🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 816988 Page: 707 / 8170 (100 per page) Showing: 70601-70700 Last Imported: 15/05/2026, 09:32:33
🇨🇳 425,761
🇺🇸 231,518
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 20.230.156.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:47:01 | 08/04/2026, 10:49:26 | - | - | - | - | - | - |
| 20.46.113.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:47:01 | 08/04/2026, 10:49:26 | - | - | - | - | - | - |
| 103.142.26.•••:18789 | - | 🇻🇳 Vietnam | - | false | Clean | AS135951 | Webico Company Limited | Tino Group | 08/04/2026, 04:47:01 | 08/04/2026, 10:49:26 | - | - | - | - | - | - |
| 192.169.176.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS398101 | GoDaddy.com, LLC | GoDaddy | 08/04/2026, 04:47:01 | 17/04/2026, 10:03:30 | Yes | Yes | APT14, APT28, APT40, APT41, Cobalt Group, Equation Group, FIN8, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813 | 09/04/2026, 04:54:05 | godaddy.com |
| 104.26.4.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS13335 | Cloudflare, Inc. | Cloudflare | 08/04/2026, 04:47:01 | 08/04/2026, 10:49:26 | - | - | - | - | - | - |
| 20.214.158.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:47:01 | 08/04/2026, 10:49:26 | - | - | - | - | - | - |
| 160.250.93.•••:18789 | - | 🇲🇾 Malaysia | - | false | Clean | AS55720 | Gigabit Hosting Sdn Bhd | DataRobot Resources | 08/04/2026, 04:47:01 | 18/04/2026, 00:40:54 | - | - | - | - | - | - |
| 217.154.164.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | Ionos Cloud TXL | 08/04/2026, 04:47:00 | 08/04/2026, 10:03:52 | - | - | - | - | - | - |
| 8.137.100.•••:18789 | - | 🇸🇬 Singapore | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 08/04/2026, 04:47:00 | 17/04/2026, 07:49:46 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 14/04/2026, 03:03:42 | - |
| 35.169.155.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 08/04/2026, 04:45:00 | 14/04/2026, 09:00:18 | - | - | - | - | - | - |
| 45.33.76.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS63949 | Akamai Connected Cloud | Linode | 08/04/2026, 04:44:51 | 11/04/2026, 02:35:48 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:02:34 | milantool.com |
| 64.23.250.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 04:44:51 | 16/04/2026, 12:55:41 | No | Yes | APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347 | 08/04/2026, 10:02:38 | - |
| 103.142.27.•••:18789 | - | 🇻🇳 Vietnam | - | false | Clean | AS135951 | Webico Company Limited | Tino Group | 08/04/2026, 04:44:50 | 08/04/2026, 10:01:33 | - | - | - | - | - | - |
| 172.67.150.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS13335 | Cloudflare, Inc. | Cloudflare | 08/04/2026, 04:44:49 | 08/04/2026, 15:27:03 | Yes | No | - | - | 08/04/2026, 10:03:04 | diamondheaddental.com, stuartsyoondds.com, streamshop.com, vpnserver.com, oradelldentistry.com, geyerdental.com, gracifamilydental.com, wisdomxj.cn, applications.com, fidelisscreening.net, vcorp.com, emssafetyservices.com, samuelhuangdental.com, drronaldli.com, drboatwright.com, technoesq.com, kirklanddentalsmile.com, styled.fr, carsonchiropractic.com, sandiegodmd.com, scvascular.com, chesterfielddentalassoc.com, atcevents.com, electronicaircleaners.com, leggiodental.com, ashley.fr, erdmandentalimplants.com, royaltondental.com, classicelectricomaha.com, levinefamilydentistry.com, cgmprecast.com, desertridgesmiles.com, lanterndental.com, shepherdscountryhavenandrescue.com, cwsse.com.cn, leap.fr, fashionfloors.co, byteboard.com, lindsborgsmiles.com, ggperio.com, ics-line.com, forumcorp.com, troydermatology.com, dataloop.com, andersonfamilyandcosmeticdentistry.com, drmumford.com, garganofamilydentistry.com, davidchodesdds.com, sleepmanatee.net, largemandental.com, lamesadental.com, electronicengineering.com, waitakibio.com, safetec.net, gd4kids.com, salonnews.com, gws.fr, clydencdentistry.com, daso.fr, energyservices.com, houstonwellservices.com, xjkrx.cn, locable.com, chirolansing.com, cvilledds.com, georgejacobsdmd.com, bbbiotechconference.com, checkmycolon.com, youthstream.com, bianchi.fr, leesburgsouthgatedental.com, hbbygd88.com, technologybuyersguide.com, hollywoodfootdoc.com, fuhuake.com, nfsgendo.com, fontainecenter.com, allfamilyshorelinedental.com, mayfairdental.com, ej4.com, cleanteethseaside.com, byselcandy.com, entsurgicalgroup.net, playergroup.com, abpincorp.com, floydadadental.com, globalsolutions.com, xintec.hk, factotum.fr, informationsystems.com, fujiyama.fr, medtecjapan.com, uniquedentalcares.com, meter.ln.cn, andersonpediatricdental.com, anlink.net, sammaguire.com, garzadentaltx.com, globalexchange.net, mangalam.co.in, sarheumatology.com, tourservices.com, jekotrade.com, loredohands.com, nitro.fr, brilliantsmilesdental.net, drmiltongeivelis.com, gipnutmeg.com, bopcon.com, lesmouettes.fr, mountainstatevascular.com, licenseglobal.com, gramm.it, eurobank.com, santander.it, graphicconnection.com, paolino.fr, mycambridgedentist.com, miterrydental.com, campmgmt.com, cayman.fr, itradeonline.com, oswegodentistry.com, johnstoneperio.com, footandankledocsofva.com, fredericksburgent.com, boyu-group.com, lateteailleurs.fr, newhopedentistry.com, leonne.fr, yourfamilydentistaz.com, northvillesmiles.com, texanfamilyclinic.com, wisehousetech.com, dermdoctorsnva.com, ayadentistry.com, brianjohnsonmd.com, cloudflare.net, unitedpainurgentcare.com, stepforwardfootandankle.com, ohe.fr, resistanceweldsupplies.com, ceostream.com, channel.net, qd-baolian.com, csofam.com, mynewimagedds.com, orlandchildrenscenter.com, millbrookpodiatrist.com, cccid.net, gatorchucks.cn, handyman.com, activ.fr, galleryconnection.com, jstream.com, delcarehealth.com, globalventures.com, lebistrotduport.fr, murdockpediatrics.com, gadsdendentists.com, sherry.fr, switchmanpens.com, premierpediatricsin.com, aviationnow.com, brockorthodontics.com, innfos.cn, periodonticimplants.com, govcoin.com, aplusped.com, centerdentalassociates.com, duplindental.com, samanthajohnsondmd.com, ocgracepeds.com, sonomadermatology.com, alpinedentalnorthbend.com, ashvilledentalcenter.net, gardencitydentalgroup.com, gibbonsfootandankle.com, mysunrisedentist.com, feedstuffs.com, baselinewoods.com, araoent.com, luxuryventures.com, wolffamilydentistry.net, lindidds.com, freeholdfamilydentistry.com, vestaviaaldentist.com, clmi-training.com, referral.com, yin.fr, rosewomenshealth.com, dentalplacetx.com, laloi.com, sciencesuite.com, footandanklecg.com, alghanitex.com, christen.fr, qzz.io, anecdote.com, lendstream.com, isotope.fr, paspeds.com, dehuiguangchang.cn, xjgudao.com, martechmedia.com, telos.fr, isthmusdental.com, kfstock.com, stallingsdentalcare.com, vbuilders.com, nancyduggandds.com, thecompletefamilydentistry.com, mygo.it, brownsprinting.com, expocihac.com, oceans.fr, cadescovegallery.com, m-printone.com, zach.fr, rivalcorp.com, cloudhq-mkt6.net, roshdental.com, storia.fr, thesmilecenterofnj.com, valenciamoldremediation.us, nygastrodoctor.net, clarkstondentalgroup.com, paulhannadental.com, northscottsdalefootandanklecenter.com, iresearch.it, smilemora.com, shrinkpeters.com, atlantaskinandaesthetics.com, aligndoc.com, timing-tech.com, lepicier.fr, klmymmyc.com, greenwellesleydental.net, homemaintenance.com, noon.fr, paulambushmd.com, russell-brands.com, instepspecialists.net, woodworksrefinish.com, drvahil.com, adkinsfamilydentistry.net, pp.ua, hnbeixiang.com, atdentalcenter.com, creativesmilesaz.com, mondi.fr, turlututu.fr, flaneur.fr, teppanyaki.fr, nrgsite.lt, stoneart.co.in, upper.it, peoples-dental.com, leisonhk.com, eastoverfootandankle.com, myfreshsmiles.com, xjjingyoga.com, dongfanggufen.net, wakechem.com, zenna.fr, jwvalentinedmd.com, westhartforddentalcare.com, karskidental.com, macombcosmeticdentistry.com, ankromdental.com, acedentalweymouth.com, amedee.fr, markgamalindadds.com, hansel.fr, 