🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 1006105 Page: 471 / 10062 (100 per page) Showing: 47001-47100 Last Imported: 14/07/2026, 07:44:58
🇨🇳 483,673
🇺🇸 290,578
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 101.43.13.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 18/06/2026, 15:12:36 | 11/07/2026, 07:55:34 | Yes | Yes | APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-45143, CVE-2023-28708, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-43622, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 19:33:35 | tencent.com, tencentcloud.com |
| 123.173.88.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS4134 | Chinanet | ChinaNet Jilin | 18/06/2026, 15:12:36 | 18/06/2026, 20:54:17 | - | - | - | - | - | - |
| 47.99.185.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 18/06/2026, 15:12:36 | 13/07/2026, 04:56:31 | No | No | - | - | 15/06/2026, 19:35:11 | - |
| 149.28.246.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS20473 | The Constant Company, LLC | Vultr Holdings | 18/06/2026, 15:12:36 | 18/06/2026, 20:54:17 | - | - | - | - | - | - |
| 54.69.92.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 18/06/2026, 15:12:35 | 13/07/2026, 11:22:27 | No | No | - | - | 12/06/2026, 23:44:25 | - |
| 103.216.117.•••:18789 | - | 🇻🇳 Vietnam | - | false | Clean | AS135905 | VIETNAM POSTS AND TELECOMMUNICATIONS GROUP | INETSOFT-VN | 18/06/2026, 15:12:35 | 18/06/2026, 20:54:17 | - | - | - | - | - | - |
| 136.117.140.•••:18789 | Assistant | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 18/06/2026, 15:12:35 | 18/06/2026, 20:54:16 | - | - | - | - | - | - | |
| 2a02:4780:5e:4f74::1:18789 | - | 🇲🇾 Malaysia | - | true | Clean | AS47583 | Hostinger International Limited | Hostinger | 18/06/2026, 15:12:35 | 12/07/2026, 15:24:08 | - | - | - | - | - | - |
| 211.101.236.•••:18789 | - | 🇽🇽 XX | Yes | true | Leaked | AS58519 | Cloud Computing Corporation | Unknown | 18/06/2026, 15:12:34 | 13/07/2026, 07:47:15 | Yes | - | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 22/06/2026, 05:31:20 | cnnic.cn |
| 175.178.252.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 18/06/2026, 15:12:32 | 13/07/2026, 07:04:36 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 21/06/2026, 16:02:38 | tencent.com, tencentcloud.com |
| 136.0.73.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS213840 | DDOS PROTECTION LTD / AS8796 FASTNET DATA INC | Netutils | 18/06/2026, 15:12:32 | 02/07/2026, 18:45:40 | Yes | No | - | - | 18/06/2026, 21:37:41 | betterservers.com, acedatacenters.com |
| 2408:8221:150:f860:f702:59d5:b4c0:6cf8:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS4837 | CHINA UNICOM China169 Backbone | China Unicom | 18/06/2026, 15:12:32 | 18/06/2026, 21:36:55 | - | - | - | - | - | - |
| 8.218.112.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud Singapore | 18/06/2026, 15:12:31 | 13/07/2026, 22:07:19 | No | Yes | APT15, APT31, APT37, APT39, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 18/06/2026, 21:37:30 | - |
| 194.164.18.•••:18789 | - | 🇬🇧 United Kingdom | - | false | Leaked | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | IONOS Cloud London | 18/06/2026, 15:12:31 | 19/06/2026, 01:55:14 | Yes | - | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 18/06/2026, 21:37:46 | ionos.com |
| 47.84.234.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 18/06/2026, 15:12:31 | 24/06/2026, 03:11:21 | - | - | - | - | - | - |
| 20.97.247.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 18/06/2026, 15:12:30 | 18/06/2026, 21:36:53 | No | Yes | FIN8 | - | 18/06/2026, 21:37:54 | - |
| 75.146.94.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS7922 | Comcast Cable Communications, LLC | Comcast | 18/06/2026, 15:12:30 | 13/07/2026, 14:15:03 | No | Yes | APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2005-0004, CVE-2006-20001, CVE-2012-0540, CVE-2012-0572, CVE-2012-0574, CVE-2012-0578, CVE-2012-1688, CVE-2012-1689, CVE-2012-1690, CVE-2012-1697, CVE-2012-1702, CVE-2012-1703, CVE-2012-1705, CVE-2012-1734, CVE-2012-1735, CVE-2012-1756, CVE-2012-1757, CVE-2012-2750, CVE-2012-3150, CVE-2012-3158, CVE-2012-3160, CVE-2012-3163, CVE-2012-3166, CVE-2012-3167, CVE-2012-3173, CVE-2012-3177, CVE-2012-3180, CVE-2012-3197, CVE-2012-5060, CVE-2012-5096, CVE-2012-5612, CVE-2012-5614, CVE-2012-5627, CVE-2013-0367, CVE-2013-0368, CVE-2013-0371, CVE-2013-0383, CVE-2013-0384, CVE-2013-0385, CVE-2013-0386, CVE-2013-0389, CVE-2013-1502, CVE-2013-1506, CVE-2013-1511, CVE-2013-1512, CVE-2013-1521, CVE-2013-1523, CVE-2013-1526, CVE-2013-1531, CVE-2013-1532, CVE-2013-1544, CVE-2013-1548, CVE-2013-1552, CVE-2013-1555, CVE-2013-1861, CVE-2013-2375, CVE-2013-2376, CVE-2013-2378, CVE-2013-2389, CVE-2013-2391, CVE-2013-2392, CVE-2013-3783, CVE-2013-3793, CVE-2013-3794, CVE-2013-3801, CVE-2013-3802, CVE-2013-3804, CVE-2013-3805, CVE-2013-3808, CVE-2013-3809, CVE-2013-3812, CVE-2013-3839, CVE-2013-5807, CVE-2013-5891, CVE-