Search IP addresses by ...

IP prefix
IPv4 prefix/subnet in CIDR format.
Hostname suffix
Suffix of the hostname associated with the IP address. Can be used to search all hosts under given (sub)domain.
ASN
Autonomous system number. Enter as "1234" or "AS1234”.
Country
Code of the country the IP address is probably located in (according to MaxMind database).
Source
Select IP addresses for which there are data (alerts, events, ...) from given primary data source(s).
OR
AND
Event category
Select IP addresses with Warden alerts of given category.
OR
AND
Blacklist
Select IP addresses listed on given blacklist(s).
OR
AND
Tag
Select IP addresses with given tag(s).
OR
AND

Sorting options

Sort by
Order
DESC
ASC
Max. number of addresses
IP addresses
Paste any text containing IPv4 addresses or prefixes in CIDR format. Search will return all addresses in NERD matching any of your addresses or prefixes.

Sorting options

Sort by
Order
DESC
ASC
Max. number of addresses

Results (≥20≥20)

IP address Hostname ASN Country Events Rep.(?) Other properties Time added Last activity Links
195.178.110.160 -- AS48090
BG 332683165
+ 241412 DShield reports
1.000 11 blacklists  22, 80, 3306, 5060, 5601database 2025-06-12 17:44:30 2025-07-10 07:20:03
45.140.17.26 -- AS198953
RU 9889132
+ 1692631 DShield reports
0.995 6 blacklists Login attempts Scanner  135, 445, 5985, 47001 2025-05-11 17:06:38 2025-07-10 07:19:42
185.93.89.118 -- IR 10839194
+ 974938 DShield reports
+ 77 OTX pulses
0.994 14 blacklists Scanner Login attempts 2025-02-08 17:19:39 2025-07-10 07:10:59
196.251.114.29 -- SC 42027153
+ 53724 DShield reports
+ 97 OTX pulses
0.992 6 blacklists Scanner  22scanner 2025-02-13 17:35:47 2025-07-10 07:20:39
46.105.70.190 b5.scanner.modat.io AS16276
FR 23109134
+ 645571 DShield reports
+ 1 OTX pulses
0.991 5 blacklists Scanner 2025-01-13 19:10:30 2025-07-10 06:58:03
45.135.232.24 -- AS198953
RU 43219112
+ 1239988 DShield reports
+ 1 OTX pulses
0.988 3 blacklists Login attempts  135, 137, 5985 2025-05-10 14:41:19 2025-07-10 07:21:59
45.148.10.240 -- AS48090
NL 8166164
+ 250971 DShield reports
+ 1 OTX pulses
0.988 11 blacklists Scanner Login attempts  22, 80scanner 2024-09-17 10:11:51 2025-07-10 06:44:56
193.32.162.146 -- AS47890
RO 7161104
+ 42969 DShield reports
0.983 10 blacklists Scanner Login attempts 2025-06-06 07:38:19 2025-07-10 07:13:59
193.32.162.157 -- AS47890
RO 9753184
+ 665266 DShield reports
+ 1 OTX pulses
0.980 14 blacklists Scanner Login attempts  22scanner 2025-05-10 13:46:54 2025-07-10 07:21:29
141.98.10.162 assaebloy.com AS133398
AS209605
LT 33876154
+ 329568 DShield reports
+ 1 OTX pulses
0.977 10 blacklists Scanner Login attempts 2025-06-11 09:09:59 2025-07-10 04:01:49
176.65.148.10 hosted-by.pfcloud.io AS51396
DE 67751195
+ 305750 DShield reports
+ 4 OTX pulses
0.977 12 blacklists Scanner Login attempts  22, 111scanner 2025-04-13 20:20:14 2025-07-10 07:22:59
196.251.88.103 -- ZA 27226144
+ 1698111 DShield reports
+ 2 OTX pulses
0.976 13 blacklists Login attempts Scanner  22scanner 2025-02-24 18:02:26 2025-07-10 06:50:30
193.32.162.141 -- AS47890
RO 548794
+ 42784 DShield reports
0.975 10 blacklists Scanner Login attempts 2025-06-06 07:41:38 2025-07-10 07:16:09
80.82.77.202 rnd.group-ib.com AS202425
NL 53607133
+ 307669 DShield reports
+ 8 OTX pulses
0.974 17 blacklists Scanner  80scanner 2023-08-17 16:11:05 2025-07-10 07:20:49
193.32.162.145 -- AS47890
RO 5296114
+ 42079 DShield reports
0.974 10 blacklists Scanner Login attempts 2025-06-06 07:36:57 2025-07-10 07:21:29
193.32.162.151 -- AS47890
RO 6358114
+ 42100 DShield reports
0.972 9 blacklists Scanner Login attempts 2025-06-06 07:43:00 2025-07-10 07:20:48
80.94.95.15 -- AS204428
RO 17501144
+ 395110 DShield reports
0.971 9 blacklists Login attempts  22, 2000scanner 2025-04-10 19:31:55 2025-07-10 07:19:42
34.38.39.17 17.39.38.34.bc.googleusercontent.com AS396982
BE 2387145
+ 19942 DShield reports
0.970 9 blacklists IP in hostname Scanner  80cloud 2025-06-25 23:11:52 2025-07-10 06:29:18
34.52.146.253 253.146.52.34.bc.googleusercontent.com AS396982
BE 2948155
+ 21202 DShield reports
0.970 7 blacklists IP in hostname Scanner 2025-06-26 14:48:49 2025-07-10 06:28:23
35.233.7.110 110.7.233.35.bc.googleusercontent.com AS396982
BE 1340135
+ 21449 DShield reports
0.968 9 blacklists IP in hostname Scanner  22cloud 2025-06-26 07:53:37 2025-07-09 18:06:49