JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 147.93.157.194

147.93.157.194 was found in our database!

This IP was reported 164 times. Confidence of Abuse is 100%: ?

100%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS141995
Hostname(s)	vmi3223865.contaboserver.net
Domain Name	contabo.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 147.93.157.194

Whois 147.93.157.194

IP Abuse Reports for 147.93.157.194:

This IP address has been reported a total of 164 times from 72 distinct sources. 147.93.157.194 was first reported on April 22nd 2026, and the most recent report was 56 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-14 04:14:03 (56 minutes ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇩🇪 Marc	2026-06-13 17:34:18 (11 hours ago)	147.93.157.194 - - [13/Jun/2026:18:02:16 +0200] "GET /wp-login.php HTTP/2.0" 200 4079 "-" "Mozilla/5 ... show more 147.93.157.194 - - [13/Jun/2026:18:02:16 +0200] "GET /wp-login.php HTTP/2.0" 200 4079 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 147.93.157.194 - - [13/Jun/2026:18:02:18 +0200] "POST /wp-login.php HTTP/2.0" 403 11171 "https://www.saatschule.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 147.93.157.194 - - [13/Jun/2026:19:27:41 +0200] "GET /wp-login.php HTTP/2.0" 200 3922 "https://weiss-blau-hemer.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 147.93.157.194 - - [13/Jun/2026:19:34:16 +0200] "GET /wp-login.php HTTP/2.0" 200 4079 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 147.93.157.194 - - [13/Jun/2026:19:34:17 +0200] "POST /wp-login.php HTTP/2.0" 403 11172 "https://saatschule.de/wp-login.php" "Mozi show less	Brute-Force Web App Attack
🇨🇦 KIsmay	2026-06-13 17:26:47 (11 hours ago)	Jun 13 09:33:10 www4 WPAudit[1713207]: 147.93.157.194 www.nelsonbcwelding.com "Mozilla/5.0 (Windows ... show more Jun 13 09:33:10 www4 WPAudit[1713207]: 147.93.157.194 www.nelsonbcwelding.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" sbd-admin:sbdadmin123456 FAIL Jun 13 09:54:09 www4 WPAudit[1717501]: 147.93.157.194 www.vhsport.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" vhsport:vhsport2025 FAIL Jun 13 10:37:37 www4 WPAudit[1723843]: 147.93.157.194 siscobc.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" sisco:sisco2020 FAIL Jun 13 11:57:50 www4 WPAudit[1737677]: 147.93.157.194 katharinedickerson.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" katharinedickerson:katharinedickerson0 FAIL Jun 13 13:26:46 www4 WPAudit[1747645]: 147.93.157.194 bestnelson.org "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KH ... show less	Brute-Force Web App Attack
🇺🇸 xxkodedxx	2026-06-13 16:37:57 (12 hours ago)	[Zorvexus edge-defense] GET .env / WordPress honeypot probe Trigger: 1× honeypot-get in 10m window. ... show more [Zorvexus edge-defense] GET .env / WordPress honeypot probe Trigger: 1× honeypot-get in 10m window. Active: 16:37:30 UTC Volume: 1 honeypot probe(s) Bait taken: /wp-login.php UA: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" Auto-banned 30d. zorvexus-banner. show less	Bad Web Bot Web App Attack
🇲🇹 Malta	2026-06-13 12:18:16 (16 hours ago)	147.93.157.194 - - [13/Jun/2026:14:18:16 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Windows NT ... show more 147.93.157.194 - - [13/Jun/2026:14:18:16 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇦🇺 AWW-Admin	2026-06-13 11:38:33 (17 hours ago)	(wordpress) Failed wordpress login from 147.93.157.194 (SG/Singapore/vmi3223865.contaboserver.net)	Brute-Force
🇩🇪 LRob.fr	2026-06-13 11:00:10 (18 hours ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
Anonymous	2026-06-13 10:52:46 (18 hours ago)	147.93.157.194 - - [13/Jun/2026:18:52:46 +0800] "POST /xmlrpc.php HTTP/1.1" 200 401 "-" "Mozilla/5.0 ... show more 147.93.157.194 - - [13/Jun/2026:18:52:46 +0800] "POST /xmlrpc.php HTTP/1.1" 200 401 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-06-13 10:42:32 (18 hours ago)	(wplogin) Failed WordPress login from 147.93.157.194 (SG/Singapore/vmi3223865.contaboserver.net): 5 ... show more (wplogin) Failed WordPress login from 147.93.157.194 (SG/Singapore/vmi3223865.contaboserver.net): 5 in the last 3600 secs (0-122) show less	Hacking
🇩🇪 LRob.fr	2026-06-13 10:00:06 (19 hours ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇳🇱 tmiland	2026-06-13 09:29:24 (19 hours ago)	(wordpress_login) WordPress Login Attack 147.93.157.194 (SG/Singapore/vmi3223865.contaboserver.net): ... show more (wordpress_login) WordPress Login Attack 147.93.157.194 (SG/Singapore/vmi3223865.contaboserver.net): 3 in the last 3600 secs; IP: 147.93.157.194; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 147.93.157.194 - - [13/Jun/2026:11:29:16 +0200] "GET /wp-login.php HTTP/1.1" 200 1936 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 147.93.157.194 - - [13/Jun/2026:11:29:22 +0200] "GET /wp-login.php HTTP/1.1" 200 1936 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 147.93.157.194 - - [13/Jun/2026:11:29:22 +0200] "POST /wp-login.php HTTP/1.1" 200 2069 "https://.*/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Brute-Force
🇩🇪 FeG Deutschland	2026-06-12 09:09:23 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
🇲🇽 octageeks.com	2026-06-12 04:14:58 (2 days ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇫🇷 tecnicorioja	2026-06-11 22:01:28 (2 days ago)	wp-login attack [11/Jun/2026:12:10:43	Brute-Force Web App Attack
🇩🇪 london2038.com	2026-06-11 19:14:39 (2 days ago)	Attacking WordPress 147.93.157.194 - - [11/Jun/2026:21:14:35 +0200] "POST /wp-login.php HTTP/2.0" 50 ... show more Attacking WordPress 147.93.157.194 - - [11/Jun/2026:21:14:35 +0200] "POST /wp-login.php HTTP/2.0" 503 19291 "https://<REDACTED>/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Brute-Force Web App Attack

Showing 1 to 15 of 164 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.218.206.88

🇲🇳 202.131.242.74

🇺🇸 185.198.240.193

🇺🇸 151.241.96.240

🇨🇳 112.96.123.94

🇳🇱 89.149.242.46

🇺🇸 66.132.172.115

🇺🇸 35.94.217.146

🇧🇷 34.39.168.81

🇨🇳 1.92.211.3

🇩🇪 213.209.159.11

🇬🇧 209.97.180.8

🇲🇿 197.219.228.242

🇨🇳 183.221.0.223

🇮🇳 182.95.224.178

🇬🇧 178.62.89.9

🇺🇸 152.32.233.124

🇫🇮 147.185.133.250

🇫🇮 135.181.29.117

🇵🇭 124.107.185.138