Search IP addresses by ...

IP prefix
IPv4 prefix/subnet in CIDR format.
Hostname suffix
Suffix of the hostname associated with the IP address. Can be used to search all hosts under given (sub)domain.
ASN
Autonomous system number. Enter as "1234" or "AS1234”.
Country
Code of the country the IP address is probably located in (according to MaxMind database).
Source
Select IP addresses for which there are data (alerts, events, ...) from given primary data source(s).
OR
AND
Event category
Select IP addresses with Warden alerts of given category.
OR
AND
Blacklist
Select IP addresses listed on given blacklist(s).
OR
AND
Tag
Select IP addresses with given tag(s).
OR
AND

Sorting options

Sort by
Order
DESC
ASC
Max. number of addresses
IP addresses
Paste any text containing IPv4 addresses or prefixes in CIDR format. Search will return all addresses in NERD matching any of your addresses or prefixes.

Sorting options

Sort by
Order
DESC
ASC
Max. number of addresses

Results (≥20≥20)

IP address Hostname ASN Country Events Rep.(?) Other properties Time added Last activity Links
45.148.10.121 -- AS48090
NL 28932174
+ 468694 DShield reports
+ 1 OTX pulses 		0.999 15 blacklists Scanner Login attempts 2025-12-06 02:39:49 2026-02-04 01:25:49
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
176.120.22.52 -- AS198953
RU 2580132
+ 92792 DShield reports
+ 2 OTX pulses 		0.998 6 blacklists Login attempts Scanner 2026-01-16 11:03:58 2026-02-04 01:18:49
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
91.215.85.88 -- AS200593
RU 91920142
+ 1746647 DShield reports 		0.997 5 blacklists Login attempts  135, 137, 5985, 50100 2025-11-14 08:31:47 2026-02-04 01:25:43
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
80.94.92.171 -- AS48090
AS47890
RO 3341133
+ 226475 DShield reports
+ 1 OTX pulses 		0.990 14 blacklists Scanner Login attempts  22 2025-11-19 15:20:59 2026-02-04 01:22:39
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
92.118.39.95 -- AS48090
AS47890
US 13397173
+ 170566 DShield reports
+ 2 OTX pulses 		0.983 16 blacklists Scanner Login attempts 2025-04-16 06:10:40 2026-02-04 01:21:08
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
179.43.133.154 hostedby.privatelayer.com AS51852
CH 19471112
+ 78249 DShield reports 		0.983 1 blacklist Login attempts  135, 137, 445, 5985, 10000, ... 2025-09-02 11:59:39 2026-02-03 23:57:22
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
130.12.180.51 -- AS214943
US 2784133
+ 21151 DShield reports 		0.982 4 blacklists Malware Login attempts  22 2025-12-20 07:34:46 2026-02-03 23:26:33
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
179.43.139.58 hostedby.privatelayer.com AS51852
CH 6232112
+ 24049 DShield reports 		0.981 1 blacklist Login attempts  135, 137, 445, 5985, 10001, ... 2025-09-02 11:57:48 2026-02-04 00:38:27
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
92.118.39.72 -- AS48090
AS47890
US 3135142
+ 387599 DShield reports
+ 125 OTX pulses 		0.978 15 blacklists Scanner Login attempts  22scanner 2025-01-05 11:23:47 2026-02-04 01:25:42
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
92.118.39.56 -- AS48090
AS47890
US 3388143
+ 370831 DShield reports
+ 1 OTX pulses 		0.973 13 blacklists Scanner Login attempts  22scanner 2025-06-06 22:18:48 2026-02-04 01:24:39
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
80.94.92.182 -- AS48090
AS47890
RO 15474184
+ 75710 DShield reports 		0.973 15 blacklists Scanner Login attempts 2025-11-18 16:26:32 2026-02-04 01:00:20
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
2.57.122.238 -- AS48090
AS47890
RO 1315114
+ 184226 DShield reports 		0.971 16 blacklists Scanner Login attempts  22, 80scanner 2025-11-06 15:20:09 2026-02-04 01:21:37
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
78.153.140.178 -- AS202306
GB 4979552
+ 167839 DShield reports
+ 3 OTX pulses 		0.964 9 blacklists Scanner  80, 8080eol-product, scanner 2024-01-13 21:03:17 2026-02-03 19:12:32
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
89.42.231.200 -- AS206264
NL 1227172
+ 146610 DShield reports
+ 1 OTX pulses 		0.960 7 blacklists Scanner  22scanner 2025-06-08 21:26:20 2026-02-04 01:22:29
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
193.32.162.157 -- AS47890
RO 20310165
+ 454516 DShield reports
+ 2 OTX pulses 		0.956 17 blacklists Scanner Login attempts  22scanner 2025-05-10 13:46:54 2026-02-04 01:25:38
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
147.139.164.196 -- AS45102
ID 2417103
+ 10574 DShield reports 		0.955 5 blacklists Scanner Login attempts  21, 22, 80, 443, 3306self-signed, cloud, database, eol-product 2024-10-17 09:08:32 2026-02-04 00:08:20
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
207.90.244.3 -- AS174
US 3929795
+ 218674 DShield reports 		0.955 11 blacklists Scanner  22, 500, 4500, 9002vpn 2022-12-08 21:05:49 2026-02-04 01:24:59
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
92.118.39.92 -- AS48090
AS47890
US 8878163
+ 132329 DShield reports 		0.954 15 blacklists Scanner Login attempts  22scanner 2025-06-06 07:34:19 2026-02-03 21:55:08
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
185.246.130.20 -- AS42237
SE 3298122
+ 66953 DShield reports 		0.952 8 blacklists Login attempts  135, 137, 139, 3306, 5985, ...database 2024-10-29 11:05:11 2026-02-04 00:58:40
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
207.90.244.2 -- AS174
US 39299105
+ 233914 DShield reports 		0.951 11 blacklists Scanner  22, 4500, 9002vpn 2022-12-08 05:10:54 2026-02-04 01:21:39
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield