🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 683295 Page: 370 / 6833 (100 per page) Showing: 36901-37000 Last Imported: 19/04/2026, 08:41:00
Build With Vivgrid

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.

Explore Vivgrid
Showing page 370 of 6833
Previous Next
Endpoint Assistant Name Country auth_requiredis_activehas_leaked_credsasnasn_nameorgfirst_seenlast_seenasi_has_breachasi_has_threat_actorasi_threat_actorsasi_cvesasi_enriched_atasi_domains
140.210.28.•••:18789 - 🇨🇳 China mainland Yes true Clean AS56046China Mobile communications corporationBangrun Network Technology12/04/2026, 13:44:4315/04/2026, 13:31:11 No No --06/04/2026, 13:53:15-
140.245.41.•••:18789 - 🇺🇸 United States Yes true Leaked AS31898Oracle CorporationOracle12/04/2026, 13:44:4315/04/2026, 13:30:27 Yes No --12/04/2026, 13:53:19healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
120.48.172.•••:18789 Assistant 🇨🇳 China mainland Yes true Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu12/04/2026, 13:44:4312/04/2026, 15:41:33 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Gozi, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161712/04/2026, 13:53:20baidu.com
103.23.149.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS154321CORENET CLOUD SDN. BHD.GCC Cloud Technology12/04/2026, 13:44:4315/04/2026, 12:46:40 No No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-3272812/04/2026, 13:53:21-
2409:8a20:891:aa50::2a2:18789 - 🇨🇳 China mainland - true Clean AS56046China Mobile communications corporationChina Mobile12/04/2026, 13:44:4215/04/2026, 12:46:45 - - ----
219.143.140.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS4847China Networks Inter-ExchangeChinaNet12/04/2026, 13:44:4217/04/2026, 20:13:44 Yes No --12/04/2026, 13:53:33bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn
139.186.172.•••:18789 - 🇨🇳 China mainland Yes true Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud12/04/2026, 13:44:4115/04/2026, 13:31:53 - - ----
114.246.101.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS4808China Unicom Beijing Province NetworkChina Unicom Beijing12/04/2026, 13:44:4112/04/2026, 15:41:32 Yes Yes Packrat-12/04/2026, 13:53:43chinaunicom.cn
104.168.56.•••:18789 - 🇺🇸 United States Yes true Leaked AS36352HostPapaHostPapa12/04/2026, 13:44:4016/04/2026, 01:23:57 Yes Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:53:47hostpapa.com
47.116.52.•••:18789 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft12/04/2026, 13:44:4015/04/2026, 13:30:48 - - ----
159.223.126.•••:18789 - 🇺🇸 United States Yes true Clean AS14061DigitalOcean, LLCDigitalOcean12/04/2026, 13:44:4017/04/2026, 23:57:34 No Yes APT15, APT28, APT29, APT31, APT34, APT35, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MoustachedBouncer, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2007-4559, CVE-2013-0340, CVE-2015-20107, CVE-2016-20012, CVE-2016-3189, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-25032, CVE-2019-12900, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-10735, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-28861, CVE-2021-36368, CVE-2021-3737, CVE-2021-41617, CVE-2022-26488, CVE-2022-37454, CVE-2022-42919, CVE-2022-45061, CVE-2023-24329, CVE-2023-27043, CVE-2023-28531, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:53:53-
3.144.2.•••:443 - 🇺🇸 United States Yes true Clean AS16509Amazon.com, Inc.Amazon12/04/2026, 13:44:4016/04/2026, 12:15:30 No No -CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:53:54-
134.209.227.•••:18789 - 🇩🇪 Germany Yes true Clean AS14061DigitalOcean, LLCDigitalOcean12/04/2026, 13:44:4012/04/2026, 15:41:30 No Yes APT-C-23, APT28, APT35, APT37, APT39, Callisto Group, Cobalt Group, Gamaredon Group, Ghostwriter, Kimsuky, Lazarus Group, MoustachedBouncer, Mustang Panda, Sandworm Team, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2013-0340, CVE-2015-20107, CVE-2016-20012, CVE-2016-3189, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-25032, CVE-2019-12900, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-10735, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-28861, CVE-2021-3618, CVE-2021-36368, CVE-2021-3733, CVE-2021-3737, CVE-2021-41617, CVE-2021-4189, CVE-2022-0391, CVE-2022-37454, CVE-2022-41741, CVE-2022-41742, CVE-2022-42919, CVE-2022-45061, CVE-2023-24329, CVE-2023-27043, CVE-2023-44487, CVE-2024-734712/04/2026, 13:54:03-
