abuseip.org
- Reason
- suspicious paths across 12 domains
- Hits (last hour)
- 66
- Unique targets hit
- 12
- Unique paths probed
- 155
- Detection count
- 12
- First seen
- 2026-05-05 02:14:33 UTC
- Last seen
- 2026-05-05 02:48:28 UTC
- Block expires
- 2026-05-06 03:18:31 UTC
Sample paths probed
- /wp-content/plugins/pwnd/pwnd.php
- /wp-includes/xy.php
- /wp-includes/ID3/img/content/media/lnl/
- /inputs.php
- /wp-includes/blocks/post-excerpt-meta.php
- /wp-includes/ID3/module.audio-video.riff-http.php
- /vendor/stripe/stripe-php/lib/Service/FinancialConnections/
- /wp-includes/js/tinymce/plugins/panel.php
- /wp-content/plugins/enhanced-text-widget/analyst/src/403.php
- /wp-includes/system.php
- /wp-includes/bootstrap.php
- /wp-includes/blocks/gallery/
- /vendor/stripe/stripe-php/lib/FinancialConnections/
- /wp-content/users.php
- /wp-admin/css/colors/blue/nbpmo.php
- /wp-admin/block/img/themes/
- /adminfuns.php
- /wp-admin/uploads/system.php
- /wp-includes/theme-compat/footer-class.php
- /admin.php
Sample User-Agents
- Go-http-client/1.1
What does this mean?
This address sent traffic that the redirs.com edge classified as automated abuse โ typically WordPress/PHP exploit scanning, credential file probing (.env, .git, .aws/), or mass-domain enumeration. The block is automatic and time-limited (24 hours from last detection).
If you believe this is a false positive, contact [email protected] with the IP and the timestamps above.