JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.248.24.133

185.248.24.133 was found in our database!

This IP was reported 62 times. Confidence of Abuse is 100%: ?

100%

ISP	MEVSPACE sp. z o.o.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS201814
Domain Name	mevspace.com
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.248.24.133

Whois 185.248.24.133

IP Abuse Reports for 185.248.24.133:

This IP address has been reported a total of 62 times from 43 distinct sources. 185.248.24.133 was first reported on February 20th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 gu-alvareza	2026-06-15 07:05:08 (1 week ago)	HTTP.URI.SQL.Injection	SQL Injection Web App Attack
🇺🇸 fortypoundhead	2026-06-14 22:51:56 (1 week ago)	Banned IP Address	Hacking Web App Attack
Anonymous	2026-06-14 22:26:43 (1 week ago)	Automated report (2026-06-14T18:26:43-04:00). Hack attempt detected.	Hacking
🇫🇮 tjs	2026-06-14 22:20:00 (1 week ago)	web attack, SQL injection attempt	Hacking SQL Injection Web App Attack
Anonymous	2026-06-14 21:52:39 (1 week ago)	Automated report (2026-06-14T17:52:39-04:00). Nesting attack detected.	Hacking
🇧🇪 cmbplf	2026-06-14 20:03:59 (1 week ago)	3.350 requests from abuseipdb.com blacklisted IP (11mos1w3d)	Brute-Force Bad Web Bot
Anonymous	2026-06-14 17:55:50 (1 week ago)		Web App Attack
🇩🇪 raph	2026-06-14 15:05:54 (1 week ago)	[SQL INJECTION] f2b match %{+Q}r for ^.haproxy\[[0-9]+\]: <HOST>:. (GET \|POST ).\?.(%20AND%20\|%2 ... show more [SQL INJECTION] f2b match %{+Q}r for ^.haproxy\[[0-9]+\]: <HOST>:. (GET \|POST ).\?.(%20AND%20\|%20and%20\|%20OR%20\|%20or%20).* HTTP/1.1$ show less	SQL Injection
🇺🇸 nyt	2026-06-14 14:49:42 (1 week ago)	SQL Injection, Web App Attack, suspicious: SQLi (quote probe)	SQL Injection Web App Attack
🇯🇵 HeliJP	2026-06-14 14:45:04 (1 week ago)	2026-06-14T14:22:48Z - Recognized attacks\bad behavior from IP address 185.248.24.133 on port 443\80 ... show more 2026-06-14T14:22:48Z - Recognized attacks\bad behavior from IP address 185.248.24.133 on port 443\80 (9 daily hits): SQL Injection Attack: Common Injection Testing Detected, Missing User Agent Header, SQL Injection Attack Detected via libinjection, SQL Injection Attack: SQL Tautology Detected, SQL Injection Attack show less	Hacking SQL Injection
🇳🇱 enpepet	2026-06-14 14:41:51 (1 week ago)	GENERAL: parametres: [url:%20OR%20=] UA: URL:/en/component/content/category/9-rutes.html?Itemid=%27n ... show more GENERAL: parametres: [url:%20OR%20=] UA: URL:/en/component/content/category/9-rutes.html?Itemid=%27nvOpzp;%20AND%201=1%20OR%20(%3C%27%22%3EiKO)),&language=%27nvOpzp;%20AND%201=1%20OR%20(%3C%27%22%3EiKO)), show less	Port Scan Hacking Brute-Force Bad Web Bot
🇬🇧 CDN	2026-06-14 14:22:21 (1 week ago)	SQL Injection	Port Scan
Anonymous	2026-06-14 13:06:50 (1 week ago)	Automated report (2026-06-14T09:06:50-04:00). Hack attempt detected.	Hacking
🇺🇸 TPI-Abuse	2026-06-14 07:41:23 (1 week ago)	(mod_security) mod_security (id:211540) triggered by 185.248.24.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:211540) triggered by 185.248.24.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 03:41:18.699809 2026] [security2:error] [pid 25942:tid 25942] [client 185.248.24.133:54666] ModSecurity: Access denied with code 403 (phase 2). Match of "contains /wp-json/yoast/" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/22_SQL_SQLi.conf"] [line "17"] [id "211540"] [rev "14"] [msg "COMODO WAF: Blind SQL Injection Attack\|\|ahuramazda.com\|F\|2"] [data "Matched Data: WAITFOR DELAY found within REQUEST_URI: /gcards/index.php?catSearch=&catsearch=%27+WAITFOR+DELAY+%270%3A0%3A2%27--+&limit="] [severity "CRITICAL"] [tag "CWAF"] [tag "SQLi"] [hostname "ahuramazda.com"] [uri "/gcards/index.php"] [unique_id "ai5bHjLY1DUwoaqjLB3LJQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 KIDOS	2026-06-14 07:15:37 (1 week ago)	IIS malicious activity: sql_injection_attempt	Web App Attack

Showing 1 to 15 of 62 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 117.69.235.152

🇳🇱 4.180.183.241

🇺🇸 195.184.76.136

🇩🇪 194.88.98.122

🇲🇽 187.174.238.116

🇩🇪 185.242.3.195

🇸🇬 174.138.16.214

🇯🇵 156.227.232.198

🇸🇬 118.139.164.171

🇨🇳 101.68.6.200

🇨🇦 85.217.149.3

🇰🇷 54.180.143.185

🇳🇱 45.148.10.152

🇬🇧 45.82.76.110

🇬🇧 35.203.211.92

🇷🇺 31.173.31.66

🇺🇸 16.58.56.214

🇰🇷 3.39.251.93

🇳🇱 176.65.139.181

🇨🇳 124.88.113.212