🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 1006105 Page: 878 / 10062 (100 per page) Showing: 87701-87800 Last Imported: 14/07/2026, 07:44:58
🇨🇳 483,673
🇺🇸 290,578
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 23.231.179.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS132839 | POWER LINE DATACENTER | Federal Online Group LLC | 03/06/2026, 21:54:44 | 27/06/2026, 09:20:29 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 04/06/2026, 02:15:59 | - |
| 20.112.33.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 03/06/2026, 21:54:43 | 04/06/2026, 04:22:19 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 04/06/2026, 02:16:01 | - |
| 74.48.140.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS35916 | MULTACOM CORPORATION | Multacom Corporation | 03/06/2026, 21:54:43 | 13/07/2026, 22:50:00 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 04/06/2026, 02:16:02 | multacom.com |
| 34.173.174.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS396982 | Google LLC | 03/06/2026, 21:54:43 | 21/06/2026, 20:16:38 | No | No | - | - | 29/05/2026, 02:16:05 | - | |
| 79.143.188.•••:18789 | - | 🇩🇪 Germany | Yes | true | Leaked | AS51167 | Contabo GmbH | Contabo | 03/06/2026, 21:54:43 | 12/07/2026, 11:05:12 | Yes | Yes | APT-C-23, APT14, APT15, APT27, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Chimera APT, Cobalt Group, DRBControl, Donot Team, Earth Berberoka, Equation Group, Evil Eye APT, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Night Dragon, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA428, TA505, The Shadow Brokers, Tropic Trooper, UNC2452, Volt Typhoon, WIRTE | CVE-2006-20001, CVE-2011-4718, CVE-2012-1171, CVE-2013-1896, CVE-2013-3735, CVE-2013-4113, CVE-2013-4248, CVE-2013-4352, CVE-2013-5704, CVE-2013-6420, CVE-2013-6438, CVE-2013-6501, CVE-2013-6712, CVE-2013-7327, CVE-2013-7345, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0185, CVE-2014-0207, CVE-2014-0226, CVE-2014-0231, CVE-2014-0236, CVE-2014-0237, CVE-2014-0238, CVE-2014-1943, CVE-2014-2020, CVE-2014-2270, CVE-2014-2497, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3515, CVE-2014-3523, CVE-2014-3538, CVE-2014-3581, CVE-2014-3587, CVE-2014-3597, CVE-2014-3668, CVE-2014-3669, CVE-2014-3670, CVE-2014-3710, CVE-2014-3981, CVE-2014-4049, CVE-2014-4670, CVE-2014-4698, CVE-2014-4721, CVE-2014-5120, CVE-2014-5459, CVE-2014-8109, CVE-2014-8142, CVE-2014-9425, CVE-2014-9426, CVE-2014-9427, CVE-2014-9652, CVE-2014-9653, CVE-2014-9705, CVE-2014-9709, CVE-2014-9767, CVE-2014-9912, CVE-2015-0228, CVE-2015-0231, CVE-2015-0232, CVE-2015-0235, CVE-2015-0273, CVE-2015-1351, CVE-2015-1352, CVE-2015-2301, CVE-2015-2305, CVE-2015-2325, CVE-2015-2326, CVE-2015-2331, CVE-2015-2348, CVE-2015-2783, CVE-2015-2787, CVE-2015-3152, CVE-2015-3183, CVE-2015-3185, CVE-2015-3307, CVE-2015-3329, CVE-2015-3330, CVE-2015-3411, CVE-2015-3412, CVE-2015-3414, CVE-2015-3415, CVE-2015-3416, CVE-2015-4021, CVE-2015-4022, CVE-2015-4024, CVE-2015-4025, CVE-2015-4026, CVE-2015-4116, CVE-2015-4147, CVE-2015-4148, CVE-2015-4598, CVE-2015-4599, CVE-2015-4600, CVE-2015-4601, CVE-2015-4602, CVE-2015-4603, CVE-2015-4604, CVE-2015-4605, CVE-2015-4642, CVE-2015-4643, CVE-2015-4644, CVE-2015-5589, CVE-2015-5590, CVE-2015-6831, CVE-2015-6832, CVE-2015-6833, CVE-2015-6834, CVE-2015-6835, CVE-2015-6836, CVE-2015-6837, CVE-2015-6838, CVE-2015-7803, CVE-2015-7804, CVE-2015-8835, CVE-2015-8838, CVE-2015-8865, CVE-2015-8867, CVE-2015-8873, CVE-2015-8874, CVE-2015-8876, CVE-2015-8877, CVE-2015-8879, CVE-2015-8935, CVE-2015-8994, CVE-2015-9253, CVE-2016-0736, CVE-2016-10158, CVE-2016-10159, CVE-2016-10161, CVE-2016-10397, CVE-2016-10708, CVE-2016-10712, CVE-2016-1903, CVE-2016-20012, CVE-2016-2161, CVE-2016-2554, CVE-2016-3141, CVE-2016-3142, CVE-2016-3185, CVE-2016-4070, CVE-2016-4342, CVE-2016-4343, CVE-2016-4537, CVE-2016-4538, CVE-2016-4539, CVE-2016-4540, CVE-2016-4541, CVE-2016-4542, CVE-2016-4543, CVE-2016-4975, CVE-2016-5093, CVE-2016-5094, CVE-2016-5095, CVE-2016-5096, CVE-2016-5114, CVE-2016-5387, CVE-2016-5399, CVE-2016-5768, CVE-2016-5769, CVE-2016-5770, CVE-2016-5771, CVE-2016-5772, CVE-2016-5773, CVE-2016-6174, CVE-2016-6288, CVE-2016-6289, CVE-2016-6290, CVE-2016-6291, CVE-2016-6292, CVE-2016-6294, CVE-2016-6295, CVE-2016-6296, CVE-2016-6297, CVE-2016-7124, CVE-2016-7125, CVE-2016-7126, CVE-2016-7127, CVE-2016-7128, CVE-2016-7129, CVE-2016-7130, CVE-2016-7131, CVE-2016-7132, CVE-2016-7411, CVE-2016-7412, CVE-2016-7413, CVE-2016-7414, CVE-2016-7416, CVE-2016-7417, CVE-2016-7418, CVE-2016-7478, CVE-2016-8612, CVE-2016-8743, CVE-2016-9137, CVE-2016-9138, CVE-2016-9934, CVE-2016-9935, CVE-2017-11142, CVE-2017-11143, CVE-2017-11144, CVE-2017-11145, CVE-2017-11147, CVE-2017-11628, CVE-2017-12933, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-15945, CVE-2017-16642, CVE-2017-3167, CVE-2017-7272, CVE-2017-7679, CVE-2017-7890, CVE-2017-7963, CVE-2017-8923, CVE-2017-9224, CVE-2017-9225, CVE-2017-9226, CVE-2017-9229, CVE-2017-9788, CVE-2017-9798, CVE-2018-10545, CVE-2018-10546, CVE-2018-10547, CVE-2018-10548, CVE-2018-10549, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-14851, CVE-2018-14883, CVE-2018-15132, CVE-2018-15473, CVE-2018-15919, CVE-2018-17082, CVE-2018-17199, CVE-2018-19395, CVE-2018-19396, CVE-2018-19520, CVE-2018-19935, CVE-2018-20685, CVE-2018-20783, CVE-2018-5711, CVE-2018-5712, CVE-2018-7584, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9023, CVE-2019-9024, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9641, CVE-2020-11985, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31628, CVE-2022-31629, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-4900, CVE-2023-25690, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-4577 | 04/06/2026, 02:16:06 | contaboserver.net, contabo.de, giga-hosting.biz, contabo.net |
| 156.232.88.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS329278 | Truehost Cloud Limited | Truehost Cloud | 03/06/2026, 21:54:43 | 05/06/2026, 07:32:04 | No | No | - | - | 29/05/2026, 01:30:53 | - |
| 23.231.177.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS132839 | POWER LINE DATACENTER | Federal Online Group LLC | 03/06/2026, 21:54:42 | 28/06/2026, 01:42:34 | Yes | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 04/06/2026, 01:30:57 | venancio.com, databrick.com, nardini.com, cleanzoneheating.com, koworksllc.net, ginachlaw.com, creditop.com, outbook.com, scheduleme.org, mcdanielssubaru.com, leverijllc.com, chedermenachem.org, cmimoulding.com, meeshamoultonlaw.com, meridianoutboard.com, physnum.com, smartbuildings.com |
| 81.16.172.•••:18789 | - | 🇸🇪 Sweden | - | false | Clean | AS197623 | Kopings Kabel-TV AB | Kopings Kabel-TV | 03/06/2026, 21:54:42 | 07/07/2026, 16:37:26 | No | No | - | - | 29/05/2026, 01:31:00 | - |
| 43.169.13.•••:18789 | - | 🇸🇬 Singapore | - | false | Clean | AS139341 | ACE | Raffles | 03/06/2026, 21:54:42 | 04/06/2026, 04:22:18 | Yes | No | - | - | 04/06/2026, 01:31:09 | hkma.gov.hk, iffohk.org, pblive.co.nz, hkgb.gov.hk, fintechconnect.hk, hkiffo.org, hkgreenweek.hk, hkiffo.hk, hkic.org.hk, sustainablefinance.org.hk, hkaof.org.hk, greentalent.org.hk, hk-ic.com.hk, convergeict.com, aof.org.hk |
| 240e:369:1b58:d601:6e1f:f7ff:fea5:cb10:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS4134 | Chinanet | China Telecom IPv6 Broadband Address | 03/06/2026, 21:54:42 | 04/06/2026, 04:22:17 | - | - | - | - | - | - |
| 23.231.179.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS132839 | POWER LINE DATACENTER | Federal Online Group LLC | 03/06/2026, 21:54:41 | 28/06/2026, 15:56:51 | No | No | - | - | 29/05/2026, 01:31:11 | - |
| 201.189.192.•••:18789 | - | 🇨🇱 Chile | Yes | false | Clean | AS7418 | TELEFÓNICA CHILE S.A. | Telefonica Movil de Chile | 03/06/2026, 21:54:41 | 10/06/2026, 01:50:52 | No | No | - | - | 29/05/2026, 01:31:22 | - |
| 223.254.136.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS40004 | CONRADIT, LLC | The Media Network Ltd | 03/06/2026, 21:54:40 | 26/06/2026, 05:30:41 | Yes | No | - | - | 04/06/2026, 01:31:30 | cnnic.cn |
| 34.176.70.•••:18789 | Assistant | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 03/06/2026, 21:54:40 | 04/06/2026, 04:22:16 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 04/06/2026, 01:31:34 | - | |
| 2001:41d0:305:2100::1110:18789 | - | 🇫🇷 France | - | false | Clean | AS16276 | OVH SAS | OVH | 03/06/2026, 21:54:40 | 19/06/2026, 03:19:45 | - | - | - | - | - | - |
| 47.131.93.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Leaked | AS16509 | Amazon.com, Inc. | Amazon Web Services | 03/06/2026, 21:54:40 | 11/07/2026, 12:54:36 | Yes | No | - | - | 04/06/2026, 01:31:37 | bookworm.com, lovefilm.com, shopbop.com, boxofficemojo.com, amaozn.com, com.be, amazonpay.com, amzn.asia, associates-amazon.com, endless.com, amazonaws.com, amazon.com |
| 13.251.239.•••:18789 | - | 🇸🇬 Singapore | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 03/06/2026, 21:52:42 | 05/06/2026, 13:52:15 | No | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Earth Berberoka, Equation Group, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2011-4969, CVE-2012-6708, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2015-9251, CVE-2016-0736, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-20005, CVE-2017-3167, CVE-2017-7529, CVE-2017-7679, CVE-2017-8923, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-17199, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-11358, CVE-2019-17567, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-11022, CVE-2020-11023, CVE-2020-11985, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-7656, CVE-2021-21703, CVE-2021-21704, CVE-2021-21705, CVE-2021-21706, CVE-2021-21707, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-3618, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31628, CVE-2022-31629, CVE-2022-31813, CVE-2022-37454, CVE-2022-41741, CVE-2022-41742, CVE-2022-4900, CVE-2023-44487, CVE-2024-39894, CVE-2024-5458, CVE-2024-6387, CVE-2024-6531, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 23:19:30 | - |
| 159.198.32.•••:18789 | - | 🇨🇴 Colombia | Yes | false | Leaked | AS22612 | Namecheap, Inc. | [name redacted] | 03/06/2026, 21:52:42 | 14/07/2026, 03:46:59 | Yes | No | - | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 23:19:31 | namecheap.com |
| 18.224.54.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 03/06/2026, 21:52:42 | 05/06/2026, 13:52:15 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728 | 03/06/2026, 23:19:33 | - |
| 38.188.253.•••:18789 | - | 🇨🇴 Colombia | - | false | Clean | AS271957 | SOMOS NETWORKS COLOMBIA S.A.S. BIC | Somos Networks Colombia | 03/06/2026, 21:52:42 | 14/07/2026, 03:47:37 | No | No | - | CVE-2023-44487, CVE-2024-7347, CVE-2025-23419 | 03/06/2026, 23:19:35 | - |
| 82.22.36.•••:18789 | - | 🇨🇭 Switzerland | - | false | Leaked | AS57043 | HOSTKEY B.V. | Hostkey | 03/06/2026, 21:52:42 | 02/07/2026, 22:59:22 | Yes | No | - | - | 03/06/2026, 23:19:36 | virginm.net |
| 20.112.33.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 03/06/2026, 21:52:42 | 05/06/2026, 13:52:15 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 23:19:37 | - |
| 106.52.46.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 03/06/2026, 21:52:42 | 05/06/2026, 14:34:52 | Yes | Yes | APT37, El-Machete | CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 23:19:41 | tencent.com, tencentcloud.com |
| 3.231.53.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 03/06/2026, 21:16:04 | 13/07/2026, 17:10:37 | No | No | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 04/06/2026, 01:37:14 | - |
| 104.197.103.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 03/06/2026, 21:16:04 | 18/06/2026, 05:22:03 | No | No | - | CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 04/06/2026, 01:37:18 | - | |
| 154.83.238.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS139880 | OWGELS INTERNATIONAL CO., LIMITED | Ares IDC Limited | 03/06/2026, 21:16:04 | 28/06/2026, 01:04:08 | No | - | - | - | 29/05/2026, 01:37:19 | - |
| 2a02:4780:75:e0db::1:18789 | - | 🇺🇸 United States | - | true | Clean | AS47583 | Hostinger International Limited | Hostinger | 03/06/2026, 21:16:04 | 12/07/2026, 23:19:05 | - | - | - | - | - | - |
| 108.187.233.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS132839 | POWER LINE DATACENTER | Federal Online | 03/06/2026, 21:16:04 | 30/06/2026, 01:33:31 | No | Yes | APT14, APT15, APT28, APT31, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Earth Berberoka, Equation Group, Gamaredon Group, Gaza Cybergang, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 04/06/2026, 01:37:22 | - |
| 175.10.57.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Hunan Province Network | 03/06/2026, 21:16:04 | 07/06/2026, 07:35:37 | Yes | No | - | - | 04/06/2026, 01:37:24 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 172.232.225.•••:8000 | - | 🇮🇩 Indonesia | Yes | true | Leaked | AS63949 | Akamai Connected Cloud | Linode | 03/06/2026, 21:16:04 | 12/07/2026, 18:20:03 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728 | 04/06/2026, 01:37:25 | opengw.net, rs.ba, vpngate.net, dvrdydns.com |
| 111.229.175.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 03/06/2026, 21:16:04 | 04/06/2026, 05:52:24 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 04/06/2026, 01:37:27 | tencent.com, tencentcloud.com |
| 8.130.127.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 03/06/2026, 21:16:04 | 13/07/2026, 20:03:03 | No | Yes | APT-C-23, APT32, APT36, APT37, Careto APT, Emennet Pasargad, Emennet Pasargard, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Lazarus Group, MuddyWater Group, Sea Turtle Group, Turla APT Group, Volt Typhoon, WildCard APT | CVE-2016-8747, CVE-2017-12617, CVE-2017-5647, CVE-2017-5648, CVE-2017-5650, CVE-2017-5651, CVE-2017-5664, CVE-2017-7674, CVE-2017-7675, CVE-2018-11784, CVE-2018-1304, CVE-2018-1305, CVE-2018-1336, CVE-2018-8014, CVE-2018-8034, CVE-2018-8037, CVE-2019-0199, CVE-2019-0221, CVE-2019-0232, CVE-2019-10072, CVE-2019-12418, CVE-2019-17563, CVE-2019-2684, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-8022, CVE-2020-9484, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-41079, CVE-2021-43980, CVE-2022-25762, CVE-2022-42252, CVE-2023-28708, CVE-2023-41080, CVE-2023-42795, CVE-2023-44487, CVE-2023-45648, CVE-2023-46589, CVE-2024-21733, CVE-2024-23672, CVE-2024-24549 | 04/06/2026, 01:37:29 | - |
