IP address

Search at other sites:
.050107.189.4.209
Shodan(more info)
Passive DNS
Tags:
IP blacklists
Spamhaus XBL CBL
107.189.4.209 is listed on the Spamhaus XBL CBL blacklist.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-03-27 18:47:44.485000
Was present on blacklist at: 2026-03-27 18:47
dan.me.uk TOR Nodes
107.189.4.209 is listed on the dan.me.uk TOR Nodes blacklist.

Description: List of TOR node IPs by dan.me.uk.
Type of feed: secondary (feed detail page)

Last checked at: 2026-03-27 16:10:00
Was present on blacklist at: 2026-03-27 16:10
TorProject
107.189.4.209 is listed on the TorProject blacklist.

Description: TorProject.org list of all current TOR exit points (TorDNSEL)
Type of feed: secondary (feed detail page)

Last checked at: 2026-03-27 16:10:00
Was present on blacklist at: 2026-03-27 16:10
FireHOL anonymizers
107.189.4.209 is listed on the FireHOL anonymizers blacklist.

Description: List of anonymizing IPs, aggregated from multiple lists by FireHOL.
Type of feed: secondary (feed detail page)

Last checked at: 2026-03-27 18:05:11
Was present on blacklist at: 2026-03-27 18:05

Threat categories

TLRoleCategoryDetails
38 src login protocol: ssh
port: 22
Warden events (2)
2026-03-27
IntrusionUserCompromise (node.9c160c): 1
AttemptLogin (node.9c160c): 1
Origin AS
AS53667 - PONYNET
BGP Prefix
107.189.0.0/21
geo
Luxembourg, Luxembourg
🕑 Europe/Luxembourg
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
107.189.0.0 - 107.189.31.255
last_activity
2026-03-27 18:47:30.048000
last_warden_event
2026-03-27 18:47:30.048000
rep
0.05
reserved_range
0
ts_added
2026-03-27 18:47:44.449000
ts_last_update
2026-03-27 18:48:04.981000

Warden event timeline

DShield event timeline

Presence on blacklists