🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 683295 Page: 749 / 6833 (100 per page) Showing: 74801-74900 Last Imported: 19/04/2026, 08:41:00
🇨🇳 364,448
🇺🇸 188,265
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 100.30.171.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 07/04/2026, 16:58:56 | 08/04/2026, 06:21:08 | - | - | - | - | - | - |
| 98.126.102.•••:10125 | - | 🇺🇸 United States | Yes | true | Clean | AS4213 | Krypt Technologies | Krypt Technologies | 07/04/2026, 16:58:56 | 17/04/2026, 10:06:52 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 08:43:18 | vpls.net, vpls.com |
| 18.141.228.•••:443 | - | 🇸🇬 Singapore | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 07/04/2026, 16:58:55 | 17/04/2026, 19:28:34 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 13/04/2026, 15:02:52 | - |
| 2402:4e00:c011:900:620a:2f3c:d05a:0:443 | - | 🇨🇳 China mainland | - | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 07/04/2026, 16:58:55 | 16/04/2026, 18:18:36 | - | - | - | - | - | - |
| 168.119.228.•••:18789 | - | 🇩🇪 Germany | Yes | true | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 07/04/2026, 16:58:55 | 16/04/2026, 21:20:42 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 13/04/2026, 12:17:36 | hetzner.com |
| 206.81.24.•••:8080 | - | 🇩🇪 Germany | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 07/04/2026, 16:58:55 | 17/04/2026, 02:36:36 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 00:15:51 | - |
| 114.116.242.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS55990 | Huawei Cloud Service data center | Huawei Cloud | 07/04/2026, 16:58:55 | 17/04/2026, 20:13:45 | Yes | No | - | - | 11/04/2026, 01:21:45 | smartcom.cc, huawei.com, huaweidevice.com |
| 38.127.47.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS18978 | Enzu Inc | Enzu | 07/04/2026, 16:58:55 | 16/04/2026, 01:23:19 | No | No | - | - | 04/04/2026, 10:59:49 | - |
| 2.27.17.•••:443 | - | 🇩🇪 Germany | Yes | true | Clean | AS206134 | NEKOBYTE INTERNATIONAL LIMITED | IT Garage | 07/04/2026, 16:58:54 | 17/04/2026, 09:22:17 | No | No | - | - | 05/04/2026, 09:29:10 | - |
| 92.112.127.•••:18789 | - | 🇳🇱 Netherlands | Yes | true | Clean | AS214677 | Matteo Martelloni trading as DELUXHOST | Delux Host | 07/04/2026, 16:58:54 | 17/04/2026, 04:06:44 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 02:03:56 | - |
| 2a02:c207:2315:2027::1:18789 | - | 🇫🇷 France | - | true | Clean | AS51167 | Contabo GmbH | Contabo | 07/04/2026, 16:58:54 | 16/04/2026, 01:22:26 | - | - | - | - | - | - |
| 101.96.194.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS137718 | Beijing Volcano Engine Technology Co., Ltd. | Beijing Volcano Engine Technology | 07/04/2026, 16:58:54 | 14/04/2026, 10:34:36 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 10/04/2026, 17:05:05 | bytedance.com |
| 124.222.118.•••:443 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 07/04/2026, 16:58:54 | 17/04/2026, 03:21:47 | Yes | Yes | APT37, El-Machete | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 14/04/2026, 06:07:55 | tencent.com |
| 104.131.44.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 07/04/2026, 16:58:54 | 17/04/2026, 05:36:58 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team | CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2018-15919, CVE-2020-14145, CVE-2021-41617 | 11/04/2026, 05:02:20 | - |
| 195.201.173.•••:18789 | - | 🇩🇪 Germany | Yes | true | Leaked | AS24940 | Hetzner Online GmbH | Hetzner | 07/04/2026, 16:58:53 | 13/04/2026, 21:47:40 | Yes | Yes | APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE | CVE-2006-20001, CVE-2017-15710, CVE-2017-15715, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-11044, CVE-2019-11045, CVE-2019-11046, CVE-2019-11047, CVE-2019-11048, CVE-2019-11050, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11993, CVE-2020-14145, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-7059, CVE-2020-7060, CVE-2020-7062, CVE-2020-7063, CVE-2020-7064, CVE-2020-7066, CVE-2020-7067, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2023-25690, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 13/04/2026, 21:52:01 | hetzner.com |
| 165.245.165.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 07/04/2026, 16:58:53 | 16/04/2026, 22:06:00 | - | - | - | - | - | - |
| 159.65.77.•••:443 | - | 🇺🇸 United States | - | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 07/04/2026, 16:58:53 | 07/04/2026, 22:04:53 | - | - | - | - | - | - |
| 129.121.86.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS31898 | Oracle Corporation | OGTIPS1 | 07/04/2026, 16:58:51 | 16/04/2026, 01:22:35 | Yes | Yes | FIN8 | - | 07/04/2026, 22:53:47 | athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com |
| 8.210.24.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 07/04/2026, 16:58:51 | 16/04/2026, 19:04:15 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 22:53:56 | - |
| 111.202.144.•••:18789 | - | 🇨🇳 China mainland | - | true | Leaked | AS4808 | China Unicom Beijing Province Network | China Unicom Beijing | 07/04/2026, 16:58:51 | 07/04/2026, 22:50:22 | Yes | No | - | - | 07/04/2026, 22:54:02 | wisdomxj.cn, cwsse.com.cn, xjkrx.cn, xintec.hk, meter.ln.cn, gatorchucks.cn, innfos.cn, dehuiguangchang.cn, xjgudao.com, mubayyin.cn, xjxhhydropower.com, dldianfeng.cn, beiyuecheng.com, chinaunicom.cn, 0991df.net, szlis.com.cn, cnkejie.com, 8189330.cn, liyubelt.net.cn |
| 77.68.23.•••:18789 | - | 🇬🇧 United Kingdom | Yes | true | Leaked | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | Next Generation Cloud Server | 07/04/2026, 16:58:51 | 17/04/2026, 02:36:36 | Yes | Yes | APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE | CVE-2006-20001, CVE-2017-15710, CVE-2017-15715, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11993, CVE-2020-14145, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-14177, CVE-2025-14178, CVE-2025-14180, CVE-2025-26465, CVE-2025-32728, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-65082, CVE-2025-66200 | 07/04/2026, 22:54:03 | fasthosts.co.uk |
| 47.92.212.•••:50001 | - | 🇨🇳 China mainland | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 07/04/2026, 16:58:51 | 16/04/2026, 13:00:59 | No | Yes | APT-C-23, APT36, Carbanak, Cobalt Group, DarkHotel Group, Equation Group, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2017-20005, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 22:54:04 | - |
| 8.160.178.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 07/04/2026, 16:58:51 | 10/04/2026, 17:46:12 | - | - | - | - | - | - |
| 46.224.239.•••:18789 | - | 🇩🇪 Germany | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 07/04/2026, 16:58:51 | 13/04/2026, 20:16:19 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 22:54:11 | - |
| 14.117.242.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS136199 | CHINANET Guangdong province Yuedong MAN network | CHINANET Guangdong | 07/04/2026, 16:58:51 | 07/04/2026, 22:50:21 | No | No | - | - | 01/04/2026, 22:54:14 | - |
| 47.92.195.•••:50001 | - | 🇨🇳 China mainland | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 07/04/2026, 16:58:50 | 16/04/2026, 11:29:49 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617 | 07/04/2026, 22:54:16 | - |
| 8.156.72.•••:20080 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 07/04/2026, 16:58:50 | 16/04/2026, 01:22:24 | No | No | - | - | 01/04/2026, 22:54:21 | - |
| 34.123.39.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS396982 | Google LLC | 07/04/2026, 16:58:49 | 14/04/2026, 07:35:20 | No | Yes | DragonFly, Packrat | CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 07/04/2026, 22:54:23 | - | |
| 210.223.2.•••:443 | - | 🇰🇷 South Korea | Yes | true | Leaked | AS4766 | Korea Telecom | Korea Telecom | 07/04/2026, 16:58:49 | 07/04/2026, 22:50:21 | Yes | No | - | CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419 | 07/04/2026, 22:54:26 | macmadigan.com, kornet.net, bizmeka.com, kt.com, homeap.co.kr, hhnsfarm.co.kr, ktds.com, ktlogis.com, ktestate.com, synology.me, krnic.or.kr, kt-idc.com, ktsat.net, kt.co.kr, ktmediahub.com, ktcloud.com, ktfreetel.co.kr |
| 204.194.53.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS140869 | Turing Group Limited | Decision Focus Inc | 07/04/2026, 16:58:49 | 16/04/2026, 20:35:27 | No | No | - | - | 01/04/2026, 22:54:28 | - |
| 171.213.202.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS4134 | Chinanet | ChinaNet Sichuan | 07/04/2026, 16:58:49 | 07/04/2026, 22:50:21 | No | No | - | - | 01/04/2026, 22:54:37 | - |
| 42.51.39.•••:50000 | - | 🇨🇳 China mainland | Yes | true | Clean | AS56005 | Zhengzhou Fastidc Technology Co.,Ltd. | Henan Telcom Union Technology | 07/04/2026, 16:58:49 | 16/04/2026, 22:51:08 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728 | 07/04/2026, 22:54:42 | - |
| 62.171.191.•••:80 | - | 🇫🇷 France | Yes | true | Leaked | AS51167 | Contabo GmbH | Contabo | 07/04/2026, 16:58:49 | 16/04/2026, 14:31:25 | Yes | Yes | APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Earth Berberoka, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE | CVE-2006-20001, CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-10708, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-35652, CVE-2020-35776, CVE-2021-26690, CVE-2021-26691, CVE-2021-26712, CVE-2021-26713, CVE-2021-26717, CVE-2021-26906, CVE-2021-28041, CVE-2021-32558, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2021-46837, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-26651, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 22:54:49 | contabo.de, contabo.net |
| 47.251.182.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud US | 07/04/2026, 16:58:48 | 07/04/2026, 22:50:19 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 22:54:58 | - |
| 50.6.5.•••:80 | - | 🇺🇸 United States | Yes | true | Leaked | AS31898 | Oracle Corporation | Website Welcome | 07/04/2026, 16:58:48 | 07/04/2026, 22:50:19 | Yes | No | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 22:55:04 | athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com |
| 50.2.171.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS62904 | Eonix Corporation | Eonix Corporation | 07/04/2026, 16:58:48 | 17/04/2026, 10:05:54 | Yes | Yes | APT14, APT35, Gamaredon Group, Kimsuky | CVE-2001-1556, CVE-2002-0061, CVE-2002-0392, CVE-2003-0020, CVE-2003-0083, CVE-2003-0132, CVE-2004-0174, CVE-2004-0942, CVE-2004-2343, CVE-2005-3352, CVE-2006-20001, CVE-2006-5752, CVE-2007-3304, CVE-2007-4465, CVE-2007-6750, CVE-2008-2939, CVE-2009-3555, CVE-2011-0419, CVE-2012-0031, CVE-2012-0053, CVE-2013-1862, CVE-2015-0228, CVE-2016-8612, CVE-2017-9788, CVE-2017-9798, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2019-6470, CVE-2019-6471, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-2795, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-37436, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-31122, CVE-2023-3341, CVE-2023-38709, CVE-2023-4408, CVE-2023-50387, CVE-2023-5680, CVE-2024-11187, CVE-2024-1737, CVE-2024-1975, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 22:55:08 | eonix.net |
| 217.114.3.•••:18789 | - | 🇷🇺 Russia | Yes | true | Clean | AS198610 | Beget LLC | Beget LLC | 07/04/2026, 16:58:48 | 07/04/2026, 22:50:19 | No | Yes | APT15, APT31, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 22:55:12 | - |
| 103.9.206.•••:18789 | - | 🇻🇳 Vietnam | Yes | true | Leaked | AS135905 | VIETNAM POSTS AND TELECOMMUNICATIONS GROUP | Sunsoft | 07/04/2026, 16:58:48 | 16/04/2026, 23:36:03 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 22:55:20 | vnnic.vn |
| 147.224.200.•••:443 | - | 🇺🇸 United States | - | true | Clean | AS31898 | Oracle Corporation | Oracle | 07/04/2026, 16:58:48 | 07/04/2026, 22:50:18 | - | - | - | - | - | - |
| 132.226.65.•••:8443 | - | 🇺🇸 United States | Yes | true | Leaked | AS31898 | Oracle Corporation | Oracle Cloud | 07/04/2026, 16:58:47 | 07/04/2026, 22:50:18 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 22:55:28 | healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, elementfusion.com, netsuiteforms.com, oracleemaildelivery.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com |
| 64.23.161.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 07/04/2026, 16:58:47 | 07/04/2026, 22:50:18 | No | Yes | APT-C-23, APT14, APT15, APT28, APT29, APT31, APT34, APT36, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, Turla APT Group, Volt Typhoon, WIRTE | CVE-2006-20001, CVE-2007-4559, CVE-2016-20012, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-17567, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-3618, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-24329, CVE-2023-25690, CVE-2023-27043, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-36632, CVE-2023-38408, CVE-2023-38709, CVE-2023-40217, CVE-2023-41105, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-0397, CVE-2024-11168, CVE-2024-24795, CVE-2024-27316, CVE-2024-3219, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-4032, CVE-2024-40898, CVE-2024-6232, CVE-2024-6387, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-26465, CVE-2025-32728 | 07/04/2026, 22:55:37 | - |
| 43.138.70.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 07/04/2026, 16:58:47 | 16/04/2026, 20:35:30 | Yes | Yes | APT37, El-Machete | - | 07/04/2026, 22:55:40 | tencent.com |
| 87.242.103.•••:18789 | - | 🇷🇺 Russia | Yes | true | Clean | AS208677 | "Cloud Technologies" LLC trading as Cloud.ru | Cloud.ru | 07/04/2026, 16:58:47 | 16/04/2026, 21:20:36 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728 | 07/04/2026, 22:55:43 | cloudtech.ie |
| 192.163.174.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Clean | AS138995 | Antbox Networks Limited | Antbox Network | 07/04/2026, 16:58:47 | 17/04/2026, 01:06:15 | No | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Earth Berberoka, Equation Group, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-17199, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2020-11985, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 22:55:47 | - |
| 86.48.17.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS40021 | Contabo Inc. | Contabo | 07/04/2026, 16:58:47 | 17/04/2026, 05:36:57 | Yes | Yes | Salt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 05:02:18 | contabo.de, contabo.net |
| 104.247.76.•••:5030 | - | 🇭🇰 Hong Kong | Yes | true | Leaked | AS54641 | InMotion Hosting, Inc. | InMotion Hosting | 07/04/2026, 16:58:47 | 17/04/2026, 10:06:04 | Yes | Yes | APT-C-23, APT10, APT15, APT19, APT27, APT28, APT29, APT30, APT33, APT34, APT35, APT37, APT39, APT40, APT41, APT5, AQUATIC PANDA, Antlion APT, BRONZE ATLAS, Bluenoroff, Bronze Butler APT, Buhtrap Group, Carbanak, Cobalt Group, CopyKittens, DarkHydrus, DragonOK APT, Earth Berberoka, Energetic Bear, Equation Group, Gamaredon Group, Greenbug Group, Hafnium Group, Inception Framework, Kimsuky, Konni Group, Lazarus Group, Moses Staff APT, MuddyWater Group, Mustang Panda, Orangeworm, Sandworm Team, Silence Hacker Group, TA505, The Shadow Brokers, Thrip APT, Triton APT, Tropic Trooper, Volatile Kitten | CVE-2014-3562, CVE-2014-4650, CVE-2015-3456, CVE-2015-5741, CVE-2015-6815, CVE-2016-10708, CVE-2016-2124, CVE-2016-2183, CVE-2016-6662, CVE-2017-1000376, CVE-2017-15906, CVE-2017-5645, CVE-2017-9953, CVE-2018-1059, CVE-2018-10869, CVE-2018-10892, CVE-2018-10926, CVE-2018-1111, CVE-2018-1128, CVE-2018-1129, CVE-2018-14462, CVE-2018-14463, CVE-2018-14465, CVE-2018-14469, CVE-2018-14622, CVE-2018-14645, CVE-2018-14879, CVE-2018-14882, CVE-2018-15473, CVE-2018-15919, CVE-2018-16229, CVE-2018-16540, CVE-2018-16871, CVE-2018-17456, CVE-2018-18311, CVE-2018-20615, CVE-2018-20685, CVE-2018-3665, CVE-2018-3760, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2019-10196, CVE-2019-11038, CVE-2019-11477, CVE-2019-11478, CVE-2019-14813, CVE-2019-14816, CVE-2019-14907, CVE-2019-19906, CVE-2019-3459, CVE-2019-3880, CVE-2019-5798, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6470, CVE-2019-6471, CVE-2019-6974, CVE-2019-7221, CVE-2019-7317, CVE-2020-10696, CVE-2020-10711, CVE-2020-10749, CVE-2020-10756, CVE-2020-10763, CVE-2020-14145, CVE-2020-14318, CVE-2020-14355, CVE-2020-14364, CVE-2020-14370, CVE-2020-14394, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707, CVE-2020-1711, CVE-2020-25639, CVE-2020-25657, CVE-2020-25710, CVE-2020-25717, CVE-2020-25743, CVE-2020-27777, CVE-2020-27786, CVE-2020-27827, CVE-2020-35518, CVE-2020-35524, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-20179, CVE-2021-20188, CVE-2021-20229, CVE-2021-20236, CVE-2021-20270, CVE-2021-32027, CVE-2021-3516, CVE-2021-3532, CVE-2021-3533, CVE-2021-3537, CVE-2021-3621, CVE-2021-3669, CVE-2021-3737, CVE-2021-3752, CVE-2021-4104, CVE-2021-41617, CVE-2021-41817, CVE-2021-44142, CVE-2021-45417, CVE-2022-0711, CVE-2022-1011, CVE-2022-1227, CVE-2022-1708, CVE-2022-2132, CVE-2022-2393, CVE-2022-2850, CVE-2022-2989, CVE-2022-2990, CVE-2022-32545, CVE-2022-32546, CVE-2022-38178, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 08:43:41 | inmotionhosting.com |
| 106.107.205.•••:18789 | - | 🇹🇼 Taiwan | - | true | Leaked | AS18049 | Taiwan Infrastructure Network Technologie | New Century InfoComm Tech | 07/04/2026, 16:58:46 | 14/04/2026, 02:19:10 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 13/04/2026, 23:17:27 | seed.net.tw |
| 178.63.141.•••:3101 | - | 🇩🇪 Germany | Yes | true | Leaked | AS24940 | Hetzner Online GmbH | Hetzner | 07/04/2026, 16:58:46 | 17/04/2026, 10:05:31 | Yes | - | - | CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 01:23:38 | hetzner.com |
| 52.38.147.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 07/04/2026, 16:58:46 | 08/04/2026, 07:06:07 | No | No | - | - | 02/04/2026, 01:51:27 | - |
| 18.220.237.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 07/04/2026, 16:58:46 | 17/04/2026, 07:52:29 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 10/04/2026, 17:05:07 | - |
| 43.242.200.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Clean | AS401696 | cognetcloud INC | HK Jiujiuidc Technology Limited | 07/04/2026, 16:58:46 | 07/04/2026, 22:50:17 | - | - | - | - | - | - |
| 54.172.196.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS14618 | Amazon.com, Inc. | Amazon | 07/04/2026, 16:58:46 | 17/04/2026, 21:44:48 | No | No | - | - | 04/04/2026, 11:42:40 | - |
| 101.33.242.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 07/04/2026, 16:58:45 | 07/04/2026, 22:50:16 | - | - | - | - | - | - |
| 98.81.50.•••:443 | - | 🇺🇸 United States | - | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 07/04/2026, 16:58:45 | 07/04/2026, 22:50:16 | - | - | - | - | - | - |
| 94.143.142.•••:18789 | - | 🇪🇸 Spain | Yes | true | Leaked | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | Ionos Cloud Virtual IT | 07/04/2026, 16:58:44 | 16/04/2026, 01:22:57 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 10/04/2026, 12:35:01 | arsys.es |
| 47.254.14.•••:80 | - | 🇺🇸 United States | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud US | 07/04/2026, 16:58:44 | 16/04/2026, 12:15:30 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2014-4078, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728 | 16/04/2026, 11:32:41 | - |
| 102.220.91.•••:18789 | - | 🇿🇦 South Africa | Yes | true | Clean | AS136826 | Indonesia Network Information Center | Telkom SA | 07/04/2026, 16:58:44 | 12/04/2026, 23:54:06 | - | - | - | - | - | - |
| 38.127.47.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS18978 | Enzu Inc | Enzu | 07/04/2026, 16:58:44 | 16/04/2026, 01:22:29 | No | No | - | - | 04/04/2026, 16:20:59 | - |
| 44.204.249.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 07/04/2026, 16:58:43 | 17/04/2026, 10:07:05 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728 | 08/04/2026, 01:52:20 | - |
| 101.33.33.•••:443 | - | 🇭🇰 Hong Kong | Yes | true | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 07/04/2026, 16:58:43 | 16/04/2026, 19:50:03 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 10/04/2026, 11:44:57 | tencent.com |
| 129.212.134.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 07/04/2026, 16:58:43 | 17/04/2026, 00:21:12 | - | - | - | - | - | - |
| 167.71.57.•••:443 | - | 🇩🇪 Germany | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 07/04/2026, 16:58:43 | 08/04/2026, 07:06:03 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 01:52:47 | - |
| 154.58.233.•••:443 | - | 🇯🇵 Japan | Yes | true | Leaked | AS154438 | Superstify Technology Pte Ltd | Qiniu Limited | 07/04/2026, 16:58:43 | 16/04/2026, 22:06:01 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 16/04/2026, 21:24:46 | cogentco.com |
| 149.30.198.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS133199 | SonderCloud Limited | Solustack Limited | 07/04/2026, 16:58:43 | 16/04/2026, 01:22:12 | Yes | No | - | - | 10/04/2026, 16:20:54 | cogentco.com |
| 16.79.60.•••:443 | - | 🇮🇪 Ireland | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services Jakarta | 07/04/2026, 16:58:42 | 11/04/2026, 07:11:33 | No | No | - | - | 04/04/2026, 09:42:44 | - |
| 62.171.155.•••:18789 | - | 🇫🇷 France | Yes | true | Clean | AS51167 | Contabo GmbH | Contabo | 07/04/2026, 16:58:42 | 07/04/2026, 22:50:13 | - | - | - | - | - | - |
| 217.77.5.•••:20019 | - | 🇩🇪 Germany | Yes | true | Leaked | AS40021 | Contabo Inc. | Contabo | 07/04/2026, 16:58:42 | 16/04/2026, 01:22:53 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 00:10:13 | contaboserver.net, contabo.de, contabo.net |
| 156.245.247.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Clean | AS62468 | VpsQuan L.L.C. | HK Unite Telecommunications Development Limited | 07/04/2026, 16:58:42 | 16/04/2026, 18:18:42 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 14/04/2026, 03:51:02 | - |
| 64.71.179.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS401742 | ServerOptima | Hurricane 2 | 07/04/2026, 16:58:42 | 16/04/2026, 01:22:53 | Yes | No | - | CVE-2022-26691, CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 13/04/2026, 12:21:42 | he.net, he.com |
| 209.38.84.•••:443 | - | 🇦🇺 Australia | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 07/04/2026, 16:58:42 | 17/04/2026, 01:51:29 | No | No | - | CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 01:25:51 | - |
| 103.4.82.•••:18789 | - | 🇮🇩 Indonesia | Yes | true | Clean | AS141934 | PT Sanders Bersaudara Media | PT Klojen | 07/04/2026, 16:58:42 | 16/04/2026, 15:17:01 | - | - | - | - | - | - |
| 107.173.112.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS36352 | HostPapa | RackNerd | 07/04/2026, 16:58:42 | 16/04/2026, 23:35:58 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2020-25097, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-28662, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41317, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 00:18:58 | racknerd.com |
| 103.193.178.•••:443 | - | 🇮🇩 Indonesia | Yes | true | Clean | AS136052 | PT Cloud Hosting Indonesia | Nara Cakra Studio | 07/04/2026, 16:58:41 | 16/04/2026, 22:51:05 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 08:43:24 | eu.org |
| 3.139.36.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 07/04/2026, 16:58:41 | 16/04/2026, 16:02:30 | - | - | - | - | - | - |
| 111.229.37.•••:443 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 07/04/2026, 16:58:41 | 17/04/2026, 02:36:33 | Yes | - | - | - | 11/04/2026, 10:14:22 | tencent.com |
| 81.69.231.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 07/04/2026, 16:58:41 | 16/04/2026, 16:02:31 | No | Yes | APT37, El-Machete | - | 13/04/2026, 15:45:35 | - |
| 8.129.3.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 07/04/2026, 16:58:41 | 16/04/2026, 20:35:27 | - | - | - | - | - | - |
| 50.116.58.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS63949 | Akamai Connected Cloud | Linode | 07/04/2026, 16:58:41 | 10/04/2026, 15:30:55 | - | - | - | - | - | - |
| 152.69.192.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS31898 | Oracle Corporation | Oracle | 07/04/2026, 16:58:41 | 10/04/2026, 14:44:29 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, DragonFly, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon, gozi | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 10/04/2026, 14:45:59 | healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com |
| 209.74.87.•••:18789 | - | 🇮🇳 India | Yes | true | Leaked | AS22612 | Namecheap, Inc. | [name redacted] | 07/04/2026, 16:58:41 | 16/04/2026, 16:47:50 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 14/04/2026, 03:49:58 | namecheap.com |
| 101.35.84.•••:80 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 07/04/2026, 16:58:39 | 16/04/2026, 12:15:32 | Yes | Yes | APT37, El-Machete | - | 10/04/2026, 11:02:07 | tencent.com |
| 117.72.195.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS141679 | China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch | JD.com | 07/04/2026, 16:58:39 | 16/04/2026, 14:31:22 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 23:36:03 | jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com |
| 2a02:4780:63:a7a5::1:18789 | - | 🇮🇳 India | - | true | Clean | AS47583 | Hostinger International Limited | Hostinger | 07/04/2026, 16:58:39 | 10/04/2026, 13:13:11 | - | - | - | - | - | - |
| 156.254.228.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Clean | AS142286 | LUOGELANG (FRANCE) LIMITED | Ares IDC Limited | 07/04/2026, 16:58:39 | 17/04/2026, 07:07:04 | No | Yes | APT-C-23, APT36, Cobalt Group, Equation Group, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon | CVE-2018-16845, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487 | 07/04/2026, 23:36:11 | - |
| 98.126.102.•••:10018 | - | 🇺🇸 United States | Yes | true | Clean | AS4213 | Krypt Technologies | Krypt Technologies | 07/04/2026, 16:58:39 | 16/04/2026, 10:05:26 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 23:36:17 | vpls.net, vpls.com |
| 54.255.181.•••:443 | - | 🇸🇬 Singapore | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services Japan | 07/04/2026, 16:58:39 | 17/04/2026, 10:05:53 | - | - | - | - | - | - |
| 50.2.171.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS62904 | Eonix Corporation | Eonix Corporation | 07/04/2026, 16:58:38 | 17/04/2026, 04:06:44 | Yes | Yes | APT14, APT35, Gamaredon Group, Kimsuky | CVE-2001-1556, CVE-2002-0061, CVE-2002-0392, CVE-2003-0020, CVE-2003-0083, CVE-2003-0132, CVE-2004-0174, CVE-2004-0942, CVE-2004-2343, CVE-2005-3352, CVE-2006-20001, CVE-2006-5752, CVE-2007-3304, CVE-2007-4465, CVE-2007-6750, CVE-2008-2939, CVE-2009-3555, CVE-2011-0419, CVE-2012-0031, CVE-2012-0053, CVE-2013-1862, CVE-2015-0228, CVE-2016-8612, CVE-2017-9788, CVE-2017-9798, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2019-6470, CVE-2019-6471, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-2795, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-37436, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-31122, CVE-2023-3341, CVE-2023-38709, CVE-2023-4408, CVE-2023-50387, CVE-2023-5680, CVE-2024-1737, CVE-2024-1975, CVE-2024-40898 | 07/04/2026, 23:36:25 | eonix.net |
| 169.231.147.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS131 | University of California, Santa Barbara | University of California Santa Barbara | 07/04/2026, 16:58:38 | 07/04/2026, 23:35:22 | Yes | No | - | - | 07/04/2026, 23:36:26 | ucsb.edu |
| 185.195.13.•••:80 | - | 🇺🇸 United States | Yes | true | Clean | AS31898 | Oracle Corporation | Newfold Digital | 07/04/2026, 16:58:38 | 17/04/2026, 04:06:52 | Yes | Yes | APT28, APT37, Carbanak, Cobalt Group, DragonFly, El-Machete, Lazarus Group, RomCom Group | CVE-2012-2552, CVE-2014-1820, CVE-2014-4061, CVE-2015-1761, CVE-2015-1762, CVE-2015-1763, CVE-2016-7253, CVE-2016-7254, CVE-2017-8516, CVE-2020-0618, CVE-2021-1636 | 07/04/2026, 23:36:29 | publicdomainregistry.com |
| 2001:41d0:701:1100::c630:18789 | - | 🇩🇪 Germany | - | true | Clean | AS16276 | OVH SAS | OVH Germany | 07/04/2026, 16:58:38 | 07/04/2026, 23:35:20 | - | - | - | - | - | - |
| 5.161.234.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS213230 | Hetzner Online GmbH | Hetzner Online | 07/04/2026, 16:58:38 | 10/04/2026, 12:27:51 | Yes | Yes | Salt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 23:36:44 | hetzner.com |
| 18.168.155.•••:443 | - | 🇬🇧 United Kingdom | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 07/04/2026, 16:58:38 | 11/04/2026, 21:05:20 | Yes | No | - | - | 07/04/2026, 23:36:50 | ucl.ac.uk |
| 82.157.207.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 07/04/2026, 16:58:38 | 07/04/2026, 23:35:20 | No | Yes | APT37, El-Machete | - | 07/04/2026, 23:36:58 | - |
| 154.44.25.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Leaked | AS979 | NetLab Global | Cogent Communications | 07/04/2026, 16:58:38 | 17/04/2026, 10:07:13 | Yes | Yes | APT14, APT15, APT17, APT28, APT31, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2006-20001, CVE-2017-15710, CVE-2017-15715, CVE-2017-3167, CVE-2017-3169, CVE-2017-7659, CVE-2017-7668, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-17189, CVE-2018-17199, CVE-2019-0196, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-9517, CVE-2020-11993, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387 | 07/04/2026, 23:37:02 | cogentco.com |
| 149.30.201.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS133199 | SonderCloud Limited | Solustack Limited | 07/04/2026, 16:58:37 | 17/04/2026, 10:06:59 | Yes | No | - | - | 07/04/2026, 23:37:05 | cogentco.com |
| 120.26.245.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 07/04/2026, 16:58:37 | 10/04/2026, 17:45:37 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 07/04/2026, 23:37:06 | aliyun.com |
| 65.108.157.•••:18789 | - | 🇫🇮 Finland | Yes | true | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 07/04/2026, 16:58:37 | 07/04/2026, 23:35:20 | Yes | Yes | APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 23:37:09 | your-server.de, hetzner.com |
| 15.204.100.•••:10058 | - | 🇺🇸 United States | Yes | true | Leaked | AS16276 | OVH SAS | [name redacted] | 07/04/2026, 16:58:37 | 11/04/2026, 10:10:49 | Yes | Yes | APT29, Nobelium, RedCurl | CVE-2020-3999, CVE-2023-44487, CVE-2024-22252, CVE-2024-22253, CVE-2024-22254, CVE-2024-22255, CVE-2024-22273, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 23:37:13 | ovhcloud.com |
| 8.166.140.•••:19001 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 07/04/2026, 16:58:37 | 16/04/2026, 22:51:06 | - | - | - | - | - | - |
| 2a02:4780:79:ab1f::1:18789 | - | 🇩🇪 Germany | - | true | Clean | AS47583 | Hostinger International Limited | Hostinger | 07/04/2026, 16:58:37 | 16/04/2026, 22:51:11 | - | - | - | - | - | - |