1haojiyin.com, plasto.fr, customerprofile.com, mubayyin.cn, sinotransfj.com, serio.fr, drmarinamanuntsdds.com, amblerpeds.com, qbfood.com.sg, interpraise.com, wtw.co.in, felixcaredental.com, readystaffing.com, aptenonsjz.com, nada.fr, docteur-it.com, allacucinadellelanghe.it, ventureos.com, paradentalcare.com, annethaimd.com, malibupress.com, chiropractorlinkstlouis.com, elitesmilesokc.com, xen.do, imobile.com, contrib.com, thedentist4u.com, xjxhhydropower.com, rosenberryfamilydental.com, villagesleeplab.com, athenee.fr, learningwire.com, akina.fr, thaiglico.com, lasouthbaydental.com, detongwiremesh.com, umberto.fr, essex.fr, cornwallfd.com, cranford.com, ibcglobal.com, rdrindia.com, eshares.com, hardi.fr, dldianfeng.cn, lucreativo.com, plattsburghpediatrician.com, jeffreyahlertdds.com, dgclh.com, bamko.net, magnificofamilydentistry.com, fabi.fr, inventaire.fr, hansecontrol.com, beautifulsmilesbydrlloyd.com, norfolkfamilyandpediatricdentistry.com, lstcarbon.com, newportpeds.com, hsi.com, cliftonnjdentist.net, retailtrafficmag.com, 363pleasantstreetdental.com, geole.fr, campushillsdentistry.net, cphi.com, it.com, woburndentalgroup.com, leecosmeticdentistry.com, ttstest.com, robertsteinbergmd.com, eriepodiatry.com, dremiliohernandez.com, itb.fr, pumpkin.fr, gaetanasnyc.com, anamazingsmileaz.com, mrgroup.in, palozolafamilydental.com, boxboard.com, oldivydental.com, puyallupdds.com, phamilydentalservice.com, yhjgkeji.com, splendid-hotel.fr, poolerpd.com, beiyuecheng.com, spoton.it, realtydao.com, warensdental.com, tevimed.com, wonderfulskin.com, mariettapodiatrygroup.com, onegrandsmile.net, mcneilldentistry.com, eu.org, unified.in, davidamurphydds.com, bierte.com, investcentre.com, conklincenter.org, dentalartsdesign.com, piscineplage.fr, tallahasseefamilydentistry.net, dentistwestfieldin.com, buildfolio.com, tulsageneralveterinaryhospital.com, mero.fr, satyadermatology.com, tailwindgroup.com, olimdentist.com, com.de, iptunnel.com, ttyt360.com, phillipdondds.com, mydhaga.com, bycast.com, leadstream.net, ceramic.fr, dentistinjonesboroar.com, piedental.com, bradydentalgroup.net, lenhorovitz.com, milosmedical.com, clemsondental.com, tahaluf.com, sfpl.in, jerigruenesdpm.com, taskmgmt.com, aplusgp.com, plateaufoot.com, jason.fr, servicetech.com, newyorkfarmshow.com, drscholler.com, mohta.in, drjamescovan.com, killinglydentalcare.com, drbrewsterdds.com, zgkaite.com, turnoutservices.com, primecarecg.com, rimrockpodiatry.com, hometownfamilydental502.com, eilerfamilydentistry.com, lowellfamilydentalpractice.com, 0991df.net, nedentalwellness.com, aldente.fr, szlis.com.cn, belfbeckerdental.com, zjdddl.com, jamesccalvindds.com, hbpodiatry.com, telecomanalysis.com, cheers.fr, everettgeneraldentistry.com, drtrudybennett.com, diclelife.com, inmanfamilydentistryraineshart.com, shintoandkato.com, linked.com, mirror.fr, learnatvivid.com, oneway.fr, advancedfoottexas.com, tryadhawk.com, vnoc.com, novadentist.com, fundchannel.com, oracle-ag.ch, whiteoakpeds.com, eyes-armour.com, zjhrbz.com, adl.co.in, jiangsufuji.com, elitesmilesnc.com, adlerfamilydental.com, itmanage.net, orchidentalgroup.com, arista.fr, belviq.com, grandplace.fr, reservationcenter.com, iirusa.com, buffalotracegastroenterology.com, englewoodent.com, familysmilecarecenter.com, comestibles.fr, smilesaverdental.com, abbeyfieldstreetdentist.com, lavernedentalcenter.com, glenridgedentalarts.com, mstech.com.br, electrode.fr, heardcitizen.com, shiprose.com, newlondonchiropractor.com, pierrel.it, goldenstream.com, millvalleydental.com, bain86.com, padoniadentalassociates.com, mitchelkatzmd.com, fxgowin.com, franklinlackeedds.com, jt-md.com, nash.fr, freda.fr, stavarachefamilydental.com, perimenisdental.com, haydelchiropractic.com, interlan.com, huffandhuffdentistry.com, automations.com, arbejdsdirektoratet.dk, handy.fr, globalexport.com, littlefieldsmiles.com, langhorstfamilydentistry.com, northwestexterminating.com, kennethdpilgrimdmd.com, geecenzymes.com, cariboo.fr, dermatologyok.com, adobegastroenterology.com, milou.in, fletcherfamilydentistrysc.com, workers.dev, eastendfamilydentistry.com, tcpga.com, ahhdental.com, edeninternalmedicine.com, texans.com, calltheclinic.com, newoceanfood.com, photochallenge.com, charmiesonidmd.com, soundout.org, dechuangjixie.com, cnkejie.com, coastresorts.com, greenedentalgroup.com, marinehub.com, 