JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 163.47.13.37

163.47.13.37 was found in our database!

This IP was reported 258 times. Confidence of Abuse is 100%: ?

100%

ISP	EZECOM CO., LTD.
Usage Type	Fixed Line ISP
ASN	AS38901
Hostname(s)	ezecom.163.47.13.0.37.ezecom.com.kh
Domain Name	ezecom.com.kh
Country	🇰🇭 Cambodia
City	Phnom Penh, Phnom Penh

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 163.47.13.37

Whois 163.47.13.37

IP Abuse Reports for 163.47.13.37:

This IP address has been reported a total of 258 times from 126 distinct sources. 163.47.13.37 was first reported on May 23rd 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 JCB	2026-06-23 15:36:00 (3 hours ago)	163.47.13.37 - - [23/Jun/2026:12:05:18 +0300] "GET /sftp-config.json HTTP/1.1" 404 196 "-" "python-r ... show more 163.47.13.37 - - [23/Jun/2026:12:05:18 +0300] "GET /sftp-config.json HTTP/1.1" 404 196 "-" "python-requests/2.32.5" 163.47.13.37 - - [23/Jun/2026:12:05:21 +0300] "GET /sftp-config.json HTTP/1.1" 404 196 "-" "python-requests/2.32.5" ... show less	Web App Attack Hacking
🇬🇧 Bytemark	2026-06-23 15:13:54 (3 hours ago)	163.47.13.37 - - [23/Jun/2026:16:13:53 +0100] "GET /sftp-config.json HTTP/1.1" 301 5863 "-" "python- ... show more 163.47.13.37 - - [23/Jun/2026:16:13:53 +0100] "GET /sftp-config.json HTTP/1.1" 301 5863 "-" "python-requests/2.32.5" show less	Brute-Force Web App Attack
🇺🇸 kosada.com	2026-06-23 13:09:16 (5 hours ago)	Web vulnerability probing: /.vscode/sftp.json	Web App Attack
🇫🇷 zulzeen	2026-06-23 12:02:44 (6 hours ago)	[incypit-web] Banned by Fail2ban (Jail: syswarden-badbots)	Hacking Web App Attack Bad Web Bot Port Scan
🇩🇪 Ba-Yu	2026-06-23 11:58:50 (7 hours ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇨🇭 4server	2026-06-23 07:51:42 (11 hours ago)	[TueJun2309:51:36.8239152026][security2:error][pid965387:tid965638][client163.47.13.37:0]ModSecurity ... show more [TueJun2309:51:36.8239152026][security2:error][pid965387:tid965638][client163.47.13.37:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"python-requests/\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"203\"][id\"332039\"][rev\"4\"][msg\"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/.\"][severity\"CRITICAL\"][hostname\"www.filarmonicaagno.ch\"][uri\"/sftp-config.json\"][unique_id\"ajo7CLzLynaffsdV_qkVWAAAAMA\"] show less	Hacking Web App Attack
🇩🇪 FeG Deutschland	2026-06-23 06:11:23 (12 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇸🇪 SkyDancer	2026-06-23 06:11:13 (12 hours ago)	Multiple unauthorized attempts to access using wrong credentials. Attack automatically blocked by Sk ... show more Multiple unauthorized attempts to access using wrong credentials. Attack automatically blocked by SkyDancer Ai. EXT-SYS-Vx show less	Hacking Brute-Force SSH
🇺🇸 raymarron.com	2026-06-23 00:10:21 (18 hours ago)	/.vscode/sftp.json (x2) /sftp-config.json (x2)	Web App Attack
🇧🇾 lns.bz	2026-06-22 16:17:12 (1 day ago)	Too many 404 requests [BY]	Web App Attack
🇬🇧 openstrike.co.uk	2026-06-21 05:13:43 (2 days ago)	3 attacks on password grabbing URLs: GET /.vscode/sftp.json HTTP/1.1	Hacking
🇸🇬 securejdprop	2026-06-20 09:37:05 (3 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ETN AGGRESSIVE IPs ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ETN AGGRESSIVE IPs Group 6). Ip 163.47.13.37 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-20 09:37:03.906169747 +0000 UTC show less	Hacking Web App Attack
🇬🇧 openstrike.co.uk	2026-06-20 05:13:17 (3 days ago)	3 attacks on password grabbing URLs: GET /.vscode/sftp.json HTTP/1.1	Hacking
🇯🇵 HeliJP	2026-06-19 23:45:06 (3 days ago)	2026-06-19T23:00:26Z - Recognized attacks\bad behavior from IP address 163.47.13.37 on port 443\80 ( ... show more 2026-06-19T23:00:26Z - Recognized attacks\bad behavior from IP address 163.47.13.37 on port 443\80 (5 daily hits): Request from Known Malicious Client (Based on previous traffic violations), Restricted File Access Attempt, Found User-Agent associated with scripting/generic HTTP client show less	Hacking Web App Attack Port Scan
🇩🇪 ut-addicted.com	2026-06-19 23:43:09 (3 days ago)	\[Sat Jun 20 01:43:07.879909 2026\] \[:error\] \[pid 30208:tid 139785832212224\] \[client 163.47.13. ... show more \[Sat Jun 20 01:43:07.879909 2026\] \[:error\] \[pid 30208:tid 139785832212224\] \[client 163.47.13.37:54008\] \[client 163.47.13.37\] ModSecurity: Access denied with code 403 \(phase 2\). Operator GE matched 5 at TX:anomaly_score. \[file "/usr/local/apache/modsecurity-owasp-latest/rules/REQUEST-949-BLOCKING-EVALUATION.conf"\] \[line "57"\] \[id "949110"\] \[msg "Inbound Anomaly Score Exceeded \(Total Score: 5\)"\] \[severity "CRITICAL"\] \[tag "application-multi"\] \[tag "language-multi"\] \[tag "platform-multi"\] \[tag "attack-generic"\] \[hostname "www.crx.it"\] \[uri "/sftp-config.json"\] \[unique_id "ajXUC@edPLW1bgHPVRO-@QAAAMc"\] show less	Brute-Force Web App Attack

Showing 1 to 15 of 258 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.128.15.127

🇺🇸 136.144.42.135

🇺🇸 130.49.94.55

🇷🇺 92.255.170.48

🇺🇸 69.164.217.245

🇺🇸 66.132.186.193

🇺🇸 24.97.253.246

🇳🇱 217.60.195.138

🇺🇸 195.184.76.208

🇮🇳 182.95.228.22

🇺🇸 172.120.164.129

🇺🇸 162.216.18.113

🇺🇸 136.144.42.31

🇨🇳 117.140.52.79

🇳🇱 45.148.10.147

🇺🇸 38.43.93.185

🇲🇽 38.22.170.10

🇧🇪 35.240.37.100

🇳🇱 2a10:3c0:3:0:1:27:0:5

🇷🇺 188.170.75.205