101.96.198.•••:18789 - 🇨🇳 China mainland Yes true Clean AS137718Beijing Volcano Engine Technology Co., Ltd.Beijing Volcano Engine Technology12/04/2026, 13:44:4017/04/2026, 23:58:43 - - ----
123.60.59.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS55990Huawei Cloud Service data centerHuawei Cloud12/04/2026, 13:44:4015/04/2026, 13:31:21 Yes Yes PackratCVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:54:05smartcom.cc, huawei.com, huaweidevice.com
111.230.27.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud12/04/2026, 13:44:4015/04/2026, 11:22:25 Yes No --12/04/2026, 13:54:06tencent.com
20.44.239.•••:18789 - 🇺🇸 United States Yes true Clean AS8075Microsoft CorporationMicrosoft12/04/2026, 13:44:3915/04/2026, 13:31:30 No No --06/04/2026, 13:54:08-
98.126.102.•••:10260 - 🇺🇸 United States Yes true Clean AS4213Krypt TechnologiesKrypt Technologies12/04/2026, 13:44:3915/04/2026, 12:01:36 Yes No -CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:54:11vpls.net, vpls.com
71.29.33.•••:18789 - 🇺🇸 United States Yes true Clean AS7029Windstream Communications LLCWindstream Communications12/04/2026, 13:44:3912/04/2026, 16:26:26 - - ----
108.187.32.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS138995Antbox Networks LimitedAntbox Network12/04/2026, 13:44:3912/04/2026, 16:26:26 No No --06/04/2026, 13:54:15-
8.131.154.•••:18789 - 🇸🇬 Singapore Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alibaba Cloud12/04/2026, 13:44:3915/04/2026, 01:34:05 - - ----
47.90.138.•••:18789 - 🇨🇳 China mainland Yes true Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud US12/04/2026, 13:44:3912/04/2026, 16:26:26 No No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:54:19-
107.148.174.•••:443 - 🇺🇸 United States Yes true Clean AS21859Zenlayer IncPeg Tech Inc12/04/2026, 13:44:3816/04/2026, 01:22:16 No No --06/04/2026, 13:54:27-
178.156.163.•••:18001 Alice 🇺🇸 United States Yes true Leaked AS213230Hetzner Online GmbHHetzner12/04/2026, 13:44:3815/04/2026, 13:30:18 Yes No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:54:28hetzner.com
107.148.164.•••:18789 - 🇺🇸 United States Yes true Clean AS21859Zenlayer IncPeg Tech Inc12/04/2026, 13:44:3815/04/2026, 12:46:46 No No --06/04/2026, 13:54:31-
120.55.127.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft12/04/2026, 13:44:3816/04/2026, 01:24:10 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-29323, CVE-2023-35784, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138512/04/2026, 13:54:33aliyun.com
218.94.4.•••:443 - 🇨🇳 China mainland Yes true Clean AS4134ChinanetJiangsu Telecom12/04/2026, 13:44:3812/04/2026, 16:26:25 No No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:54:34-
106.13.182.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu12/04/2026, 13:44:3815/04/2026, 12:46:49 Yes - -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:54:36baidu.com
160.25.75.•••:18789 - 🇻🇳 Vietnam Yes true Clean AS45899VNPT CorpTri Viet Commercial and System Integration12/04/2026, 13:44:3815/04/2026, 01:34:30 No Yes APT15, APT28, APT31, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APTCVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:54:38-
211.20.120.•••:18789 - 🇹🇼 Taiwan Yes true Leaked AS3462Data Communication Business GroupData Communication Business Group12/04/2026, 13:44:3817/04/2026, 10:05:27 Yes No --12/04/2026, 13:54:43hinet.net
42.51.40.•••:50000 - 🇨🇳 China mainland Yes true Clean AS56005Zhengzhou Fastidc Technology Co.,Ltd.Henan Telcom Union Technology12/04/2026, 13:44:3817/04/2026, 23:59:20 No No --06/04/2026, 13:54:46-
8.222.129.•••:18789 - 🇸🇬 Singapore Yes true Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud Singapore12/04/2026, 13:44:3815/04/2026, 12:01:35 No Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-4161712/04/2026, 13:54:49-
