JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.137.83.220

64.137.83.220 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 0%: ?

ISP	FASTPLANET LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	fastplanet.com
Country	🇮🇹 Italy
City	Milan, Lombardy

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.137.83.220

Whois 64.137.83.220

IP Abuse Reports for 64.137.83.220:

This IP address has been reported a total of 21 times from 5 distinct sources. 64.137.83.220 was first reported on June 7th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-17 09:52:15 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 64.137.83.220 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 64.137.83.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 04:52:05.733887 2026] [security2:error] [pid 23915:tid 23915] [client 64.137.83.220:53621] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nbcnewsradio.com"] [uri "/.env.save"] [unique_id "aWtbxSHVis3Ilo8N-cJh_AAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 20:33:37 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 64.137.83.220 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 64.137.83.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 15:33:31.182724 2025] [security2:error] [pid 30781:tid 30799] [client 64.137.83.220:34307] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.net"] [uri "/.env.dev"] [unique_id "aVLlm-xaOcBgrxu489GvwwAAAQ8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-13 11:12:17 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 64.137.83.220 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 64.137.83.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 06:12:09.364874 2025] [security2:error] [pid 9675:tid 9675] [client 64.137.83.220:49503] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.nbcnewsradio.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.nbcnewsradio.com"] [uri "/sql.sql"] [unique_id "aRW9CXHwHw-wEdka7ypJyAAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇪 RoboSOC	2025-10-16 12:33:21 (8 months ago)	Oracle WebLogic wls9-async Remote Code Execution Vulnerability, PTR: PTR record not found	Hacking
🇺🇸 TPI-Abuse	2025-07-27 00:36:45 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 64.137.83.220 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 64.137.83.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 20:36:39.016446 2025] [security2:error] [pid 172228:tid 172429] [client 64.137.83.220:52007] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|staging.kettlehill.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "staging.kettlehill.com"] [uri "/1.sql"] [unique_id "aIV0l-yxIbVHpqlXWTqW3AAAANI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 21:23:09 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 64.137.83.220 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 64.137.83.220 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 17:23:01.553322 2025] [security2:error] [pid 3542355:tid 3542355] [client 64.137.83.220:59477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.farmers123.com"] [uri "/.env.stage"] [unique_id "aDjQNSFBj9pnjw9hWX8gigAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-01-25 19:10:26 (1 year ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 jormaster3k	2024-11-24 21:42:29 (1 year ago)	Excessive crawling	Web App Attack
🇺🇸 jormaster3k	2024-11-23 15:11:21 (1 year ago)	Excessive crawling	Web App Attack
🇺🇸 jormaster3k	2024-11-22 03:35:30 (1 year ago)	Excessive crawling	Web App Attack
Anonymous	2024-11-20 18:34:25 (1 year ago)	alibaba cloud ddos like web scan	Bad Web Bot
Anonymous	2024-11-13 17:50:02 (1 year ago)	alibaba cloud ddos like web scan	Bad Web Bot
Anonymous	2024-11-06 12:43:09 (1 year ago)	alibaba cloud ddos like web scan	Bad Web Bot
Anonymous	2024-10-30 10:21:55 (1 year ago)	alibaba cloud ddos like web scan	Bad Web Bot
Anonymous	2024-10-23 04:21:51 (1 year ago)	alibaba cloud ddos like web scan	Bad Web Bot

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 88.142.46.185

🇺🇸 64.62.156.48

🇳🇱 45.148.10.157

🇬🇧 35.203.210.203

🇲🇽 187.147.101.217

🇺🇸 162.216.149.77

🇷🇺 154.83.196.237

🇨🇳 144.123.76.142

🇮🇳 103.181.154.61

🇨🇳 223.85.102.138

🇺🇸 216.24.212.239

🇺🇸 199.195.254.215

🇺🇸 136.112.227.91

🇺🇸 74.235.164.82

🇺🇸 66.132.224.21

🇧🇷 45.162.8.14

🇺🇸 40.119.41.94

🇫🇷 37.187.154.156

🇺🇸 2607:f8b0:4001:c11::127

🇸🇴 192.145.169.66