8189330.cn, filmteck.com, buildcorp.com, todaysdental.net, irislshieldsdds.com, proximus.fr, franklincountypodiatrist.com, karensaks.com, petitspois.fr, appservice.com, westparkprimarycare.com, bulverdedental.com, patentboard.com, lakecumberlandpediatricdentistry.com, new-yorkpsychology.com, constructionforum.com, footfirstpodiatry.net, owyheefamilydental.com, leadv.com.br, normansenzakidds.com, albufeira-jardim.com, jefferyhurstdds.com, thepreventativemedicine.com, smiles4hollywood.com, datacommunications.com, miamitelevision.com, cannabiscorp.com, bestburiendentist.com, impresosmonterrey.com, shworldbest.com, liyubelt.net.cn, dentiststoughton.com, medbrokers.com, mauryfamilydental.com, dongguansenzi.com, buckeyedentistry.com, civic-point.com, energystorage.com, warrentonamazingsmile.com, carrollcountydental.com, canontradeshows.com, cepedapediatrics.com, scsatx.net, designnews.com, monreve.fr, informamarkets-info.com, linolakesfamilydentistry.com, abcpedsgso.com, venturebuilder.com, eliteankleandfoot.com, 1800ventures.com, vladimir.fr, exceptions.fr, drisabellereed.com, saifamilydentistry.com, telenco-distribution.com, arcgroup.com, money2020middleeast.com, chevychasedermatologycenter.com, goodingdentalhealth.com, drgilliarddmd.com, georgemalkedds.com, wbd-crm.com, rideautowndentalcare.com, ike.fr, cedardentalmi.com, kmurphydental.com, kampferdds.com, warnerrobinsfootandankle.com, lecottage.fr, dentistspa.com, cornerstaffing.com, domenicbaglivo.com, pinnacle-engines.com, geochem.org, drdubow.com, vividlearningsystems.com, food-machines.net, whir.com, kazemifardds.com, eastbrunswicknewimagedental.com, alptech.fr, reffind.com, intertec.com |
| 143.110.228.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 04:44:49 | 15/04/2026, 01:30:46 | No | Yes | APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:03:05 | - |
| 173.44.143.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS62904 | Eonix Corporation | Eonix Corporation | 08/04/2026, 04:44:49 | 17/04/2026, 04:46:51 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:03:06 | eonix.net |
| 101.43.75.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 08/04/2026, 04:44:49 | 08/04/2026, 10:01:33 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 08/04/2026, 10:03:15 | tencent.com |
| 149.30.213.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS133199 | SonderCloud Limited | Solustack Limited | 08/04/2026, 04:44:49 | 17/04/2026, 10:01:31 | Yes | - | - | CVE-2014-4078, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347 | 08/04/2026, 10:03:19 | cogentco.com |
| 62.84.188.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS51167 | Contabo GmbH | Contabo | 08/04/2026, 04:44:49 | 16/04/2026, 15:11:33 | Yes | Yes | APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-27151, CVE-2025-32728, CVE-2025-46686, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:03:26 | contabo.de, contabo.net |
| 52.251.54.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:44:49 | 08/04/2026, 10:01:27 | - | - | - | - | - | - |
| 44.195.6.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 08/04/2026, 04:44:48 | 08/04/2026, 10:01:27 | No | No | - | - | 02/04/2026, 10:03:44 | - |
| 50.6.4.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS31898 | Oracle Corporation | Website Welcome | 08/04/2026, 04:44:48 | 17/04/2026, 03:16:47 | Yes | No | - | - | 08/04/2026, 10:03:45 | athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com |
| 122.231.66.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 08/04/2026, 04:44:48 | 08/04/2026, 10:01:27 | No | No | - | - | 02/04/2026, 10:03:46 | - |
| 139.59.65.•••:18789 | - | 🇮🇳 India | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 04:44:48 | 16/04/2026, 17:28:13 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 10/04/2026, 19:04:17 | - |
| 20.194.154.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:44:48 | 08/04/2026, 10:01:26 | No | No | - | - | 02/04/2026, 10:03:50 | - |
| 13.60.84.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Data Services Sweden | 08/04/2026, 04:44:47 | 08/04/2026, 15:26:21 | No | No | - | - | 02/04/2026, 10:03:54 | - |
| 106.12.7.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS38365 | Beijing Baidu Netcom Science and Technology Co., Ltd. | Baidu | 08/04/2026, 04:44:47 | 17/04/2026, 18:44:14 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:03:55 | baidu.com |
| 20.194.174.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:44:47 | 08/04/2026, 10:01:26 | - | - | - | - | - | - |
| 192.3.61.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS36352 | HostPapa | RackNerd | 08/04/2026, 04:44:47 | 15/04/2026, 13:25:57 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2010-4478, CVE-2010-5107, CVE-2011-4327, CVE-2011-5000, CVE-2012-0814, CVE-2016-0777, CVE-2017-15906, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387 | 08/04/2026, 10:03:58 | racknerd.com |
| 161.118.246.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS31898 | Oracle Corporation | Oracle | 08/04/2026, 04:44:47 | 17/04/2026, 10:01:39 | - | - | - | - | - | - |
| 198.252.111.•••:18789 | - | 🇨🇦 Canada | - | false | Clean | AS20068 | Hawk Host Inc. | Hawk Host | 08/04/2026, 04:44:47 | 15/04/2026, 01:29:50 | No | No | - | - | 02/04/2026, 10:04:14 | - |
| 185.229.224.•••:18789 | - | 🇳🇱 Netherlands | Yes | false | Leaked | AS41436 | Kamatera Inc | Cloud Web Manage EU | 08/04/2026, 04:44:47 | 08/04/2026, 10:01:26 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:04:25 | dnsrd.com, dns04.com |
| 94.143.141.•••:18789 | - | 🇪🇸 Spain | Yes | false | Leaked | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | Ionos Cloud Virtual IT | 08/04/2026, 04:44:47 | 17/04/2026, 19:23:31 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:04:29 | arsys.es |
| 49.12.32.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 08/04/2026, 04:44:46 | 17/04/2026, 20:08:41 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-37470, CVE-2023-38408, CVE-2023-38646, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-30371, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:04:39 | hetzner.de, cprapid.com |
| 42.96.20.•••:18789 | - | 🇻🇳 Vietnam | Yes | false | Clean | AS131423 | Branch of Long Van System Solution JSC - Hanoi | Long Van System Solution | 08/04/2026, 04:44:46 | 11/04/2026, 00:00:10 | No | No | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:04:42 | - |
| 172.67.72.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS13335 | Cloudflare, Inc. | Cloudflare | 08/04/2026, 04:44:46 | 08/04/2026, 10:01:25 | Yes | No | - | - | 08/04/2026, 10:04:43 | rwinteractive.com, ac-ada.ca, candl-epos.ie, kawasaki-motors.com, technimark-inc.com, onlinecasinohex.ca, webexercises.com, microsurgical.com, cloudflare.net, accelerant.tech, kamwo.com, australianmilitarybank.com.au, marketsmithinc.com, betanet.in, abraz.adv.br, techfabric.com, bamko.net, sopass-khi.com, brushfireinc.com, anthropic.com, girnargroup.com, zigesfunland.com, goodwillstaffing.ca, nationaltubesupply.com, choiceagedcare.com.au, cruiseportal.de, domd.pl, eastbridge.com, farrells.com, claude.ai, rslmoney.com.au, gmfus.org, agenciamestre.com, anthropic.ai, global-kawasaki-motors.com |
| 138.197.153.•••:18789 | - | 🇨🇦 Canada | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 04:44:46 | 18/04/2026, 00:38:27 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-29323, CVE-2023-35784, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 08/04/2026, 10:04:44 | - |
| 139.227.76.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS17621 | China Unicom Shanghai network | China Unicom Shanghai | 08/04/2026, 04:44:46 | 08/04/2026, 10:01:25 | No | No | - | - | 02/04/2026, 10:04:50 | - |
| 20.115.162.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:44:46 | 08/04/2026, 10:01:25 | - | - | - | - | - | - |
| 43.130.254.•••:18789 | - | 🇯🇵 Japan | - | false | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 08/04/2026, 04:44:46 | 14/04/2026, 23:59:58 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:04:57 | tencent.com |
| 149.30.212.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS133199 | SonderCloud Limited | Solustack Limited | 08/04/2026, 04:44:46 | 18/04/2026, 00:39:21 | Yes | No | - | CVE-2014-4078, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-7347 | 08/04/2026, 10:04:58 | cogentco.com |
| 121.40.237.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 08/04/2026, 04:44:46 | 17/04/2026, 20:08:43 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-3618, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419 | 08/04/2026, 10:04:59 | aliyun.com |
| 46.225.150.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 08/04/2026, 04:44:46 | 14/04/2026, 03:44:40 | No | No | - | - | 02/04/2026, 10:05:03 | - |
| 175.6.27.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS63835 | No.293,Wanbao Avenue | ChinaNet Hunan Province Network | 08/04/2026, 04:44:46 | 17/04/2026, 10:01:26 | Yes | Yes | APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers | CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-52804, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-47287, CVE-2025-61984, CVE-2025-61985, CVE-2025-67724, CVE-2025-67725, CVE-2025-67726 | 08/04/2026, 10:05:05 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 170.130.248.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS62904 | Eonix Corporation | ServerHub Phoenix | 08/04/2026, 04:44:46 | 16/04/2026, 02:02:40 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:05:09 | - |
| 20.65.47.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:44:45 | 08/04/2026, 10:01:24 | - | - | - | - | - | - |
| 167.99.61.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 04:44:45 | 17/04/2026, 20:53:58 | Yes | Yes | APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2006-20001, CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-36368, CVE-2021-41617, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:05:20 | orlandoskindoc.com |
| 149.30.214.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS133199 | SonderCloud Limited | Solustack Limited | 08/04/2026, 04:44:45 | 18/04/2026, 00:39:25 | Yes | No | - | - | 08/04/2026, 10:05:23 | cogentco.com |
| 47.84.139.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 08/04/2026, 04:44:45 | 17/04/2026, 10:01:23 | Yes | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:05:27 | hichina.com, alibaba-inc.com |
| 149.30.199.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS133199 | SonderCloud Limited | Solustack Limited | 08/04/2026, 04:44:45 | 18/04/2026, 00:39:12 | Yes | No | - | CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419 | 08/04/2026, 10:05:29 | cogentco.com |
| 36.35.7.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS140726 | UNICOM AnHui province network | China Unicom Anhui | 08/04/2026, 04:44:45 | 11/04/2026, 17:40:02 | - | - | - | - | - | - |
| 111.3.28.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS56041 | China Mobile communications corporation | China Mobile | 08/04/2026, 04:44:45 | 17/04/2026, 19:23:29 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 08/04/2026, 10:05:35 | eastwinsz.com, chinamobile.com, chinamobile.cn |
| 156.254.143.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS142286 | LUOGELANG (FRANCE) LIMITED | Ares IDC Limited | 08/04/2026, 04:44:44 | 16/04/2026, 10:39:28 | No | Yes | APT-C-23, APT36, Cobalt Group, Equation Group, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon | CVE-2018-16845, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347 | 08/04/2026, 10:05:42 | - |
| 119.28.159.•••:18789 | - | 🇰🇷 South Korea | Yes | false | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Tencent Cloud | 08/04/2026, 04:44:44 | 08/04/2026, 10:01:23 | Yes | Yes | APT37, El-Machete, Packrat | CVE-2010-4657, CVE-2013-6712, CVE-2014-0207, CVE-2014-0238, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3515, CVE-2014-4049, CVE-2014-4078, CVE-2015-8994, CVE-2018-19395, CVE-2018-19396, CVE-2018-19520, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:04:50 | tencent.com |
| 4.151.161.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:44:44 | 08/04/2026, 10:01:23 | No | No | - | - | 02/04/2026, 10:04:55 | - |
| 156.254.158.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS142286 | LUOGELANG (FRANCE) LIMITED | Ares IDC Limited | 08/04/2026, 04:44:44 | 18/04/2026, 00:38:09 | No | Yes | APT36, Gamaredon Group | CVE-2018-16845, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347 | 08/04/2026, 10:05:07 | - |
| 103.57.223.•••:18789 | - | 🇻🇳 Vietnam | - | false | Leaked | AS135905 | VIETNAM POSTS AND TELECOMMUNICATIONS GROUP | INET Media | 08/04/2026, 04:44:43 | 08/04/2026, 10:01:22 | Yes | No | - | - | 08/04/2026, 10:05:20 | inet.vn |
| 34.175.239.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 08/04/2026, 04:44:41 | 08/04/2026, 10:01:21 | - | - | - | - | - | - | |
| 23.231.23.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS62904 | Eonix Corporation | Eonix Corporation | 08/04/2026, 04:44:41 | 18/04/2026, 00:38:41 | - | - | - | - | - | - |
| 108.211.193.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS7018 | AT&T Enterprises, LLC | AT&T Enterprises | 08/04/2026, 04:44:41 | 08/04/2026, 10:01:21 | - | - | - | - | - | - |
| 178.104.148.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 08/04/2026, 04:44:41 | 17/04/2026, 20:08:40 | - | - | - | - | - | - |
| 90.23.50.•••:18789 | - | 🇫🇷 France | Yes | false | Clean | AS3215 | Orange S.A. | Populated place in Romania | 08/04/2026, 04:44:41 | 14/04/2026, 10:30:01 | - | - | - | - | - | - |
| 51.89.160.•••:18789 | - | 🇬🇧 United Kingdom | Yes | false | Clean | AS16276 | OVH SAS | Failover IP | 08/04/2026, 04:44:41 | 16/04/2026, 15:11:36 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 13/04/2026, 12:11:49 | - |
| 156.253.125.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS142286 | LUOGELANG (FRANCE) LIMITED | Ares IDC Limited | 08/04/2026, 04:44:40 | 17/04/2026, 21:39:49 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 11/04/2026, 12:44:23 | - |
| 47.92.167.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 08/04/2026, 04:44:40 | 18/04/2026, 00:38:15 | - | - | - | - | - | - |
| 50.6.251.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS31898 | Oracle Corporation | [name redacted] | 08/04/2026, 04:44:40 | 12/04/2026, 17:06:16 | Yes | No | - | - | 09/04/2026, 12:19:48 | ecommerce.com, mybluehost.me |
| 4.217.192.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:44:40 | 08/04/2026, 10:47:06 | - | - | - | - | - | - |
| 176.229.187.•••:18789 | - | 🇮🇱 Israel | Yes | false | Clean | AS12400 | Partner Communications Ltd. | Partnercom Cellular Nets | 08/04/2026, 04:44:40 | 08/04/2026, 10:47:06 | - | - | - | - | - | - |
| 140.143.189.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 08/04/2026, 04:44:39 | 17/04/2026, 02:31:30 | No | No | - | - | 05/04/2026, 02:35:30 | - |
| 51.12.87.•••:18789 | - | 🇪🇺 European Union | - | false | Clean | AS8075 | Microsoft Corporation | Cloud | 08/04/2026, 04:44:39 | 08/04/2026, 10:47:06 | - | - | - | - | - | - |
| 54.165.130.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 08/04/2026, 04:44:39 | 09/04/2026, 02:34:44 | - | - | - | - | - | - |
| 157.254.174.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS26141 | CubePath | Cube Path | 08/04/2026, 04:44:39 | 08/04/2026, 10:47:06 | - | - | - | - | - | - |
| 101.200.50.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 08/04/2026, 04:44:39 | 16/04/2026, 16:42:46 | Yes | No | - | - | 13/04/2026, 17:58:46 | aliyun.com |
| 103.69.195.•••:18789 | - | 🇻🇳 Vietnam | Yes | false | Leaked | AS135905 | VIETNAM POSTS AND TELECOMMUNICATIONS GROUP | Soha Company | 08/04/2026, 04:44:39 | 17/04/2026, 04:46:43 | Yes | No | - | CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 16/04/2026, 22:02:14 | vccorp.vn |
| 89.167.86.•••:18789 | - | 🇫🇮 Finland | Yes | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner | 08/04/2026, 04:44:39 | 17/04/2026, 22:24:44 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 10/04/2026, 19:05:12 | hetzner.com |
| 47.250.181.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 08/04/2026, 04:44:39 | 17/04/2026, 20:54:08 | Yes | Yes | Salt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 07:07:51 | hichina.com, alibaba-inc.com |
| 69.6.235.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS31898 | Oracle Corporation | Newfold Digital | 08/04/2026, 04:44:38 | 08/04/2026, 10:47:05 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 10:04:58 | athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com |
| 173.44.143.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS62904 | Eonix Corporation | Eonix Corporation | 08/04/2026, 04:44:38 | 18/04/2026, 00:37:50 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 19:37:08 | eonix.net |