2013-5908, CVE-2014-0001, CVE-2014-0384, CVE-2014-0386, CVE-2014-0393, CVE-2014-0401, CVE-2014-0402, CVE-2014-0412, CVE-2014-0420, CVE-2014-0437, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431, CVE-2014-2432, CVE-2014-2436, CVE-2014-2438, CVE-2014-2440, CVE-2014-2494, CVE-2014-4207, CVE-2014-4243, CVE-2014-4258, CVE-2014-4260, CVE-2014-4274, CVE-2014-4287, CVE-2014-6463, CVE-2014-6464, CVE-2014-6469, CVE-2014-6478, CVE-2014-6484, CVE-2014-6491, CVE-2014-6494, CVE-2014-6495, CVE-2014-6496, CVE-2014-6500, CVE-2014-6505, CVE-2014-6507, CVE-2014-6520, CVE-2014-6530, CVE-2014-6551, CVE-2014-6555, CVE-2014-6559, CVE-2014-6568, CVE-2015-0374, CVE-2015-0381, CVE-2015-0382, CVE-2015-0391, CVE-2015-0411, CVE-2015-0432, CVE-2015-0433, CVE-2015-0441, CVE-2015-0499, CVE-2015-0501, CVE-2015-0505, CVE-2015-2325, CVE-2015-2568, CVE-2015-2571, CVE-2015-2573, CVE-2015-2582, CVE-2015-2620, CVE-2015-2643, CVE-2015-2648, CVE-2015-3152, CVE-2015-4752, CVE-2015-4757, CVE-2015-4792, CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4864, CVE-2015-4870, CVE-2015-4879, CVE-2015-4913, CVE-2015-7744, CVE-2016-0502, CVE-2016-0610, CVE-2016-0616, CVE-2016-0642, CVE-2016-0651, CVE-2016-20012, CVE-2016-3471, CVE-2016-3492, CVE-2016-5584, CVE-2016-5612, CVE-2016-5624, CVE-2016-5626, CVE-2016-5629, CVE-2016-6664, CVE-2016-7440, CVE-2016-9843, CVE-2017-10268, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384, CVE-2017-15365, CVE-2017-15945, CVE-2017-3238, CVE-2017-3243, CVE-2017-3244, CVE-2017-3258, CVE-2017-3265, CVE-2017-3291, CVE-2017-3302, CVE-2017-3308, CVE-2017-3309, CVE-2017-3312, CVE-2017-3313, CVE-2017-3317, CVE-2017-3318, CVE-2017-3453, CVE-2017-3456, CVE-2017-3464, CVE-2017-3600, CVE-2017-3636, CVE-2017-3641, CVE-2017-3651, CVE-2017-3653, CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668, CVE-2018-2755, CVE-2018-2761, CVE-2018-2767, CVE-2018-2771, CVE-2018-2781, CVE-2018-2813, CVE-2018-2817, CVE-2018-2819, CVE-2018-3058, CVE-2018-3063, CVE-2018-3066, CVE-2018-3081, CVE-2018-3133, CVE-2018-3174, CVE-2018-3282, CVE-2019-2455, CVE-2019-2481, CVE-2019-2503, CVE-2019-2529, CVE-2019-2614, CVE-2019-2627, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2805, CVE-2019-2974, CVE-2020-14145, CVE-2020-14550, CVE-2020-2574, CVE-2020-2752, CVE-2020-2780, CVE-2020-2812, CVE-2020-28912, CVE-2020-2922, CVE-2021-2007, CVE-2021-2011, CVE-2021-2144, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2021-46659, CVE-2021-46666, CVE-2021-46667, CVE-2021-46669, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-27385, CVE-2022-27449, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31621, CVE-2022-31622, CVE-2022-31623, CVE-2022-31624, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-5157, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2024-6531, CVE-2024-7347, CVE-2025-23048, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-65082, CVE-2025-66200 | 18/06/2026, 21:37:56 | - |
| 207.57.206.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS54801 | Zillion Network Inc. | Nebula Global Limited | 18/06/2026, 15:12:29 | 28/06/2026, 01:00:06 | Yes | No | - | - | 18/06/2026, 21:37:59 | payphoneproducts.com, alternativepayments.com, ignatius.edu, nflplayercare.com, openbsd.org, openssh.com, nfl.biz, ntt.net, mod.go.jp, archny.org, gih.com, 2000charge.com, nfl.net |
| 43.98.190.•••:18789 | - | 🇸🇬 Singapore | - | false | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud Singapore | 18/06/2026, 15:12:29 | 18/06/2026, 20:54:11 | - | - | - | - | - | - |
| 206.189.158.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 18/06/2026, 15:12:28 | 14/07/2026, 03:48:53 | No | Yes | APT-C-23, APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA428, The Shadow Brokers, Volt Typhoon | CVE-2006-20001, CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2021-44224, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-2408, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-4577, CVE-2024-5458, CVE-2024-5585, CVE-2024-6387, CVE-2024-7347 | 18/06/2026, 21:38:15 | - |
| 14.218.192.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | CHINANET Guangdong | 18/06/2026, 15:12:28 | 22/06/2026, 11:11:00 | - | - | - | - | - | - |
| 101.43.13.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 18/06/2026, 15:10:37 | 01/07/2026, 06:13:14 | Yes | Yes | APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-45143, CVE-2023-28708, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-43622, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 15:12:42 | tencent.com, tencentcloud.com |
| 149.28.246.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS20473 | The Constant Company, LLC | Vultr Holdings | 18/06/2026, 15:10:37 | 20/06/2026, 08:12:51 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 15:12:43 | vultr.com |
| 54.69.92.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 18/06/2026, 15:10:37 | 14/07/2026, 03:47:25 | No | No | - | - | 12/06/2026, 15:12:44 | - |
| 103.216.117.•••:18789 | - | 🇻🇳 Vietnam | - | false | Leaked | AS135905 | VIETNAM POSTS AND TELECOMMUNICATIONS GROUP | INETSOFT-VN | 18/06/2026, 15:10:37 | 20/06/2026, 08:12:51 | Yes | No | - | CVE-2023-27043, CVE-2023-44487, CVE-2024-12254, CVE-2024-12718, CVE-2024-3219, CVE-2024-4032, CVE-2024-6232, CVE-2024-6923, CVE-2024-7347, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-12084, CVE-2025-12781, CVE-2025-13836, CVE-2025-13837, CVE-2025-23419, CVE-2025-65964, CVE-2025-68613, CVE-2025-68668, CVE-2025-68697, CVE-2025-68949, CVE-2026-21858, CVE-2026-21877, CVE-2026-21894, CVE-2026-25049, CVE-2026-25051, CVE-2026-25052, CVE-2026-25053, CVE-2026-25054, CVE-2026-25055, CVE-2026-25056, CVE-2026-25115 | 18/06/2026, 15:12:46 | inet.vn |
| 56.126.168.•••:18789 | - | 🇧🇷 Brazil | - | true | Leaked | AS16509 | Amazon.com, Inc. | Amazon Web Services Brazil | 18/06/2026, 15:10:37 | 14/07/2026, 03:47:55 | Yes | No | - | - | 18/06/2026, 15:12:48 | usps.gov, shippingapis.com, parcelpostplus.com, uspostalservice.com, usps.com |
| 194.164.18.•••:18789 | - | 🇬🇧 United Kingdom | - | false | Leaked | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | IONOS Cloud London | 18/06/2026, 15:10:36 | 20/06/2026, 08:55:05 | Yes | - | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 18/06/2026, 15:12:54 | ionos.com |
| 20.97.247.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 18/06/2026, 15:10:36 | 20/06/2026, 08:55:05 | No | Yes | FIN8 | - | 18/06/2026, 15:12:56 | - |
| 43.98.190.•••:18789 | - | 🇸🇬 Singapore | - | false | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud Singapore | 18/06/2026, 15:10:36 | 20/06/2026, 08:55:05 | Yes | No | - | - | 18/06/2026, 15:12:57 | alibabacloud.com |
| 123.31.29.•••:18789 | - | 🇻🇳 Vietnam | - | false | Leaked | AS135905 | VIETNAM POSTS AND TELECOMMUNICATIONS GROUP | VNPT | 18/06/2026, 15:10:36 | 20/06/2026, 10:19:42 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6470, CVE-2019-6471, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-3341, CVE-2023-38408, CVE-2023-4408, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2023-5680, CVE-2024-1737, CVE-2024-1975 | 18/06/2026, 15:12:59 | vnpt.com.vn, vnpt.vn |
| 104.21.63.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS13335 | Cloudflare, Inc. | Cloudflare | 18/06/2026, 15:10:36 | 20/06/2026, 08:55:05 | Yes | Yes | Packrat | - | 18/06/2026, 15:13:01 | ks-shd.com, streamshop.com, vpnserver.com, shenji-titanium.com, fuyuanwj.com, danca.tv, bainbridge-isl.wa.us, jmckjt.com, wisdomxj.cn, applications.com, educorp.com, vcorp.com, lapoderosa.com, sh-hibo.com, tecoskydmd.com, jxxlxj.com, styled.fr, mikeonline.com, bellevue.wa.us, ashley.fr, zjxinyi.com, catuan.net, contentmanager.com, faceiqaesthetics.com, leap.fr, tshlkj.net, yxtaiyu.com, byteboard.com, sdkyjt.net, luckyplastic.net, bikeweeksa.com, wxgogocasting.com, ics-line.com, forumcorp.com, dataloop.com, goleadercorp.cn, 51yuezhi.com, hzfeidi.com, greenwoodsinvest.com, biosint.it, ligneblanche.fr, thesmithteam.ca, erbium.fr, limpiom.net, pivotsmo.com, californiaminisplits.com, salonnews.com, gws.fr, fricksfashion.com, daso.fr, energyservices.com, amwu.org.au, xjkrx.cn, sz-jl.com, ytmagnetics.com, youthstream.com, bianchi.fr, americanprecisionindustries.com, sofarfarm.it, hbbygd88.com, connex.digital, avanlerberghe.com, gruppoesi.it, unitedperfectum.com, cityfied.net, playergroup.com, la-veggisserie.com, hvacdistributors.com, globalsolutions.com, rightwaytrading.net, factotum.fr, wenchyuan.com, informationsystems.com, fujiyama.fr, retirementwatch.com, billingcenter.com, anlink.net, globalexchange.net, jxygcy.com, gtenterprise.cn, xl-flex.com, yac-agcc.com, tourservices.com, nitro.fr, hmcxjc.com, originalsoulvegetarian.com, jindianglass.net, shsinotech.com, shczhsyy.com, perfetto.fr, a-vos-souhaits.fr, vbankph.com, gipnutmeg.com, xjhhcm.com, lesmouettes.fr, jiuliproduce.com, ytxweb.net, operaiberica.com, eurobank.com, graphicconnection.com, paolino.fr, guanweirecycling.com, naseni.gov.ng, mathei.com.br, judgeyachts.com, xiaoshejia.com, aurus.fr, campmgmt.com, cayman.fr, itradeonline.com, viralthread.com, wecastnetworkinc.com, chinasyh.net, lateteailleurs.fr, fiyanoventures.com, leonne.fr, ekakitchen.com, carleaseusa.com, theinnotech.net, apropos.fr, jyskaiyue.com, wisehousetech.com, fengyegroup.com, cloudflare.net, pontoon.fr, lvsenda.net, ohe.fr, ceostream.com, channel.net, toolsoncloud.com, handyman.com, co.com, activ.fr, sigma-tau.it, galleryconnection.com, jstream.com, machinesummit.com, globalventures.com, kidsbud.net, lebistrotduport.fr, sherry.fr, chicpartydress.com, govcoin.com, jxlingtong.com, xavitec.com, namingsystem.com, nette.fr, filtermasters.com, williamsfurnacerepair.com, presoteaus.com, baselinewoods.com, poisesoft.net, luxuryventures.com, precision.fr, hc0798.com, oriane.fr, referral.com, yin.fr, devil.fr, willcctv.com, lvteshengwu.com, sciencesuite.com, alghanitex.com, christen.fr, qzz.io, birminghamneograft.com, lendstream.com, isotope.fr, incidence.fr, salemauthorservices.com, fresconeedham.com, careagent.com, measurenet-tech.com, telos.fr, yovis1g.it, gransierassociates.com, sanson.fr, vbuilders.com, porcelainchina.net, bebecardio.com, brownsprinting.com, oceans.fr, made-in-diamond.com, investmentplanningcounsel.ca, m-printone.com, zach.fr, rivalcorp.com, cloudhq-mkt6.net, storia.fr, tennis-florida.com, hzhsyr.com, socialsuite.com, un-cruise.com, cclvcr.com, timing-tech.com, wxkewei.com, anichemspeciality.com, lepicier.fr, homemaintenance.com, noon.fr, co.pl, efi.fr, khipu.net, aquastorenw.com, eeh-wear.com, bolinyinwu.net, plumbingandheating.org, hibetw.com, chunxinghejin.com, tadalafilanx.com, wenn.com, mingstone.net, chinayinshufood.com, appliancesservices.com, mondi.fr, turlututu.fr, flaneur.fr, teppanyaki.fr, avc.fr, mushtaqco.com, redmond.wa.us, leisonhk.com, theanswersandiego.com, mandarin.fr, gpchain.com, dongfanggufen.net, sxgas.net, wakechem.com, jialilace.com, zenna.fr, groupeafg.com, amedee.fr, echap.fr, hansel.fr, customerprofile.com, yitongqingjie.com, mubayyin.cn, sinotransfj.com, serio.fr, dannyspawn.com, aibituo.net, dzrjx.net, interpraise.com, readystaffing.com, aptenonsjz.com, nada.fr, thecharliekirkshow.com, eurostampiparma.it, sacramentostepsforward.org, ventureos.com, maryelexports.com, thewordsacramento.com, unis.com.cn, yongxinco.com, code-china.com, malibupress.com, imobile.com, contrib.com, jx-c.com.cn, xjxhhydropower.com, cn-yusheng.com, athenee.fr, bogotabeercompany.com, learningwire.com, akina.fr, leixinfoods.net, jamesonsfloralpark.com, goldplateck.com, umberto.fr, essex.fr, tygluegun.com, eshares.com, hardi.fr, sanhoos.com, simatek.com, gadahardware.com, xtzhiliji.com, bamko.net, ausarabbusinesscouncil.com, sicmi.com, fabi.fr, inventaire.fr, hansecontrol.com, geole.fr, it.com, chehalis.wa.us, jingyucn.net, lamaxwell.com, china-ycgkjx.com, lacloserieansouis.com, itb.fr, pumpkin.fr, orchidees.fr, oukay.net, apo-led.com, dqbxg.com, irrigationsystems4u.com, rohigreen.com, bnw163.net, splendid-hotel.fr, ebonyshemalevideos.com, cshczfz.com, realtydao.com, hmcoptical.com, chinasotop.com, dogsparesort.com, mfy.im, timeforinfo.com, hongyang0769.net, sym.fr, china-one.net, gzshengjie56.com, portcast.com, wzouli.com, jssd.net, lehvi.com, amilcar.fr, investcentre.com, yangjiangshilimaoyi.com, jadzdjm.com, pesasybalanzas.com, buildfolio.com, mero.fr, otisa.com, tailwindgroup.com, com.de, iptunnel.com, mandarinoriental.it, hancockalbanese.com, rayinmind.com, bycast.com, leadstream.net, ceramic.fr, doradver.ru, jz5288.com, maginus.com, barnesdennig.com, taskmgmt.com, bozhongyuan.com, kalaifashions.com, jason.fr, servicetech.com, atl-az.com, ssindustriesindia.com, hygroup.net, shinruey.net, ipcc.ca, venturepub.com, partyworld.com, richlandtexas.gov, 0991df.net, aldente.fr, northstarind.com, m-wood2.com, nfgsales.com, dvipcdn.com, dqkeyi.com, ranscustombuilders.com, telecomanalysis.com, cheers.fr, huadewood.com, gaoyimall.net, linked.com, mirror.fr, oneway.fr, robuschi.it, xjnmi.com, ihimer.com, vnoc.com, casablanca.fr, ljgyp.net, fundchannel.com, szsbs.net, salemsurround.com, shelton.wa.us, oracle-ag.ch, eyes-armour.com, zhaowoo.net, jiangsufuji.com, fzfortune.net, bremerton.wa.us, dividendinvestor.com, itmanage.net, arista.fr, bokitatools.com, mediterranealg.it, ipcburlington.ca, com.se, eb5aig.net, grandplace.fr, reservationcenter.com, sddyhy.net, bestwanhui.com, sumexsoft.com, kisimarealestate.com, hkbolton.com, landygroup.cn, frogs.fr, comestibles.fr, electrode.fr, 869606.com, mark1airforce.com, crystalindustries.com.cn, goldenstream.com, fxgowin.com, nash.fr, strongvalve.com, freda.fr, chuangong.com, zhujigema.net, ariete.com.br, interlan.com, automations.com, handy.fr, luckywaymall.com, globalexport.com, aiglon.fr, eushipments.com, taocimall.com, fedcomm.com, aout.fr, cariboo.fr, yijia-audio.com, workers.dev, chaolipack.com, hashemfoods.com, nolanica.com, seniorresource.com, texans.com, awdchina.com, reva.fr, igrovyeavtomaty-pro.com, newoceanfood.com, photochallenge.com, bjzthb.com, yibulighting.com, albatross.cloud, dechuangjixie.com, reteck.net, mallyas.com, marinehub.com, technos.fr, thenewthings.com, filmteck.com, tigerexpressfuel.com, buildcorp.com, jinpac.com, audito.fr, cloudns.net, proximus.fr, southernarcminerals.com, motossenda.com, petitspois.fr, ykweisheng.com, 360-xj.com, xjwfcj.com, co.zm, ta-yu.com, appservice.com, sglcfj.com, varlotplc.com, patentboard.com, constructionforum.com, pet-bottle.net, realtyconsultant.com, pollyholding.com, anhuaabrasives.net, importandexportspecializedequipmentandservicesinc.com, scottdcooper.com, datacommunications.com, miamitelevision.com, disa.fr, cannabiscorp.com, l2odigital.com, exponentiel.fr, zsnet.net, medbrokers.com, get-plastic.com, energystorage.com, carmaxbolivia.com, sdfengze.net, fyinn.net, monreve.fr, china114.net, venturebuilder.com, lassocountry.com, propetchina.com, 1800ventures.com, mariano.fr, vladimir.fr, exceptions.fr, hightech.net, jsczxyjx.com, houstmust.com, chinakangtai.net, northerncomforthvac.com, chinazsi.net, germanpool-nb.com, ike.fr, xjhongshun.com, auxelles-bas.com, gazoline.fr, xrcd.cn, lecottage.fr, cornerstaffing.com, loginport.com, multicolor-pigment.com, tsn.us, geochem.org, food-machines.net, campbellslocksmith.com, equinaceaprodutosnaturais.com, shieldengineering.com, alptech.fr, shzhongyi.net |
| 125.41.221.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Henan | 18/06/2026, 14:37:57 | 11/07/2026, 23:02:12 | Yes | No | - | - | 18/06/2026, 14:41:06 | chinaunicom.cn |
| 62.171.160.•••:80 | - | 🇫🇷 France | Yes | true | Leaked | AS51167 | Contabo GmbH | Contabo | 18/06/2026, 14:33:53 | 12/07/2026, 03:58:22 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-11233, CVE-2024-11234, CVE-2024-11235, CVE-2024-11236, CVE-2024-39894, CVE-2024-6387, CVE-2024-8929, CVE-2024-8932, CVE-2025-1217, CVE-2025-1219, CVE-2025-1734, CVE-2025-1736, CVE-2025-1861, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728 | 18/06/2026, 16:00:38 | contaboserver.net, contabo.de, contabo.net |
| 167.233.131.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner Online | 18/06/2026, 14:33:52 | 21/06/2026, 18:55:54 | - | - | - | - | - | - |
| 54.188.140.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 18/06/2026, 14:33:52 | 18/06/2026, 23:52:10 | No | No | - | - | 12/06/2026, 16:00:59 | - |
| 209.74.83.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS22612 | Namecheap, Inc. | Namecheap | 18/06/2026, 14:33:51 | 18/06/2026, 23:52:10 | Yes | No | - | CVE-2006-20001, CVE-2021-23017, CVE-2021-3618, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 16:01:00 | namecheap.com |
| 108.137.72.•••:443 | - | 🇮🇩 Indonesia | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services Jakarta | 18/06/2026, 14:33:51 | 09/07/2026, 15:21:43 | No | No | - | - | 12/06/2026, 16:01:09 | - |
| 51.68.45.•••:443 | - | 🇫🇷 France | Yes | false | Leaked | AS16276 | OVH SAS | OVH | 18/06/2026, 14:33:50 | 22/06/2026, 06:58:31 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2006-20001, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-11233, CVE-2024-11234, CVE-2024-11235, CVE-2024-11236, CVE-2024-2408, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-4577, CVE-2024-47252, CVE-2024-5458, CVE-2024-5585, CVE-2024-6387, CVE-2024-7347, CVE-2024-8925, CVE-2024-8926, CVE-2024-8927, CVE-2024-8929, CVE-2024-8932, CVE-2024-9026, CVE-2025-1217, CVE-2025-1219, CVE-2025-1220, CVE-2025-14177, CVE-2025-14178, CVE-2025-14180, CVE-2025-1734, CVE-2025-1735, CVE-2025-1736, CVE-2025-1861, CVE-2025-23048, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-6491, CVE-2025-65082, CVE-2025-66200, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 18/06/2026, 16:01:12 | ovh.net |
| 34.84.200.•••:18000 | - | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 18/06/2026, 14:33:50 | 24/06/2026, 19:48:47 | No | Yes | APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 18/06/2026, 16:01:18 | - | |
| 15.236.43.•••:443 | - | 🇫🇷 France | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 18/06/2026, 14:33:49 | 19/06/2026, 08:19:45 | No | No | - | - | 12/06/2026, 16:01:27 | - |
| 47.84.96.•••:443 | - | 🇺🇸 United States | Yes | true | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 18/06/2026, 14:33:49 | 13/07/2026, 00:01:42 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/07/2026, 13:26:52 | ebaas.com, hichina.com, alibaba-inc.com |
| 34.118.115.•••:18789 | Assistant | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 18/06/2026, 14:33:49 | 22/06/2026, 04:08:19 | No | - | - | CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 16:01:37 | - | |
| 35.210.5.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS15169 | Google LLC / AS43515 YOUTUBE | 18/06/2026, 14:33:47 | 14/07/2026, 03:54:09 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 02/07/2026, 22:28:51 | - | |
| 178.105.28.•••:18789 | Assistant | 🇩🇪 Germany | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 18/06/2026, 14:33:47 | 13/07/2026, 00:44:29 | - | - | - | - | - | - |
| 103.79.185.•••:443 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS206888 | HanMing HK Limited | Chaoshen Limited | 18/06/2026, 14:33:47 | 19/06/2026, 00:34:40 | No | Yes | APT28, APT40, APT41, Cobalt Group, Earth Berberoka, Energetic Bear, Equation Group, Leafminer, Luckycat APT, Sandworm Team | CVE-2010-1899, CVE-2010-2730, CVE-2010-3972 | 18/06/2026, 16:02:01 | - |
| 114.240.77.•••:1009 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4808 | China Unicom Beijing Province Network | China Unicom Beijing | 18/06/2026, 14:33:47 | 19/06/2026, 00:34:40 | No | No | - | - | 12/06/2026, 16:02:02 | - |
| 20.45.56.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 18/06/2026, 14:32:05 | 18/06/2026, 20:13:46 | No | No | - | - | 12/06/2026, 20:14:35 | - |
| 62.171.160.•••:18789 | - | 🇫🇷 France | - | true | Leaked | AS51167 | Contabo GmbH | Contabo | 18/06/2026, 14:32:04 | 11/07/2026, 23:38:47 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-11233, CVE-2024-11234, CVE-2024-11235, CVE-2024-11236, CVE-2024-39894, CVE-2024-6387, CVE-2024-8929, CVE-2024-8932, CVE-2025-1217, CVE-2025-1219, CVE-2025-1734, CVE-2025-1736, CVE-2025-1861, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728 | 18/06/2026, 20:14:38 | contaboserver.net, contabo.de, contabo.net |
| 167.233.131.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner Online | 18/06/2026, 14:32:03 | 21/06/2026, 14:38:19 | - | - | - | - | - | - |
| 3.128.94.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 18/06/2026, 14:32:03 | 18/06/2026, 20:13:45 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 20:14:58 | - |
| 54.188.140.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 18/06/2026, 14:32:03 | 18/06/2026, 20:13:44 | No | No | - | - | 12/06/2026, 20:14:59 | - |
| 209.74.83.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS22612 | Namecheap, Inc. | Namecheap | 18/06/2026, 14:32:02 | 18/06/2026, 20:13:44 | Yes | No | - | CVE-2006-20001, CVE-2021-23017, CVE-2021-3618, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 20:15:02 | namecheap.com |
| 8.136.195.•••:18789 | - | 🇸🇬 Singapore | - | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 18/06/2026, 14:32:02 | 18/06/2026, 23:46:19 | - | - | - | - | - | - |
| 108.137.72.•••:18789 | - | 🇮🇩 Indonesia | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services Jakarta | 18/06/2026, 14:32:02 | 09/07/2026, 11:43:46 | No | No | - | - | 12/06/2026, 20:15:09 | - |
| 51.68.45.•••:18789 | - | 🇫🇷 France | - | false | Leaked | AS16276 | OVH SAS | OVH | 18/06/2026, 14:32:00 | 22/06/2026, 20:32:01 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2006-20001, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-11233, CVE-2024-11234, CVE-2024-11235, CVE-2024-11236, CVE-2024-2408, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-4577, CVE-2024-47252, CVE-2024-5458, CVE-2024-5585, CVE-2024-6387, CVE-2024-7347, CVE-2024-8925, CVE-2024-8926, CVE-2024-8927, CVE-2024-8929, CVE-2024-8932, CVE-2024-9026, CVE-2025-1217, CVE-2025-1219, CVE-2025-1220, CVE-2025-14177, CVE-2025-14178, CVE-2025-14180, CVE-2025-1734, CVE-2025-1735, CVE-2025-1736, CVE-2025-1861, CVE-2025-23048, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-6491, CVE-2025-65082, CVE-2025-66200, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 18/06/2026, 20:15:22 | ovh.net |
| 34.84.200.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS396982 | Google LLC | 18/06/2026, 14:32:00 | 24/06/2026, 16:08:41 | No | Yes | APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 18/06/2026, 20:15:23 | - | |
| 15.236.43.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 18/06/2026, 14:32:00 | 19/06/2026, 04:46:02 | No | No | - | - | 13/06/2026, 00:34:25 | - |
| 47.84.96.•••:18789 | - | 🇺🇸 United States | - | true | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 18/06/2026, 14:31:59 | 12/07/2026, 19:00:16 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/07/2026, 16:56:47 | ebaas.com, hichina.com, alibaba-inc.com |
| 34.118.115.•••:18789 | Assistant | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 18/06/2026, 14:31:59 | 22/06/2026, 00:33:12 | No | - | - | CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 20:15:43 | - | |
| 173.249.200.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS11878 | tzulo, inc. | Tzulo Inc | 18/06/2026, 14:31:58 | 26/06/2026, 06:58:42 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 18/06/2026, 20:15:58 | eu.org, tzulo.com |
| 178.105.28.•••:18789 | Assistant | 🇩🇪 Germany | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 18/06/2026, 14:31:56 | 12/07/2026, 20:25:52 | - | - | - | - | - | - |
| 103.79.185.•••:18789 | - | 🇭🇰 Hong Kong | - | false | Clean | AS206888 | HanMing HK Limited | Chaoshen Limited | 18/06/2026, 14:31:56 | 19/06/2026, 13:55:27 | No | Yes | APT28, APT40, APT41, Cobalt Group, Earth Berberoka, Energetic Bear, Equation Group, Leafminer, Luckycat APT, Sandworm Team | CVE-2010-1899, CVE-2010-2730, CVE-2010-3972 | 18/06/2026, 20:16:11 | - |
| 114.240.77.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS4808 | China Unicom Beijing Province Network | China Unicom Beijing | 18/06/2026, 14:31:56 | 18/06/2026, 20:56:09 | No | No | - | - | 12/06/2026, 20:16:12 | - |
| 3.26.130.•••:18789 | - | 🇦🇺 Australia | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Corporate Services | 18/06/2026, 14:30:15 | 18/06/2026, 19:29:28 | - | - | - | - | - | - |
| 5.182.26.•••:18789 | - | 🇺🇿 Uzbekistan | - | false | Clean | AS35682 | BEST INTERNET SOLUTION XK | Best Internet Solution | 18/06/2026, 14:30:12 | 19/06/2026, 05:26:32 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 18/06/2026, 19:31:32 | - |
| 240e:3ae:9d5:9e91::a36:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS4134 | Chinanet | China Telecom IPv6 Broadband Address | 18/06/2026, 14:30:12 | 18/06/2026, 20:11:59 | - | - | - | - | - | - |
| 54.174.113.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 18/06/2026, 14:30:12 | 21/06/2026, 10:22:07 | - | - | - | - | - | - |
| 62.171.160.•••:18789 | - | 🇫🇷 France | - | true | Leaked | AS51167 | Contabo GmbH | Contabo | 18/06/2026, 14:30:11 | 11/07/2026, 23:36:59 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-11233, CVE-2024-11234, CVE-2024-11235, CVE-2024-11236, CVE-2024-39894, CVE-2024-6387, CVE-2024-8929, CVE-2024-8932, CVE-2025-1217, CVE-2025-1219, CVE-2025-1734, CVE-2025-1736, CVE-2025-1861, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728 | 18/06/2026, 19:31:40 | contaboserver.net, contabo.de, contabo.net |
| 167.233.131.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner Online | 18/06/2026, 14:30:10 | 21/06/2026, 14:36:28 | - | - | - | - | - | - |
| 3.128.94.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 18/06/2026, 14:30:10 | 18/06/2026, 20:11:57 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 19:31:58 | - |
| 54.188.140.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 18/06/2026, 14:30:10 | 18/06/2026, 20:11:57 | No | No | - | - | 12/06/2026, 19:31:59 | - |
| 209.74.83.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS22612 | Namecheap, Inc. | Namecheap | 18/06/2026, 14:30:09 | 18/06/2026, 20:11:57 | Yes | No | - | CVE-2006-20001, CVE-2021-23017, CVE-2021-3618, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 19:32:00 | namecheap.com |
| 8.136.195.•••:18789 | - | 🇸🇬 Singapore | - | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 18/06/2026, 14:30:08 | 18/06/2026, 23:44:34 | - | - | - | - | - | - |
| 108.137.72.•••:18789 | - | 🇮🇩 Indonesia | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services Jakarta | 18/06/2026, 14:30:08 | 09/07/2026, 11:41:57 | No | No | - | - | 12/06/2026, 19:32:06 | - |
| 123.31.29.•••:18789 | - | 🇻🇳 Vietnam | - | false | Leaked | AS135905 | VIETNAM POSTS AND TELECOMMUNICATIONS GROUP | VNPT | 18/06/2026, 14:30:08 | 18/06/2026, 23:02:15 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6470, CVE-2019-6471, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-3341, CVE-2023-38408, CVE-2023-4408, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2023-5680, CVE-2024-1737, CVE-2024-1975 | 18/06/2026, 19:32:12 | vnpt.com.vn, vnpt.vn |
| 51.68.45.•••:18789 | - | 🇫🇷 France | - | false | Leaked | AS16276 | OVH SAS | OVH | 18/06/2026, 14:30:07 | 22/06/2026, 20:30:10 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2006-20001, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-11233, CVE-2024-11234, CVE-2024-11235, CVE-2024-11236, CVE-2024-2408, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-4577, CVE-2024-47252, CVE-2024-5458, CVE-2024-5585, CVE-2024-6387, CVE-2024-7347, CVE-2024-8925, CVE-2024-8926, CVE-2024-8927, CVE-2024-8929, CVE-2024-8932, CVE-2024-9026, CVE-2025-1217, CVE-2025-1219, CVE-2025-1220, CVE-2025-14177, CVE-2025-14178, CVE-2025-14180, CVE-2025-1734, CVE-2025-1735, CVE-2025-1736, CVE-2025-1861, CVE-2025-23048, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-6491, CVE-2025-65082, CVE-2025-66200, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 18/06/2026, 19:32:21 | ovh.net |
| 34.84.200.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS396982 | Google LLC | 18/06/2026, 14:30:07 | 24/06/2026, 16:06:40 | No | Yes | APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 18/06/2026, 19:32:23 | - | |
| 15.236.43.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 18/06/2026, 14:30:05 | 19/06/2026, 04:44:13 | No | No | - | - | 12/06/2026, 19:32:39 | - |
| 47.84.96.•••:18789 | - | 🇺🇸 United States | - | true | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 18/06/2026, 14:30:05 | 12/07/2026, 18:58:20 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/07/2026, 11:16:18 | ebaas.com, hichina.com, alibaba-inc.com |
| 34.118.115.•••:18789 | Assistant | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 18/06/2026, 14:30:05 | 22/06/2026, 00:31:22 | No | - | - | CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 19:32:45 | - | |
| 173.249.200.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS11878 | tzulo, inc. | Tzulo Inc | 18/06/2026, 14:30:04 | 26/06/2026, 06:56:50 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 18/06/2026, 19:33:02 | eu.org, tzulo.com |
| 178.105.28.•••:18789 | Assistant | 🇩🇪 Germany | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 18/06/2026, 14:30:03 | 12/07/2026, 20:23:55 | - | - | - | - | - | - |
| 103.79.185.•••:18789 | - | 🇭🇰 Hong Kong | - | false | Clean | AS206888 | HanMing HK Limited | Chaoshen Limited | 18/06/2026, 14:30:03 | 19/06/2026, 13:53:38 | No | Yes | APT28, APT40, APT41, Cobalt Group, Earth Berberoka, Energetic Bear, Equation Group, Leafminer, Luckycat APT, Sandworm Team | CVE-2010-1899, CVE-2010-2730, CVE-2010-3972 | 18/06/2026, 19:33:17 | - |
