Search IP addresses by ...

IP prefix
IPv4 prefix/subnet in CIDR format.
Hostname suffix
Suffix of the hostname associated with the IP address. Can be used to search all hosts under given (sub)domain.
ASN
Autonomous system number. Enter as "1234" or "AS1234”.
Country
Code of the country the IP address is probably located in (according to MaxMind database).
Source
Select IP addresses for which there are data (alerts, events, ...) from given primary data source(s).
OR
AND
Event category
Select IP addresses with Warden alerts of given category.
OR
AND
Blacklist
Select IP addresses listed on given blacklist(s).
OR
AND
Tag
Select IP addresses with given tag(s).
OR
AND

Sorting options

Sort by
Order
DESC
ASC
Max. number of addresses
IP addresses
Paste any text containing IPv4 addresses or prefixes in CIDR format. Search will return all addresses in NERD matching any of your addresses or prefixes.

Sorting options

Sort by
Order
DESC
ASC
Max. number of addresses

Results (≥20≥20)

IP address Hostname ASN Country Events Rep.(?) Other properties Time added Last activity Links
5.101.0.66 -- AS34665
RU 20056205
+ 67083 DShield reports
+ 9 OTX pulses 		0.981 11 blacklists Scanner  80scanner 2024-10-17 13:22:35 2024-12-21 12:15:19
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
80.82.77.202 rnd.group-ib.com AS202425
NL 54550214
+ 363531 DShield reports
+ 9 OTX pulses 		0.980 15 blacklists Scanner  80, 443scanner 2023-08-17 16:11:05 2024-12-21 12:14:49
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
85.31.47.40 -- AS401116
NL 33599113
+ 61507 DShield reports
+ 33 OTX pulses 		0.977 8 blacklists Scanner  22scanner 2024-10-01 23:33:51 2024-12-21 12:15:20
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
92.255.85.188 -- AS207566
HK 159682
+ 69944 DShield reports
+ 21 OTX pulses 		0.969 12 blacklists Login attempts  22, 80, 4000scanner, eol-product 2024-11-08 17:08:30 2024-12-20 22:23:47
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
185.246.128.133 -- AS42237
SE 1138272
+ 768435 DShield reports 		0.969 1 blacklist Login attempts  135, 139, 445, 5985 2023-08-01 09:26:36 2024-12-21 11:57:23
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
85.192.56.68 for-maid.aeza.network AS216246
RU 1366772
+ 608876 DShield reports 		0.969 2 blacklists Login attempts 2024-08-05 15:49:27 2024-12-21 11:46:38
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
46.19.138.234 www.showfreevids.com AS51852
CH 2033262
+ 343982 DShield reports 		0.967 5 blacklists Scanner  22scanner 2024-11-12 02:33:50 2024-12-21 12:13:29
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
2.57.122.189 -- AS48090
AS47890
RO 245483
+ 21226 DShield reports
+ 4 OTX pulses 		0.967 9 blacklists Scanner Login attempts 2024-12-06 00:41:46 2024-12-21 11:39:59
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
3.136.208.236 scan.cypex.ai AS16509
US 1377562
+ 524404 DShield reports
+ 1 OTX pulses 		0.965 4 blacklists Scanner 2024-11-13 13:00:53 2024-12-21 12:12:29
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
185.208.156.160 -- AS42624
SC 2917652
+ 107503 DShield reports
+ 1 OTX pulses 		0.957 6 blacklists Scanner  22scanner 2024-11-06 21:09:53 2024-12-21 12:15:29
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
89.248.163.200 recyber.net AS202425
AS35539
GB 5048472
+ 1077408 DShield reports
+ 1 OTX pulses 		0.955 4 blacklists Scanner  22scanner 2022-09-21 19:44:24 2024-12-21 12:11:09
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
193.200.78.3 -- AS214967
LT 1076662
+ 246487 DShield reports 		0.955 4 blacklists Scanner  22, 1337scanner 2024-10-29 21:43:58 2024-12-21 05:28:49
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
95.214.53.205 -- AS201814
PL 1419163
+ 369398 DShield reports
+ 3 OTX pulses 		0.954 6 blacklists Scanner 2024-11-18 03:17:14 2024-12-21 12:09:24
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
93.174.93.12 rnd.group-ib.com AS202425
NL 3739952
+ 112021 DShield reports 		0.948 4 blacklists Scanner  80, 443scanner 2024-07-18 15:27:18 2024-12-21 12:13:16
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
95.214.55.79 -- AS201814
PL 3040662
+ 415024 DShield reports 		0.948 7 blacklists Scanner  22scanner 2024-10-24 16:23:50 2024-12-21 12:15:20
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
141.98.11.155 srv-141-98-11-155.serveroffer.net AS209605
LT 614163
+ 89624 DShield reports
+ 1 OTX pulses 		0.948 8 blacklists IP in hostname Scanner  135, 137, 445, 3389, 5985self-signed 2024-12-04 22:09:36 2024-12-21 12:13:29
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
95.214.53.211 -- AS201814
PL 2784294
+ 246579 DShield reports
+ 3 OTX pulses 		0.948 7 blacklists Scanner  22, 80 2024-11-04 13:24:46 2024-12-21 08:27:49
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
194.169.175.107 -- AS211760
AS216419
AS209605
NL 16420154
+ 518267 DShield reports
+ 4 OTX pulses 		0.946 11 blacklists Scanner Login attempts  22scanner 2024-03-10 18:34:27 2024-12-21 12:09:19
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
218.92.0.198 -- AS4134
CN 147371
+ 128913 DShield reports 		0.946 13 blacklists Login attempts 2024-11-01 17:00:12 2024-12-20 22:38:04
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield
185.196.220.81 -- AS208046
US 11645373
+ 480648 DShield reports
+ 47 OTX pulses 		0.944 11 blacklists Scanner  22, 80scanner 2024-09-17 10:37:13 2024-12-21 12:01:37
  Shodan   Censys   valli.org   whatismyipaddress.com   AbuseIPDB   Talos Intelligence Center   Greynoise Visualizer   DShield