JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 93.137.2.202

93.137.2.202 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 42%: ?

42%

ISP	Hrvatski Telekom d.d.
Usage Type	Fixed Line ISP
ASN	AS5391
Hostname(s)	93-137-2-202.adsl.net.t-com.hr
Domain Name	ht.hr
Country	🇭🇷 Croatia
City	Varazdin, Varazdin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 93.137.2.202

Whois 93.137.2.202

IP Abuse Reports for 93.137.2.202:

This IP address has been reported a total of 11 times from 8 distinct sources. 93.137.2.202 was first reported on June 4th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 BlueStem123	2026-06-05 20:00:20 (1 week ago)	Automated scanner targeting WordPress installations. Source produced sustained scanning activity exc ... show more Automated scanner targeting WordPress installations. Source produced sustained scanning activity exceeding 100 requests within a 60-minute window. show less	Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-05 01:24:34 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 22:21:27 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 93.137.2.202 (93-137-2-202.adsl.net.t-com.hr): ... show more (mod_security) mod_security (id:240335) triggered by 93.137.2.202 (93-137-2-202.adsl.net.t-com.hr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 18:21:21.547884 2026] [security2:error] [pid 17498:tid 17498] [client 93.137.2.202:61420] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 93.137.2.202 (+1 hits since last alert)\|phalanxemail.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "phalanxemail.net"] [uri "/xmlrpc.php"] [unique_id "aiH6YYos0TrlCddUXN8zyQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 debestelapp	2026-06-04 21:40:06 (1 week ago)		Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 17:04:11 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 93.137.2.202 (93-137-2-202.adsl.net.t-com.hr): ... show more (mod_security) mod_security (id:240335) triggered by 93.137.2.202 (93-137-2-202.adsl.net.t-com.hr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 13:04:03.709080 2026] [security2:error] [pid 26390:tid 26424] [client 93.137.2.202:64927] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 93.137.2.202 (+1 hits since last alert)\|whatismetamodern.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "whatismetamodern.com"] [uri "/xmlrpc.php"] [unique_id "aiGwA99QGWx9p-7okeHNywAAAII"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-04 15:46:02 (1 week ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 15:31:53 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 93.137.2.202 (93-137-2-202.adsl.net.t-com.hr): ... show more (mod_security) mod_security (id:240335) triggered by 93.137.2.202 (93-137-2-202.adsl.net.t-com.hr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 11:31:47.953049 2026] [security2:error] [pid 10005:tid 10005] [client 93.137.2.202:59198] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 93.137.2.202 (+1 hits since last alert)\|rimaine.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "rimaine.org"] [uri "/xmlrpc.php"] [unique_id "aiGaY7n6dtIa7gKIgw4HFAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-04 12:57:20 (1 week ago)	(xmlrpc) Apache: Failed xmlrpc access from 93.137.2.202 (HR/Croatia/93-137-2-202.adsl.net.t-com.hr): ... show more (xmlrpc) Apache: Failed xmlrpc access from 93.137.2.202 (HR/Croatia/93-137-2-202.adsl.net.t-com.hr): 10 in the last 3600 secs (0-201) show less	Hacking
🇩🇪 reznekcs	2026-06-04 12:55:42 (1 week ago)	F2B wordpress ban. Logs: 93.137.2.202 - - [04/Jun/2026:14:55:31 +0200] "POST /xmlrpc.php HTTP/1.1" 2 ... show more F2B wordpress ban. Logs: 93.137.2.202 - - [04/Jun/2026:14:55:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4308 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.1)" 93.137.2.202 - - [04/Jun/2026:14:55:41 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4308 "-" "Jetpack by WordPress.com" show less	Brute-Force Web App Attack
Anonymous	2026-06-04 08:42:13 (1 week ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-06-04 03:44:06 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 93.137.2.202 (93-137-2-202.adsl.net.t-com.hr): ... show more (mod_security) mod_security (id:240335) triggered by 93.137.2.202 (93-137-2-202.adsl.net.t-com.hr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 23:43:59.604189 2026] [security2:error] [pid 27565:tid 27565] [client 93.137.2.202:55967] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 93.137.2.202 (+1 hits since last alert)\|famagustacyprus.eu\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "famagustacyprus.eu"] [uri "/xmlrpc.php"] [unique_id "aiD0f7x1ZvTdZBuhCZnW3QAAACg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 195.74.93.2

🇮🇷 164.215.167.199

🇭🇰 199.45.154.181

🇺🇸 152.32.208.169

🇳🇬 152.32.141.217

🇹🇼 123.58.205.100

🇵🇰 110.93.224.226

🇨🇳 42.62.2.24

🇲🇽 2806:2f0:9cc0:d5c7:b121:dd91:2f11:43c0

🇩🇪 213.209.159.225

🇺🇸 209.137.223.6

🇮🇳 202.71.0.186

🇺🇿 176.101.56.126

🇫🇮 147.185.133.231

🇺🇸 147.185.132.93

🇺🇸 147.185.132.91

🇺🇸 147.185.132.84

🇰🇷 121.184.144.232

🇺🇸 66.132.186.188

🇳🇱 45.156.128.130