Web Deny Report

# Log of denied requests from spiders, clouds, hosters, actors & AI.
#
# ABSOLUTELY NO WARRANTY WITH THIS PACKAGE. USE IT AT YOUR OWN RISK.
# 
# How it started:
# I only wanted humans or google/bing search accessing my webservers
# as only humans purchased my products and services so I developed:
#
# URL:
# https://lightaffaire.com/code/security/web-deny-access-apache
# https://lightaffaire.com/code/security/web-deny-access-nginx
# https://lightaffaire.com/code/security/web-deny-access-iptables
# https://lightaffaire.com/code/security/403-deny.html
# https://lightaffaire.com/code
#
# How it's going:
# I wanted to know which bad IPs belonged to which good/bad ASNs and
# this is the result of that itch. Makes very interesting reading...
#
# generated by web-deny-report                 code@lightaffaire.com
# generated on 2024-08-22 15:53:50
#
2024-08-22 15:16:07  57.152.56.248    AS8075 Azure Cloud       GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1  404  zgrab/0.x
2024-08-22 12:34:00  178.72.192.22    AS41046 O2 Czech Rep...  GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-22 12:33:59  178.72.192.22    AS41046 O2 Czech Rep...  GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-22 11:37:23  216.130.237.97   AS15320 FirstLight F...  GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-22 11:37:22  216.130.237.97   AS15320 FirstLight F...  GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-22 11:14:54  4.227.175.96     AS8075 Azure Cloud       GET /codexff HTTP/1.1  404  (Mac; Intel Mac OS X 10_15_7) AppleWebKit/537.36 Chrome/127.0.0.0 Safari/537.36
2024-08-22 09:49:38  212.95.49.158    AS28753 Leaseweb Deu...  GET /REDACTED_EXCHANGE_VECTOR_2?replaceCurrent=1&url=https://owa.lightaffaire.com/owa/ HTTP/1.1  404  (Win NT 10.0; WOW64; Trident/7.0) like Gecko
2024-08-22 09:49:38  212.95.49.158    AS28753 Leaseweb Deu...  GET /REDACTED_EXCHANGE_VECTOR_2?replaceCurrent=1&url=http://owa.lightaffaire.com/owa/ HTTP/1.1  404  (Win NT 10.0; WOW64; Trident/7.0) like Gecko
2024-08-22 09:49:37  212.95.49.158    AS28753 Leaseweb Deu...  GET /REDACTED_EXCHANGE_VECTOR_2?replaceCurrent=1&url=https://owa.lightaffaire.com/owa/ HTTP/1.1  404  (Win NT 10.0; WOW64; Trident/7.0) like Gecko
2024-08-22 09:49:37  212.95.49.158    AS28753 Leaseweb Deu...  GET /REDACTED_EXCHANGE_VECTOR_2?replaceCurrent=1&url=http://owa.lightaffaire.com/owa/ HTTP/1.1  404  (Win NT 10.0; WOW64; Trident/7.0) like Gecko
2024-08-22 09:49:37  212.95.49.158    AS28753 Leaseweb Deu...  GET /REDACTED_EXCHANGE_VECTOR_2?replaceCurrent=1&url=http://mail.lightaffaire.com/owa/ HTTP/1.1  404  (Win NT 10.0; WOW64; Trident/7.0) like Gecko
2024-08-22 06:31:28  103.70.176.49    AS133647 ELXIRE DATA...  GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-22 06:31:27  103.70.176.49    AS133647 ELXIRE DATA...  GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-21 23:05:57  77.237.238.107   AS51167 Contabo          GET /public/index.php?s=/index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1  404  Custom-AsyncHttpClient
2024-08-21 23:05:57  77.237.238.107   AS51167 Contabo          GET /index.php?lang=../../../../../../../../usr/local/lib/php/pearcmd&+config-create+/&/+/tmp/index1.php HTTP/1.1  404  Custom-AsyncHttpClient
2024-08-21 23:05:57  77.237.238.107   AS51167 Contabo          GET /index.php?lang=../../../../../../../../tmp/index1 HTTP/1.1  404  Custom-AsyncHttpClient
2024-08-21 23:05:56  77.237.238.107   AS51167 Contabo          GET /REDACTED_PHP_VECTOR_1 HTTP/1.1  404  Custom-AsyncHttpClient
2024-08-21 23:05:56  77.237.238.107   AS51167 Contabo          GET /index.php?s=/index/\think\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=Hello HTTP/1.1  404  Custom-AsyncHttpClient
2024-08-21 23:05:55  77.237.238.107   AS51167 Contabo          GET /REDACTED_PHP_VECTOR_1 HTTP/1.1  404  Custom-AsyncHttpClient
2024-08-21 23:05:54  77.237.238.107   AS51167 Contabo          GET /REDACTED_PHP_VECTOR_1 HTTP/1.1  404  Custom-AsyncHttpClient
