JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.99.124.237

139.99.124.237 was found in our database!

This IP was reported 191 times. Confidence of Abuse is 54%: ?

54%

ISP	OVH Singapore PTE. LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	sg.hostbuddy.cloud
Domain Name	ovh.net
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.99.124.237

Whois 139.99.124.237

IP Abuse Reports for 139.99.124.237:

This IP address has been reported a total of 191 times from 74 distinct sources. 139.99.124.237 was first reported on January 29th 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇹 Malta	2026-06-20 17:55:55 (1 week ago)	139.99.124.237 - - [20/Jun/2026:19:55:55 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Lin ... show more 139.99.124.237 - - [20/Jun/2026:19:55:55 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇺🇸 mnsf	2026-06-20 00:06:19 (1 week ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 08:21:51 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 139.99.124.237 (sg.hostbuddy.cloud): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 139.99.124.237 (sg.hostbuddy.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 04:21:47.341556 2026] [security2:error] [pid 19958:tid 19958] [client 139.99.124.237:48880] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|caddydad.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "caddydad.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ajT8GxR11McKeC8bORdm_gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-17 08:58:14 (1 week ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 139.99.124.237 (SG/Singapore/sg.hostbuddy.clo ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 139.99.124.237 (SG/Singapore/sg.hostbuddy.cloud): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2026-06-17 05:08:30 (1 week ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 139.99.124.237 (SG/Singapore/sg.hostbuddy.clo ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 139.99.124.237 (SG/Singapore/sg.hostbuddy.cloud): 1 in the last 3600 secs (0-196) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-15 23:18:13 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 139.99.124.237 (sg.hostbuddy.cloud): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 139.99.124.237 (sg.hostbuddy.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 19:18:07.439686 2026] [security2:error] [pid 12780:tid 12780] [client 139.99.124.237:56108] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|susanleeward.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "susanleeward.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ajCIL_1EPZ3MLuQkvAb22wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 16:58:08 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 139.99.124.237 (sg.hostbuddy.cloud): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 139.99.124.237 (sg.hostbuddy.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 12:58:02.634223 2026] [security2:error] [pid 25488:tid 25488] [client 139.99.124.237:53676] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|drbolen.derekvantreese.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "drbolen.derekvantreese.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiw6mq6_17VCMW88-22tjQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇹 Malta	2026-06-04 11:39:25 (3 weeks ago)	139.99.124.237 - - [04/Jun/2026:13:39:25 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 139.99.124.237 - - [04/Jun/2026:13:39:25 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇫🇷 masterguru	2026-05-31 08:21:41 (3 weeks ago)	(modsec_5040) ModSec 5040: API Basic Auth blocked from 139.99.124.237 (SG/Singapore/sg.hostbuddy.clo ... show more (modsec_5040) ModSec 5040: API Basic Auth blocked from 139.99.124.237 (SG/Singapore/sg.hostbuddy.cloud): 1 in the last 3600 secs (0-195) show less	Hacking
🇩🇪 FeG Deutschland	2026-05-31 04:50:42 (3 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
Anonymous	2026-05-30 14:00:46 (4 weeks ago)	2026-05-30T16:00:45.849021+02:00 zanati wp(sahpa.co.za)[2239659]: Blocked user enumeration attempt f ... show more 2026-05-30T16:00:45.849021+02:00 zanati wp(sahpa.co.za)[2239659]: Blocked user enumeration attempt from 139.99.124.237 ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-25 17:48:53 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 139.99.124.237 (sg.hostbuddy.cloud): 1 in the l ... show more (mod_security) mod_security (id:225170) triggered by 139.99.124.237 (sg.hostbuddy.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 13:48:48.060408 2026] [security2:error] [pid 2486:tid 2510] [client 139.99.124.237:47080] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|chelseyrae.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "chelseyrae.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ahSLgCx6Y-tvu3zq1ljMZgAAAJU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Hazzard	2026-05-24 17:06:54 (1 month ago)	(wordpress) Failed wordpress login from 139.99.124.237 (SG/Singapore/-/Singapore/sg.hostbuddy.cloud/ ... show more (wordpress) Failed wordpress login from 139.99.124.237 (SG/Singapore/-/Singapore/sg.hostbuddy.cloud/[redacted]): (CF_ENABLE) show less	Brute-Force
🇩🇪 georgengelmann	2026-05-20 09:39:32 (1 month ago)	Failed login attempt for superuser	Brute-Force Web App Attack
🇳🇱 MatStef132	2026-05-19 20:24:50 (1 month ago)	MatShield L7: blocked on chat.justchat.icu (ua-quarantined)	Bad Web Bot

Showing 1 to 15 of 191 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 179.61.192.3

🇫🇷 90.84.174.194

🇱🇹 62.60.130.219

🇺🇸 216.180.246.168

🇻🇳 210.86.225.157

🇺🇸 206.221.176.60

🇧🇷 205.210.31.228

🇺🇸 188.213.202.17

🇳🇱 185.89.249.3

🇻🇳 180.93.78.21

🇺🇸 172.210.66.4

🇨🇳 129.211.229.121

🇻🇳 116.110.14.140

🇨🇳 111.53.0.169

🇷🇺 95.215.0.144

🇩🇪 95.90.13.168

🇱🇻 81.30.98.144

🇺🇸 67.207.93.64

🇺🇸 66.132.224.227

🇳🇱 45.148.10.141