abuseip.org
- Reason
- suspicious paths across 1 domains
- Hits (last hour)
- 56
- Unique targets hit
- 1
- Unique paths probed
- 648
- Detection count
- 9
- First seen
- 2026-05-25 23:33:54 UTC
- Last seen
- 2026-05-26 00:03:19 UTC
- Block expires
- 2026-05-27 00:34:24 UTC
Sample paths probed
- /$(pwd)/serverless%2eyml
- /sendgrid/%2eenv%2ejpg
- /core/private/login%2eenv
- /backend-api/%2eenv
- /app/%2eenv%2eproduction
- /test/bdd/fixtures/adapter-rest/%2eenv
- /angular-app/%2eenv
- /db%2emysql%2exz
- /payment-app/server/%2eenv
- /admin/env/env%2eenv
- /product/%2egit/config
- /server/api/%2egit/config
- /nestjs-app/src/%2eenv
- /%2ejenkins/hudson%2etasks%2eViolin%2exml
- /sHaReD/%2eeNv
- /fileweb/%2eenv
- /server/api/%2eenv
- /wp-admin/options-reading%2ephp
- /core/sql/settings%2ephp
- /square/settings%2ejson
Sample User-Agents
- curl/8.7.1
What does this mean?
This address sent traffic that the redirs.com edge classified as automated abuse โ typically WordPress/PHP exploit scanning, credential file probing (.env, .git, .aws/), or mass-domain enumeration. The block is automatic and time-limited (24 hours from last detection).
If you believe this is a false positive, contact [email protected] with the IP and the timestamps above.