2024-08-21 23:05:53  77.237.238.107   AS51167 Contabo          GET /REDACTED_PHP_VECTOR_1 HTTP/1.1  404  Custom-AsyncHttpClient
2024-08-21 23:05:52  77.237.238.107   AS51167 Contabo          GET /vendor/phpunit/phpunit/LICENSE/eval-stdin.php HTTP/1.1  404  Custom-AsyncHttpClient
2024-08-21 23:05:52  77.237.238.107   AS51167 Contabo          GET /REDACTED_PHP_VECTOR_1 HTTP/1.1  404  Custom-AsyncHttpClient
2024-08-21 23:05:51  77.237.238.107   AS51167 Contabo          POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1  404  Custom-AsyncHttpClient
2024-08-21 23:05:51  77.237.238.107   AS51167 Contabo          GET /REDACTED_PHP_VECTOR_1 HTTP/1.1  404  Custom-AsyncHttpClient
2024-08-21 07:29:05  66.249.81.200    AS15169 Google Cloud     GET /.well-known/traffic-advice HTTP/1.1  404  Chrome Privacy Preserving Prefetch Proxy
2024-08-21 04:26:31  20.185.185.215   AS8075 Azure Cloud       GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-21 04:26:30  20.185.185.215   AS8075 Azure Cloud       GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-20 20:49:06  51.140.76.4      AS8075 Azure Cloud       GET /RDWeb/webclient/ HTTP/1.1  404  python-requests/2.32.3
2024-08-20 20:48:49  51.140.76.4      AS8075 Azure Cloud       GET /RDWeb/Pages/ HTTP/1.1  404  python-requests/2.32.3
2024-08-20 16:44:45  172.169.191.223  AS8075 Azure Cloud       GET /version HTTP/1.1  404  zgrab/0.x
2024-08-20 16:34:21  91.134.140.160   AS16276 OVH-SAS          GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-20 16:34:12  91.134.140.160   AS16276 OVH-SAS          GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-20 13:45:55  52.160.33.137    AS8075 Azure Cloud       GET /REDACTED_EXCHANGE_VECTOR_5 HTTP/1.1  404  zgrab/0.x
2024-08-20 12:53:47  172.168.41.29    AS8075 Azure Cloud       GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1  404  zgrab/0.x
2024-08-20 08:57:31  45.10.151.10     AS212953 MRS Bilisim...  GET /wp-login.php HTTP/1.1  404  http://REDACTED/wp-login.php (X11; Fedora; Linux x86_64) Gecko/20100101 Firefox/95.0
2024-08-20 08:02:16  154.205.130.160  AS138915 Kaopu Cloud...  GET /wp-content/plugins/wp-catcher/index.php HTTP/1.1  404  www.google.com (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36
2024-08-20 06:22:09  206.62.50.162    AS49020 Elie Achkar ...  GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-20 06:22:08  206.62.50.162    AS49020 Elie Achkar ...  GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-20 06:02:52  213.199.55.152   AS51167 Contabo          GET /.env HTTP/1.1  404  python-requests/2.32.3
2024-08-20 02:20:48  172.169.2.103    AS8075 Azure Cloud       GET /REDACTED_FRAMEWORK_1 HTTP/1.1  404  zgrab/0.x
2024-08-19 22:37:10  20.171.206.40    AS8075 Azure Cloud       GET /contact HTTP/1.1  404  AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)
2024-08-19 17:15:58  20.171.206.196   AS8075 Azure Cloud       GET /contact HTTP/1.1  404  AppleWebKit/537.36 (KHTML, like Gecko; compatible; GPTBot/1.2; +https://openai.com/gptbot)
2024-08-19 16:31:41  41.211.125.80    AS36955 Matrix Telec...  GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-19 16:31:39  41.211.125.80    AS36955 Matrix Telec...  GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-19 16:26:24  139.199.202.136  AS45090 Tencent Cloud    GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-19 16:26:18  139.199.202.136  AS45090 Tencent Cloud    GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-19 11:18:25  221.200.208.104  AS4837 China Unicom      GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-19 11:18:23  221.200.208.104  AS4837 China Unicom      GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-19 09:36:12  20.82.147.246    AS8075 Azure Cloud       GET /.well-known/security.txt HTTP/1.1  404  (X11; Linux aarch64) Gecko/20100101 Firefox/115.0
2024-08-19 07:35:58  110.44.124.239   AS45650 Vianet Commu...  GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-19 07:35:56  110.44.124.239   AS45650 Vianet Commu...  GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-19 06:26:28  165.232.180.113  AS14061 DigitalOcean     GET /teorema505?t=1 HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/108.0.0.0 Safari/537.36
2024-08-19 06:26:25  165.232.180.113  AS14061 DigitalOcean     GET /t4 HTTP/1.1  404  
2024-08-19 06:26:19  165.232.180.113  AS14061 DigitalOcean     GET /alive.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/108.0.0.0 Safari/537.36
2024-08-19 06:26:19  165.232.180.113  AS14061 DigitalOcean     GET /ab2h HTTP/1.1  404  zgrab/0.x
2024-08-19 06:26:18  165.232.180.113  AS14061 DigitalOcean     GET /ab2g HTTP/1.1  404  zgrab/0.x
2024-08-19 05:11:57  51.195.91.135    AS16276 OVH-SAS          GET /wp-admin/install.php HTTP/1.1  404  (X11; Linux x86_64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-19 05:11:57  51.195.91.135    AS16276 OVH-SAS          GET /feed/ HTTP/1.1  404  (Mac; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 Version/17.4.1 Safari/605.6.21
2024-08-19 01:50:28  45.77.192.42     AS20473 The Constant...  HEAD /new HTTP/1.1  404 http://REDACTED/new (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/74.0.3729.169 Safari/537.36
2024-08-19 01:50:28  45.77.192.42     AS20473 The Constant...  HEAD /main HTTP/1.1  404 http://REDACTED/main (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/74.0.3729.169 Safari/537.36
2024-08-19 01:50:28  45.77.192.42     AS20473 The Constant...  HEAD /home HTTP/1.1  404 http://REDACTED/home (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/74.0.3729.169 Safari/537.36
2024-08-19 01:50:27  45.77.192.42     AS20473 The Constant...  HEAD /old HTTP/1.1  404 http://REDACTED/old (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/74.0.3729.169 Safari/537.36
2024-08-19 01:50:27  45.77.192.42     AS20473 The Constant...  HEAD /bk HTTP/1.1  404 http://REDACTED/bk (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/74.0.3729.169 Safari/537.36
2024-08-19 01:50:27  45.77.192.42     AS20473 The Constant...  HEAD /backup HTTP/1.1  404 http://REDACTED/backup (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/74.0.3729.169 Safari/537.36
2024-08-19 01:50:26  45.77.192.42     AS20473 The Constant...  HEAD /wp HTTP/1.1  404 http://REDACTED/wp (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/74.0.3729.169 Safari/537.36
2024-08-19 01:50:26  45.77.192.42     AS20473 The Constant...  HEAD /bc HTTP/1.1  404 http://REDACTED/bc (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/74.0.3729.169 Safari/537.36
2024-08-19 01:50:25  45.77.192.42     AS20473 The Constant...  HEAD /wordpress HTTP/1.1  404 http://REDACTED/wordpress (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/74.0.3729.169 Safari/537.36
2024-08-19 00:29:30  52.160.33.173    AS8075 Azure Cloud       GET /REDACTED_EXCHANGE_VECTOR_5 HTTP/1.1  404  zgrab/0.x
2024-08-18 18:13:27  27.147.172.165   AS23688 Link3 Techno...  GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-18 18:13:25  27.147.172.165   AS23688 Link3 Techno...  GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-18 12:43:28  77.85.171.188    AS207371 GEC BG          GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-18 12:43:27  77.85.171.188    AS207371 GEC BG          GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-18 10:27:36  172.206.142.147  AS8075 Azure Cloud       GET /autodiscover/autodiscover.json?@zdi/Powershell HTTP/1.1  404  zgrab/0.x
2024-08-18 05:35:06  66.70.181.5      AS16276 OVH-SAS          GET /wp-includes/js/quicktags.js HTTP/1.1  404  (Win NT 6.1) Gecko/20100101 Firefox/32.0
2024-08-18 05:35:05  66.70.181.5      AS16276 OVH-SAS          GET /wp-includes/js/quicktags.js HTTP/1.1  404  (Win NT 6.1) Gecko/20100101 Firefox/32.0
2024-08-18 04:04:28  89.216.105.154   AS31042 Serbia Broad...  GET /en/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
2024-08-18 04:04:27  89.216.105.154   AS31042 Serbia Broad...  GET /de/contact.php HTTP/1.1  404  (Win NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/120.0.0.0 Safari/537.36
#
# 78/2500 lines. Check back for updates!