| 223.215.102.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Anhui | 03/06/2026, 21:16:04 | 04/06/2026, 05:52:24 | - | - | - | - | - | - |
| 54.179.219.•••:443 | - | 🇸🇬 Singapore | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 03/06/2026, 21:16:03 | 04/06/2026, 13:40:14 | No | Yes | Salt Typhoon | CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 04/06/2026, 01:37:36 | - |
| 185.70.185.•••:443 | - | 🇷🇺 Russia | Yes | false | Clean | AS57043 | HOSTKEY B.V. | Hostkey | 03/06/2026, 21:16:03 | 04/06/2026, 13:40:14 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 04/06/2026, 01:37:40 | - |
| 63.185.189.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 03/06/2026, 21:16:03 | 11/07/2026, 12:16:16 | - | - | - | - | - | - |
| 192.163.191.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS132839 | POWER LINE DATACENTER | Federal Online | 03/06/2026, 21:16:03 | 27/06/2026, 05:09:42 | Yes | Yes | Salt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 04/06/2026, 01:37:49 | finessebodywork.com, noblejet.net, ultimate-media.net, advancedprojectservices.com, swaasthya.com, wintersuninternational.com, ews-inc.com, customcolongisland.com, tamilcrew.com, eeguy.com, vilros.com, owlsnesthouse.com, bamberg-legal.com, jainind.com, chandlerdataprofessionals.com, gregfishmanjazzstudios.com, duranttool.com, rajnraj.net, banddwalls.com, aciervanguard.com, getcreditcure.com, cleverfoxpublishing.com, kreationery.com, bepeatery.com, rpmwatercraft.com, robinsonfamilyrealty.com, elementbodywork.com, knkelectric.com, americanpridecrane.com, apexmechanicalcorp.com |
| 209.38.215.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 03/06/2026, 21:16:03 | 10/06/2026, 17:28:50 | No | No | - | CVE-2023-44487, CVE-2024-7347, CVE-2025-23419 | 04/06/2026, 01:37:50 | - |
| 156.253.34.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS139880 | OWGELS INTERNATIONAL CO., LIMITED | Ares IDC Limited | 03/06/2026, 21:16:02 | 29/06/2026, 13:21:09 | No | No | - | - | 29/05/2026, 01:37:51 | - |
| 192.163.189.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS132839 | POWER LINE DATACENTER | Federal Online | 03/06/2026, 21:16:02 | 28/06/2026, 04:37:50 | No | Yes | APT14, APT15, APT28, APT31, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Earth Berberoka, Equation Group, Gamaredon Group, Gaza Cybergang, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 04/06/2026, 01:37:56 | - |
| 23.231.179.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS132839 | POWER LINE DATACENTER | Federal Online Group LLC | 03/06/2026, 21:16:02 | 28/06/2026, 18:51:45 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 04/06/2026, 01:37:57 | - |
| 140.246.179.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS58519 | Cloud Computing Corporation | ChinaNet Shandong | 03/06/2026, 21:16:02 | 12/07/2026, 14:01:42 | No | No | - | - | 29/05/2026, 01:38:00 | - |
| 8.145.62.•••:18789 | - | 🇸🇬 Singapore | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 03/06/2026, 21:16:02 | 04/06/2026, 05:52:22 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 04/06/2026, 01:38:04 | - |
| 113.87.251.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 03/06/2026, 21:16:01 | 06/06/2026, 19:35:00 | Yes | No | - | - | 04/06/2026, 01:38:05 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 107.172.103.•••:443 | - | 🇺🇸 United States | Yes | true | Leaked | AS36352 | HostPapa | RackNerd | 03/06/2026, 21:16:01 | 12/07/2026, 21:53:26 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728 | 04/06/2026, 01:38:06 | racknerd.com |
| 24.233.26.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS55933 | Cloudie Limited | Century Communications | 03/06/2026, 21:16:01 | 26/06/2026, 04:09:24 | No | No | - | - | 29/05/2026, 01:38:09 | - |
| 23.231.179.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS132839 | POWER LINE DATACENTER | Federal Online Group LLC | 03/06/2026, 21:16:01 | 29/06/2026, 14:04:31 | No | No | - | - | 29/05/2026, 01:38:12 | - |
| 38.51.27.•••:18789 | - | 🇮🇹 Italy | Yes | true | Clean | AS269995 | DESTEFANI JOSE LUIS | 7Capas Destefani | 03/06/2026, 21:16:01 | 13/07/2026, 05:43:16 | No | No | - | CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 04/06/2026, 01:38:14 | - |
| 64.23.198.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 03/06/2026, 21:16:00 | 13/07/2026, 07:51:46 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728 | 04/06/2026, 01:38:24 | - |
| 113.88.75.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 03/06/2026, 21:15:59 | 04/06/2026, 06:35:00 | Yes | No | - | - | 04/06/2026, 01:38:32 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 8.134.198.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 03/06/2026, 21:15:59 | 13/07/2026, 18:37:14 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 04/06/2026, 01:38:34 | - |
