IP address

Search at other sites:
.015107.189.7.152
Shodan(more info)
Passive DNS
Tags: Scanner
IP blacklists
CI Army
107.189.7.152 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2026-04-26 02:50:00.835000
Was present on blacklist at: 2026-04-26 02:50

Threat categories

TLRoleCategoryDetails
48 src scan port: 21
Warden events (21)
2026-05-14
ReconScanning (node.ce2b59): 4
ReconScanning (node.4dc198): 1
2026-04-25
ReconScanning (node.ce2b59): 4
2026-04-17
ReconScanning (node.ce2b59): 4
2026-04-06
ReconScanning (node.ce2b59): 4
ReconScanning (node.4dc198): 4
DShield reports (IP summary, reports)
2026-03-23
Number of reports: 39
Distinct targets: 6
2026-03-24
Number of reports: 39
Distinct targets: 6
2026-04-06
Number of reports: 93
Distinct targets: 14
2026-04-17
Number of reports: 48
Distinct targets: 7
2026-04-18
Number of reports: 48
Distinct targets: 7
2026-04-25
Number of reports: 52
Distinct targets: 7
Origin AS
AS53667 - PONYNET
BGP Prefix
107.189.0.0/21
geo
Luxembourg, Luxembourg
🕑 Europe/Luxembourg
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
107.189.0.0 - 107.189.31.255
last_activity
2026-05-14 00:10:36
last_warden_event
2026-05-14 00:10:36
rep
0.015342025747371313
reserved_range
0
Shodan's InternetDB
Open ports: 22, 80, 111, 1337, 3128
Tags: proxy
CPEs: cpe:/o:canonical:ubuntu_linux, cpe:/a:apache:http_server:2.4.41, cpe:/a:openbsd:openssh:8.2p1, cpe:/a:squid-cache:squid:4.10
ts_added
2026-03-24 05:02:07.751000
ts_last_update
2026-05-17 05:02:10.172000

Warden event timeline

DShield event timeline

Presence on blacklists