JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 93.137.63.245

93.137.63.245 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 39%: ?

39%

ISP	Hrvatski Telekom d.d.
Usage Type	Fixed Line ISP
ASN	AS5391
Hostname(s)	93-137-63-245.adsl.net.t-com.hr
Domain Name	ht.hr
Country	🇭🇷 Croatia
City	Varazdin, Varazdin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 93.137.63.245

Whois 93.137.63.245

IP Abuse Reports for 93.137.63.245:

This IP address has been reported a total of 10 times from 7 distinct sources. 93.137.63.245 was first reported on June 11th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-12 03:30:17 (1 week ago)	WordPress Brute Force	Brute-Force
Anonymous	2026-06-12 01:50:11 (1 week ago)	Attac	Brute-Force
🇫🇷 Kenshin869	2026-06-12 01:48:03 (1 week ago)	Wordpress unauthorized access attempt	Brute-Force
🇺🇸 TPI-Abuse	2026-06-11 15:23:23 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 93.137.63.245 (93-137-63-245.adsl.net.t-com.hr) ... show more (mod_security) mod_security (id:240335) triggered by 93.137.63.245 (93-137-63-245.adsl.net.t-com.hr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 11:23:17.651364 2026] [security2:error] [pid 5557:tid 5557] [client 93.137.63.245:58382] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 93.137.63.245 (+1 hits since last alert)\|coyotebytes.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "coyotebytes.com"] [uri "/xmlrpc.php"] [unique_id "airS5eG_mSfu5mCjP0Yo8wAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 tmiland	2026-06-11 12:06:11 (1 week ago)	(wordpress_xmlrpc) WordPress XMLPRC Attack 93.137.63.245 (HR/Croatia/93-137-63-245.adsl.net.t-com.hr ... show more (wordpress_xmlrpc) WordPress XMLPRC Attack 93.137.63.245 (HR/Croatia/93-137-63-245.adsl.net.t-com.hr): 3 in the last 3600 secs; IP: 93.137.63.245; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 93.137.63.245 - - [11/Jun/2026:14:05:47 +0200] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Jetpack by WordPress.com" 93.137.63.245 - - [11/Jun/2026:14:05:57 +0200] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "WordPress.com; https://wordpress.com" 93.137.63.245 - - [11/Jun/2026:14:06:07 +0200] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "WordPress.com; https://wordpress.com" show less	Brute-Force
Anonymous	2026-06-11 10:35:13 (1 week ago)	[redacted] 93.137.63.245 - - [11/Jun/2026:12:34:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "J ... show more [redacted] 93.137.63.245 - - [11/Jun/2026:12:34:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack/12.5; WordPress/6.4; http://site59214058.com" apollonia-barbara-severin.de 93.137.63.245 - - [11/Jun/2026:12:34:30 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "WordPress.com; https://wordpress.com" [redacted] 93.137.63.245 - - [11/Jun/2026:12:34:37 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack/12.5; WordPress/6.1; http://site65933126.com" apollonia-barbara-severin.de 93.137.63.245 - - [11/Jun/2026:12:34:40 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack/12.5; WordPress/6.3; http://site23054239.com" [redacted] 93.137.63.245 - - [11/Jun/2026:12:34:47 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.2)" apollonia-barbara-severin.de 93.137.63.245 - - [11/Jun/2026:12:34:51 +0200] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Jetpack/12.5; WordPress/6.3; http://site30030885.com" [redacted] 93.137.63.245 - - [11/Jun/202 ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 10:06:07 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 93.137.63.245 (93-137-63-245.adsl.net.t-com.hr) ... show more (mod_security) mod_security (id:240335) triggered by 93.137.63.245 (93-137-63-245.adsl.net.t-com.hr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 06:05:59.191154 2026] [security2:error] [pid 32411:tid 32411] [client 93.137.63.245:57589] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 93.137.63.245 (+1 hits since last alert)\|mdsshop.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mdsshop.com"] [uri "/xmlrpc.php"] [unique_id "aiqIh1wHS6YHqjk-hcDhOwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 09:36:55 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 93.137.63.245 (93-137-63-245.adsl.net.t-com.hr) ... show more (mod_security) mod_security (id:240335) triggered by 93.137.63.245 (93-137-63-245.adsl.net.t-com.hr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 05:36:49.792766 2026] [security2:error] [pid 26760:tid 26760] [client 93.137.63.245:56562] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 93.137.63.245 (+1 hits since last alert)\|superzilla.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "superzilla.com"] [uri "/xmlrpc.php"] [unique_id "aiqBsVn5tDRJawmCV_zzhQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 06:50:05 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 93.137.63.245 (93-137-63-245.adsl.net.t-com.hr) ... show more (mod_security) mod_security (id:240335) triggered by 93.137.63.245 (93-137-63-245.adsl.net.t-com.hr): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 02:49:55.918250 2026] [security2:error] [pid 15015:tid 15015] [client 93.137.63.245:56855] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 93.137.63.245 (+1 hits since last alert)\|technesa.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "technesa.com"] [uri "/xmlrpc.php"] [unique_id "aipak80Hl-7Tj8e1DgZq4AAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-11 05:15:34 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.201

🇺🇸 205.210.31.32

🇲🇦 196.64.230.125

🇲🇰 185.193.240.246

🇮🇳 182.75.197.174

🇨🇳 121.26.29.66

🇰🇷 112.184.12.214

🇧🇷 45.191.31.25

🇺🇸 44.142.7.222

🇺🇸 216.25.89.83

🇧🇷 205.210.31.130

🇺🇸 162.216.149.31

🇩🇪 151.242.147.40

🇬🇧 123.58.207.140

🇨🇳 116.179.37.219

🇭🇰 103.210.21.178

🇩🇪 57.129.81.151

🇩🇪 44.149.26.194

🇳🇱 31.42.176.142

🇨🇳 116.179.37.118