JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 203.166.152.133

203.166.152.133 was found in our database!

This IP was reported 106 times. Confidence of Abuse is 100%: ?

100%

ISP	truview LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS207990
Domain Name	truviewllc.com
Country	🇺🇸 United States of America
City	Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 203.166.152.133

Whois 203.166.152.133

IP Abuse Reports for 203.166.152.133:

This IP address has been reported a total of 106 times from 68 distinct sources. 203.166.152.133 was first reported on February 11th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-06-09 22:28:03 (4 days ago)		Brute-Force Web App Attack
🇫🇷 geot	2026-06-09 10:33:13 (4 days ago)	HEAD /.env.bak HTTP/1.1	Hacking Web App Attack
🇫🇷 SpaceHost-Server	2026-06-08 22:27:57 (5 days ago)		Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-06-08 22:00:17 (5 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-07. show less	Web App Attack SSH Hacking
🇩🇪 FeG Deutschland	2026-06-08 15:05:45 (5 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇧🇪 voormedia	2026-06-08 13:21:48 (5 days ago)	Accessed trap at '/.travis.yml'	Web App Attack
🇪🇸 el-brujo	2026-06-08 12:34:25 (5 days ago)	Cloudflare WAF: Request Path: /wp-config.php Request Query: Host: foro.elhacker.net userAgent: Mozi ... show more Cloudflare WAF: Request Path: /wp-config.php Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected]) Action: block Source: firewallManaged ASN Description: HostRoyale Technologies Pvt Ltd Country: US Method: HEAD Timestamp: 2026-06-08T12:34:25Z ruleId: 7994335d116849f7a0ab6b771d1d0db7. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇫🇷 Donovan	2026-06-08 12:18:14 (5 days ago)	Web scan/exploit blocked by fail2ban on commitshift.fr - jail: npm-scan - 1 attempt(s)	Web App Attack
🇫🇷 bazter.pro	2026-06-08 12:08:19 (5 days ago)	Auto-Ban [2026-06-08 15:08:10]: CRITICAL: .env attack; DC: truview LLC [Paths: 16] \| Details: Exploi ... show more Auto-Ban [2026-06-08 15:08:10]: CRITICAL: .env attack; DC: truview LLC [Paths: 16] \| Details: Exploit trap paths: /.kube/config, /.env.local.swo, /wordpress/wp-config.php \| Sensitive files/paths: /appsettings.json.swp, /.kube/config, /.yarnrc.yml, /.env.local.swo, /.htpasswd.swp \| 404 errors (16): /persistence.xml, /.env.local.swo, /.idea/dataSources.local.xml, /config/default.json, /kubernetes.yaml, /.database.php.swp, /.htpasswd.swp, /application.properties.swp, /k8s.yml, /wordpress/wp-config.php (and 4 more) \| 403 errors (2): /.kube/config, /.yarnrc.yml show less	Web App Attack Hacking
🇫🇷 Coco Bongo	2026-06-08 11:51:48 (5 days ago)	203.166.152.133 [redacted].contaboserver.net (207990-HostRoyale Technologies Pvt Ltd Canada Toronto) ... show more 203.166.152.133 [redacted].contaboserver.net (207990-HostRoyale Technologies Pvt Ltd Canada Toronto) - - [08/Jun/2026:13:49:15 +0200] "HEAD /.env.local.swp HTTP/1.1" 404 0 "-" "Mozilla/5.0 (compatible; ... show less	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-08 11:39:18 (5 days ago)	URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .b ... show more URL file extension is restricted by policy. String match within ".ani/ .asa/ .asax/ .ascx/ .back/ .backup/ .bak/ .bck/ .bk/ .bkp/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .cnf/ .com/ .compositefont/ .config/ .conf/ .copy/ .crt/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dist/ .dll/ .dos/ .dpkg-dist/ .drv/ .gadget/ .hta/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .inf/ .ini/ .jks/ .jse/ .key/ .licx/ .lnk/ .log/ .mdb/ .msc/ .ocx/ .old/ .pass/ .pdb/ .pfx/ .pif/ .pem/ .pol/ .prf/ .printer/ .pwd/ .rdb/ .rdp/ .reg/ .resources/ .resx/ .sav/ .save/ .scr/ .sct/ .sh/ .shs/ .sql/ .sqlite/ .sqlite3/ .swap/ .swo/ .swp/ .sys/ .temp/ .tfstate/ .tlb/ .tmp/ .vb/ .vbe/ .vbs/ .vbproj/ .vsdisco/ .vxd/ .webinfo/ .ws/ .wsc/ .wsf/ .wsh/ .xsd/ .xsx/" at TX:extension. (920440-193) show less	Hacking
🇫🇷 LoneRider	2026-06-08 11:37:38 (5 days ago)	[08/Jun/2026:13:33:23.606706 +0200] aiaog0xARtICYESdPP96hgAAAAc 203.166.152.133 42902 127.0.0.1 7081 ... show more [08/Jun/2026:13:33:23.606706 +0200] aiaog0xARtICYESdPP96hgAAAAc 203.166.152.133 42902 127.0.0.1 7081 [08/Jun/2026:13:33:47.763632 +0200] aiaom0xARtICYESdPP96iAAAAAc 203.166.152.133 48016 127.0.0.1 7081 [08/Jun/2026:13:37:38.484279 +0200] aiapgq6Z4HqZ_Xoc5LNUYAAAAAE 203.166.152.133 49546 127.0.0.1 7081 ... show less	Hacking
🇬🇧 ISPLtd	2026-06-08 11:18:31 (5 days ago)	203.166.152.133 [08/Jun/2026:08:17:22 -0300] claire.target.domain:80 URL:/.env.example.swp "HEAD /.e ... show more 203.166.152.133 [08/Jun/2026:08:17:22 -0300] claire.target.domain:80 URL:/.env.example.swp "HEAD /.env.example.swp 203.166.152.133 [08/Jun/2026:08:18:30 -0300] claire.target.domain:80 URL:/.env.php.swp "HEAD /.env.php.swp ... show less	Hacking Web App Attack
🇫🇷 mrcrassi	2026-06-08 11:15:56 (5 days ago)	Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK Protocol: HTTP/1.1 (HEAD met ... show more Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK Protocol: HTTP/1.1 (HEAD method) Endpoint: /blog/wp-config.php UA: Mozilla/5.0 (compatible; WhiteWebSecurity/1.0; +https://whitewebsecurity.com; [email protected]) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-06-08 11:14:18 (5 days ago)	Hacking Attempt	Hacking Web App Attack

Showing 1 to 15 of 106 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 73.91.172.40

🇩🇪 69.5.169.121

🇭🇰 223.197.248.209

🇧🇷 205.210.31.176

🇺🇸 198.98.56.205

🇧🇷 170.78.133.49

🇦🇷 167.250.118.53

🇨🇳 39.104.62.104

🇺🇸 2001:470:1:332::49

🇨🇳 182.138.158.53

🇺🇸 165.154.36.62

🇺🇸 136.107.214.190

🇳🇱 91.92.40.44

🇺🇸 72.14.178.148

🇺🇸 64.62.197.37

🇳🇱 45.148.10.152

🇨🇳 39.144.138.2

🇺🇸 35.196.116.188

🇨🇦 34.130.46.154

🇨🇦 15.235.11.7