🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 1006105 Page: 2543 / 10062 (100 per page) Showing: 254201-254300 Last Imported: 14/07/2026, 07:44:58
🇨🇳 483,673
🇺🇸 290,578
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 112.124.44.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 08/04/2026, 20:03:16 | 15/04/2026, 13:30:34 | - | - | - | - | - | - |
| 13.192.170.•••:443 | - | 🇯🇵 Japan | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services Japan | 08/04/2026, 20:03:16 | 12/07/2026, 15:28:38 | No | No | - | CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200 | 21/05/2026, 06:11:55 | - |
| 58.247.24.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS17621 | China Unicom Shanghai network | China Unicom Shanghai | 08/04/2026, 20:03:16 | 14/04/2026, 23:19:49 | Yes | No | - | - | 14/04/2026, 16:55:23 | chinaunicom.cn |
| 36.151.144.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS56046 | China Mobile communications corporation | China Mobile | 08/04/2026, 20:03:16 | 13/07/2026, 17:54:04 | Yes | No | - | - | 04/06/2026, 13:00:18 | chinamobile.com, chinamobile.cn |
| 47.94.191.•••:2002 | - | 🇨🇳 China mainland | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 08/04/2026, 20:03:16 | 12/04/2026, 00:05:15 | No | No | - | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 12/04/2026, 00:07:03 | - |
| 98.83.77.•••:80 | - | 🇺🇸 United States | Yes | false | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 08/04/2026, 20:03:16 | 15/04/2026, 01:35:28 | - | - | - | - | - | - |
| 113.44.195.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS55990 | Huawei Cloud Service data center | Huawei Cloud | 08/04/2026, 20:03:15 | 17/04/2026, 07:52:25 | Yes | No | - | - | 14/04/2026, 08:25:55 | smartcom.cc, huawei.com, huaweidevice.com |
| 68.64.179.•••:443 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS139659 | LUCIDACLOUD LIMITED | LucidCloud | 08/04/2026, 20:03:15 | 08/04/2026, 22:52:35 | - | - | - | - | - | - |
| 154.193.238.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS400619 | AROSSCLOUD INC. | Fastmos Co Limited | 08/04/2026, 20:03:15 | 11/04/2026, 19:41:19 | No | No | - | - | 02/04/2026, 23:38:42 | - |
| 98.126.102.•••:10190 | - | 🇺🇸 United States | Yes | false | Clean | AS4213 | Krypt Technologies | Krypt Technologies | 08/04/2026, 20:03:15 | 15/04/2026, 01:34:27 | Yes | Yes | APT14, APT15, APT28, APT31, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers, WIRTE | CVE-2000-1210, CVE-2001-0590, CVE-2002-0493, CVE-2005-4838, CVE-2006-20001, CVE-2006-7196, CVE-2007-1358, CVE-2007-2449, CVE-2008-0128, CVE-2009-2696, CVE-2013-2185, CVE-2013-4286, CVE-2013-4322, CVE-2013-4352, CVE-2013-4444, CVE-2013-4590, CVE-2013-5704, CVE-2013-6357, CVE-2013-6438, CVE-2014-0075, CVE-2014-0096, CVE-2014-0098, CVE-2014-0099, CVE-2014-0117, CVE-2014-0118, CVE-2014-0119, CVE-2014-0226, CVE-2014-0231, CVE-2014-3523, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8735, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-8022, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-3618, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-24813, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:38:44 | vpls.net, vpls.com |
| 47.82.72.•••:80 | - | 🇺🇸 United States | Yes | false | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 08/04/2026, 20:03:15 | 07/06/2026, 07:35:35 | Yes | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:38:45 | hichina.com, alibaba-inc.com |
| 117.50.184.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS23724 | IDC, China Telecommunications Corporation / AS4808 China Unicom Beijing Province Network | UCloud | 08/04/2026, 20:03:15 | 20/06/2026, 18:10:44 | Yes | Yes | APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347 | 08/04/2026, 23:38:47 | ucloud.cn |
| 167.71.167.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 20:03:15 | 08/04/2026, 23:37:45 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:38:51 | - |
