Search IP addresses by ...

IP prefix
IPv4 prefix/subnet in CIDR format.
Hostname suffix
Suffix of the hostname associated with the IP address. Can be used to search all hosts under given (sub)domain.
ASN
Autonomous system number. Enter as "1234" or "AS1234”.
Country
Code of the country the IP address is probably located in (according to MaxMind database).
Source
Select IP addresses for which there are data (alerts, events, ...) from given primary data source(s).
OR
AND
Event category
Select IP addresses with Warden alerts of given category.
OR
AND
Blacklist
Select IP addresses listed on given blacklist(s).
OR
AND
Tag
Select IP addresses with given tag(s).
OR
AND

Sorting options

Sort by
Order
DESC
ASC
Max. number of addresses
IP addresses
Paste any text containing IPv4 addresses or prefixes in CIDR format. Search will return all addresses in NERD matching any of your addresses or prefixes.

Sorting options

Sort by
Order
DESC
ASC
Max. number of addresses

Results (≥20≥20)

IP address Hostname ASN Country Events Rep.(?) Other properties Time added Last activity Links
2.57.121.112 dns112.personaliseplus.com AS47890
RO 14894143
+ 275156 DShield reports 		0.998 11 blacklists IP in hostname Login attempts Scanner 2025-10-04 21:56:26 2025-12-13 04:09:41
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
91.215.85.88 -- AS200593
RU 30448132
+ 723440 DShield reports 		0.997 5 blacklists Login attempts 2025-11-14 08:31:47 2025-12-13 04:24:43
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
2.57.121.25 hosting25.tronicsat.com AS47890
RO 8594142
+ 165967 DShield reports 		0.997 9 blacklists IP in hostname Login attempts Scanner 2025-10-05 10:37:13 2025-12-13 04:23:52
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
45.140.17.97 -- AS198953
RU 14074132
+ 1766372 DShield reports 		0.996 8 blacklists Login attempts Scanner  135, 137, 5985, 50100 2025-09-21 18:44:46 2025-12-13 04:05:49
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
193.32.162.146 -- AS47890
RO 25154174
+ 124332 DShield reports 		0.993 16 blacklists Scanner Login attempts  22scanner 2025-06-06 07:38:19 2025-12-13 04:21:07
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
179.43.133.154 hostedby.privatelayer.com AS51852
CH 3317132
+ 29412 DShield reports 		0.984 1 blacklist Login attempts  135, 137, 445, 5985, 10000, ... 2025-09-02 11:59:39 2025-12-13 04:24:02
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
78.128.112.74 ip-112-74.4vendeta.com AS202325
AS208637
BG 8291144
+ 202573 DShield reports 		0.983 8 blacklists IP in hostname Login attempts Scanner  22 2025-05-28 12:16:17 2025-12-13 04:17:01
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
179.43.139.58 hostedby.privatelayer.com AS51852
CH 1745122
+ 14128 DShield reports 		0.981 1 blacklist Login attempts  137, 445, 5985, 10000, 10001, ... 2025-09-02 11:57:48 2025-12-12 22:07:52
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
80.94.92.186 -- AS48090
AS47890
RO 4946164
+ 28477 DShield reports 		0.980 13 blacklists Scanner Login attempts 2025-11-18 16:25:46 2025-12-13 03:40:08
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
80.94.92.182 -- AS48090
AS47890
RO 6302163
+ 27502 DShield reports 		0.980 13 blacklists Scanner Login attempts 2025-11-18 16:26:32 2025-12-13 04:16:03
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
77.83.207.83 -- AS216341
HK 21687152
+ 163553 DShield reports 		0.978 4 blacklists Login attempts  135, 137, 445, 3389, 5985, ...self-signed 2025-07-16 04:54:12 2025-12-13 04:13:28
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
77.83.207.82 -- AS216341
HK 18607152
+ 190278 DShield reports 		0.971 5 blacklists Login attempts  135, 137, 445, 3389, 5985, ...self-signed 2025-08-30 06:18:58 2025-12-13 04:22:57
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
207.90.244.5 -- AS174
US 27503125
+ 176000 DShield reports 		0.970 10 blacklists Scanner  22, 4500, 9002vpn 2022-12-10 20:58:44 2025-12-13 04:22:30
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
176.32.195.85 scan.f6.security AS197834
AM 38506265
+ 67428 DShield reports
+ 12 OTX pulses 		0.969 10 blacklists Scanner  80 2025-06-19 14:22:43 2025-12-13 04:13:55
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
80.94.92.166 -- AS48090
AS47890
RO 2836153
+ 47842 DShield reports 		0.969 12 blacklists Login attempts Scanner 2025-11-19 14:32:58 2025-12-13 03:45:51
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
78.153.140.178 -- AS202306
GB 3172752
+ 170142 DShield reports
+ 3 OTX pulses 		0.969 10 blacklists Scanner  80, 8080eol-product 2024-01-13 21:03:17 2025-12-13 04:22:30
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
207.90.244.20 -- AS174
US 27091115
+ 172782 DShield reports 		0.968 8 blacklists Scanner  22, 123, 4500, 9002vpn 2025-04-17 23:01:18 2025-12-13 04:24:00
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
207.90.244.25 -- AS174
US 26068105
+ 174332 DShield reports 		0.967 9 blacklists Scanner  22, 123, 500, 4500, 9002vpn 2025-04-17 23:19:22 2025-12-13 04:21:20
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
207.90.244.13 -- AS174
US 26377115
+ 173282 DShield reports 		0.966 9 blacklists Scanner  22, 500, 9002vpn 2024-12-11 02:13:13 2025-12-13 04:22:19
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
207.90.244.22 -- AS174
US 26328115
+ 175999 DShield reports 		0.965 8 blacklists Scanner  22, 123, 500, 9002vpn 2025-04-17 23:09:24 2025-12-13 04:20:39
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield