Ban Hackers

Back in the day, hackers were unemployed or unemployable programmers or teenagers with nothing to do.
Now days, it's criminal organizations and Programmers (with a capital P) with masters degrees hired by foreign (and not so foreign) governments to hack into every server they can find. They even try to scan every possible IP address for web servers. When they find one, somebody later tries to hack it.
So, I set up a website for them to visit. It says Coming Soon.
Then, it records their IP Address and bans it from the server with iptables. It also adds their IP Address and User Agent string to the database.

Here are the IP addresses I've banned over the last week:

BannedID	IP	User Agent String	Date Hacked	Banned Reason
73290	105.157.245.241	Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30	3/7/2026 12:07:43 AM	Evil 404 .env (AWS vulnerability)
73289	49.149.75.204	Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Mobile Safari/537.36	3/6/2026 11:38:17 PM	Evil 404 .env (AWS vulnerability)
73288	169.150.203.200	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	3/6/2026 10:57:00 PM	Evil 404 /wp-includes/wlwmanifest.xml
73287	63.32.117.71	Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)	3/6/2026 10:31:40 PM	Tried to access http ip directly.
73286	14.236.60.35	Mozilla/5.0 (Windows 98; hi-IN; rv:1.9.0.20) Gecko/9398-04-28 13:12:53.756226 Firefox/7.0	3/6/2026 08:56:13 PM	Tried to access http ip directly.
73285	162.216.150.238	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	3/6/2026 08:42:45 PM	Tried to access http ip directly.
73284	20.83.167.33	Mozilla/5.0 zgrab/0.x	3/6/2026 08:23:15 PM	User Agent Mozilla/5.0 zgrab/0.x
73283	15.235.198.134	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36	3/6/2026 04:17:23 PM	Evil 404 .env (AWS vulnerability)
73282	15.235.198.134	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36	3/6/2026 04:17:23 PM	Evil 404 .env (AWS vulnerability)
73281	3.94.111.96	Go-http-client/1.1	3/6/2026 04:11:52 PM	Tried to access http ip directly.
73280	183.81.169.235	Mozilla/5.0 (compatible; FastScan/1.0)	3/6/2026 03:33:30 PM	Tried to access http ip directly.
73279	54.162.56.156	Go-http-client/1.1	3/6/2026 02:43:50 PM	Tried to access http ip directly.
73278	13.220.113.59	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	3/6/2026 10:59:03 AM	Tried to access http ip directly.
73277	144.31.25.36	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.5 Safari/605.1.15	3/6/2026 10:31:22 AM	Evil 404 /wp-admin/
73276	20.207.200.31	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/6/2026 09:42:41 AM	Evil 404 /wp-content/themes/haha.php
73275	58.51.241.4	Mozilla/5.0(WindowsNT10.0;Win64;x64)AppleWebKit/537.36(KHTML,likeGecko)Chrome/86.0.4240.111Safari/537.36	3/6/2026 07:41:46 AM	Tried to access http ip directly.
73274	91.224.92.162	Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36	3/6/2026 07:20:26 AM	Evil 404 /wp-login.php
73273	146.190.156.6	Mozilla/5.0 (Macintosh; Intel Mac OS X 11) AppleWebKit/538.41 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36	3/6/2026 06:12:32 AM	Tried to access http ip directly.
73272	198.44.177.67	libredtail-http	3/6/2026 02:06:13 AM	Tried to access http ip directly.
73271	85.217.149.67	Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)	3/6/2026 01:41:08 AM	Tried to access http ip directly.
73270	20.89.57.111	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/6/2026 01:38:25 AM	Evil 404 /wp-content/uploads/index.php
73269	20.15.200.1	Mozilla/5.0 zgrab/0.x	3/6/2026 12:55:26 AM	User Agent Mozilla/5.0 zgrab/0.x
73268	35.203.211.171	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	3/6/2026 12:17:53 AM	Tried to access http ip directly.
73267	103.143.10.79	libredtail-http	3/6/2026 12:02:45 AM	Tried to access http ip directly.
