JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.47.134.121

103.47.134.121 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 3%: ?

ISP	PT. Eka Mas Republik
Usage Type	Fixed Line ISP
ASN	AS63859
Hostname(s)	host-103-47-134-121.myrepublic.co.id
Domain Name	myrepublic.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.47.134.121

Whois 103.47.134.121

IP Abuse Reports for 103.47.134.121:

This IP address has been reported a total of 3 times from 2 distinct sources. 103.47.134.121 was first reported on October 20th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 sockominfo	2026-06-04 20:00:38 (3 days ago)	Late night login (22:00-05:30) - High risk Jakarta timezone (WIB), User login to application during ... show more Late night login (22:00-05:30) - High risk Jakarta timezone (WIB), User login to application during non-business hours. Threat Score: 9/10 (CRITICAL). Confidence: 70%. CVSS v3.1: 9.9/10 (Critical). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H. Bayesian Probability: 93%. MITRE ATT&CK: T1078 (Valid Accounts). Tactic: TA0001. Freshness: Fresh. Source Reputation: KNOWN_MALICIOUS. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-04 19:00:11 (3 days ago)	Late night login (22:00-05:30) - High risk Jakarta timezone (WIB). Threat Score: 8.6/10 (HIGH). Repo ... show more Late night login (22:00-05:30) - High risk Jakarta timezone (WIB). Threat Score: 8.6/10 (HIGH). Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 hermawan	2025-10-20 06:09:51 (7 months ago)	[Mon Oct 20 13:07:47.522040 2025] [security2:error] [pid 769664:tid 140664911124160] [client 103.47. ... show more [Mon Oct 20 13:07:47.522040 2025] [security2:error] [pid 769664:tid 140664911124160] [client 103.47.134.121:51454] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i),.?[\\"'\\\\)0-9`-f][\\"'`](?:[\\"'`].?[\\"'`]\|(?:\\\\r?\\\\n)?\\\\z\|[^\\"'`]+)\|[^0-9A-Z_a-z]select.+[^0-9A-Z_a-z]?from\|(?:alter\|(?:(?:cre\|trunc\|upd)at\|renam)e\|d(?:e(?:lete\|sc)\|rop)\|(?:inser\|selec)t\|load)[\\\\s\\\\x0b]?\\\\([\\\\s\\\\x0b]?space[\\\\s\\\\x0b]?\\\\(" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "2129"] [id "942200"] [msg "Detects MySQL comment-/space-obfuscated injections and backtick termination"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: , like Gecko) Version/4.0 Chrome/138.0.7204.179 Mobile Safari/537.36 OcIdWebView ({\\x22os\\x22:\\x22Android\\x22, found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 8.0.0; SM- ... show less	Hacking Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.233.219.44

🇫🇷 161.97.72.101

🇨🇳 123.160.175.59

🇫🇷 91.231.89.10

🇫🇷 91.196.152.183

🇹🇷 88.255.67.248

🇨🇳 47.100.210.183

🇨🇳 14.103.116.192

🇺🇸 209.222.101.194

🇨🇳 112.94.190.146

🇺🇸 65.49.1.170

🇮🇪 34.245.149.55

🇷🇺 212.164.38.32

🇳🇱 195.211.191.112

🇧🇷 187.33.59.116

🇮🇱 185.162.127.214

🇨🇳 175.30.48.31

🇺🇸 172.253.1.30

🇹🇼 111.253.92.137

🇨🇳 101.96.203.52