| 8.163.79.•••:18789 | - | 🇸🇬 Singapore | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 03/06/2026, 21:15:59 | 10/06/2026, 20:18:50 | - | - | - | - | - | - |
| 154.83.238.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS139880 | OWGELS INTERNATIONAL CO., LIMITED | Ares IDC Limited | 03/06/2026, 21:15:58 | 27/06/2026, 22:55:48 | No | - | - | - | 29/05/2026, 01:38:48 | - |
| 217.217.254.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS141995 | Contabo Asia Private Limited | Contabo | 03/06/2026, 21:14:11 | 04/06/2026, 02:58:59 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 23:25:41 | contaboserver.net, contabo.de, contabo.net |
| 3.231.53.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 03/06/2026, 21:14:11 | 13/07/2026, 12:50:02 | No | No | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 23:25:46 | - |
| 103.142.26.•••:18789 | - | 🇻🇳 Vietnam | - | false | Clean | AS135951 | Webico Company Limited | Tino Group | 03/06/2026, 21:14:11 | 12/07/2026, 16:51:59 | No | Yes | APT-C-23, APT10, APT15, APT19, APT27, APT28, APT29, APT30, APT31, APT33, APT34, APT35, APT37, APT39, APT40, APT41, APT5, AQUATIC PANDA, Antlion APT, BRONZE ATLAS, Bitter APT, Bluenoroff, Bronze Butler APT, Buhtrap Group, Callisto Group, Carbanak, Cobalt Group, CopyKittens, DarkHydrus, Donot Team, DragonOK APT, Earth Berberoka, Energetic Bear, Equation Group, Gamaredon Group, Gaza Cybergang, Greenbug Group, Hafnium Group, Inception Framework, Kimsuky, Konni Group, Lazarus Group, Moses Staff APT, MuddyWater Group, Mustang Panda, Orangeworm, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Silence Hacker Group, TA505, The Shadow Brokers, Thrip APT, Triton APT, Tropic Trooper, Volatile Kitten, Volt Typhoon | CVE-2014-3562, CVE-2014-4650, CVE-2015-3456, CVE-2015-5741, CVE-2015-6815, CVE-2016-10708, CVE-2016-20012, CVE-2016-2124, CVE-2016-2183, CVE-2016-6662, CVE-2017-1000376, CVE-2017-15906, CVE-2017-5645, CVE-2017-9953, CVE-2018-1059, CVE-2018-10869, CVE-2018-10892, CVE-2018-10926, CVE-2018-1111, CVE-2018-1128, CVE-2018-1129, CVE-2018-14462, CVE-2018-14463, CVE-2018-14465, CVE-2018-14469, CVE-2018-14622, CVE-2018-14645, CVE-2018-14879, CVE-2018-14882, CVE-2018-15473, CVE-2018-15919, CVE-2018-16229, CVE-2018-16540, CVE-2018-16871, CVE-2018-17456, CVE-2018-18311, CVE-2018-20615, CVE-2018-20685, CVE-2018-3665, CVE-2018-3760, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2019-10196, CVE-2019-11038, CVE-2019-11477, CVE-2019-11478, CVE-2019-14813, CVE-2019-14816, CVE-2019-14907, CVE-2019-19906, CVE-2019-3459, CVE-2019-3880, CVE-2019-5798, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6470, CVE-2019-6471, CVE-2019-6974, CVE-2019-7221, CVE-2019-7317, CVE-2020-10696, CVE-2020-10711, CVE-2020-10749, CVE-2020-10756, CVE-2020-10763, CVE-2020-14145, CVE-2020-14318, CVE-2020-14355, CVE-2020-14364, CVE-2020-14370, CVE-2020-14394, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707, CVE-2020-15778, CVE-2020-1711, CVE-2020-25639, CVE-2020-25657, CVE-2020-25710, CVE-2020-25717, CVE-2020-25743, CVE-2020-27777, CVE-2020-27786, CVE-2020-27827, CVE-2020-35518, CVE-2020-35524, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-20179, CVE-2021-20188, CVE-2021-20229, CVE-2021-20236, CVE-2021-20270, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-32027, CVE-2021-3516, CVE-2021-3532, CVE-2021-3533, CVE-2021-3537, CVE-2021-3621, CVE-2021-36368, CVE-2021-3669, CVE-2021-3737, CVE-2021-3752, CVE-2021-4104, CVE-2021-41617, CVE-2021-41817, CVE-2021-44142, CVE-2021-45417, CVE-2022-0711, CVE-2022-1011, CVE-2022-1227, CVE-2022-1708, CVE-2022-2132, CVE-2022-2393, CVE-2022-2795, CVE-2022-2850, CVE-2022-2989, CVE-2022-2990, CVE-2022-32545, CVE-2022-32546, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-3341, CVE-2023-38408, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 23:25:48 | - |
| 3.85.126.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 03/06/2026, 21:14:11 | 04/06/2026, 02:58:59 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 03/06/2026, 23:25:50 | - |
| 104.197.103.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 03/06/2026, 21:14:11 | 18/06/2026, 02:29:08 | No | No | - | CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 03/06/2026, 23:25:53 | - | |
| 154.83.238.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS139880 | OWGELS INTERNATIONAL CO., LIMITED | Ares IDC Limited | 03/06/2026, 21:14:10 | 27/06/2026, 20:44:41 | No | - | - | - | 28/05/2026, 23:25:56 | - |
| 2a02:4780:75:e0db::1:18789 | - | 🇺🇸 United States | - | true | Clean | AS47583 | Hostinger International Limited | Hostinger | 03/06/2026, 21:14:10 | 12/07/2026, 19:00:19 | - | - | - | - | - | - |
