This IP address has been reported a total of
31
times from
18 distinct
sources.
139.59.108.58 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
[ThuJun1121:14:33.0465692026][security2:error][pid2487986:tid2488119][client139.59.108.58:0]ModSecur ...
show more[ThuJun1121:14:33.0465692026][security2:error][pid2487986:tid2488119][client139.59.108.58:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?:\\\\\\\\\$\(\?:\\\\\\\\\(\(\?:\\\\\\\\\(.\*\\\\\\\\\)\|.\*\)\\\\\\\\\)\|\\\\\\\\{.\*\\\\\\\\}\)\|[\<\>]\\\\\\\\\(.\*\\\\\\\\\)\)\"atARGS:0.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"396\"][id\"393655\"][rev\"17\"][msg\"Atomicorp.comWAFRules:PossibleRemoteCommandExecution:UnixShellExpressionFound\"][data\"MatchedData:\${encodeuricomponent\(string\(res\)\)}307\`}\)_chunks:\$q2_formdata:{get:\$1:constructor:constructor}}}foundwithinARGS:0:{then:\$1:__proto__:thenstatus:resolved_modelreason:-1value:{then:\$b1337}_response:{_prefix:varres=\(function\(\){var_r=typeofrequire\!==undefined\?require:\(process.mainmodule\?process.mainmodule.require.bind\(process.mainmodule\):\(typeofglobalthis.require\!==undefined\?globalthis.require:null\)\)return12899339148110000}\)\(\)throwobject.assign\(newerror\(next_redirect\){...\"][tag\"attack-rce\"][
show less
IM360 WAF: RCE via prototype pollution in React Server Components < 19.0.1/19.1.2/19.2.1 or Next.js ...
show moreIM360 WAF: RCE via prototype pollution in React Server Components < 19.0.1/19.1.2/19.2.1 or Next.js < 15.0.5/16.0.7 (CVE-2025-55182, CVE-2025-66478)
show less
Hacking
Anonymous
[02/Jun/2026:05:14:26 +0300] 17803664663.376546 139.59.108.58 50488 148.251.76.218 443
[02/Jun/2026: ...
show more[02/Jun/2026:05:14:26 +0300] 17803664663.376546 139.59.108.58 50488 148.251.76.218 443
[02/Jun/2026:05:14:28 +0300] 178036646828.428520 139.59.108.58 64571 148.251.76.218 443
show less
IM360 WAF: RCE via prototype pollution in React Server Components < 19.0.1/19.1.2/19.2.1 or Next.js ...
show moreIM360 WAF: RCE via prototype pollution in React Server Components < 19.0.1/19.1.2/19.2.1 or Next.js < 15.0.5/16.0.7 (CVE-2025-55182, CVE-2025-66478)
show less
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 139.59.108.58 (SG/Singapore/-): 1 in ...
show more(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 139.59.108.58 (SG/Singapore/-): 1 in the last 3600 secs (0-195)
show less
[WedMay2709:07:01.6324272026][security2:error][pid2814994:tid2815114][client139.59.108.58:0]ModSecur ...
show more[WedMay2709:07:01.6324272026][security2:error][pid2814994:tid2815114][client139.59.108.58:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?:\\\\\\\\\$\(\?:\\\\\\\\\(\(\?:\\\\\\\\\(.\*\\\\\\\\\)\|.\*\)\\\\\\\\\)\|\\\\\\\\{.\*\\\\\\\\}\)\|[\<\>]\\\\\\\\\(.\*\\\\\\\\\)\)\"atARGS:0.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"396\"][id\"393655\"][rev\"17\"][msg\"Atomicorp.comWAFRules:PossibleRemoteCommandExecution:UnixShellExpressionFound\"][data\"MatchedData:\${encodeuricomponent\(string\(res\)\)}307\`}\)_chunks:\$q2_formdata:{get:\$1:constructor:constructor}}}foundwithinARGS:0:{then:\$1:__proto__:thenstatus:resolved_modelreason:-1value:{then:\$b1337}_response:{_prefix:varres=\(function\(\){var_r=typeofrequire\!==undefined\?require:\(process.mainmodule\?process.mainmodule.require.bind\(process.mainmodule\):\(typeofglobalthis.require\!==undefined\?globalthis.require:null\)\)returnvuln_check_success_69420}\)\(\)throwobject.assign\(newerror\(next_redirect...\"][tag\"attack-rce
show less