.191.90	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	10/11/2025 04:43:33 AM	Tried to access http ip directly.
69658	5.239.193.20	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	10/11/2025 02:47:56 AM	Tried to access http ip directly.
69657	20.64.105.41	Mozilla/5.0 zgrab/0.x	10/11/2025 02:00:14 AM	User Agent Mozilla/5.0 zgrab/0.x
69656	103.105.208.136	xfa1	10/11/2025 12:27:20 AM	Evil 404 /admin/config.php
69655	43.230.158.26	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7	10/10/2025 11:18:50 PM	Tried to access http ip directly.
69654	178.249.209.187	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	10/10/2025 11:11:51 PM	Tried to access http ip directly.
69653	161.35.174.147	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/10/2025 10:57:23 PM	Evil 404 .env (AWS vulnerability)
69652	54.163.198.183	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	10/10/2025 09:31:39 PM	Tried to access http ip directly.
69651	216.180.246.116	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	10/10/2025 09:01:02 PM	Tried to access http ip directly.
69650	20.64.106.116	Mozilla/5.0 zgrab/0.x	10/10/2025 08:51:15 PM	User Agent Mozilla/5.0 zgrab/0.x
69649	35.203.210.132	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	10/10/2025 08:49:32 PM	Tried to access http ip directly.
69648	20.163.74.182	Mozilla/5.0 zgrab/0.x	10/10/2025 06:47:47 PM	User Agent Mozilla/5.0 zgrab/0.x
69647	176.65.141.87	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36 Edge/12.246	10/10/2025 05:36:46 PM	Tried to access http ip directly.
69646	24.199.101.103	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	10/10/2025 04:47:12 PM	Evil 404 /wp-includes/wlwmanifest.xml
69645	144.172.106.140	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0	10/10/2025 03:32:28 PM	Evil 404 /boaform/admin/formLogin
69644	207.154.206.121	Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)	10/10/2025 02:54:42 PM	Tried to access http ip directly.
69643	167.71.42.213	Go-http-client/1.1	10/10/2025 02:54:42 PM	Evil 404 /solr/admin/info/system
69642	66.132.153.139	Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)	10/10/2025 02:37:22 PM	Tried to access http ip directly.
69641	45.139.104.204	Opera/9.80 (Android 4.0.4; Linux; Opera Mobi/ADR-1205181138; U; pl) Presto/2.10.254 Version/12.00	10/10/2025 02:36:11 PM	Evil 404 .env (AWS vulnerability)
69640	164.90.198.31	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/10/2025 11:17:53 AM	Evil 404 .env (AWS vulnerability)
69639	204.76.203.30	Mozilla/5.0 (Windows; U; Windows NT 5.1; pt-BR) AppleWebKit/528.16 (KHTML, like Gecko) Version/4.0 Safari/528.16	10/10/2025 10:48:04 AM	Evil 404 .env (AWS vulnerability)
69638	24.199.100.206	ivre-masscan/1.3 https://github.com/robertdavidgraham/	10/10/2025 08:25:49 AM	User Agent ivre-masscan/1.3 https://github.com/robertdavidgraham/
69637	137.184.185.137	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	10/10/2025 08:00:23 AM	Evil 404 /wp-includes/wlwmanifest.xml
69636	170.83.199.105	ivre-masscan/1.3 https://github.com/robertdavidgraham/	10/10/2025 06:42:18 AM	User Agent ivre-masscan/1.3 https://github.com/robertdavidgraham/
69635	8.213.17.246	libredtail-http	10/10/2025 06:12:48 AM	Tried to access http ip directly.
69633	161.35.205.193	Go-http-client/1.1	10/10/2025 04:52:21 AM	Evil 404 /cgi-bin/authLogin.cgi
69634	209.38.237.181	Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)	10/10/2025 04:52:21 AM	Tried to access http ip directly.
69632	78.38.17.35	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	10/10/2025 04:37:15 AM	Tried to access http ip directly.
69631	8.36.86.60	python-requests/2.32.3	10/10/2025 04:27:08 AM	User Agent python-requests/2.32.3
69630	87.121.84.101	Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0	10/10/2025 04:26:05 AM	Tried to access http ip directly.
69629	81.162.61.46	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	10/10/2025 03:09:15 AM	Tried to access http ip directly.
69628	172.237.126.131	Mozilla/5.0 (Windows NT 6.1; WOW64; rv:8.0) Gecko/20100101 Firefox/8.0	10/10/2025 03:09:14 AM	Tried to access http ip directly.
69627	216.180.246.195	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	10/10/2025 02:39:12 AM	Tried to access http ip directly.
69626	147.185.133.93	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	10/10/2025 02:14:51 AM	Tried to access http ip directly.