| 108.187.233.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS132839 | POWER LINE DATACENTER | Federal Online | 03/06/2026, 21:14:10 | 29/06/2026, 21:56:38 | No | Yes | APT14, APT15, APT28, APT31, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Earth Berberoka, Equation Group, Gamaredon Group, Gaza Cybergang, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 03/06/2026, 23:26:02 | - |
| 175.10.57.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Hunan Province Network | 03/06/2026, 21:14:10 | 07/06/2026, 04:01:15 | Yes | No | - | - | 03/06/2026, 23:26:04 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 111.229.175.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 03/06/2026, 21:14:09 | 04/06/2026, 03:41:44 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 03/06/2026, 23:26:06 | tencent.com, tencentcloud.com |
| 8.130.127.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 03/06/2026, 21:14:09 | 13/07/2026, 15:42:38 | No | Yes | APT-C-23, APT32, APT36, APT37, Careto APT, Emennet Pasargad, Emennet Pasargard, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Lazarus Group, MuddyWater Group, Sea Turtle Group, Turla APT Group, Volt Typhoon, WildCard APT | CVE-2016-8747, CVE-2017-12617, CVE-2017-5647, CVE-2017-5648, CVE-2017-5650, CVE-2017-5651, CVE-2017-5664, CVE-2017-7674, CVE-2017-7675, CVE-2018-11784, CVE-2018-1304, CVE-2018-1305, CVE-2018-1336, CVE-2018-8014, CVE-2018-8034, CVE-2018-8037, CVE-2019-0199, CVE-2019-0221, CVE-2019-0232, CVE-2019-10072, CVE-2019-12418, CVE-2019-17563, CVE-2019-2684, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-8022, CVE-2020-9484, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-41079, CVE-2021-43980, CVE-2022-25762, CVE-2022-42252, CVE-2023-28708, CVE-2023-41080, CVE-2023-42795, CVE-2023-44487, CVE-2023-45648, CVE-2023-46589, CVE-2024-21733, CVE-2024-23672, CVE-2024-24549 | 03/06/2026, 23:26:08 | - |
| 223.215.102.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Anhui | 03/06/2026, 21:14:09 | 04/06/2026, 03:41:43 | - | - | - | - | - | - |
| 54.179.219.•••:18789 | - | 🇸🇬 Singapore | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 03/06/2026, 21:14:09 | 04/06/2026, 11:30:57 | No | Yes | Salt Typhoon | CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 03/06/2026, 23:26:16 | - |
| 185.70.185.•••:18789 | - | 🇷🇺 Russia | - | false | Clean | AS57043 | HOSTKEY B.V. | Hostkey | 03/06/2026, 21:14:09 | 04/06/2026, 20:59:15 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 03/06/2026, 23:26:20 | - |
| 63.185.189.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 03/06/2026, 21:14:09 | 12/07/2026, 21:51:08 | - | - | - | - | - | - |
| 192.163.191.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS132839 | POWER LINE DATACENTER | Federal Online | 03/06/2026, 21:14:09 | 27/06/2026, 01:34:29 | Yes | Yes | Salt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 03/06/2026, 23:26:32 | finessebodywork.com, noblejet.net, ultimate-media.net, advancedprojectservices.com, swaasthya.com, wintersuninternational.com, ews-inc.com, customcolongisland.com, tamilcrew.com, eeguy.com, vilros.com, owlsnesthouse.com, bamberg-legal.com, jainind.com, chandlerdataprofessionals.com, gregfishmanjazzstudios.com, duranttool.com, rajnraj.net, banddwalls.com, aciervanguard.com, getcreditcure.com, cleverfoxpublishing.com, kreationery.com, bepeatery.com, rpmwatercraft.com, robinsonfamilyrealty.com, elementbodywork.com, knkelectric.com, americanpridecrane.com, apexmechanicalcorp.com |
| 209.38.215.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 03/06/2026, 21:14:09 | 10/06/2026, 13:10:33 | No | No | - | CVE-2023-44487, CVE-2024-7347, CVE-2025-23419 | 03/06/2026, 23:26:35 | - |
| 122.51.0.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 03/06/2026, 21:14:09 | 04/06/2026, 03:41:43 | Yes | - | - | - | 03/06/2026, 23:26:36 | tencent.com, tencentcloud.com |
| 116.147.152.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS4837 | CHINA UNICOM China169 Backbone | China Unicom | 03/06/2026, 21:14:08 | 09/06/2026, 22:21:28 | No | No | - | - | 28/05/2026, 23:26:37 | - |
| 156.253.34.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS139880 | OWGELS INTERNATIONAL CO., LIMITED | Ares IDC Limited | 03/06/2026, 21:14:08 | 29/06/2026, 09:45:16 | No | No | - | - | 28/05/2026, 23:26:38 | - |
| 23.231.179.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS132839 | POWER LINE DATACENTER | Federal Online Group LLC | 03/06/2026, 21:14:08 | 28/06/2026, 15:16:07 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 03/06/2026, 23:26:46 | - |
| 192.163.189.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS132839 | POWER LINE DATACENTER | Federal Online | 03/06/2026, 21:14:08 | 28/06/2026, 01:01:50 | No | Yes | APT14, APT15, APT28, APT31, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Earth Berberoka, Equation Group, Gamaredon Group, Gaza Cybergang, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 03/06/2026, 23:26:47 | - |