| 3.128.94.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 18/06/2026, 14:28:06 | 20/06/2026, 07:30:39 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 15:12:14 | - |
| 209.74.83.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS22612 | Namecheap, Inc. | Namecheap | 18/06/2026, 14:28:06 | 20/06/2026, 07:30:39 | Yes | No | - | CVE-2006-20001, CVE-2021-23017, CVE-2021-3618, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 15:12:16 | namecheap.com |
| 108.137.72.•••:18789 | - | 🇮🇩 Indonesia | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services Jakarta | 18/06/2026, 14:28:06 | 11/07/2026, 02:10:56 | No | No | - | - | 12/06/2026, 15:12:17 | - |
| 125.41.221.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Henan | 18/06/2026, 14:28:06 | 20/06/2026, 07:30:39 | Yes | No | - | - | 18/06/2026, 15:12:20 | chinaunicom.cn |
| 51.68.45.•••:18789 | - | 🇫🇷 France | - | false | Leaked | AS16276 | OVH SAS | OVH | 18/06/2026, 14:28:06 | 24/06/2026, 03:09:16 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2006-20001, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-11233, CVE-2024-11234, CVE-2024-11235, CVE-2024-11236, CVE-2024-2408, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-4577, CVE-2024-47252, CVE-2024-5458, CVE-2024-5585, CVE-2024-6387, CVE-2024-7347, CVE-2024-8925, CVE-2024-8926, CVE-2024-8927, CVE-2024-8929, CVE-2024-8932, CVE-2024-9026, CVE-2025-1217, CVE-2025-1219, CVE-2025-1220, CVE-2025-14177, CVE-2025-14178, CVE-2025-14180, CVE-2025-1734, CVE-2025-1735, CVE-2025-1736, CVE-2025-1861, CVE-2025-23048, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-6491, CVE-2025-65082, CVE-2025-66200, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 18/06/2026, 15:12:22 | ovh.net |
| 15.236.43.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 18/06/2026, 14:28:05 | 20/06/2026, 07:30:38 | No | No | - | - | 12/06/2026, 15:12:25 | - |
| 173.249.200.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS11878 | tzulo, inc. | Tzulo Inc | 18/06/2026, 14:28:05 | 20/06/2026, 08:12:52 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 18/06/2026, 15:12:35 | eu.org, tzulo.com |
| 124.223.185.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 18/06/2026, 14:28:05 | 13/07/2026, 10:37:06 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 18/06/2026, 15:12:36 | tencent.com, tencentcloud.com |
| 183.157.97.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 18/06/2026, 13:51:25 | 18/06/2026, 22:23:41 | No | No | - | - | 12/06/2026, 21:43:47 | - |
| 104.168.115.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS36352 | HostPapa | RackNerd | 18/06/2026, 13:51:23 | 22/06/2026, 06:58:29 | Yes | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-36457, CVE-2023-36458, CVE-2023-37477, CVE-2023-38408, CVE-2023-39964, CVE-2023-39965, CVE-2023-39966, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-2352, CVE-2024-24768, CVE-2024-27288, CVE-2024-30257, CVE-2024-34352, CVE-2024-39894, CVE-2024-39907, CVE-2024-39911, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-34410, CVE-2025-34429, CVE-2025-34430, CVE-2025-54424, CVE-2025-56413, CVE-2025-61984, CVE-2025-61985, CVE-2025-66507, CVE-2025-66508, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 18/06/2026, 21:44:03 | racknerd.com |
| 217.9.14.•••:18789 | - | 🇧🇷 Brazil | Yes | false | Clean | AS268624 | Gamers Club Ltda | LuraHosting | 18/06/2026, 13:51:23 | 27/06/2026, 10:49:13 | - | - | - | - | - | - |
| 2001:41d0:305:2100::67fc:443 | - | 🇫🇷 France | - | false | Clean | AS16276 | OVH SAS | OVH | 18/06/2026, 13:51:22 | 22/06/2026, 08:23:52 | - | - | - | - | - | - |
| 78.47.55.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 18/06/2026, 13:51:21 | 22/06/2026, 03:26:00 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 18/06/2026, 15:59:46 | hetzner.com |
| 44.243.21.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 18/06/2026, 13:51:21 | 18/06/2026, 23:06:22 | No | No | - | - | 12/06/2026, 15:59:49 | - |
| 3.26.130.•••:443 | - | 🇦🇺 Australia | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Corporate Services | 18/06/2026, 13:51:21 | 18/06/2026, 23:06:22 | - | - | - | - | - | - |
| 112.112.53.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Yunnan | 18/06/2026, 13:51:21 | 18/06/2026, 23:06:22 | - | - | - | - | - | - |
| 121.199.32.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 18/06/2026, 13:51:20 | 12/07/2026, 01:06:39 | Yes | Yes | APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE | CVE-2006-20001, CVE-2014-1692, CVE-2014-2532, CVE-2014-2653, CVE-2015-3183, CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-0736, CVE-2016-0777, CVE-2016-0778, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-2161, CVE-2016-3115, CVE-2016-4975, CVE-2016-5387, CVE-2016-6210, CVE-2016-6515, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-3169, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2025-61984, CVE-2025-61985 | 18/06/2026, 16:00:11 | aliyun.com |