69625	91.227.62.213	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	10/10/2025 12:15:38 AM	Tried to access http ip directly.
69624	195.184.76.234	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0	10/10/2025 12:06:11 AM	Tried to access http ip directly.
69623	185.177.72.45	python-httpx/0.28.1	10/9/2025 11:54:14 PM	User Agent python-httpx/0.28.1
69622	40.124.175.166	Mozilla/5.0 zgrab/0.x	10/9/2025 11:40:31 PM	User Agent Mozilla/5.0 zgrab/0.x
69621	142.93.254.156	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/9/2025 11:14:12 PM	Evil 404 .env (AWS vulnerability)
69620	172.236.228.227	Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36	10/9/2025 09:27:38 PM	Tried to access http ip directly.
69619	3.95.238.124	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	10/9/2025 09:24:17 PM	Tried to access http ip directly.
69618	5.187.35.21	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.85 Safari/537.36 Edg/90.0.818.46	10/9/2025 07:17:04 PM	Tried to access http ip directly.
69617	40.124.172.78	Mozilla/5.0 zgrab/0.x	10/9/2025 06:08:55 PM	User Agent Mozilla/5.0 zgrab/0.x
69616	202.93.142.22	ivre-masscan/1.3 https://github.com/robertdavidgraham/	10/9/2025 04:30:21 PM	User Agent ivre-masscan/1.3 https://github.com/robertdavidgraham/
69615	8.36.86.58	python-requests/2.32.3	10/9/2025 03:37:34 PM	User Agent python-requests/2.32.3
69614	64.23.232.133	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36	10/9/2025 03:10:56 PM	Tried to access http ip directly.
69613	45.135.194.113	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36 Edge/12.246	10/9/2025 02:54:04 PM	Tried to access http ip directly.
69612	95.173.216.42	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3	10/9/2025 02:48:57 PM	Evil 404 .env (AWS vulnerability)
69611	46.101.72.28	Mozilla/5.0 (X11; Linux x86_64; rv:139.0) Gecko/20100101 Firefox/139.0	10/9/2025 01:29:08 PM	Tried to access http ip directly.
69610	68.183.39.176	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/9/2025 11:11:17 AM	Evil 404 .env (AWS vulnerability)
69609	131.196.48.84	ivre-masscan/1.3 https://github.com/robertdavidgraham/	10/9/2025 08:02:17 AM	User Agent ivre-masscan/1.3 https://github.com/robertdavidgraham/
69608	176.65.148.132	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.0.0 Safari/537.36	10/9/2025 07:58:59 AM	Tried to access http ip directly.
69607	96.126.117.80	Mozilla/5.0 (Linux; Android 7; Nexus 5; Build/NHG47U) AppleWebKit/537.36 (KHTML	10/9/2025 04:51:50 AM	Tried to access http ip directly.
69606	96.126.117.80	Mozilla/5.0 (Linux; Android 7; Nexus 5; Build/NHG47U) AppleWebKit/537.36 (KHTML	10/9/2025 04:51:50 AM	Tried to access http ip directly.
69605	34.91.93.10	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36	10/9/2025 04:35:45 AM	Evil 404 /wp-includes/wlwmanifest.xml
69604	91.196.152.1	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0	10/9/2025 03:59:15 AM	Tried to access http ip directly.
69603	144.172.116.36	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.0	10/9/2025 02:39:27 AM	Evil 404 /boaform/admin/formLogin
69602	101.36.107.228	libredtail-http	10/9/2025 02:26:28 AM	Tried to access http ip directly.
69601	143.198.108.233	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36	10/9/2025 02:05:12 AM	Tried to access http ip directly.
69600	165.227.180.108	Mozilla/5.0 (X11; Linux x86_64; rv:137.0) Gecko/20100101 Firefox/137.0	10/9/2025 01:41:26 AM	Tried to access http ip directly.
69599	159.89.12.166	Go-http-client/1.1	10/9/2025 01:38:40 AM	Evil 404 .env (AWS vulnerability)
69598	138.197.100.249	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/8/2025 11:06:59 PM	Evil 404 .env (AWS vulnerability)
69597	185.177.72.29	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36	10/8/2025 09:34:00 PM	Evil 404 .env (AWS vulnerability)
69596	13.219.78.236	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	10/8/2025 09:30:05 PM	Tried to access http ip directly.
69595	143.244.181.47	ivre-masscan/1.3 https://github.com/robertdavidgraham/	10/8/2025 08:03:29 PM	User Agent ivre-masscan/1.3 https://github.com/robertdavidgraham/
69594	138.197.204.26	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36	10/8/2025 07:53:24 PM	Tried to access http ip directly.
