Search IP addresses by ...

IP prefix
IPv4 prefix/subnet in CIDR format.
Hostname suffix
Suffix of the hostname associated with the IP address. Can be used to search all hosts under given (sub)domain.
ASN
Autonomous system number. Enter as "1234" or "AS1234”.
Country
Code of the country the IP address is probably located in (according to MaxMind database).
Source
Select IP addresses for which there are data (alerts, events, ...) from given primary data source(s).
OR
AND
Event category
Select IP addresses with Warden alerts of given category.
OR
AND
Blacklist
Select IP addresses listed on given blacklist(s).
OR
AND
Tag
Select IP addresses with given tag(s).
OR
AND

Sorting options

Sort by
Order
DESC
ASC
Max. number of addresses
IP addresses
Paste any text containing IPv4 addresses or prefixes in CIDR format. Search will return all addresses in NERD matching any of your addresses or prefixes.

Sorting options

Sort by
Order
DESC
ASC
Max. number of addresses

Results (≥20≥20)

IP address Hostname ASN Country Events Rep.(?) Other properties Time added Last activity Links
80.82.77.202 rnd.group-ib.com AS202425
NL 48587204
+ 350187 DShield reports
+ 10 OTX pulses 		0.959 15 blacklists Scanner  80, 443scanner 2023-08-17 16:11:05 2025-01-22 06:54:59
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
185.196.220.253 -- AS208046
US 367753
+ 70114 DShield reports 		0.935 4 blacklists Scanner 2025-01-07 16:49:58 2025-01-22 06:21:06
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
85.31.47.40 -- AS401116
NL 33970113
+ 63777 DShield reports
+ 38 OTX pulses 		0.934 8 blacklists Scanner  22scanner 2024-10-01 23:33:51 2025-01-22 06:54:59
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
46.19.138.234 showfreevids.com AS51852
CH 3408062
+ 629619 DShield reports 		0.934 5 blacklists Scanner  22scanner 2024-11-12 02:33:50 2025-01-22 06:55:07
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
57.129.64.237 ns3244433.ip-57-129-64.eu AS16276
FR 303453
+ 34237 DShield reports
+ 2 OTX pulses 		0.932 6 blacklists IP in hostname Scanner 2025-01-08 18:17:04 2025-01-22 06:42:20
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
193.68.89.3 -- AS60223
LV 1461373
+ 1613430 DShield reports
+ 4 OTX pulses 		0.930 6 blacklists Scanner  22, 8080scanner 2024-12-07 21:24:01 2025-01-22 06:56:40
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
3.143.152.247 scan.cypex.ai US 1265662
+ 517653 DShield reports
+ 1 OTX pulses 		0.929 4 blacklists Scanner 2024-11-17 16:10:16 2025-01-22 06:33:49
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
89.248.163.200 recyber.net AS202425
AS35539
GB 4704562
+ 1036050 DShield reports
+ 1 OTX pulses 		0.929 4 blacklists Scanner  22scanner 2022-09-21 19:44:24 2025-01-22 06:56:09
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
185.196.220.81 -- AS208046
US 11034973
+ 611573 DShield reports
+ 60 OTX pulses 		0.929 10 blacklists Scanner  22, 80scanner 2024-09-17 10:37:13 2025-01-22 06:58:39
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
5.181.190.248 -- AS201814
PL 765952
+ 217628 DShield reports
+ 2 OTX pulses 		0.929 6 blacklists Scanner  22scanner 2024-12-15 19:37:01 2025-01-22 06:55:50
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
18.223.104.85 scan.cypex.ai AS16509
US 2270662
+ 889235 DShield reports
+ 1 OTX pulses 		0.928 4 blacklists Scanner 2024-11-13 12:57:05 2025-01-22 06:54:49
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
95.44.176.148 95-44-176-148-dynamic.agg1.srd.blp-srl.eircom.net AS5466
IE 215642
+ 811 DShield reports 		0.921 2 blacklists Dynamic IP IP in hostname Scanner  22, 873, 8008 2023-05-19 14:47:40 2025-01-22 03:56:04
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
176.113.115.137 -- AS49505
AS57678
HK 1697962
+ 41552 DShield reports
+ 9 OTX pulses 		0.920 7 blacklists Scanner 2024-12-10 17:35:43 2025-01-22 06:56:19
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
185.196.8.92 -- AS42624
CH 991152
+ 33549 DShield reports 		0.920 6 blacklists Scanner  80 2024-12-19 20:35:36 2025-01-21 23:21:19
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
51.158.205.47 560a1c98-e6b1-4ded-b9ea-7946c314a6b5.nl-ams-1.baremetal.scw.cloud AS12876
FR 5429452
+ 90654 DShield reports 		0.917 4 blacklists Scanner  22, 53scanner 2024-02-24 01:54:40 2025-01-22 06:58:18
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
87.120.116.81 -- AS401115
BG 22681453
+ 373395 DShield reports
+ 72 OTX pulses 		0.916 9 blacklists Scanner  22, 31337scanner 2024-10-04 09:05:46 2025-01-22 06:57:52
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
184.105.247.247 scan-14m.shadowserver.org US 2512562
+ 82373 DShield reports
+ 1 OTX pulses 		0.911 6 blacklists Research scanner Scanner Whitelisted  80scanner 2016-07-12 04:34:48 2025-01-22 06:51:42
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
154.213.187.128 -- AS51396
SC 707653
+ 14023 DShield reports
+ 2 OTX pulses 		0.910 5 blacklists Scanner  22, 8080 2025-01-10 22:32:44 2025-01-22 04:02:25
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
57.129.64.10 ns3242012.ip-57-129-64.eu AS16276
FR 11529204
+ 112904 DShield reports
+ 2 OTX pulses 		0.906 8 blacklists IP in hostname Scanner 2024-11-19 16:45:16 2025-01-22 06:39:56
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
193.32.162.137 -- AS47890
RO 67484
+ 20976 DShield reports
+ 1 OTX pulses 		0.905 10 blacklists Scanner Login attempts 2025-01-06 23:27:06 2025-01-22 05:11:22
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield