IP address

Search at other sites:
.013107.189.7.152
Shodan(more info)
Passive DNS
Tags: Scanner
IP blacklists
CI Army
107.189.7.152 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2026-02-23 03:50:00.963000
Was present on blacklist at: 2026-02-12 03:50, 2026-02-13 03:50, 2026-02-21 03:50, 2026-02-22 03:50, 2026-02-23 03:50

Threat categories

TLRoleCategoryDetails
44 src scan
Warden events (13)
2026-02-21
ReconScanning (node.4dc198): 3
2026-02-07
ReconScanning (node.4dc198): 4
2026-01-25
ReconScanning (node.4dc198): 6
DShield reports (IP summary, reports)
2026-01-25
Number of reports: 192
Distinct targets: 20
2026-01-26
Number of reports: 192
Distinct targets: 20
Origin AS
AS53667 - PONYNET
BGP Prefix
107.189.0.0/21
geo
Luxembourg, Luxembourg
🕑 Europe/Luxembourg
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
107.189.0.0 - 107.189.31.255
last_activity
2026-02-21 00:49:39
last_warden_event
2026-02-21 00:49:39
rep
0.0125
reserved_range
0
Shodan's InternetDB
Open ports: 80, 111, 1337, 3128
Tags: proxy
CPEs: cpe:/o:canonical:ubuntu_linux, cpe:/a:squid-cache:squid:4.10, cpe:/a:apache:http_server:2.4.41
ts_added
2026-01-25 22:58:47.086000
ts_last_update
2026-03-04 22:58:50.106000

Warden event timeline

DShield event timeline

Presence on blacklists