73266	4.194.42.236	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/5/2026 11:40:12 PM	Evil 404 /wp-content/uploads/index.php
73265	20.169.104.49	Mozilla/5.0 zgrab/0.x	3/5/2026 11:04:00 PM	User Agent Mozilla/5.0 zgrab/0.x
73264	20.219.132.149	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/5/2026 10:24:33 PM	Evil 404 /wp-content/plugins/hello-dolly/
73263	179.43.177.134	Go-http-client/1.1	3/5/2026 09:08:41 PM	Tried to access http ip directly.
73262	216.180.246.112	Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)	3/5/2026 07:57:40 PM	Tried to access http ip directly.
73261	176.65.149.235	Mozilla/1.0	3/5/2026 07:02:42 PM	Tried to access http ip directly.
73260	20.65.136.10	Mozilla/5.0 zgrab/0.x	3/5/2026 05:06:58 PM	User Agent Mozilla/5.0 zgrab/0.x
73259	85.11.183.27	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36	3/5/2026 04:14:46 PM	Tried to access http ip directly.
73258	34.79.181.63	python-requests/2.32.5	3/5/2026 03:25:49 PM	Tried to access http ip directly.
73257	104.208.72.234	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/5/2026 02:43:57 PM	Evil 404 /wp-content/uploads/index.php
73256	54.169.210.208	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36	3/5/2026 01:43:05 PM	Evil 404 .env (AWS vulnerability)
73255	44.205.244.201	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	3/5/2026 11:00:35 AM	Tried to access http ip directly.
73254	89.253.237.136	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36	3/5/2026 09:36:35 AM	Evil 404 .env (AWS vulnerability)
73253	89.253.237.136	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36	3/5/2026 09:36:35 AM	Evil 404 .env (AWS vulnerability)
73252	20.205.42.22	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/5/2026 06:38:00 AM	Evil 404 /wp-content/plugins/hello-dolly/
73251	138.199.35.3	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	3/5/2026 06:34:47 AM	Evil 404 /wp-includes/wlwmanifest.xml
73250	161.97.112.109	Go-http-client/1.1	3/5/2026 06:18:32 AM	Tried to access http ip directly.
73249	144.123.76.121	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36	3/5/2026 05:45:59 AM	Tried to access http ip directly.
73248	216.180.246.170	Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)	3/5/2026 03:49:19 AM	Tried to access http ip directly.
73247	194.187.179.57	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0	3/5/2026 03:22:11 AM	Tried to access http ip directly.
73246	164.90.220.2	Mozilla/5.0	3/5/2026 01:04:29 AM	Evil 404 /wp-login.php
73245	174.138.94.32	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36	3/5/2026 12:12:18 AM	Tried to access http ip directly.
73244	82.180.147.64	Go-http-client/1.1	3/5/2026 12:06:31 AM	Tried to access http ip directly.
73243	34.62.131.131	python-requests/2.32.5	3/4/2026 11:41:37 PM	Tried to access http ip directly.
73242	65.49.1.162	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:140.0) Gecko/20100101 Firefox/140.0	3/4/2026 09:39:08 PM	Tried to access http ip directly.
73241	37.221.66.19	favicon-prober/speed	3/4/2026 08:25:05 PM	Tried to access http ip directly.
73240	40.80.83.34	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/4/2026 07:52:03 PM	Evil 404 /wp-content/themes/haha.php
73239	91.231.89.197	Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0	3/4/2026 07:23:39 PM	Tried to access http ip directly.
73238	172.239.105.139	Mozilla/5.0 (Windows NT 6.1; WOW64; rv:8.0) Gecko/20100101 Firefox/8.0	3/4/2026 06:56:47 PM	Tried to access http ip directly.
73237	46.202.208.94	libredtail-http	3/4/2026 04:55:29 PM	Tried to access http ip directly.
73236	176.65.139.44	Go-http-client/1.1	3/4/2026 04:54:29 PM	Tried to access http ip directly.
