JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.124.202.54

185.124.202.54 was found in our database!

This IP was reported 99 times. Confidence of Abuse is 0%: ?

ISP	SAS KALANDA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS61047
Hostname(s)	ks18512420254.kalanda.net
Domain Name	kalanda.net
Country	🇫🇷 France
City	Marseille, Provence-Alpes-Cote d'Azur

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.124.202.54

Whois 185.124.202.54

IP Abuse Reports for 185.124.202.54:

This IP address has been reported a total of 99 times from 50 distinct sources. 185.124.202.54 was first reported on March 3rd 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 Burayot	2026-03-10 02:18:12 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 185.124.202.54 (FR/France/ks18512420 ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 185.124.202.54 (FR/France/ks18512420254.kalanda.net): 2 in the last 3600 secs show less	Web App Attack
🇮🇪 Jim Keir	2026-03-09 22:43:11 (3 months ago)	2026-03-09 22:43:10 185.124.202.54 File scanning, blocking 185.124.202.54 for 5 minutes	Web App Attack
🇩🇪 www.Examensfragen.de	2026-03-09 22:14:05 (3 months ago)		Web Spam Bad Web Bot
Anonymous	2026-03-09 15:54:20 (3 months ago)	HTTPS vulnerability scan attempt detected. Port 443.	Hacking SQL Injection Web App Attack
🇧🇪 cmbplf	2026-03-09 13:32:39 (3 months ago)	1.150 requests with url.path *.env	Brute-Force Bad Web Bot
🇨🇭 lufi	2026-03-09 10:43:26 (3 months ago)	2026-03-09 11:43:25 185.124.202.54: blacklistedPath: /.env ...	Web Spam Brute-Force Hacking Web App Attack
🇵🇱 mkey	2026-03-09 09:27:34 (3 months ago)	[2026-03-09 07:17:46] Bad req: GET /.env	Web App Attack Hacking
🇺🇸 nationaleventpros.com	2026-03-09 08:43:35 (3 months ago)	vulnerability scan	Web App Attack
🇺🇦 URAN Publishing Service	2026-03-09 07:26:52 (3 months ago)	185.124.202.54 - - [09/Mar/2026:09:26:51 +0200] "GET /.env HTTP/1.1" 404 330 "-" "Mozilla/5.0 (Linux ... show more 185.124.202.54 - - [09/Mar/2026:09:26:51 +0200] "GET /.env HTTP/1.1" 404 330 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" ... show less	Web App Attack
🇺🇸 gu-alvareza	2026-03-09 07:05:53 (3 months ago)	AndroxGh0st.Malware	Hacking Exploited Host
🇧🇪 voormedia	2026-03-09 07:01:36 (3 months ago)	Accessed trap at '/.env'	Web App Attack
Anonymous	2026-03-09 06:32:52 (3 months ago)	PAD: ModSec_Critical detected	Hacking
Anonymous	2026-03-09 06:28:07 (3 months ago)	Scraping for .env file	Web App Attack
🇮🇩 securejdprop	2026-03-09 02:36:13 (3 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/vpatch-env-access. WAF block: crowdsecurit ... show more This IP was detected by CrowdSec triggering crowdsecurity/vpatch-env-access. WAF block: crowdsecurity/vpatch-env-access from 185.124.202.54 (172.18.0.4) show less	Hacking Web App Attack
🇩🇪 london2038.com	2026-03-09 01:20:48 (3 months ago)	Probing for exploits 185.124.202.54 - - [09/Mar/2026:02:20:41 +0100] "GET /.env HTTP/1.1" 422 0 "-" ... show more Probing for exploits 185.124.202.54 - - [09/Mar/2026:02:20:41 +0100] "GET /.env HTTP/1.1" 422 0 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" 185.124.202.54 - - [09/Mar/2026:02:20:41 +0100] "GET /.env HTTP/1.1" 422 0 "-" "Mozilla/5.0 (Linux; U; Android 4.4.2; en-US; HM NOTE 1W Build/KOT49H) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 UCBrowser/11.0.5.850 U3/0.8.0 Mobile Safari/534.30" show less	Hacking Web App Attack

Showing 1 to 15 of 99 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.203.203.232

🇨🇳 115.190.126.161

🇪🇬 41.33.214.13

🇺🇸 2607:f8b0:4001:c58::12b

🇩🇪 213.209.159.108

🇸🇬 172.253.236.218

🇿🇦 160.119.253.30

🇮🇳 152.56.134.140

🇩🇪 69.5.169.120

🇬🇧 2a06:4880:c000::eb

🇨🇦 2001:1810:4201:175:0:4:4531:7048

🇧🇷 201.2.140.186

🇺🇾 179.27.99.9

🇫🇷 173.212.228.15

🇧🇷 172.217.35.23

🇺🇸 166.62.85.184

🇳🇬 102.90.97.222

🇧🇪 35.205.140.253

🇺🇸 200.0.60.198

🇲🇦 196.65.167.239