47.92.155.•••:50001 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft12/04/2026, 13:44:3815/04/2026, 01:34:30 No Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-10733, CVE-2020-14145, CVE-2020-14349, CVE-2020-14350, CVE-2020-15778, CVE-2020-1720, CVE-2020-25694, CVE-2020-25695, CVE-2020-25696, CVE-2021-23214, CVE-2021-23222, CVE-2021-32027, CVE-2021-32028, CVE-2021-32029, CVE-2021-3393, CVE-2021-36368, CVE-2021-3677, CVE-2021-41617, CVE-2021-43767, CVE-2022-1552, CVE-2022-262512/04/2026, 13:54:55-
159.195.1.•••:443 - 🇩🇪 Germany Yes true Clean AS197540netcup GmbHNetcup12/04/2026, 13:44:3717/04/2026, 10:06:33 No No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:58:01-
95.179.182.•••:18789 - 🇳🇱 Netherlands Yes true Leaked AS20473The Constant Company, LLCJW Lucasweg 3512/04/2026, 13:44:3717/04/2026, 23:58:11 Yes No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:58:02warpspeedvpn.com, duckdns.org, vultr.com
2001:41d0:305:2100::6d2b:18789 - 🇫🇷 France - true Clean AS16276OVH SASOVH12/04/2026, 13:44:3715/04/2026, 01:34:47 - - ----
121.196.175.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft12/04/2026, 13:44:3615/04/2026, 13:31:37 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161712/04/2026, 13:58:11aliyun.com
2001:41d0:404:200::7e4d:18789 - 🇫🇷 France - true Clean AS16276OVH SASOVH12/04/2026, 13:44:3617/04/2026, 23:57:45 - - ----
111.228.59.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS141679China Telecom Beijing Tianjin Hebei Big Data Industry Park BranchJingdong Headquarters12/04/2026, 13:44:3615/04/2026, 12:46:40 Yes No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:58:18jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com
47.253.150.•••:80 - 🇨🇳 China mainland Yes true Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud US12/04/2026, 13:44:3612/04/2026, 16:26:22 No No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:58:20-
150.109.16.•••:18789 - 🇸🇬 Singapore Yes true Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd12/04/2026, 13:44:3512/04/2026, 16:26:21 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:58:32tencent.com, cprapid.com
143.198.83.•••:443 - 🇸🇬 Singapore Yes true Clean AS14061DigitalOcean, LLCDigitalOcean12/04/2026, 13:44:3512/04/2026, 23:10:44 No Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-43622, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-3272812/04/2026, 13:58:34-
43.134.66.•••:18789 - 🇸🇬 Singapore Yes true Leaked AS132203Tencent Building, Kejizhongyi Avenue6 Collyer Quay12/04/2026, 13:44:3512/04/2026, 16:26:21 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:58:38tencent.com
83.147.39.•••:18789 - 🇺🇸 United States Yes true Clean AS32097WholeSale Internet, Inc.Heficed Delegation12/04/2026, 13:44:3515/04/2026, 13:32:01 No Yes APT-C-23, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt TyphoonCVE-2021-3618, CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:58:42-
134.185.92.•••:18789 - 🇺🇸 United States Yes true Leaked AS31898Oracle CorporationOracle12/04/2026, 13:44:3515/04/2026, 12:46:45 Yes No -CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:58:45healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
39.106.116.•••:18789 - 🇽🇽 XX Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Unknown12/04/2026, 13:44:3515/04/2026, 13:31:04 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow BrokersCVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161712/04/2026, 13:58:52aliyun.com
170.64.239.•••:443 - 🇦🇺 Australia Yes true Clean AS14061DigitalOcean, LLCDigitalOcean12/04/2026, 13:44:3412/04/2026, 16:26:21 No Yes Salt TyphoonCVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:58:54-
14.157.15.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS4134ChinanetCHINANET Guangdong12/04/2026, 13:44:3412/04/2026, 16:26:21 Yes No --12/04/2026, 13:58:59bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn
106.37.96.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS4847China Networks Inter-ExchangeChinaNet Beijing12/04/2026, 13:44:3412/04/2026, 16:26:20 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161712/04/2026, 13:59:03bj189.cn