| 4.217.218.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:44:38 | 08/04/2026, 10:47:05 | - | - | - | - | - | - |
| 206.214.67.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS62904 | Eonix Corporation | ServerHub Phoenix | 08/04/2026, 04:44:38 | 17/04/2026, 04:46:42 | - | - | - | - | - | - |
| 20.230.156.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:44:38 | 08/04/2026, 10:01:18 | - | - | - | - | - | - |
| 20.46.113.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:44:38 | 08/04/2026, 09:16:03 | - | - | - | - | - | - |
| 103.142.26.•••:18789 | - | 🇻🇳 Vietnam | - | false | Clean | AS135951 | Webico Company Limited | Tino Group | 08/04/2026, 04:44:38 | 08/04/2026, 10:47:04 | - | - | - | - | - | - |
| 192.169.176.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS398101 | GoDaddy.com, LLC | GoDaddy | 08/04/2026, 04:44:38 | 17/04/2026, 10:01:10 | Yes | Yes | APT14, APT28, APT40, APT41, Cobalt Group, Equation Group, FIN8, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813 | 08/04/2026, 13:04:37 | godaddy.com |
| 172.67.70.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS13335 | Cloudflare, Inc. | Cloudflare | 08/04/2026, 04:44:38 | 08/04/2026, 10:47:04 | - | - | - | - | - | - |
| 154.8.160.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 08/04/2026, 04:42:13 | 09/04/2026, 11:30:49 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 04:42:33 | - |
| 129.121.87.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS31898 | Oracle Corporation | OGTIPS1 | 08/04/2026, 04:42:13 | 09/04/2026, 11:30:49 | - | - | - | - | - | - |
| 103.142.27.•••:18789 | - | 🇻🇳 Vietnam | - | false | Clean | AS135951 | Webico Company Limited | Tino Group | 08/04/2026, 04:42:13 | 09/04/2026, 11:30:49 | - | - | - | - | - | - |
| 143.110.228.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 04:42:13 | 16/04/2026, 02:34:29 | No | Yes | APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 04:42:36 | - |
| 20.205.41.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:42:12 | 18/04/2026, 00:36:03 | No | - | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 04:42:37 | - |
| 62.84.188.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS51167 | Contabo GmbH | Contabo | 08/04/2026, 04:42:12 | 09/04/2026, 11:30:49 | Yes | Yes | APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-27151, CVE-2025-32728, CVE-2025-46686, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 04:42:38 | contabo.de, contabo.net |
| 52.251.54.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:42:12 | 09/04/2026, 11:30:49 | - | - | - | - | - | - |
| 20.194.154.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:42:12 | 09/04/2026, 11:30:49 | No | No | - | - | 02/04/2026, 04:42:42 | - |
| 13.60.84.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Data Services Sweden | 08/04/2026, 04:42:12 | 09/04/2026, 11:30:49 | No | No | - | - | 02/04/2026, 04:42:43 | - |
| 20.194.174.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:42:12 | 09/04/2026, 11:30:49 | - | - | - | - | - | - |
| 185.229.224.•••:18789 | - | 🇳🇱 Netherlands | Yes | false | Leaked | AS41436 | Kamatera Inc | Cloud Web Manage EU | 08/04/2026, 04:42:12 | 09/04/2026, 11:30:49 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 04:42:47 | dnsrd.com, dns04.com |
| 138.197.153.•••:18789 | - | 🇨🇦 Canada | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 04:42:11 | 15/04/2026, 07:42:28 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-29323, CVE-2023-35784, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 08/04/2026, 04:42:48 | - |
| 206.189.131.•••:18789 | - | 🇮🇳 India | - | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 08/04/2026, 04:42:11 | 09/04/2026, 11:30:49 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 04:42:49 | - |
| 8.213.216.•••:18789 | Assistant | 🇸🇬 Singapore | Yes | false | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud Singapore | 08/04/2026, 04:42:11 | 18/04/2026, 00:35:44 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 04:42:50 | - |
| 20.115.162.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 08/04/2026, 04:42:11 | 09/04/2026, 11:30:49 | - | - | - | - | - | - |