JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.49.37.70

64.49.37.70 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 0%: ?

ISP	Hostaly LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	hostaly.io
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.49.37.70

Whois 64.49.37.70

IP Abuse Reports for 64.49.37.70:

This IP address has been reported a total of 5 times from 5 distinct sources. 64.49.37.70 was first reported on August 17th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-29 19:36:51 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 64.49.37.70 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210350) triggered by 64.49.37.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 15:36:42.018931 2026] [security2:error] [pid 26550:tid 26550] [client 64.49.37.70:40147] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|backstore.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "backstore.com"] [uri "/backstore/Buckwheat-pillow.htm"] [unique_id "afJdyhMv2mzZaU2r5yv7ZAAAAC8"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-19 00:24:48 (3 months ago)	GlobalProtect Password Spraying	Brute-Force
🇮🇩 Burayot	2025-12-21 07:33:13 (5 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 64.49.37.70 (US/United States/-): 1 ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 64.49.37.70 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇧🇪 voormedia	2025-09-13 17:57:53 (8 months ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
🇨🇿 lp	2025-08-17 18:21:57 (9 months ago)	Unauthorized VPN login attempts: 2 attempts were recorded from 64.49.37.70 2025-08-17T18:56:18+02:00 ... show more Unauthorized VPN login attempts: 2 attempts were recorded from 64.49.37.70 2025-08-17T18:56:18+02:00 vpn Access-Reject 'ppowell' station: 64.49.37.70 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-08-17T18:56:53+02:00 vpn Access-Reject 'wtorres' station: 64.49.37.70 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.223.235.13

🇨🇳 61.178.24.146

🇺🇸 34.27.164.202

🇹🇭 223.206.233.81

🇳🇱 176.65.139.215

🇳🇱 176.65.139.213

🇺🇸 167.254.227.66

🇨🇳 111.225.149.204

🇦🇺 103.208.219.38

🇮🇩 103.154.231.122

🇳🇱 85.121.127.146

🇸🇬 47.128.54.231

🇨🇳 223.109.252.195

🇹🇼 198.235.24.84

🇳🇱 185.223.235.35

🇺🇸 162.216.150.228

🇺🇸 154.217.253.190

🇺🇸 151.245.177.40

🇹🇼 125.227.156.55

🇨🇳 101.96.220.35