73235	52.253.113.41	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/4/2026 01:54:45 PM	Evil 404 /wp-content/themes/haha.php
73234	172.105.55.36	Go-http-client/1.1	3/4/2026 12:46:42 PM	Evil 404 .env (AWS vulnerability)
73233	57.128.247.37	Go-http-client/1.1	3/4/2026 11:36:14 AM	Tried to access http ip directly.
73232	105.159.219.159	Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30	3/4/2026 09:19:07 AM	Evil 404 .env (AWS vulnerability)
73231	193.121.51.31	libredtail-http	3/4/2026 09:02:53 AM	Tried to access http ip directly.
73230	164.90.164.89	Go-http-client/1.1	3/4/2026 09:01:34 AM	Tried to access http ip directly.
73229	104.248.247.129	Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)	3/4/2026 09:01:33 AM	Tried to access http ip directly.
73228	64.226.122.184	Go-http-client/1.1	3/4/2026 09:01:33 AM	Evil 404 /cgi-bin/authLogin.cgi
73227	139.59.142.93	Go-http-client/1.1	3/4/2026 09:01:33 AM	Evil 404 /solr/admin/info/system
73226	130.12.180.34	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36	3/4/2026 07:39:24 AM	Evil 404 .env (AWS vulnerability)
73225	159.69.64.245	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36	3/4/2026 06:30:40 AM	Evil 404 /wp-login.php
73224	34.158.79.105	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 Chrome/120.0.0.0	3/4/2026 06:01:11 AM	Evil 404 .env (AWS vulnerability)
73223	135.237.126.18	Mozilla/5.0 zgrab/0.x	3/4/2026 04:22:11 AM	Tried to access http ip directly.
73222	107.150.119.229	libredtail-http	3/4/2026 04:17:00 AM	Tried to access http ip directly.
73221	103.161.26.158	Go-http-client/1.1	3/4/2026 03:55:03 AM	Evil 404 .env (AWS vulnerability)
73220	159.223.135.80	Mozilla/5.0 zgrab/0.x	3/3/2026 10:47:04 PM	Tried to access http ip directly.
73219	216.180.246.149	Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)	3/3/2026 08:25:57 PM	Tried to access http ip directly.
73218	34.138.109.14	"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0"	3/3/2026 08:13:58 PM	Tried to access http ip directly.
73217	162.216.150.16	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	3/3/2026 07:41:39 PM	Tried to access http ip directly.
73216	167.99.230.208	Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0	3/3/2026 07:12:33 PM	Tried to access http ip directly.
73215	31.171.130.77	Go-http-client/1.1	3/3/2026 06:19:27 PM	Evil 404 /wp-content/txets.php
73214	45.156.128.86	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0	3/3/2026 05:21:10 PM	Tried to access http ip directly.
73213	18.97.19.132	Mozilla/5.0 (Windows NT 6.2;en-US) AppleWebKit/537.32.36 (KHTML, live Gecko) Chrome/55.0.3090.96 Safari/537.32	3/3/2026 05:11:25 PM	Tried to access http ip directly.
73212	136.119.200.86	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Safari/605.1.15	3/3/2026 03:56:56 PM	Evil 404 .env (AWS vulnerability)
73211	193.111.248.141	Mozilla/5.0 (compatible; silver.inc/2.0)	3/3/2026 03:34:48 PM	Evil 404 .env (AWS vulnerability)
73210	176.65.134.22	Linux Gnu (cow)	3/3/2026 02:09:34 PM	Tried to access http ip directly.
73209	54.238.91.29	Go-http-client/1.1	3/3/2026 01:17:53 PM	Tried to access http ip directly.
73208	80.94.92.206	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36	3/3/2026 12:29:52 PM	Evil 404 .env (AWS vulnerability)
73207	13.218.58.57	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	3/3/2026 10:56:09 AM	Tried to access http ip directly.
73206	18.191.183.192	Go-http-client/1.1	3/3/2026 10:21:29 AM	Tried to access http ip directly.
73205	43.160.246.48	Go-http-client/1.1	3/3/2026 05:57:29 AM	Tried to access http ip directly.