| 107.148.176.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS21859 | Zenlayer Inc | Peg Tech Inc | 08/04/2026, 20:03:14 | 08/04/2026, 23:37:45 | No | No | - | - | 02/04/2026, 23:38:59 | - |
| 204.168.218.•••:18789 | - | 🇫🇮 Finland | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 08/04/2026, 20:03:13 | 11/04/2026, 20:20:20 | No | No | - | CVE-2012-5533, CVE-2013-4508, CVE-2013-4559, CVE-2013-4560, CVE-2014-2323, CVE-2014-2324, CVE-2015-3200, CVE-2018-19052, CVE-2019-11072 | 08/04/2026, 23:39:05 | - |
| 54.255.230.•••:443 | - | 🇸🇬 Singapore | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services Japan | 08/04/2026, 20:03:13 | 15/04/2026, 12:46:46 | No | No | - | - | 02/04/2026, 23:39:14 | - |
| 47.95.218.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 08/04/2026, 20:03:13 | 15/04/2026, 12:01:36 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 08/04/2026, 23:39:19 | - |
| 154.193.234.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS400619 | AROSSCLOUD INC. | Fastmos Co Limited | 08/04/2026, 20:03:12 | 11/04/2026, 21:05:24 | No | No | - | - | 02/04/2026, 23:39:22 | - |
| 106.12.76.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS38365 | Beijing Baidu Netcom Science and Technology Co., Ltd. | Baidu | 08/04/2026, 20:03:12 | 12/07/2026, 00:24:02 | Yes | No | - | - | 08/04/2026, 23:39:28 | baidu.com |
| 54.180.135.•••:443 | - | 🇰🇷 South Korea | Yes | false | Clean | AS16509 | Amazon.com, Inc. | AWS Seoul Region | 08/04/2026, 20:03:12 | 15/04/2026, 11:22:24 | No | - | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728 | 08/04/2026, 23:39:30 | - |
| 154.193.236.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS400619 | AROSSCLOUD INC. | Fastmos Co Limited | 08/04/2026, 20:03:12 | 08/04/2026, 23:37:44 | No | No | - | - | 02/04/2026, 23:39:31 | - |
| 13.124.7.•••:443 | - | 🇰🇷 South Korea | Yes | false | Clean | AS16509 | Amazon.com, Inc. | AWS Seoul Region | 08/04/2026, 20:03:12 | 17/06/2026, 10:54:26 | No | No | - | - | 02/04/2026, 23:39:35 | - |
| 185.245.96.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS216188 | Bieber IT GmbH | Host-Unlimited.de | 08/04/2026, 20:03:12 | 17/04/2026, 10:05:57 | No | Yes | Salt Typhoon | CVE-2018-1000024, CVE-2018-1172, CVE-2019-12519, CVE-2019-12521, CVE-2019-12523, CVE-2019-12525, CVE-2019-12526, CVE-2019-12529, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2020-11945, CVE-2020-14058, CVE-2020-15049, CVE-2020-24606, CVE-2020-25097, CVE-2021-28651, CVE-2021-28652, CVE-2021-31807, CVE-2021-46784, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728 | 08/04/2026, 23:39:45 | - |
| 47.93.235.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 08/04/2026, 20:03:12 | 17/04/2026, 23:57:40 | - | - | - | - | - | - |
| 5.78.188.•••:10324 | - | 🇺🇸 United States | Yes | false | Leaked | AS212317 | Hetzner Online GmbH | Hetzner Online | 08/04/2026, 20:03:12 | 08/04/2026, 23:37:42 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:39:52 | hetzner.com |
| 51.21.235.•••:80 | - | 🇸🇪 Sweden | Yes | false | Clean | AS16509 | Amazon.com, Inc. | A100 Row | 08/04/2026, 20:03:11 | 12/07/2026, 18:20:04 | No | No | - | - | 02/04/2026, 23:39:55 | - |
| 91.98.85.•••:80 | - | 🇩🇪 Germany | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 08/04/2026, 20:03:11 | 14/04/2026, 21:01:54 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:39:58 | - |
| 140.228.70.•••:443 | - | 🇬🇧 United Kingdom | Yes | false | Clean | AS56478 | Hyperoptic Ltd | Hyperoptic | 08/04/2026, 20:03:11 | 12/04/2026, 00:50:18 | No | Yes | APT-C-23, APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA428, TA505, Volt Typhoon, WIRTE | CVE-2006-20001, CVE-2016-20012, CVE-2017-8923, CVE-2017-9118, CVE-2017-9120, CVE-2019-17567, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-35452, CVE-2020-9490, CVE-2021-21703, CVE-2021-21704, CVE-2021-21705, CVE-2021-21706, CVE-2021-21707, CVE-2021-21708, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31625, CVE-2022-31626, CVE-2022-31628, CVE-2022-31629, CVE-2022-31630, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2022-4900, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-4577, CVE-2024-47252, CVE-2024-5458, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-65082, CVE-2025-66200 | 08/04/2026, 23:39:59 | - |