98.126.102.•••:10131 - 🇺🇸 United States Yes true Clean AS4213Krypt TechnologiesKrypt Technologies12/04/2026, 13:44:3317/04/2026, 23:59:00 Yes No -CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:59:08vpls.net, vpls.com
52.65.100.•••:443 - 🇦🇺 Australia Yes true Clean AS16509Amazon.com, Inc.Amazon12/04/2026, 13:44:3316/04/2026, 16:47:46 - - ----
18.216.65.•••:18789 - 🇺🇸 United States - true Clean AS16509Amazon.com, Inc.Amazon12/04/2026, 13:44:3312/04/2026, 16:26:20 No No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 13:59:11-
18.193.15.•••:80 - 🇩🇪 Germany Yes true Clean AS16509Amazon.com, Inc.A100 ROW12/04/2026, 13:44:3312/04/2026, 16:26:20 No No -CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-4161712/04/2026, 13:59:14-
221.5.121.•••:18789 - 🇽🇽 XX Yes true Leaked AS17816China Unicom IP network China169 Guangdong provinceUnknown12/04/2026, 13:44:3312/04/2026, 16:26:20 Yes No --12/04/2026, 13:59:23chinaunicom.cn
144.31.140.•••:18789 - 🇩🇪 Germany Yes true Clean AS215590DpkgSoft International LimitedXorekCloud-FRA12/04/2026, 13:44:3312/04/2026, 16:26:20 No No --06/04/2026, 13:59:25-
3.99.152.•••:443 - 🇨🇦 Canada Yes true Clean AS16509Amazon.com, Inc.Amazon Web Services Canada12/04/2026, 13:44:3316/04/2026, 11:29:50 - - ----
152.42.197.•••:443 - 🇸🇬 Singapore Yes true Clean AS14061DigitalOcean, LLCDigitalOcean12/04/2026, 13:44:3215/04/2026, 13:31:08 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 14:03:16-
47.92.104.•••:50001 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft12/04/2026, 13:44:3215/04/2026, 01:34:17 No Yes APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 14:06:29-
99.79.66.•••:443 - 🇨🇦 Canada Yes true Clean AS16509Amazon.com, Inc.Amazon Web Services Canada12/04/2026, 13:44:3112/04/2026, 16:26:18 No No --06/04/2026, 14:06:42-
38.47.91.•••:18789 - 🇮🇩 Indonesia Yes true Clean AS59134PT. Datacomm DiangrahaDatacomm Diangraha12/04/2026, 13:44:3117/04/2026, 23:59:09 No No -CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-2341912/04/2026, 14:06:44-
154.92.23.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS138152YISU CLOUD LTDYisu Cloud Ltd12/04/2026, 13:44:3112/04/2026, 16:26:18 No Yes APT1, APT28, APT32, APT35, APT37, APT38, APT39, Cobalt Group, DragonFly, El-Machete, FIN8, Gamaredon-Group, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers, goziCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 14:06:57-
39.98.69.•••:50001 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft12/04/2026, 13:44:3112/04/2026, 16:26:18 Yes - --12/04/2026, 14:06:59aliyun.com
62.171.165.•••:443 - 🇫🇷 France Yes true Leaked AS51167Contabo GmbHContabo12/04/2026, 13:44:3112/04/2026, 16:26:17 Yes Yes APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTECVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 14:07:46contabo.de, contabo.net
101.200.59.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft12/04/2026, 13:44:3115/04/2026, 01:34:48 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Salt Typhoon, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-638712/04/2026, 14:07:48aliyun.com
86.41.162.•••:18789 - 🇮🇪 Ireland Yes true Clean AS5466Internet HouseEircom12/04/2026, 13:44:3112/04/2026, 16:26:16 No No --06/04/2026, 14:07:49-
45.80.68.•••:18789 - 🇷🇺 Russia - true Clean AS198610Beget LLCBeget LLC12/04/2026, 13:44:3012/04/2026, 16:26:16 No Yes APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-5740, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2018-5745, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6465, CVE-2019-6470, CVE-2019-6471, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-23017, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-38177, CVE-2022-38178, CVE-2022-41741, CVE-2022-41742, CVE-2023-2828, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-11187, CVE-2024-12705, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 14:07:55-
117.72.170.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS141679China Telecom Beijing Tianjin Hebei Big Data Industry Park BranchJD.com12/04/2026, 13:44:3016/04/2026, 01:23:34 Yes No --12/04/2026, 14:07:59jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com
124.223.91.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud12/04/2026, 13:44:3017/04/2026, 19:28:34 Yes Yes APT37, El-MacheteCVE-2014-407812/04/2026, 14:08:02tencent.com
50.116.48.•••:18789 - 🇺🇸 United States Yes true Clean AS63949Akamai Connected CloudLinode12/04/2026, 13:44:3012/04/2026, 16:26:16 No Yes APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTECVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 14:08:04-
124.221.225.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud12/04/2026, 13:44:3015/04/2026, 13:30:27 Yes Yes APT37, El-Machete-12/04/2026, 14:08:05tencent.com
74.48.58.•••:443 - 🇺🇸 United States Yes true Clean AS35916MULTACOM CORPORATIONMultacom Corporation12/04/2026, 13:44:3015/04/2026, 01:34:56 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24990, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 14:08:07multacom.com
159.195.105.•••:443 - 🇩🇪 Germany Yes true Clean AS197540netcup GmbHNetcup12/04/2026, 13:44:3015/04/2026, 13:30:38 - - ----
163.192.115.•••:443 - 🇺🇸 United States Yes true Leaked AS31898Oracle CorporationOracle12/04/2026, 13:44:2917/04/2026, 23:57:44 Yes No --12/04/2026, 14:12:19healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
140.245.79.•••:18789 - 🇺🇸 United States Yes true Leaked AS31898Oracle CorporationOracle12/04/2026, 13:44:2916/04/2026, 01:23:07 Yes No --12/04/2026, 14:12:27healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
111.228.58.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS141679China Telecom Beijing Tianjin Hebei Big Data Industry Park BranchJingdong Headquarters12/04/2026, 13:44:2912/04/2026, 17:11:22 Yes No -CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 14:12:30jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com
154.17.11.•••:8081 - 🇺🇸 United States Yes true Clean AS210110Kvmcloud Network CO., LIMITED / AS906 DMIT Cloud ServicesDmit Customer US CA 9001212/04/2026, 13:44:2912/04/2026, 17:11:22 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138512/04/2026, 14:12:32-
2604:2dc0:101:200::801:18789 - 🇺🇸 United States - true Clean AS16276OVH SASOVH US12/04/2026, 13:44:2912/04/2026, 17:11:22 - - ----
123.56.133.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft12/04/2026, 13:44:2912/04/2026, 17:11:22 Yes Yes APT-C-23, APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Lyceum APT, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA428, TA505, TEMP.Hermit, The Shadow Brokers, Turla APT Group, UNC2452, Volt Typhoon, WIRTECVE-2006-20001, CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2015-9253, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2017-15945, CVE-2017-7272, CVE-2017-7963, CVE-2017-8923, CVE-2017-9120, CVE-2017-9225, CVE-2017-9229, CVE-2018-15473, CVE-2018-15919, CVE-2018-17082, CVE-2018-19395, CVE-2018-19396, CVE-2018-19518, CVE-2018-19935, CVE-2018-20685, CVE-2018-20783, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9022, CVE-2019-9023, CVE-2019-9024, CVE-2019-9517, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9641, CVE-2019-9675, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-3618, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31628, CVE-2022-31629, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2022-4900, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-457712/04/2026, 14:16:46aliyun.com
8.163.86.•••:18789 - 🇸🇬 Singapore Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alibaba Cloud12/04/2026, 13:44:2915/04/2026, 13:32:15 - - ----
159.203.189.•••:443 - 🇺🇸 United States Yes true Clean AS14061DigitalOcean, LLCDigitalOcean12/04/2026, 13:44:2817/04/2026, 23:57:36 - - ----
52.79.217.•••:443 - 🇰🇷 South Korea Yes true Clean AS16509Amazon.com, Inc.AWS Seoul Region12/04/2026, 13:44:2817/04/2026, 23:57:58 No No --06/04/2026, 14:29:48-
43.108.8.•••:18789 - 🇸🇬 Singapore Yes true Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud Singapore12/04/2026, 13:44:2712/04/2026, 17:11:21 - - ----
154.193.248.•••:443 - 🇺🇸 United States Yes true Clean AS21859Zenlayer IncFastmos Co Limited12/04/2026, 13:44:2712/04/2026, 17:11:21 No No --06/04/2026, 16:29:58-
