This IP address has been reported a total of
41
times from
33 distinct
sources.
132.248.15.189 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
GET wp-json/gravitysmtp/v1/tests/mock-data | UA: Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:31.0) Geck ...
show moreGET wp-json/gravitysmtp/v1/tests/mock-data | UA: Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:31.0) Gecko/20100101 Firefox/31.0 | Time: 2026-07-12 15:43:38 UTC
show less
unauthorized rest api call [12/Jul/2026:15:12:04 "GET /wp-json/gravitysmtp/v1/tests/mock-data?page=g ...
show moreunauthorized rest api call [12/Jul/2026:15:12:04 "GET /wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings"]
show less
[SunJul1208:02:42.5501072026][security2:error][pid3499318:tid3499417][client132.248.15.189:0]ModSecu ...
show more[SunJul1208:02:42.5501072026][security2:error][pid3499318:tid3499417][client132.248.15.189:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"vg13.ch\"][uri\"/wp-json/gravitysmtp/v1/tests/mock-data\"][unique_id\"alMuAj_Mr8HYzN2nHrp0TgAAAMY\"]
show less
[SatJul1115:08:22.8278402026][security2:error][pid1660383:tid1660579][client132.248.15.189:0]ModSecu ...
show more[SatJul1115:08:22.8278402026][security2:error][pid1660383:tid1660579][client132.248.15.189:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"support-ticino.ch\"][uri\"/wp-json/gravitysmtp/v1/tests/mock-data\"][unique_id\"alJARqgyXdPE_2yUCTeMxgAAAIw\"]
show less
[FriJul1021:27:43.4017922026][security2:error][pid1691134:tid1691256][client132.248.15.189:0]ModSecu ...
show more[FriJul1021:27:43.4017922026][security2:error][pid1691134:tid1691256][client132.248.15.189:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"restaurantgandria.ch\"][uri\"/wp-json/gravitysmtp/v1/tests/mock-data\"][unique_id\"alFHr0Uulq87v2dYLkxrgAAAANY\"]
show less
Port Scan
Brute-Force
Web App Attack
Showing 1 to
15
of 41 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