JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.47.134.85

103.47.134.85 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 48%: ?

48%

ISP	PT. Eka Mas Republik
Usage Type	Fixed Line ISP
ASN	AS63859
Hostname(s)	host-103-47-134-85.myrepublic.co.id
Domain Name	myrepublic.co.id
Country	🇮🇩 Indonesia
City	Cirebon, West Java

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.47.134.85

Whois 103.47.134.85

IP Abuse Reports for 103.47.134.85:

This IP address has been reported a total of 22 times from 14 distinct sources. 103.47.134.85 was first reported on November 3rd 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-17 14:09:34 (3 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-17 10:56:35 (3 days ago)	Blocked by CSF 13 firewall - Rule: XMLRPC ID/Indonesia/host-103-47-134-85.myrepublic.co.id	Web App Attack
Anonymous	2026-06-17 01:59:28 (4 days ago)	[server.tmg.gr] httpd-xmlrpc-post: sites=geomed.gr; logs=/var/log/httpd/domains/geomed.gr.log; sampl ... show more [server.tmg.gr] httpd-xmlrpc-post: sites=geomed.gr; logs=/var/log/httpd/domains/geomed.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-15 09:31:40 (5 days ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇩🇪 Marc	2026-06-15 07:47:11 (6 days ago)	103.47.134.85 - - [15/Jun/2026:09:46:27 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3295 "-" "WordPress.c ... show more 103.47.134.85 - - [15/Jun/2026:09:46:27 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3295 "-" "WordPress.com; https://wordpress.com" 103.47.134.85 - - [15/Jun/2026:09:46:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3296 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.4)" 103.47.134.85 - - [15/Jun/2026:09:47:10 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3294 "-" "Jetpack by WordPress.com" show less	Brute-Force Web App Attack
🇩🇪 Vegascosmetics	2026-06-15 07:06:37 (6 days ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇺🇸 Victor López	2026-06-15 06:14:19 (6 days ago)	babystudio4d.com 103.47.134.85 - - [15/Jun/2026:01:13:59 -0500] "POST /xmlrpc.php HTTP/1.1" 200 415 ... show more babystudio4d.com 103.47.134.85 - - [15/Jun/2026:01:13:59 -0500] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Jetpack/12.0; WordPress/6.2; http://site90381684.com" babystudio4d.com 103.47.134.85 - - [15/Jun/2026:01:14:08 -0500] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Jetpack by WordPress.com" babystudio4d.com 103.47.134.85 - - [15/Jun/2026:01:14:19 -0500] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Jetpack by WordPress.com" ... show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-04 23:00:41 (2 weeks ago)	Late night login (22:00-05:30) - High risk Jakarta timezone (WIB). Threat Score: 8.8/10 (CRITICAL). ... show more Late night login (22:00-05:30) - High risk Jakarta timezone (WIB). Threat Score: 8.8/10 (CRITICAL). Confidence: 70%. CVSS v3.1: 9.9/10 (Critical). CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H. Bayesian Probability: 87%. MITRE ATT&CK: T1078 (Valid Accounts). Tactic: TA0001. Freshness: Fresh. Source Reputation: KNOWN_MALICIOUS. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-04 22:00:12 (2 weeks ago)	Late night login (22:00-05:30) - High risk Jakarta timezone (WIB). Threat Score: 8.6/10 (HIGH). Repo ... show more Late night login (22:00-05:30) - High risk Jakarta timezone (WIB). Threat Score: 8.6/10 (HIGH). Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇨🇭 backslash	2026-05-20 03:21:02 (1 month ago)	block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68	Bad Web Bot
🇬🇧 davelegg	2026-04-01 20:13:32 (2 months ago)	Participated in Layer 7 DDoS attack against forum search endpoint. Part of residential botnet using ... show more Participated in Layer 7 DDoS attack against forum search endpoint. Part of residential botnet using 15,000+ unique IPs with 8 round-robined browser user agents. Behavior: deep pagination of search/tag queries (up to page 1500+), findComment chain crawling, 87% requests closed before response (499). No static assets loaded. Attack ramped from ~1,800 req/hr to ~14,000 req/hr over 17 hours then stopped abruptly. Observed 2026-04-01. show less	DDoS Attack Bad Web Bot Web App Attack
🇮🇩 sockominfo	2026-04-01 16:46:50 (2 months ago)	[WAZUH] User login to application during non-business hours	Hacking Web App Attack
🇮🇩 sockominfo	2026-03-14 19:00:52 (3 months ago)	TheHive Threat Scoring assessment: 103.47.134.85 CVSS v3.1: 0/10 (None) CVSS Vector: CVSS:3.1/AV:und ... show more TheHive Threat Scoring assessment: 103.47.134.85 CVSS v3.1: 0/10 (None) CVSS Vector: CVSS:3.1/AV:undefined/AC:undefined/PR:undefined/UI:undefined/S:undefined/C:undefined/I:undefined/A:undefined Bayesian Probability: 80% MITRE ATT&CK: Exploit Public-Facing Application, Valid Accounts, Command and Scripting Interpreter, Application Layer Protocol, Brute Force, Account Manipulation OWASP Risk: High (L:8, I:6) Combined Score: 4.92/10 Confidence Interval: ±0.01 Status: Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-03-14 18:01:14 (3 months ago)	Reported by TangerangKota-CSIRT. Status: MALICIOUS	Hacking Web App Attack
🇮🇩 sockominfo	2026-03-12 16:00:59 (3 months ago)	User login to application during non-business hours. Threat Score: 5.7/10 (MEDIUM). Reported by Tang ... show more User login to application during non-business hours. Threat Score: 5.7/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.223.107.86

🇺🇸 73.91.161.159

🇨🇳 43.226.39.182

🇺🇸 2604:a880:400:d1:0:4:9e88:7001

🇮🇳 217.216.59.228

🇪🇸 217.160.226.51

🇳🇱 154.6.145.14

🇫🇷 51.178.31.138

🇸🇬 43.173.187.227

🇸🇬 101.32.128.28

🇪🇬 41.128.181.199

🇬🇧 217.146.80.114

🇳🇱 192.42.116.15

🇭🇰 150.5.141.198

🇮🇹 87.8.164.130

🇺🇸 68.183.105.132

🇰🇷 61.75.245.101

🇺🇸 43.130.105.21

🇰🇷 43.128.149.102

🇧🇪 34.62.151.92