JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 147.93.168.136

147.93.168.136 was found in our database!

This IP was reported 169 times. Confidence of Abuse is 100%: ?

100%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS141995
Hostname(s)	vmi3308573.contaboserver.net
Domain Name	contabo.com
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 147.93.168.136

Whois 147.93.168.136

IP Abuse Reports for 147.93.168.136:

This IP address has been reported a total of 169 times from 80 distinct sources. 147.93.168.136 was first reported on May 25th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 jormaster3k	2026-06-01 12:27:45 (2 days ago)	Attack against WordPress	Web App Attack
🇺🇸 mind5t0rm	2026-06-01 12:16:29 (2 days ago)	(WPLOGIN) WP Login Attack 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): 3 in the last 3600 ... show more (WPLOGIN) WP Login Attack 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 147.93.168.136 - - [01/Jun/2026:18:18:44 +0700] "GET /wp-login.php HTTP/2.0" 200 3126 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 147.93.168.136 - - [01/Jun/2026:18:18:47 +0700] "POST /wp-login.php HTTP/2.0" 200 4101 "https://thevasilis.com/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 147.93.168.136 - - [01/Jun/2026:19:16:27 +0700] "GET /wp-login.php HTTP/2.0" 200 1745 "https://www.inthepursuitstudio.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Port Scan
🇨🇦 KIsmay	2026-06-01 12:08:35 (2 days ago)	Jun 1 07:37:06 www4 WPAudit[262542]: 147.93.168.136 lemoncreekcampground.ca "Mozilla/5.0 (Macintosh ... show more Jun 1 07:37:06 www4 WPAudit[262542]: 147.93.168.136 lemoncreekcampground.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" sbd-admin:Sbd-admin@2019 FAIL Jun 1 07:47:25 www4 WPAudit[263283]: 147.93.168.136 dev.siscobc.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" kismay:kismay1989 FAIL Jun 1 07:52:42 www4 WPAudit[263769]: 147.93.168.136 www.katharinedickerson.com "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" katharine:Katharine77 FAIL Jun 1 07:53:30 www4 WPAudit[261285]: 147.93.168.136 valhallasafety.com "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" sbd-admin:sbd-admin38 FAIL Jun 1 08:08:34 www4 WPAudit[264792]: 147.93.168.136 www.lemoncreekcampground.ca "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safa ... show less	Brute-Force Web App Attack
🇬🇧 consul.to	2026-06-01 11:39:55 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 mind5t0rm	2026-06-01 08:12:49 (2 days ago)	(WPLOGIN) WP Login Attack 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): 3 in the last 3600 ... show more (WPLOGIN) WP Login Attack 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 147.93.168.136 - - [01/Jun/2026:14:15:42 +0700] "GET /wp-login.php HTTP/2.0" 200 3126 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 147.93.168.136 - - [01/Jun/2026:14:15:45 +0700] "POST /wp-login.php HTTP/2.0" 200 4167 "https://thevasilis.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 147.93.168.136 - - [01/Jun/2026:15:12:46 +0700] "GET /wp-login.php HTTP/2.0" 200 1746 "https://www.inthepursuitstudio.com/wp-login.php" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Port Scan
🇺🇸 Starburst SysOp Team	2026-06-01 08:05:32 (2 days ago)	Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 136.168.93.147.rbl.malw ... show more Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 136.168.93.147.rbl.malware.expert succeeded at REQUEST_HEADERS:x-forwarded-for. (1001000-mnz6-3) show less	Hacking
🇺🇸 mind5t0rm	2026-06-01 06:37:09 (2 days ago)	(WPLOGIN) WP Login Attack 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): 3 in the last 3600 ... show more (WPLOGIN) WP Login Attack 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 147.93.168.136 - - [01/Jun/2026:13:00:24 +0700] "GET /wp-login.php HTTP/2.0" 200 3126 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" 147.93.168.136 - - [01/Jun/2026:13:00:27 +0700] "POST /wp-login.php HTTP/2.0" 200 4167 "https://thevasilis.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" 147.93.168.136 - - [01/Jun/2026:13:37:07 +0700] "GET /wp-login.php HTTP/2.0" 200 2811 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Port Scan