| 100.34.120.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS701 | Verizon Business | Verizon Business | 08/04/2026, 20:03:11 | 17/04/2026, 10:05:40 | Yes | No | - | CVE-2024-12254, CVE-2024-12718, CVE-2024-3219, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-12084, CVE-2025-13836, CVE-2025-13837 | 08/04/2026, 23:40:05 | chickenkiller.com, verizon.com, ddns.net |
| 118.100.171.•••:18789 | - | 🇲🇾 Malaysia | - | false | Leaked | AS4788 | TM TECHNOLOGY SERVICES SDN. BHD. | ADSL StreamyX | 08/04/2026, 20:03:11 | 08/04/2026, 23:37:42 | Yes | No | - | CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200 | 08/04/2026, 23:40:08 | unifi.my, tm.com.my, tmone.com.my |
| 103.241.64.•••:443 | - | 🇬🇧 United Kingdom | Yes | false | Clean | AS210329 | Kamatera Inc | CloudWebManage EU LO | 08/04/2026, 20:03:11 | 09/04/2026, 07:53:52 | Yes | Yes | APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387 | 08/04/2026, 23:40:11 | omc.co.il |
| 217.182.168.•••:19001 | - | 🇫🇷 France | Yes | false | Leaked | AS16276 | OVH SAS | OVH | 08/04/2026, 20:03:11 | 13/07/2026, 18:37:15 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team | CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2018-15919, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:40:22 | ovh.net |
| 119.45.211.•••:18888 | - | 🇨🇳 China mainland | Yes | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 08/04/2026, 20:03:10 | 11/04/2026, 10:55:20 | No | No | - | - | 02/04/2026, 23:40:30 | - |
| 15.204.106.•••:10201 | - | 🇺🇸 United States | Yes | false | Leaked | AS16276 | OVH SAS | Sd One Network | 08/04/2026, 20:03:10 | 12/07/2026, 20:28:19 | Yes | No | - | CVE-2018-16845, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419 | 08/04/2026, 23:40:34 | pebblehost.com, ovhcloud.com |
| 8.147.110.•••:18789 | - | 🇸🇬 Singapore | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 08/04/2026, 20:03:10 | 14/04/2026, 10:34:00 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 08/04/2026, 23:40:35 | - |
| 165.22.203.•••:443 | - | 🇳🇱 Netherlands | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 20:03:10 | 08/04/2026, 23:37:41 | No | Yes | APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:40:37 | - |
| 97.107.134.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS63949 | Akamai Connected Cloud | Linode | 08/04/2026, 20:03:10 | 11/04/2026, 10:54:19 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-65082, CVE-2025-66200 | 08/04/2026, 23:40:42 | - |
| 123.207.45.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 08/04/2026, 20:03:10 | 12/07/2026, 10:26:40 | Yes | No | - | - | 21/05/2026, 06:40:33 | tencent.com |
| 165.22.43.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 20:03:08 | 12/07/2026, 19:45:18 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:40:57 | - |
| 170.64.158.•••:8443 | - | 🇦🇺 Australia | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 20:03:08 | 29/05/2026, 00:09:05 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387 | 08/04/2026, 23:41:00 | - |
| 121.196.168.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 08/04/2026, 20:03:08 | 08/04/2026, 23:37:40 | Yes | No | - | - | 08/04/2026, 23:41:02 | aliyun.com |
| 13.250.114.•••:443 | - | 🇸🇬 Singapore | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 08/04/2026, 20:03:08 | 09/04/2026, 14:37:50 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:41:03 | - |
| 46.224.171.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 08/04/2026, 20:03:08 | 15/04/2026, 01:34:13 | No | No | - | - | 02/04/2026, 23:41:05 | - |