98.126.102.•••:10257 - 🇺🇸 United States Yes true Clean AS4213Krypt TechnologiesKrypt Technologies12/04/2026, 13:44:2715/04/2026, 01:34:31 Yes No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 16:30:04vpls.net, vpls.com
209.38.203.•••:443 - 🇩🇪 Germany Yes true Clean AS14061DigitalOcean, LLCDigitalOcean12/04/2026, 13:44:2717/04/2026, 10:06:18 No Yes APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow BrokersCVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-638712/04/2026, 16:30:06-
113.46.148.•••:18082 - 🇸🇬 Singapore Yes true Leaked AS55990Huawei Cloud Service data centerHuawei Cloud12/04/2026, 13:44:2612/04/2026, 17:11:20 Yes No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 16:30:13smartcom.cc, huawei.com, huaweidevice.com
171.213.154.•••:18789 - 🇨🇳 China mainland Yes true Clean AS4134ChinanetChinaNet Sichuan12/04/2026, 13:44:2612/04/2026, 17:11:19 No No -CVE-2023-44487, CVE-2024-734712/04/2026, 16:30:18-
129.121.73.•••:80 - 🇺🇸 United States Yes true Leaked AS31898Oracle CorporationOGTIPS112/04/2026, 13:44:2617/04/2026, 23:59:02 Yes Yes FIN8-12/04/2026, 16:30:19athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com
204.168.183.•••:19000 - 🇫🇮 Finland Yes true Clean AS24940Hetzner Online GmbHHetzner12/04/2026, 13:44:2616/04/2026, 01:23:12 No No --06/04/2026, 16:30:25-
182.88.151.•••:18789 - 🇨🇳 China mainland Yes true Clean AS4837CHINA UNICOM China169 BackboneChina Unicom Guangxi12/04/2026, 13:44:2615/04/2026, 01:34:43 No No --06/04/2026, 16:30:28-
15.223.9.•••:443 - 🇨🇦 Canada Yes true Clean AS16509Amazon.com, Inc.Amazon Web Services Canada12/04/2026, 13:44:2512/04/2026, 23:55:30 No - --06/04/2026, 16:30:39-
212.64.24.•••:18888 - 🇨🇳 China mainland Yes true Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing12/04/2026, 13:44:2517/04/2026, 23:57:34 - - ----
98.126.102.•••:10021 - 🇺🇸 United States Yes true Clean AS4213Krypt TechnologiesKrypt Technologies12/04/2026, 13:44:2512/04/2026, 17:11:18 Yes Yes APT14, APT15, APT28, APT31, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers, WIRTECVE-2006-20001, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3523, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-3618, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 16:30:47vpls.net, vpls.com
162.14.66.•••:443 - 🇨🇳 China mainland Yes true Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing12/04/2026, 13:44:2413/04/2026, 14:59:47 No Yes APT37, El-MacheteCVE-2004-1362, CVE-2004-1363, CVE-2004-1364, CVE-2004-1365, CVE-2004-1366, CVE-2004-1367, CVE-2004-1368, CVE-2004-1369, CVE-2004-1370, CVE-2004-1371, CVE-2005-3445, CVE-2005-3446, CVE-2005-3448, CVE-2005-3449, CVE-2005-3452, CVE-2005-3453, CVE-2006-0288, CVE-2006-0435, CVE-2006-0552, CVE-2006-1884, CVE-2006-3711, CVE-2006-5364, CVE-2008-401412/04/2026, 16:30:58-
43.156.12.•••:10021 - 🇸🇬 Singapore Yes true Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd12/04/2026, 13:44:2412/04/2026, 17:11:17 Yes Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 16:31:02tencent.com
43.143.236.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing12/04/2026, 13:44:2417/04/2026, 23:58:44 Yes Yes APT1 Comment Crew, APT14, APT27, APT28, APT29, APT34, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Donot Team, Earth Longzhi, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, Turla APT Group, WIRTECVE-2006-20001, CVE-2015-9251, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-11358, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11022, CVE-2020-11023, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 16:31:06tencent.com
54.199.223.•••:443 - 🇯🇵 Japan Yes true Clean AS16509Amazon.com, Inc.Amazon12/04/2026, 13:44:2417/04/2026, 23:58:23 No No -CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 16:31:08-
204.168.224.•••:18789 - 🇫🇮 Finland Yes true Leaked AS24940Hetzner Online GmbHHetzner Online12/04/2026, 13:44:2415/04/2026, 01:34:21 Yes No --12/04/2026, 16:31:12hetzner.com
69.5.21.•••:18789 - 🇸🇬 Singapore Yes true Clean AS150436Byteplus Pte. Ltd.Byteplus12/04/2026, 13:44:2215/04/2026, 13:30:16 - - ----
154.12.87.•••:80 - 🇭🇰 Hong Kong Yes true Clean AS401696cognetcloud INCFOJ IP Technology12/04/2026, 13:44:2212/04/2026, 17:11:16 - - ----