Search IP addresses by ...

IP prefix
IPv4 prefix/subnet in CIDR format.
Hostname suffix
Suffix of the hostname associated with the IP address. Can be used to search all hosts under given (sub)domain.
ASN
Autonomous system number. Enter as "1234" or "AS1234”.
Country
Code of the country the IP address is probably located in (according to MaxMind database).
Source
Select IP addresses for which there are data (alerts, events, ...) from given primary data source(s).
OR
AND
Event category
Select IP addresses with Warden alerts of given category.
OR
AND
Blacklist
Select IP addresses listed on given blacklist(s).
OR
AND
Tag
Select IP addresses with given tag(s).
OR
AND

Sorting options

Sort by
Order
DESC
ASC
Max. number of addresses
IP addresses
Paste any text containing IPv4 addresses or prefixes in CIDR format. Search will return all addresses in NERD matching any of your addresses or prefixes.

Sorting options

Sort by
Order
DESC
ASC
Max. number of addresses

Results (≥20≥20)

IP address Hostname ASN Country Events Rep.(?) Other properties Time added Last activity Links
45.148.10.121 -- AS48090
NL 16923144
+ 353072 DShield reports 		0.999 11 blacklists Scanner Login attempts  22scanner 2025-12-06 02:39:49 2026-01-14 03:02:30
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
2.57.121.25 hosting25.tronicsat.com AS47890
RO 10402153
+ 173417 DShield reports 		0.999 10 blacklists IP in hostname Login attempts Scanner 2025-10-05 10:37:13 2026-01-14 02:53:27
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
2.57.121.112 dns112.personaliseplus.com AS47890
RO 16453153
+ 279797 DShield reports 		0.999 12 blacklists IP in hostname Login attempts Scanner  3389eol-os, self-signed 2025-10-04 21:56:26 2026-01-14 02:57:46
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
91.215.85.88 -- AS200593
RU 65247142
+ 1458258 DShield reports 		0.998 5 blacklists Login attempts  135, 137, 5985, 50100 2025-11-14 08:31:47 2026-01-14 03:03:27
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
45.140.17.97 -- AS198953
RU 13669142
+ 1629868 DShield reports 		0.995 8 blacklists Login attempts Scanner  135, 137, 5985, 50100 2025-09-21 18:44:46 2026-01-14 02:38:27
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
80.94.92.182 -- AS48090
AS47890
RO 13172173
+ 61739 DShield reports 		0.995 15 blacklists Scanner Login attempts 2025-11-18 16:26:32 2026-01-14 03:02:30
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
213.209.159.159 -- AS208137
DE 3428123
+ 39788 DShield reports 		0.993 12 blacklists Login attempts  80, 8080 2025-12-30 18:59:58 2026-01-14 03:03:00
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
80.94.92.165 -- AS48090
AS47890
RO 6266153
+ 101802 DShield reports 		0.991 15 blacklists Scanner Login attempts 2025-11-19 14:33:11 2026-01-14 02:04:19
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
193.32.162.146 -- AS47890
RO 22825173
+ 156544 DShield reports 		0.986 16 blacklists Scanner Login attempts 2025-06-06 07:38:19 2026-01-14 03:00:19
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
91.224.92.14 srv-91-224-92-14.serveroffer.net AS133398
AS209605
GB 86746134
+ 112403 DShield reports 		0.985 19 blacklists IP in hostname Scanner  22, 135, 445, 5985scanner 2025-10-22 14:19:29 2026-01-14 03:01:29
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
80.94.92.186 -- AS48090
AS47890
RO 9844174
+ 65070 DShield reports 		0.981 15 blacklists Scanner Login attempts 2025-11-18 16:25:46 2026-01-14 03:03:29
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
179.43.139.58 hostedby.privatelayer.com AS51852
CH 3297112
+ 17952 DShield reports 		0.977 1 blacklist Login attempts  135, 137, 445, 5985, 10000, ... 2025-09-02 11:57:48 2026-01-14 02:50:31
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
179.43.133.154 hostedby.privatelayer.com AS51852
CH 10577112
+ 70057 DShield reports 		0.973 1 blacklist Login attempts  135, 137, 445, 10000, 10005, ... 2025-09-02 11:59:39 2026-01-14 02:24:39
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
92.118.39.95 -- AS48090
AS47890
US 10351173
+ 153981 DShield reports 		0.973 16 blacklists Scanner Login attempts 2025-04-16 06:10:40 2026-01-14 02:42:03
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
185.11.61.151 -- AS57523
HK 8815112
+ 55850 DShield reports 		0.962 5 blacklists Login attempts 2025-12-15 14:17:05 2026-01-14 03:03:06
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
207.90.244.3 -- AS174
US 3434695
+ 212905 DShield reports 		0.961 10 blacklists Scanner  22, 500, 9002vpn 2022-12-08 21:05:49 2026-01-14 03:02:41
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
78.153.140.176 -- AS202306
GB 4785252
+ 213833 DShield reports
+ 4 OTX pulses 		0.958 9 blacklists Scanner  8080 2024-01-13 21:05:41 2026-01-14 03:01:49
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
185.11.61.226 -- AS57523
HK 12179112
+ 96988 DShield reports 		0.958 4 blacklists Login attempts 2025-12-15 06:51:30 2026-01-14 02:46:48
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
207.90.244.5 -- AS174
US 35105115
+ 219640 DShield reports 		0.954 10 blacklists Scanner  22, 500, 9002vpn 2022-12-10 20:58:44 2026-01-14 03:01:40
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
207.90.244.27 -- AS174
US 34297105
+ 220680 DShield reports 		0.954 10 blacklists Scanner  22, 123, 500, 4500, 9002vpn 2025-04-17 23:25:56 2026-01-14 03:02:03
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield