abuseip.org
- Reason
- scanning 12 domains
- Hits (last hour)
- 1,225
- Unique targets hit
- 24
- Unique paths probed
- 254
- Detection count
- 16
- First seen
- 2026-06-11 18:24:26 UTC
- Last seen
- 2026-06-11 20:01:02 UTC
- Block expires
- 2026-06-12 20:10:55 UTC
Sample paths probed
- //wp-p2r3q9c8k4.php
- //byypas.php
- //new.php
- //wp-blog-header.php
- //wp-kikikoko.php
- //hplfuns.php
- //wp-the.php
- //shell.php
- //bmi.php
- //wp-png.php
- //wp-content/radio.php
- //ioxi001.PhP7
- //jga.php
- //8.php
- //dass.php
- //ws48.php
- //wen.php
- //66.php
- //plugin-install.php
- //wp-admin/network/edit.php
Sample User-Agents
No User-Agent recorded (likely scripted, no UA header).
What does this mean?
This address sent traffic that the redirs.com edge classified as automated abuse โ typically WordPress/PHP exploit scanning, credential file probing (.env, .git, .aws/), or mass-domain enumeration. The block is automatic and time-limited (24 hours from last detection).
If you believe this is a false positive, contact [email protected] with the IP and the timestamps above.