69593	178.128.5.152	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/8/2025 07:09:07 PM	Evil 404 .env (AWS vulnerability)
69592	190.115.93.125	Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36	10/8/2025 06:52:13 PM	Tried to access http ip directly.
69591	185.247.137.139	Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)	10/8/2025 04:38:11 PM	Tried to access http ip directly.
69590	5.189.141.59	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	10/8/2025 02:11:49 PM	Tried to access http ip directly.
69589	20.65.193.155	Mozilla/5.0 zgrab/0.x	10/8/2025 01:21:40 PM	User Agent Mozilla/5.0 zgrab/0.x
69588	45.134.13.209	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.0.0 Safari/537.36	10/8/2025 12:56:31 PM	Tried to access http ip directly.
69587	123.58.213.118	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/545.40 (KHTML, like Gecko) Chrome/60.0.842 Safari/537.36	10/8/2025 11:45:22 AM	Tried to access http ip directly.
69586	61.129.155.200	Mozilla/5.0(WindowsNT10.0;Win64;x64)AppleWebKit/537.36(KHTML,likeGecko)Chrome/86.0.4240.111Safari/537.36	10/8/2025 09:57:06 AM	Tried to access http ip directly.
69585	20.65.195.28	Mozilla/5.0 zgrab/0.x	10/8/2025 09:42:00 AM	User Agent Mozilla/5.0 zgrab/0.x
69584	112.35.70.139	Go-http-client/1.1	10/8/2025 08:24:02 AM	Evil 404 /wp-login.php
69583	204.76.203.31		10/8/2025 08:04:33 AM	Tried to log in as root with no password.
69582	137.184.173.236	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/8/2025 07:04:54 AM	Evil 404 .env (AWS vulnerability)
69581	188.124.12.239		10/8/2025 06:39:19 AM	Tried to log in as root with no password.
69580	34.243.164.232	Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)	10/8/2025 05:21:15 AM	Tried to access http ip directly.
69579	162.216.149.231	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	10/8/2025 03:17:36 AM	Tried to access http ip directly.
69578	40.124.186.157	Mozilla/5.0 zgrab/0.x	10/8/2025 01:33:04 AM	User Agent Mozilla/5.0 zgrab/0.x
69577	34.182.125.39	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36	10/7/2025 11:26:21 PM	Evil 404 /wp-includes/js/jquery/jquery.js
69576	13.221.150.154	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	10/7/2025 09:54:53 PM	Tried to access http ip directly.
69575	91.124.17.82	WanScannerBot/1.0	10/7/2025 09:30:47 PM	Tried to access http ip directly.
69574	185.226.197.24	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36	10/7/2025 07:54:29 PM	Tried to access http ip directly.
69573	143.110.153.203	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/7/2025 07:01:36 PM	Evil 404 .env (AWS vulnerability)
69572	67.207.90.113	Mozilla/5.0 (X11; Linux x86_64; rv:139.0) Gecko/20100101 Firefox/139.0	10/7/2025 05:10:44 PM	Tried to access http ip directly.
69571	34.38.38.180	python-requests/2.32.5	10/7/2025 04:55:21 PM	Tried to access http ip directly.
69570	216.180.246.96	'Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)'	10/7/2025 01:42:58 PM	Tried to access http ip directly.
69569	40.124.175.30	Mozilla/5.0 zgrab/0.x	10/7/2025 01:04:56 PM	Tried to access http ip directly.
69568	58.59.233.130	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36	10/7/2025 10:33:14 AM	Tried to access http ip directly.
69567	205.169.39.24	Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36	10/7/2025 10:15:27 AM	Tried to access http ip directly.
69566	148.113.213.24	Mozilla/5.0 (compatible; ModatScanner/1.1; +https://modat.io/)	10/7/2025 08:09:48 AM	Tried to access http ip directly.
69565	120.46.50.160	libredtail-http	10/7/2025 07:58:40 AM	Tried to access http ip directly.
69564	159.203.123.217	Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);	10/7/2025 07:01:34 AM	Evil 404 .env (AWS vulnerability)
69563	66.132.153.120	Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)	10/7/2025 06:59:52 AM	Tried to access http ip directly.
69562	185.180.140.131	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36	10/7/2025 06:28:00 AM	Tried to access http ip directly.
69561	31.148.49.238	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	10/7/2025 05:30:01 AM	Tried to access http ip directly.
69560	34.145.64.235	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36	10/7/2025 05:29:01 AM	Evil 404 /wp-includes/js/jquery/jquery.js
69559	141.98.11.188	Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0	10/7/2025 05:09:03 AM	Evil 404 /wp-login.php