| 101.34.35.•••:30021 | - | 🇨🇳 China mainland | Yes | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 08/04/2026, 20:03:08 | 01/06/2026, 21:43:04 | - | - | - | - | - | - |
| 147.45.144.•••:443 | - | 🇷🇺 Russia | Yes | false | Leaked | AS9123 | JSC "TIMEWEB" | Taiwan Cloud | 08/04/2026, 20:03:08 | 15/04/2026, 01:35:21 | Yes | Yes | APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-6484, CVE-2024-6485, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:41:12 | timeweb.ru |
| 211.154.22.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS146817 | Hubei Feixun Network Co., Ltd | Hubei Feixun Network | 08/04/2026, 20:03:08 | 14/07/2026, 03:52:46 | No | No | - | - | 02/04/2026, 23:41:15 | - |
| 206.189.40.•••:443 | - | 🇸🇬 Singapore | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 20:03:08 | 14/07/2026, 03:53:39 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2024-6484, CVE-2024-6485, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:41:19 | - |
| 47.99.240.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 08/04/2026, 20:03:07 | 17/04/2026, 23:58:32 | No | No | - | - | 02/04/2026, 23:41:20 | - |
| 38.12.20.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS400619 | AROSSCLOUD INC. | PEG Technology | 08/04/2026, 20:03:07 | 08/04/2026, 23:37:39 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 08/04/2026, 23:41:25 | cogentco.com |
| 46.225.155.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 08/04/2026, 20:03:07 | 08/04/2026, 23:37:39 | No | No | - | - | 02/04/2026, 23:41:26 | - |
| 182.160.12.•••:18789 | - | 🇸🇬 Singapore | Yes | false | Leaked | AS136907 | HUAWEI CLOUDS | Huawei Cloud Hong Kong | 08/04/2026, 20:03:07 | 11/04/2026, 22:35:15 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:41:27 | smartcom.cc, huawei.com, huaweidevice.com |
| 122.51.223.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 08/04/2026, 20:03:07 | 08/04/2026, 23:37:39 | Yes | No | - | - | 08/04/2026, 23:41:29 | tencent.com |
| 47.99.221.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 08/04/2026, 20:03:07 | 17/04/2026, 23:14:28 | No | Yes | APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE | CVE-2016-20012, CVE-2018-17189, CVE-2018-17199, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-16905, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-42252, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728 | 08/04/2026, 23:41:32 | - |
| 195.226.194.•••:18789 | - | 🇳🇱 Netherlands | Yes | false | Leaked | AS57043 | HOSTKEY B.V. | Snowd Security | 08/04/2026, 20:03:07 | 14/06/2026, 22:23:28 | Yes | Yes | APT15, APT28, APT31, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:41:38 | chickenkiller.com, mooo.com |
| 39.77.238.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Shandong | 08/04/2026, 20:03:07 | 08/04/2026, 23:37:39 | Yes | No | - | - | 08/04/2026, 23:41:41 | chinaunicom.cn |
| 132.232.166.•••:18888 | - | 🇨🇳 China mainland | Yes | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 08/04/2026, 20:03:06 | 11/04/2026, 20:20:26 | - | - | - | - | - | - |
| 58.221.234.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | Nantong Dongcheng Info Corp | 08/04/2026, 20:03:06 | 08/04/2026, 23:37:37 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2014-4078, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:41:57 | - |
| 62.234.31.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 08/04/2026, 20:03:06 | 14/07/2026, 03:53:53 | No | No | - | - | 02/04/2026, 23:41:58 | - |
| 173.232.149.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS62904 | Eonix Corporation | Eonix Corporation | 08/04/2026, 20:03:06 | 17/04/2026, 20:13:50 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:41:59 | eonix.net |
| 14.22.83.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS135089 | China Telecom | CHINANET Guangdong | 08/04/2026, 20:03:06 | 08/04/2026, 23:37:37 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:42:00 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 103.93.129.•••:18789 | - | 🇮🇩 Indonesia | Yes | false | Leaked | AS133800 | PT Biznet Gio Nusantara | Biznet Gio Nusantara | 08/04/2026, 20:03:06 | 05/06/2026, 13:15:39 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 21/05/2026, 12:00:38 | biznetgio.com |
