abuseip.org

IP 117.99.254.135 is currently blocked by the redirs.com anycast edge.

Reason: scanning 33 domains
Hits (last hour): 33
Unique targets hit: 43
Unique paths probed: 1
Detection count: 11
First seen: 2026-05-05 06:53:47 UTC
Last seen: 2026-05-05 07:02:34 UTC
Block expires: 2026-05-06 07:54:06 UTC

Sample paths probed

/xmlrpc.php

Sample User-Agents

Jetpack/13.0; WordPress/6.3; http://site42315490.com
WordPress.com; https://wordpress.com
Jetpack/12.0; WordPress/6.4; http://site85152548.com
Jetpack/12.1; WordPress/6.4; http://site58865742.com
Jetpack/12.5; WordPress/6.4; http://site95132727.com
Jetpack/12.5; WordPress/6.1; http://site33270532.com
Jetpack/12.1; WordPress/6.2; http://site11821501.com
Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.1)
Jetpack/12.1; WordPress/6.2; http://site35748031.com
Jetpack by WordPress.com
Jetpack/12.1; WordPress/6.2; http://site48460483.com
Jetpack/12.0; WordPress/6.3; http://site49578680.com
Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.2)
Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.2)
Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)
Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.2)
Jetpack/13.0; WordPress/6.3; http://site45945090.com
Jetpack/13.0; WordPress/6.3; http://site50371120.com
Jetpack/13.0; WordPress/6.3; http://site98108859.com
Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)

What does this mean?

This address sent traffic that the redirs.com edge classified as automated abuse — typically WordPress/PHP exploit scanning, credential file probing (.env, .git, .aws/), or mass-domain enumeration. The block is automatic and time-limited (24 hours from last detection).

If you believe this is a false positive, contact [email protected] with the IP and the timestamps above.