IP address

Search at other sites:

.036107.189.7.152

Shodan(more info)

Passive DNS

IP blacklists

CI Army

107.189.7.152 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2026-04-26 02:50:00.835000
Was present on blacklist at: 2026-04-26 02:50

Threat categories

TL	Role	Category	Details
72	src	scan	port: 60000
25	src	—

---

Warden events (16)

2026-04-25

ReconScanning (node.ce2b59): 4

2026-04-17

ReconScanning (node.ce2b59): 4

2026-04-06

ReconScanning (node.ce2b59): 4

ReconScanning (node.4dc198): 4

DShield reports (IP summary, reports)

2026-03-23

Number of reports: 39

Distinct targets: 6

2026-03-24

Number of reports: 39

Distinct targets: 6

2026-04-06

Number of reports: 93

Distinct targets: 14

2026-04-17

Number of reports: 48

Distinct targets: 7

2026-04-18

Number of reports: 48

Distinct targets: 7

2026-04-25

Number of reports: 52

Distinct targets: 7

Origin AS

AS53667 - PONYNET

BGP Prefix

107.189.0.0/21

geo

Luxembourg, Luxembourg

🕑 Europe/Luxembourg

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

107.189.0.0 - 107.189.31.255

last_activity

2026-04-25 17:18:03

last_warden_event

2026-04-25 17:18:03

rep

0.03571428571428571

reserved_range

0

Shodan's InternetDB

Open ports: 22, 80, 111, 1337, 3128

Tags: proxy

CPEs: cpe:/o:canonical:ubuntu_linux, cpe:/a:squid-cache:squid:4.10, cpe:/a:apache:http_server:2.4.41, cpe:/a:openbsd:openssh:8.2p1

ts_added

2026-03-24 05:02:07.751000

ts_last_update

2026-05-01 05:03:12.328000

Warden event timeline

DShield event timeline

Presence on blacklists