| 185.227.134.•••:443 | - | 🇸🇬 Singapore | Yes | false | Leaked | AS141995 | Contabo Asia Private Limited | Contabo | 08/04/2026, 20:03:06 | 17/04/2026, 23:58:14 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 23:42:05 | contabo.de, duckdns.org, contabo.net |
| 103.106.189.•••:9004 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS401696 | cognetcloud INC | I Layer Limited | 08/04/2026, 20:03:04 | 15/04/2026, 13:31:07 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 15/04/2026, 10:45:06 | - |
| 27.152.85.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS4134 | Chinanet | Quanzhou Broadband MAN | 08/04/2026, 20:03:04 | 08/04/2026, 23:37:35 | - | - | - | - | - | - |
| 51.75.76.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS16276 | OVH SAS | OVH Germany | 08/04/2026, 20:03:04 | 08/04/2026, 23:37:35 | - | - | - | - | - | - |
| 111.196.185.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4808 | China Unicom Beijing Province Network | China Unicom Beijing | 08/04/2026, 20:03:03 | 08/04/2026, 23:37:35 | - | - | - | - | - | - |
| 18.141.210.•••:443 | - | 🇸🇬 Singapore | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 08/04/2026, 20:03:03 | 08/04/2026, 23:37:35 | - | - | - | - | - | - |
| 143.198.27.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 20:03:03 | 14/07/2026, 03:53:35 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 21/05/2026, 02:01:15 | - |
| 145.241.123.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS31898 | Oracle Corporation | Oracle Sweden | 08/04/2026, 20:03:03 | 17/04/2026, 23:58:07 | Yes | No | - | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 17:48:49 | healtheintent.com, purewellness.com, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oraclecloudservices.com, rsys2.net, hyperroll.com, orcale.com, oraclemobile.com, sun.co.in, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, elementfusion.com, oracleemaildelivery.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, skire.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, optika.com, jcp.org, smed.com, cernerenviza-tw.com, recruitmax.com, decisioneering.com, stortek.com, seebeyond.com, livelook.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com |
| 173.249.0.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS51167 | Contabo GmbH | Contabo | 08/04/2026, 20:03:03 | 11/07/2026, 17:58:44 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 23/05/2026, 16:43:17 | contaboserver.net, contabo.de, contabo.net |
| 136.115.182.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 08/04/2026, 20:03:03 | 17/04/2026, 10:07:17 | No | No | - | - | 11/04/2026, 10:09:40 | - | |
| 176.124.215.•••:443 | - | 🇷🇺 Russia | Yes | false | Clean | AS9123 | JSC "TIMEWEB" | Taiwan Cloud | 08/04/2026, 20:03:03 | 15/04/2026, 13:31:40 | No | Yes | APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 12/04/2026, 13:54:54 | - |
| 118.24.188.•••:8443 | - | 🇨🇳 China mainland | Yes | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 08/04/2026, 20:03:03 | 17/04/2026, 23:14:31 | - | - | - | - | - | - |
| 120.48.41.•••:18789 | Assistant | 🇺🇸 United States | Yes | false | Leaked | AS38365 | Beijing Baidu Netcom Science and Technology Co., Ltd. | Baidu | 08/04/2026, 20:03:03 | 09/04/2026, 00:22:47 | Yes | Yes | APT17, APT37, DragonFly, El-Machete, Gozi, Packrat | - | 09/04/2026, 00:30:11 | baidu.com |
| 47.81.58.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 08/04/2026, 20:03:03 | 09/04/2026, 00:22:47 | Yes | No | - | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 09/04/2026, 00:30:12 | hichina.com, alibaba-inc.com |