73204	160.187.210.184	Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36	3/3/2026 03:54:25 AM	Evil 404 /wp-login.php
73203	34.122.176.91	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	3/3/2026 02:58:45 AM	Evil 404 /wp-includes/wlwmanifest.xml
73202	147.185.133.12	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	3/3/2026 02:37:40 AM	Tried to access http ip directly.
73201	20.169.104.211	Mozilla/5.0 zgrab/0.x	3/3/2026 12:04:46 AM	User Agent Mozilla/5.0 zgrab/0.x
73200	20.15.225.63	Mozilla/5.0 zgrab/0.x	3/3/2026 12:03:32 AM	User Agent Mozilla/5.0 zgrab/0.x
73199	5.252.177.87	Mozilla/5.0 (X11; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0	3/2/2026 07:15:50 PM	Tried to access http ip directly.
73198	167.99.109.64	Mozilla/5.0 (Macintosh; Intel Mac OS X 11) AppleWebKit/538.41 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36	3/2/2026 06:37:57 PM	Tried to access http ip directly.
73197	180.252.87.230	Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36	3/2/2026 05:40:31 PM	Tried to access http ip directly.
73196	165.154.227.162	libredtail-http	3/2/2026 04:42:16 PM	Tried to access http ip directly.
73195	216.180.246.31	Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)	3/2/2026 04:12:33 PM	Tried to access http ip directly.
73194	20.89.241.129	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/2/2026 03:45:02 PM	Evil 404 /wp-admin/css/bolt.php
73193	147.185.132.195	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	3/2/2026 03:39:42 PM	Tried to access http ip directly.
73192	40.85.218.182	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/2/2026 12:11:11 PM	Evil 404 /wp-content/uploads/index.php
73191	172.71.164.52	Wget/1.21.3 (linux-gnu)	3/2/2026 11:31:29 AM	User Agent Wget/1.21.3 (linux-gnu)
73190	3.83.3.226	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	3/2/2026 10:59:09 AM	Tried to access http ip directly.
73189	20.151.114.166	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/2/2026 09:42:59 AM	Evil 404 /cgi-bin/
73188	82.158.224.115	libredtail-http	3/2/2026 09:42:49 AM	Tried to access http ip directly.
73187	165.154.11.170	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0	3/2/2026 09:03:29 AM	Tried to access http ip directly.
73186	40.80.200.216	Mozilla/5.0 zgrab/0.x	3/2/2026 07:12:47 AM	User Agent Mozilla/5.0 zgrab/0.x
73185	172.71.148.110	curl/8.4.0	3/2/2026 06:04:31 AM	User Agent curl/8.4.0
73184	52.66.57.216	Go-http-client/1.1	3/2/2026 05:31:41 AM	Tried to access http ip directly.
73183	34.116.165.233	Mozilla/5.0 (iPhone13,2; U; CPU iPhone OS 14_0 like Mac OS X) AppleWebKit/602.1.50 (KHTML, like Gecko) Version/10.0 Mobile/15E148 Safari/602.1	3/2/2026 04:28:35 AM	Tried to access http ip directly.
73182	104.208.116.225	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/2/2026 04:12:17 AM	Evil 404 /wp-includes/Requests/src/Response/about.php
73181	104.28.203.60	Go-http-client/1.1	3/2/2026 01:43:52 AM	Evil 404 /wp-content/style.php
73180	43.228.157.37	ALittle Client	3/2/2026 01:10:51 AM	Evil 404 /admin/jquery-file-upload/server/php/index.php?fil
73179	147.185.133.161	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	3/2/2026 12:33:17 AM	Tried to access http ip directly.
73178	20.221.72.115	Mozilla/5.0 zgrab/0.x	3/1/2026 11:52:48 PM	User Agent Mozilla/5.0 zgrab/0.x
73177	216.180.246.174	Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)	3/1/2026 09:55:34 PM	Tried to access http ip directly.
73176	85.217.149.16	Mozilla/5.0 (compatible; ModatScanner/1.2; +https://modat.io/)	3/1/2026 08:15:59 PM	Tried to access http ip directly.
