JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.137.37.60

64.137.37.60 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 2%: ?

ISP	FASTPLANET LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396356
Domain Name	fastplanet.com
Country	🇨🇱 Chile
City	Santiago, Santiago Metropolitan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.137.37.60

Whois 64.137.37.60

IP Abuse Reports for 64.137.37.60:

This IP address has been reported a total of 17 times from 9 distinct sources. 64.137.37.60 was first reported on October 30th 2023, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 bigorre.org	2026-05-31 16:31:35 (2 weeks ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-16 19:42:48 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 14:42:43.829049 2026] [security2:error] [pid 15180:tid 15180] [client 64.137.37.60:40851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.nbcnewsradio.com"] [uri "/.env.prod.local"] [unique_id "aWqUs6By2G0K4fuzO-IoAgAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 19:12:08 (5 months ago)	(mod_security) mod_security (id:211190) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:211190) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 14:10:56.532662 2025] [security2:error] [pid 22842:tid 22995] [client 64.137.37.60:55167] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|www.kettlehill.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /?file=http://0177.0.0.1/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.com"] [uri "/"] [unique_id "aVLSQFKoonkfA7MmLZca8gAAAQU"], referer: http://www.kettlehill.com/?file=http://0177.0.0.1/etc/passwd show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 bcon	2025-12-11 10:16:00 (6 months ago)	LFI probe	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-12 04:42:09 (7 months ago)	(mod_security) mod_security (id:211190) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:211190) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 11 23:40:41.196658 2025] [security2:error] [pid 29298:tid 29298] [client 64.137.37.60:42141] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|mail.nbcnewsradio.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?option=com_abbrev&controller=../../../../../../../../../../etc/passwd%00"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.nbcnewsradio.com"] [uri "/index.php"] [unique_id "aRQPye_3RLWwRaD-NsMXWAAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-01 17:12:38 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 01 13:12:34.286116 2025] [security2:error] [pid 7225:tid 7238] [client 64.137.37.60:53111] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kettlehill.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kettlehill.com"] [uri "/db.php.bak"] [unique_id "aQY_gkLI2ys0UnK7ix4P2wAAAMk"], referer: https://www.kettlehill.com/db.php.bak show less	Brute-Force Bad Web Bot Web App Attack
🇮🇪 RoboSOC	2025-10-16 08:39:34 (8 months ago)	Joomla! Component Zh BaiduMap SQL Injection Vulnerability, PTR: PTR record not found	Hacking
🇺🇸 TPI-Abuse	2025-07-27 00:23:09 (10 months ago)	(mod_security) mod_security (id:221260) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:221260) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 20:22:52.328563 2025] [security2:error] [pid 172228:tid 172422] [client 64.137.37.60:60451] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\\(\\\\)\\\\s{" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)\|\|cpcalendars.kettlehill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.kettlehill.com"] [uri "/cgi-bin/status"] [unique_id "aIVxXOyxIbVHpqlXWTqKuwAAAMs"], referer: () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 SCHAPPY	2025-07-26 15:00:15 (10 months ago)	IP was involved in L7 DDoS attack.	DDoS Attack
Anonymous	2025-06-22 21:37:56 (11 months ago)	Ports: 2077,2078,2082,2083,2086,2087,2095,2096; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-05-29 16:39:21 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 12:39:04.213065 2025] [security2:error] [pid 2991054:tid 2991054] [client 64.137.37.60:42667] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.farmers123.com\|F\|2"] [data ".key"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.farmers123.com"] [uri "/privatekey.key"] [unique_id "aDiNqKe3--cpJdwqsXDocgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2025-04-24 00:57:00 (1 year ago)	IPBlock protected site ID [3192-af][s=02]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-03-01 01:20:57 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 64.137.37.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 28 20:20:33.940020 2025] [security2:error] [pid 14428:tid 14447] [client 64.137.37.60:40777] [client 64.137.37.60] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kettlehill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kettlehill.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Z8Jg4Rm7d7FF9Owj7l3vrQAAAIY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-01-25 09:10:12 (1 year ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 ChamberofCommerce.com	2023-11-06 07:12:26 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.58

🇧🇩 103.177.150.144

🇰🇷 1.245.207.104

🇳🇱 204.76.203.79

🇺🇸 193.56.116.10

🇧🇷 187.51.84.86

🇳🇱 176.65.139.31

🇺🇸 143.198.111.206

🇮🇳 117.219.25.98

🇺🇸 104.207.38.141

🇷🇺 91.219.196.17

🇮🇪 3.254.103.53

🇷🇴 2.57.121.25

🇩🇿 129.45.84.119

🇹🇼 114.35.22.232

🇹🇷 104.247.164.63

🇰🇷 64.110.90.250

🇺🇸 54.162.21.115

🇬🇧 217.146.80.98

🇧🇷 177.75.47.177