| 159.195.104.•••:443 | - | 🇩🇪 Germany | Yes | false | Clean | AS197540 | netcup GmbH | Netcup | 08/04/2026, 20:03:02 | 24/05/2026, 10:01:26 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 09/04/2026, 00:30:14 | - |
| 154.193.238.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS400619 | AROSSCLOUD INC. | Fastmos Co Limited | 08/04/2026, 20:03:02 | 11/04/2026, 10:54:51 | No | No | - | - | 03/04/2026, 00:30:24 | - |
| 46.224.163.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 08/04/2026, 20:03:02 | 20/05/2026, 23:10:26 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 09/04/2026, 00:30:26 | - |
| 154.81.38.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS140869 | Turing Group Limited | Turing Group Limited | 08/04/2026, 20:03:02 | 15/04/2026, 01:34:22 | No | No | - | - | 03/04/2026, 00:30:28 | - |
| 101.43.4.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 08/04/2026, 20:03:02 | 24/05/2026, 10:43:25 | Yes | Yes | APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347 | 09/04/2026, 00:30:32 | tencent.com |
| 152.42.164.•••:443 | - | 🇸🇬 Singapore | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 20:03:02 | 16/04/2026, 01:24:10 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 09/04/2026, 00:30:33 | - |
| 159.89.35.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 20:03:02 | 26/06/2026, 12:44:25 | No | Yes | APT14, APT15, APT17, APT28, APT29, APT31, APT32, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon, WIRTE | CVE-2006-20001, CVE-2012-5519, CVE-2016-20012, CVE-2017-12172, CVE-2017-15098, CVE-2017-15099, CVE-2018-1052, CVE-2018-1053, CVE-2018-1058, CVE-2018-10915, CVE-2018-10925, CVE-2018-1115, CVE-2018-16850, CVE-2019-10130, CVE-2019-10164, CVE-2019-10208, CVE-2019-17567, CVE-2019-9193, CVE-2020-10733, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-14349, CVE-2020-14350, CVE-2020-15778, CVE-2020-1720, CVE-2020-1927, CVE-2020-1934, CVE-2020-25694, CVE-2020-25695, CVE-2020-25696, CVE-2020-35452, CVE-2020-9490, CVE-2021-23214, CVE-2021-23222, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-32027, CVE-2021-32028, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-43767, CVE-2021-44224, CVE-2021-44790, CVE-2022-1552, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-2625, CVE-2022-26377, CVE-2022-26691, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 09/04/2026, 00:34:53 | - |
| 13.124.234.•••:443 | - | 🇰🇷 South Korea | Yes | false | Leaked | AS16509 | Amazon.com, Inc. | AWS Seoul Region | 08/04/2026, 20:03:02 | 13/07/2026, 07:08:49 | Yes | No | - | CVE-2023-44487, CVE-2024-7347, CVE-2025-23419 | 09/04/2026, 00:34:55 | youngonecorporation.com, thenorthfacekorea.co.kr, youngone.co.kr |
| 154.193.234.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS400619 | AROSSCLOUD INC. | Fastmos Co Limited | 08/04/2026, 20:03:02 | 12/04/2026, 00:48:37 | No | No | - | - | 03/04/2026, 00:41:07 | - |
| 91.99.125.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 08/04/2026, 20:03:02 | 17/04/2026, 23:57:34 | Yes | No | - | CVE-2015-9253, CVE-2017-8923, CVE-2018-12882, CVE-2018-14851, CVE-2018-14883, CVE-2018-15132, CVE-2018-17082, CVE-2018-19518, CVE-2018-19935, CVE-2018-20783, CVE-2019-11036, CVE-2019-11038, CVE-2019-11039, CVE-2019-11040, CVE-2019-11041, CVE-2019-11042, CVE-2019-11043, CVE-2019-11044, CVE-2019-11045, CVE-2019-11046, CVE-2019-11047, CVE-2019-11048, CVE-2019-11050, CVE-2019-13224, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9022, CVE-2019-9023, CVE-2019-9024, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9640, CVE-2019-9641, CVE-2020-7059, CVE-2020-7060, CVE-2020-7061, CVE-2020-7062, CVE-2020-7063, CVE-2020-7064, CVE-2020-7066, CVE-2020-7067, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2022-31628, CVE-2022-31629, CVE-2022-37454, CVE-2022-4900, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 09/04/2026, 00:41:09 | hetzner.com |
| 213.199.58.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS51167 | Contabo GmbH | Contabo | 08/04/2026, 20:03:00 | 17/04/2026, 20:13:40 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728 | 08/04/2026, 21:21:43 | contabo.de, contabo.net |
