abuseip.org
- Reason
- suspicious paths across 1 domains
- Hits (last hour)
- 22
- Unique targets hit
- 1
- Unique paths probed
- 131
- Detection count
- 9
- First seen
- 2026-07-14 17:32:26 UTC
- Last seen
- 2026-07-14 18:03:51 UTC
- Block expires
- 2026-07-15 18:32:08 UTC
Sample paths probed
- /s3.key
- /%2f%2eaws%2fcredentials
- /app/next.config.mjs
- /api/core/.env
- /administrator/.env
- /application-prod.properties
- /$(pwd)/.terraform/terraform.tfstate
- /opt/app/.env
- /admin/.env.bak
- /administrator/config/.env
- /settings_production.py
- /2021/.env
- /app/etc/config.php
- /2022/.env
- /client/.env
- /admin/config/.env
- /$(pwd)/*.auto.tfvars
- /admin/.env
- /api/config/.env
- /serverless.yaml
Sample User-Agents
- curl/8.7.1
What does this mean?
This address sent traffic that the redirs.com edge classified as automated abuse โ typically WordPress/PHP exploit scanning, credential file probing (.env, .git, .aws/), or mass-domain enumeration. The block is automatic and time-limited (24 hours from last detection).
If you believe this is a false positive, contact [email protected] with the IP and the timestamps above.