| 140.246.179.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS58519 | Cloud Computing Corporation | ChinaNet Shandong | 03/06/2026, 21:14:08 | 12/07/2026, 09:41:07 | No | No | - | - | 28/05/2026, 23:26:52 | - |
| 172.66.47.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS13335 | Cloudflare, Inc. | Cloudflare | 03/06/2026, 21:14:07 | 10/07/2026, 11:16:34 | Yes | No | - | - | 03/06/2026, 23:26:57 | danca.tv, pivotsmo.com, fsdatacentre.com, gruppoesi.it, jw.ai, naseni.gov.ng, judgeyachts.com, qmusic.be, 1art.cz, etraelectronics.fi, exalta.com, tennis-florida.com, etra.fi, wenn.com, klavis.ai, metaworks.ai, eurostampiparma.it, simatek.com, bamko.net, sicmi.com, soccerway.com, livesportmedia.eu, wearerasa.com, rohigreen.com, tdyit.com, eu.org, flexo-tekniikka.fi, persgroep.net, otisa.com, neerajlovecyber.com, dnsrd.com, mandarinoriental.it, hancockalbanese.com, doradver.ru, kmark.com, maginus.com, barnesdennig.com, vendure.io, richlandtexas.gov, flashscore.com, robuschi.it, flashscoreusa.com, livesport.eu, diretta.it, mediterranealg.it, kisimarealestate.com, dns04.com, ariete.com.br, etola.fi, eushipments.com, mallyas.com, hungryroot.com, athelas.com, cloudns.net, prbot.ai, expressable.io, shopbox.ai, wyssacademy.org, import.io, livesport.com, mhz.tv |
| 8.145.62.•••:18789 | - | 🇸🇬 Singapore | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 03/06/2026, 21:14:07 | 04/06/2026, 03:41:41 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 03/06/2026, 23:26:58 | - |
| 138.199.170.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner | 03/06/2026, 21:14:07 | 10/07/2026, 04:10:28 | Yes | No | - | CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 10/07/2026, 01:21:37 | your-server.de |
| 113.87.251.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 03/06/2026, 21:14:07 | 06/06/2026, 16:02:13 | Yes | No | - | - | 06/06/2026, 11:50:12 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 24.233.26.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS55933 | Cloudie Limited | Century Communications | 03/06/2026, 21:14:06 | 26/06/2026, 00:32:33 | No | No | - | - | 07/06/2026, 03:29:33 | - |
| 23.231.179.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS132839 | POWER LINE DATACENTER | Federal Online Group LLC | 03/06/2026, 21:14:06 | 29/06/2026, 10:27:31 | No | No | - | - | 29/05/2026, 20:18:39 | - |
| 20.225.203.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 03/06/2026, 21:14:06 | 12/07/2026, 16:09:14 | - | - | - | - | - | - |
| 64.23.198.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 03/06/2026, 21:14:05 | 13/07/2026, 03:33:08 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728 | 07/06/2026, 15:16:00 | - |
| 113.88.75.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | CHINANET Guangdong | 03/06/2026, 21:14:05 | 04/06/2026, 03:41:39 | - | - | - | - | - | - |
| 98.92.98.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 03/06/2026, 21:14:05 | 04/06/2026, 03:41:39 | - | - | - | - | - | - |
| 8.134.198.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 03/06/2026, 21:14:05 | 13/07/2026, 13:33:28 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/06/2026, 06:53:47 | - |
| 8.163.79.•••:18789 | - | 🇸🇬 Singapore | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 03/06/2026, 21:14:04 | 10/06/2026, 16:43:44 | - | - | - | - | - | - |
| 217.217.254.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS141995 | Contabo Asia Private Limited | Contabo | 03/06/2026, 21:12:12 | 04/06/2026, 02:57:07 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 21:14:31 | contaboserver.net, contabo.de, contabo.net |
| 3.231.53.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 03/06/2026, 21:12:12 | 13/07/2026, 12:48:06 | No | No | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 21:14:35 | - |
| 103.142.26.•••:18789 | - | 🇻🇳 Vietnam | - | false | Clean | AS135951 | Webico Company Limited | Tino Group | 03/06/2026, 21:12:12 | 12/07/2026, 16:50:06 | No | Yes | APT-C-23, APT10, APT15, APT19, APT27, APT28, APT29, APT30, APT31, APT33, APT34, APT35, APT37, APT39, APT40, APT41, APT5, AQUATIC PANDA, Antlion APT, BRONZE ATLAS, Bitter APT, Bluenoroff, Bronze Butler APT, Buhtrap Group, Callisto Group, Carbanak, Cobalt Group, CopyKittens, DarkHydrus, Donot Team, DragonOK APT, Earth Berberoka, Energetic Bear, Equation Group, Gamaredon Group, Gaza Cybergang, Greenbug Group, Hafnium Group, Inception Framework, Kimsuky, Konni Group, Lazarus Group, Moses Staff APT, MuddyWater Group, Mustang Panda, Orangeworm, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Silence Hacker Group, TA505, The Shadow Brokers, Thrip APT, Triton APT, Tropic Trooper, Volatile Kitten, Volt Typhoon | CVE-2014-3562, CVE-2014-4650, CVE-2015-3456, CVE-2015-5741, CVE-2015-6815, CVE-2016-10708, CVE-2016-20012, CVE-2016-2124, CVE-2016-2183, CVE-2016-6662, CVE-2017-1000376, CVE-2017-15906, CVE-2017-5645, CVE-2017-9953, CVE-2018-1059, CVE-2018-10869, CVE-2018-10892, CVE-2018-10926, CVE-2018-1111, CVE-2018-1128, CVE-2018-1129, CVE-2018-14462, CVE-2018-14463, CVE-2018-14465, CVE-2018-14469, CVE-2018-14622, CVE-2018-14645, CVE-2018-14879, CVE-2018-14882, CVE-2018-15473, CVE-2018-15919, CVE-2018-16229, CVE-2018-16540, CVE-2018-16871, CVE-2018-17456, CVE-2018-18311, CVE-2018-20615, CVE-2018-20685, CVE-2018-3665, CVE-2018-3760, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2019-10196, CVE-2019-11038, CVE-2019-11477, CVE-2019-11478, CVE-2019-14813, CVE-2019-14816, CVE-2019-14907, CVE-2019-19906, CVE-2019-3459, CVE-2019-3880, CVE-2019-5798, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6470, CVE-2019-6471, CVE-2019-6974, CVE-2019-7221, CVE-2019-7317, CVE-2020-10696, CVE-2020-10711, CVE-2020-10749, CVE-2020-10756, CVE-2020-10763, CVE-2020-14145, CVE-2020-14318, CVE-2020-14355, CVE-2020-14364, CVE-2020-14370, CVE-2020-14394, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707, CVE-2020-15778, CVE-2020-1711, CVE-2020-25639, CVE-2020-25657, CVE-2020-25710, CVE-2020-25717, CVE-2020-25743, CVE-2020-27777, CVE-2020-27786, CVE-2020-27827, CVE-2020-35518, CVE-2020-35524, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-20179, CVE-2021-20188, CVE-2021-20229, CVE-2021-20236, CVE-2021-20270, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-32027, CVE-2021-3516, CVE-2021-3532, CVE-2021-3533, CVE-2021-3537, CVE-2021-3621, CVE-2021-36368, CVE-2021-3669, CVE-2021-3737, CVE-2021-3752, CVE-2021-4104, CVE-2021-41617, CVE-2021-41817, CVE-2021-44142, CVE-2021-45417, CVE-2022-0711, CVE-2022-1011, CVE-2022-1227, CVE-2022-1708, CVE-2022-2132, CVE-2022-2393, CVE-2022-2795, CVE-2022-2850, CVE-2022-2989, CVE-2022-2990, CVE-2022-32545, CVE-2022-32546, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-3341, CVE-2023-38408, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 21:14:37 | - |
| 3.85.126.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 03/06/2026, 21:12:12 | 04/06/2026, 03:39:51 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 03/06/2026, 21:14:39 | - |
| 104.197.103.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 03/06/2026, 21:12:12 | 18/06/2026, 02:27:16 | No | No | - | CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 03/06/2026, 21:14:41 | - | |
| 154.83.238.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS139880 | OWGELS INTERNATIONAL CO., LIMITED | Ares IDC Limited | 03/06/2026, 21:12:12 | 27/06/2026, 20:42:45 | No | - | - | - | 28/05/2026, 21:14:42 | - |
| 2a02:4780:75:e0db::1:18789 | - | 🇺🇸 United States | - | true | Clean | AS47583 | Hostinger International Limited | Hostinger | 03/06/2026, 21:12:11 | 12/07/2026, 18:58:24 | - | - | - | - | - | - |
| 108.187.233.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS132839 | POWER LINE DATACENTER | Federal Online | 03/06/2026, 21:12:11 | 29/06/2026, 21:54:03 | No | Yes | APT14, APT15, APT28, APT31, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Earth Berberoka, Equation Group, Gamaredon Group, Gaza Cybergang, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 03/06/2026, 21:14:47 | - |
| 175.10.57.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Hunan Province Network | 03/06/2026, 21:12:11 | 07/06/2026, 03:59:27 | Yes | No | - | - | 03/06/2026, 21:14:48 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 111.229.175.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 03/06/2026, 21:12:11 | 04/06/2026, 03:39:50 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 03/06/2026, 21:14:49 | tencent.com, tencentcloud.com |
| 8.130.127.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 03/06/2026, 21:12:11 | 13/07/2026, 15:40:45 | No | Yes | APT-C-23, APT32, APT36, APT37, Careto APT, Emennet Pasargad, Emennet Pasargard, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Lazarus Group, MuddyWater Group, Sea Turtle Group, Turla APT Group, Volt Typhoon, WildCard APT | CVE-2016-8747, CVE-2017-12617, CVE-2017-5647, CVE-2017-5648, CVE-2017-5650, CVE-2017-5651, CVE-2017-5664, CVE-2017-7674, CVE-2017-7675, CVE-2018-11784, CVE-2018-1304, CVE-2018-1305, CVE-2018-1336, CVE-2018-8014, CVE-2018-8034, CVE-2018-8037, CVE-2019-0199, CVE-2019-0221, CVE-2019-0232, CVE-2019-10072, CVE-2019-12418, CVE-2019-17563, CVE-2019-2684, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-8022, CVE-2020-9484, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-41079, CVE-2021-43980, CVE-2022-25762, CVE-2022-42252, CVE-2023-28708, CVE-2023-41080, CVE-2023-42795, CVE-2023-44487, CVE-2023-45648, CVE-2023-46589, CVE-2024-21733, CVE-2024-23672, CVE-2024-24549 | 03/06/2026, 21:14:51 | - |
| 223.215.102.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Anhui | 03/06/2026, 21:12:11 | 04/06/2026, 03:39:50 | - | - | - | - | - | - |