| 154.193.236.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS400619 | AROSSCLOUD INC. | Fastmos Co Limited | 08/04/2026, 20:03:00 | 12/04/2026, 00:49:21 | No | No | - | - | 02/04/2026, 21:21:44 | - |
| 15.160.187.•••:18789 | - | 🇮🇹 Italy | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Data Services Italy | 08/04/2026, 20:03:00 | 12/07/2026, 06:06:57 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 21:21:48 | - |
| 164.92.130.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 20:03:00 | 11/04/2026, 10:54:18 | No | Yes | APT15, APT28, APT31, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728 | 08/04/2026, 21:21:49 | - |
| 204.168.184.•••:18789 | - | 🇫🇮 Finland | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 08/04/2026, 20:03:00 | 09/04/2026, 00:22:45 | No | No | - | - | 02/04/2026, 21:21:54 | - |
| 100.23.49.•••:443 | - | 🇺🇸 United States | Yes | false | Leaked | AS16509 | Amazon.com, Inc. | Amazon | 08/04/2026, 20:03:00 | 12/04/2026, 00:50:20 | Yes | No | - | CVE-2025-23419 | 08/04/2026, 21:21:55 | docstoccdn.com, apps.net, entellium.com, intuitstatic.com, intuitcdn.net, payroll.com, quickbooks.com, tsheets.com, intuit.com, intuitwebsites.com, origamilogic.com, mint.com, echo-inc.com, porticor.com, intuitquickbooks.com, check.net, kartoffelsoft.com, qbcontent.com |
| 202.95.17.•••:443 | - | 🇸🇬 Singapore | Yes | false | Clean | AS152194 | CTG Server Limited | Rackip Consultancy | 08/04/2026, 20:03:00 | 12/04/2026, 00:49:13 | No | No | - | - | 02/04/2026, 21:21:57 | - |
| 134.175.183.•••:8080 | - | 🇨🇳 China mainland | Yes | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 08/04/2026, 20:03:00 | 17/04/2026, 23:58:58 | No | Yes | APT1 Comment Crew, APT10, APT27, APT28, APT29, APT33, APT34, APT35, APT37, APT39, APT41, Cobalt Group, Donot Team, Earth Longzhi, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers, Turla APT Group, Volatile Kitten | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2021-41617 | 08/04/2026, 21:22:00 | - |
| 101.35.102.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 08/04/2026, 20:03:00 | 12/07/2026, 18:20:06 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 08/04/2026, 21:22:02 | tencent.com |
| 217.13.102.•••:18789 | - | 🇭🇺 Hungary | Yes | false | Clean | AS12301 | Invitech ICT Services Kft. | Infotipp | 08/04/2026, 20:02:59 | 09/04/2026, 00:22:44 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728 | 08/04/2026, 21:22:06 | - |
| 154.193.232.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS400619 | AROSSCLOUD INC. | Fastmos Co Limited | 08/04/2026, 20:02:59 | 09/04/2026, 00:22:44 | No | No | - | - | 02/04/2026, 21:22:08 | - |
| 42.112.175.•••:18789 | - | 🇻🇳 Vietnam | - | false | Leaked | AS18403 | FPT Telecom Company | FPT Telecom | 08/04/2026, 20:02:59 | 09/04/2026, 00:22:44 | Yes | - | - | CVE-2019-14834, CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687, CVE-2021-3448, CVE-2022-0934, CVE-2023-28450, CVE-2023-50387 | 08/04/2026, 21:22:09 | fpt.com |
| 47.250.178.•••:8889 | - | 🇺🇸 United States | Yes | false | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 08/04/2026, 20:02:59 | 17/04/2026, 04:06:50 | Yes | Yes | APT29, APT34, APT41, Bluenoroff, Callisto Group, Gaza Cybergang, Hafnium Group, MuddyWater Group, Patchwork, Sandworm Team, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 21:22:15 | hichina.com, alibaba-inc.com |
| 74.50.99.•••:30104 | - | 🇺🇸 United States | Yes | false | Clean | AS29802 | HIVELOCITY, Inc. | Hivelocity | 08/04/2026, 20:02:59 | 15/04/2026, 12:01:37 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 08/04/2026, 21:22:19 | - |
| 198.44.177.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS154321 | CORENET CLOUD SDN. BHD. | HK Cloud X-2 | 08/04/2026, 20:02:59 | 12/04/2026, 00:48:47 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 21:22:22 | - |