73175	34.31.125.187	Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:135.0) Gecko/20100101 Firefox/144.0	3/1/2026 08:03:02 PM	Evil 404 .env (AWS vulnerability)
73174	124.223.225.25	libredtail-http	3/1/2026 07:50:53 PM	Tried to access http ip directly.
73173	134.209.235.25	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0	3/1/2026 07:40:27 PM	Tried to access http ip directly.
73172	20.104.97.185	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/1/2026 07:04:53 PM	Evil 404 /wp-content/uploads/index.php
73171	18.218.78.79	Go-http-client/1.1	3/1/2026 05:26:43 PM	Tried to access http ip directly.
73170	176.65.149.233	Mozilla/1.0	3/1/2026 03:55:58 PM	Tried to access http ip directly.
73169	4.193.97.168	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/1/2026 03:53:02 PM	Evil 404 /wp-includes/
73168	216.180.246.66	Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)	3/1/2026 02:45:28 PM	Tried to access http ip directly.
73167	77.37.92.171	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36	3/1/2026 12:58:07 PM	Evil 404 .env (AWS vulnerability)
73166	77.37.92.171	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36	3/1/2026 12:58:07 PM	Evil 404 .env (AWS vulnerability)
73165	139.59.255.45	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36	3/1/2026 12:53:39 PM	Evil 404 /wp-includes/ID3/license.txt
73164	20.151.11.87	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/1/2026 12:01:26 PM	Evil 404 /cgi-bin/
73163	54.145.158.145	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	3/1/2026 11:00:31 AM	Tried to access http ip directly.
73162	43.162.97.123	libredtail-http	3/1/2026 10:20:01 AM	Tried to access http ip directly.
73161	62.60.131.73	python-requests/2.32.4	3/1/2026 09:45:25 AM	Tried to access http ip directly.
73160	153.92.11.95	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36	3/1/2026 07:54:25 AM	Evil 404 .env (AWS vulnerability)
73159	89.117.27.125	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36	3/1/2026 07:38:46 AM	Evil 404 .env (AWS vulnerability)
73158	54.160.105.34	Go-http-client/1.1	3/1/2026 07:37:24 AM	Tried to access http ip directly.
73157	34.60.218.115	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36	3/1/2026 07:22:48 AM	Evil 404 /wp-includes/wlwmanifest.xml
73156	34.22.170.248	python-requests/2.32.5	3/1/2026 06:55:30 AM	Tried to access http ip directly.
73155	89.117.51.126	libredtail-http	3/1/2026 06:34:55 AM	Tried to access http ip directly.
73154	84.247.187.159	Go-http-client/1.1	3/1/2026 05:42:23 AM	Tried to access http ip directly.
73153	216.180.246.49	Mozilla/5.0 (compatible; GenomeCrawlerd/1.0; +https://www.nokia.com/genomecrawler)	3/1/2026 04:31:07 AM	Tried to access http ip directly.
73152	206.189.57.26	Go-http-client/1.1	3/1/2026 04:18:41 AM	Evil 404 /cgi-bin/authLogin.cgi
73151	207.154.196.114	Mozilla/5.0	3/1/2026 04:06:45 AM	Evil 404 /wp-login.php
73150	104.248.91.29	Mozilla/5.0	3/1/2026 03:04:58 AM	Evil 404 /wp-login.php
73149	104.248.33.41	Mozilla/5.0	3/1/2026 02:47:14 AM	Evil 404 /wp-login.php
73148	20.214.137.177	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	3/1/2026 02:26:46 AM	Evil 404 /wp-includes/
73147	82.24.64.32	libredtail-http	3/1/2026 12:20:33 AM	Tried to access http ip directly.
73146	20.64.104.235	Mozilla/5.0 zgrab/0.x	2/28/2026 11:17:03 PM	Tried to access http ip directly.
73145	139.59.93.244	Mozilla/5.0	2/28/2026 11:07:58 PM	Evil 404 /wp-login.php
73144	136.144.33.43	Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/117.0	2/28/2026 10:57:57 PM	Evil 404 /wp-login.php
73143	45.156.129.108	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0	2/28/2026 10:34:32 PM	Tried to access http ip directly.