🇫🇷 ELYAZ	2026-06-01 06:11:07 (2 days ago)	(y4) Failed scan -byebye- from 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): (CF_ENABLE)	Hacking
🇺🇸 Starburst SysOp Team	2026-06-01 05:39:45 (2 days ago)	Malware host detected by rbl.malware.expert. RBL lookup of 136.168.93.147.rbl.malware.expert succeed ... show more Malware host detected by rbl.malware.expert. RBL lookup of 136.168.93.147.rbl.malware.expert succeeded at REMOTE_ADDR. (400010-mnz6-1) show less	Hacking
🇺🇸 mind5t0rm	2026-06-01 04:22:46 (2 days ago)	(WPLOGIN) WP Login Attack 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): 3 in the last 3600 ... show more (WPLOGIN) WP Login Attack 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 147.93.168.136 - - [01/Jun/2026:11:05:55 +0700] "GET /wp-login.php HTTP/2.0" 200 3126 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 147.93.168.136 - - [01/Jun/2026:11:06:06 +0700] "POST /wp-login.php HTTP/2.0" 200 4073 "https://thevasilis.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 147.93.168.136 - - [01/Jun/2026:11:22:41 +0700] "GET /wp-login.php HTTP/2.0" 200 3126 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Port Scan
🇺🇸 octageeks.com	2026-06-01 04:06:26 (2 days ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇺🇸 cwytech	2026-06-01 02:15:51 (2 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wordpress-geofence-sus.	Bad Web Bot Web App Attack
🇺🇸 Vianpyro	2026-06-01 01:32:27 (2 days ago)	Honeypot: 8 request(s) in 1600 min. Paths: /wp-json/wp/v2/posts, /wp-json/wp/v2/media, /, /feed/, /c ... show more Honeypot: 8 request(s) in 1600 min. Paths: /wp-json/wp/v2/posts, /wp-json/wp/v2/media, /, /feed/, /comments/feed/. Method(s): GET. UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/14. ASN: 141995 (Contabo GmbH). show less	Web App Attack Bad Web Bot Brute-Force Hacking
🇺🇸 mind5t0rm	2026-06-01 01:20:08 (2 days ago)	(WPLOGIN) WP Login Attack 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): 3 in the last 3600 ... show more (WPLOGIN) WP Login Attack 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 147.93.168.136 - - [01/Jun/2026:07:30:42 +0700] "GET /wp-login.php HTTP/2.0" 200 3126 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 147.93.168.136 - - [01/Jun/2026:07:30:45 +0700] "POST /wp-login.php HTTP/2.0" 200 4167 "https://thevasilis.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 147.93.168.136 - - [01/Jun/2026:08:20:04 +0700] "GET /wp-login.php HTTP/2.0" 200 1746 "https://www.inthepursuitstudio.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Port Scan
🇺🇸 mind5t0rm	2026-05-31 23:07:16 (3 days ago)	(WPLOGIN) WP Login Attack 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): 3 in the last 3600 ... show more (WPLOGIN) WP Login Attack 147.93.168.136 (IN/India/vmi3308573.contaboserver.net): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 147.93.168.136 - - [01/Jun/2026:05:36:15 +0700] "GET /wp-login.php HTTP/2.0" 200 1746 "https://www.inthepursuitstudio.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 147.93.168.136 - - [01/Jun/2026:05:36:19 +0700] "GET /wp-login.php HTTP/2.0" 200 1746 "https://www.inthepursuitstudio.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 147.93.168.136 - - [01/Jun/2026:06:07:15 +0700] "GET /wp-login.php HTTP/2.0" 200 3125 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Port Scan

Showing 46 to 60 of 169 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 2.57.122.177

🇺🇸 216.25.89.104

🇨🇭 209.99.189.174

🇳🇱 203.55.131.5

🇸🇬 198.38.91.141

🇪🇸 185.121.15.184

🇷🇺 109.195.179.94

🇨🇳 103.217.186.86

🇺🇸 76.132.238.43

🇺🇸 69.49.246.176

🇰🇿 37.151.58.74

🇺🇸 20.172.67.176

🇺🇸 198.74.50.114

🇿🇼 197.221.232.44

🇩🇪 176.65.132.24

🇵🇭 120.28.217.84

🇵🇱 87.251.64.158

🇳🇱 64.89.162.55

🇰🇷 47.80.57.216

🇳🇱 45.148.10.141