IP address


.000107.189.7.152
Shodan(more info)
Passive DNS
Tags:
IP blacklists
CI Army
107.189.7.152 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2024-12-17 03:50:00.946000
Was present on blacklist at: 2024-12-05 03:50, 2024-12-06 03:50, 2024-12-07 03:50, 2024-12-08 03:50, 2024-12-09 03:50, 2024-12-13 03:50, 2024-12-14 03:50, 2024-12-15 03:50, 2024-12-16 03:50, 2024-12-17 03:50
Warden events (81)
2024-12-15
ReconScanning (node.ce2b59): 2
2024-12-14
ReconScanning (node.ce2b59): 7
ReconScanning (node.368407): 1
ReconScanning (node.4dc198): 3
2024-12-13
ReconScanning (node.ce2b59): 4
ReconScanning (node.4dc198): 2
2024-12-12
ReconScanning (node.ce2b59): 4
ReconScanning (node.368407): 1
ReconScanning (node.4dc198): 1
2024-12-06
ReconScanning (node.ce2b59): 4
2024-12-05
ReconScanning (node.4dc198): 9
ReconScanning (node.ce2b59): 9
ReconScanning (node.368407): 4
2024-12-04
ReconScanning (node.ce2b59): 4
2024-12-02
ReconScanning (node.ce2b59): 11
2024-12-01
ReconScanning (node.ce2b59): 4
2024-11-17
ReconScanning (node.ce2b59): 2
2024-11-16
ReconScanning (node.ce2b59): 2
ReconScanning (node.4dc198): 2
ReconScanning (node.368407): 1
2024-11-01
ReconScanning (node.ce2b59): 4
DShield reports (IP summary, reports)
2024-11-01
Number of reports: 46
Distinct targets: 5
2024-11-16
Number of reports: 28
Distinct targets: 3
2024-12-01
Number of reports: 76
Distinct targets: 3
2024-12-02
Number of reports: 241
Distinct targets: 11
2024-12-04
Number of reports: 53
Distinct targets: 4
2024-12-05
Number of reports: 212
Distinct targets: 10
2024-12-06
Number of reports: 45
Distinct targets: 4
2024-12-12
Number of reports: 45
Distinct targets: 4
2024-12-13
Number of reports: 100
Distinct targets: 8
2024-12-14
Number of reports: 125
Distinct targets: 15
2024-12-15
Number of reports: 77
Distinct targets: 6
2025-01-07
Number of reports: 36
Distinct targets: 4
2025-01-08
Number of reports: 66
Distinct targets: 6
Origin AS
AS53667 - PONYNET
BGP Prefix
107.189.0.0/21
geo
Luxembourg, Luxembourg
🕑 Europe/Luxembourg
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
107.189.0.0 - 107.189.31.255
last_activity
2024-12-15 15:05:42
last_warden_event
2024-12-15 15:05:42
rep
0.0
reserved_range
0
Shodan's InternetDB
Open ports: 22, 80, 9001
Tags: tor
CPEs: cpe:/a:apache:http_server:2.4.41, cpe:/a:openbsd:openssh
ts_added
2024-07-17 21:12:33.994000
ts_last_update
2025-01-16 21:12:40.273000

Warden event timeline

DShield event timeline

Presence on blacklists