73142	45.156.129.106	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0	2/28/2026 10:33:48 PM	Evil 404 /cgi-bin/authLogin.cgi
73141	45.156.129.105	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.6312.86 Safari/537.36 BitSightBot/1.0	2/28/2026 10:33:11 PM	Tried to access http ip directly.
73140	167.71.234.55	Mozilla/5.0	2/28/2026 10:28:31 PM	Evil 404 /wp-login.php
73139	165.232.83.109	Mozilla/5.0	2/28/2026 09:55:41 PM	Evil 404 /wp-login.php
73138	80.94.92.123	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36	2/28/2026 08:54:06 PM	Evil 404 .env (AWS vulnerability)
73137	20.205.226.191	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	2/28/2026 08:38:49 PM	Evil 404 /wp-admin/css/bolt.php
73136	89.248.168.239	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36	2/28/2026 08:24:54 PM	Evil 404 .env (AWS vulnerability)
73135	87.236.176.108	Mozilla/5.0 (compatible; InternetMeasurement/1.0; +https://internet-measurement.com/)	2/28/2026 07:50:54 PM	Tried to access http ip directly.
73134	142.93.167.243	Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36	2/28/2026 06:40:20 PM	Tried to access http ip directly.
73133	162.216.149.172	Hello from Palo Alto Networks, find out more about our scans in https://docs-cortex.paloaltonetworks.com/r/1/Cortex-Xpanse/Scanning-activity	2/28/2026 06:05:27 PM	Tried to access http ip directly.
73132	178.16.128.177	Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36	2/28/2026 05:23:17 PM	Evil 404 .env (AWS vulnerability)
73131	45.131.195.241	Go-http-client/1.1	2/28/2026 05:06:38 PM	Evil 404 /wp-includes/css/buttons.css
73130	176.65.149.234	Mozilla/1.0	2/28/2026 05:04:38 PM	Tried to access http ip directly.
73129	20.239.137.159	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	2/28/2026 04:59:57 PM	Evil 404 /wp-admin/css/bolt.php
73128	52.231.70.237	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	2/28/2026 04:52:42 PM	Evil 404 /wp-admin/css/bolt.php
73127	35.241.216.72	python-requests/2.32.5	2/28/2026 03:51:49 PM	Tried to access http ip directly.
73126	20.53.243.118	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	2/28/2026 03:22:35 PM	Evil 404 /wp-includes/Requests/src/Response/about.php
73125	138.2.0.137	libredtail-http	2/28/2026 02:45:42 PM	Tried to access http ip directly.
73124	8.209.91.228	curl/7.64.1	2/28/2026 12:10:43 PM	Tried to access http ip directly.
73123	45.142.154.112	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36	2/28/2026 11:52:46 AM	Tried to access http ip directly.
73122	119.163.47.128	Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36	2/28/2026 11:52:02 AM	Tried to access http ip directly.
73121	18.206.155.169	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36	2/28/2026 10:57:43 AM	Tried to access http ip directly.
73120	20.104.96.199	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36	2/28/2026 10:50:01 AM	Evil 404 /wp-includes/Text/Diff/Renderer/
73119	107.21.52.176	Go-http-client/1.1	2/28/2026 10:18:33 AM	Tried to access http ip directly.
73118	91.230.225.106	Go-http-client/1.1	2/28/2026 09:08:38 AM	Evil 404 /wp-content/txets.php
73117	161.35.21.188	Go-http-client/1.1	2/28/2026 07:51:06 AM	Evil 404 /solr/admin/info/system
73116	152.42.181.232	Shodan-Pull/1.0	2/28/2026 06:15:29 AM	Tried to access http ip directly.
73115	52.180.144.125	Mozilla/5.0 zgrab/0.x	2/28/2026 06:15:23 AM	User Agent Mozilla/5.0 zgrab/0.x
73114	152.42.217.251	Shodan-Pull/1.0	2/28/2026 03:56:49 AM	Tried to access http ip directly.