IP address

Passive DNS

Tags: Scanner

IP blacklists

blocklist.de web-login

161.33.79.74 is listed on the blocklist.de web-login blacklist.

Description: Blocklist.de feed is a free and voluntary service provided by a Fraud/Abuse-specialist. IPs that attacks Joomla, Wordpress and other Web-Logins with Brute-Force Logins.
Type of feed: primary (feed detail page)

Last checked at: 2026-03-31 22:05:05.145000
Was present on blacklist at: 2026-03-20 11:05, 2026-03-20 17:05, 2026-03-20 23:05, 2026-03-21 05:05, 2026-03-21 11:05, 2026-03-21 17:05, 2026-03-21 23:05, 2026-03-22 05:05, 2026-03-27 17:05, 2026-03-27 23:05, 2026-03-28 05:05, 2026-03-28 11:05, 2026-03-28 17:05, 2026-03-28 23:05, 2026-03-29 04:05, 2026-03-29 10:05, 2026-03-30 04:05, 2026-03-30 10:05, 2026-03-30 16:05, 2026-03-30 22:05, 2026-03-31 04:05, 2026-03-31 10:05, 2026-03-31 16:05, 2026-03-31 22:05

Spamhaus XBL CBL

161.33.79.74 is listed on the Spamhaus XBL CBL blacklist.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2026-03-27 11:06:11.922000
Was present on blacklist at: 2026-03-20 11:06, 2026-03-27 11:06

blocklist.de Apache

161.33.79.74 is listed on the blocklist.de Apache blacklist.

Description: Blocklist.de feed is a free and voluntary service provided by a Fraud/Abuse-specialist. IPs performing attacks on the service Apache, Apache-DDOS, RFI-Attacks.
Type of feed: primary (feed detail page)

Last checked at: 2026-03-31 22:05:05.138000
Was present on blacklist at: 2026-03-20 11:05, 2026-03-20 17:05, 2026-03-20 23:05, 2026-03-21 05:05, 2026-03-21 11:05, 2026-03-21 17:05, 2026-03-21 23:05, 2026-03-22 05:05, 2026-03-27 17:05, 2026-03-27 23:05, 2026-03-28 05:05, 2026-03-28 11:05, 2026-03-28 17:05, 2026-03-28 23:05, 2026-03-29 04:05, 2026-03-29 10:05, 2026-03-30 04:05, 2026-03-30 10:05, 2026-03-30 16:05, 2026-03-30 22:05, 2026-03-31 04:05, 2026-03-31 10:05, 2026-03-31 16:05, 2026-03-31 22:05

AbuseIPDB

161.33.79.74 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc. Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2026-03-28 05:00:00.605000
Was present on blacklist at: 2026-03-21 05:00, 2026-03-23 05:00, 2026-03-28 05:00

Threat categories

TL	Role	Category	Details
46	src	—
42	src	login
39	src	scan	port: 443

Warden events (17)

2026-03-31: ReconScanning (node.ce2b59): 3
2026-03-30: ReconScanning (node.ce2b59): 6; AnomalyTraffic (node.6a1878): 1
2026-03-29: ReconScanning (node.ce2b59): 1
2026-03-28: ReconScanning (node.ce2b59): 2
2026-03-27: ReconScanning (node.ce2b59): 2
2026-03-25: ReconScanning (node.ce2b59): 2

Origin AS: AS31898 - ORACLE-BMC-31898
BGP Prefix: 161.33.64.0/19
geo: Australia, Melbourne; 🕑 Australia/Melbourne
hostname: (null)
Address block ('inetnum' or 'NetRange' in whois database): 161.33.0.0 - 161.33.255.255
last_activity: 2026-03-31 20:11:00
last_warden_event: 2026-03-31 20:11:00
rep: 0.28260788690476185
reserved_range: 0
ts_added: 2026-03-20 11:06:06.702000
ts_last_update: 2026-03-31 22:05:45.049000

Warden event timeline

DShield event timeline

Presence on blacklists