🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 1006105 Page: 964 / 10062 (100 per page) Showing: 96301-96400 Last Imported: 14/07/2026, 07:44:58
🇨🇳 483,673
🇺🇸 290,578
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 8.145.58.•••:18789 | - | 🇸🇬 Singapore | - | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 31/05/2026, 23:07:25 | 01/06/2026, 05:29:51 | - | - | - | - | - | - |
| 36.230.198.•••:18789 | - | 🇹🇼 Taiwan | Yes | false | Clean | AS3462 | Data Communication Business Group | Chunghwa Telecom Data Group | 31/05/2026, 23:07:25 | 01/06/2026, 05:29:51 | - | - | - | - | - | - |
| 1.92.82.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS55990 | Huawei Cloud Service data center | Huawei Cloud | 31/05/2026, 23:07:25 | 06/07/2026, 09:03:24 | Yes | No | - | - | 04/06/2026, 07:15:48 | smartcom.cc, huawei.com, huaweidevice.com |
| 40.124.87.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 23:07:25 | 01/06/2026, 05:29:50 | - | - | - | - | - | - |
| 101.43.115.•••:18789 | - | 🇨🇳 China mainland | - | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 31/05/2026, 23:07:24 | 13/07/2026, 03:31:13 | Yes | Yes | APT-C-23, APT1 Comment Crew, APT27, APT28, APT29, APT34, APT35, APT36, APT37, APT39, APT41, Cobalt Group, Donot Team, Earth Longzhi, El-Machete, Equation Group, Gamaredon Group, Ghostwriter, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2011-4718, CVE-2013-3735, CVE-2013-6501, CVE-2013-7327, CVE-2014-0236, CVE-2014-2020, CVE-2014-4670, CVE-2014-5459, CVE-2014-9425, CVE-2014-9426, CVE-2014-9767, CVE-2015-1351, CVE-2015-4116, CVE-2015-4601, CVE-2015-7803, CVE-2015-7804, CVE-2015-8865, CVE-2015-8874, CVE-2015-8877, CVE-2015-8879, CVE-2015-8994, CVE-2015-9251, CVE-2015-9253, CVE-2016-10158, CVE-2016-10159, CVE-2016-10161, CVE-2016-10397, CVE-2016-10708, CVE-2016-10712, CVE-2016-1903, CVE-2016-2554, CVE-2016-3141, CVE-2016-3142, CVE-2016-4070, CVE-2016-4342, CVE-2016-4343, CVE-2016-4537, CVE-2016-4538, CVE-2016-4539, CVE-2016-4540, CVE-2016-4541, CVE-2016-4542, CVE-2016-4543, CVE-2016-5093, CVE-2016-5094, CVE-2016-5095, CVE-2016-5096, CVE-2016-5114, CVE-2016-5399, CVE-2016-5768, CVE-2016-5769, CVE-2016-5770, CVE-2016-5771, CVE-2016-5772, CVE-2016-5773, CVE-2016-6288, CVE-2016-6289, CVE-2016-6290, CVE-2016-6291, CVE-2016-6292, CVE-2016-6294, CVE-2016-6295, CVE-2016-6296, CVE-2016-6297, CVE-2016-7124, CVE-2016-7125, CVE-2016-7126, CVE-2016-7127, CVE-2016-7128, CVE-2016-7129, CVE-2016-7130, CVE-2016-7131, CVE-2016-7132, CVE-2016-7411, CVE-2016-7412, CVE-2016-7413, CVE-2016-7414, CVE-2016-7416, CVE-2016-7417, CVE-2016-7418, CVE-2016-7478, CVE-2016-9137, CVE-2016-9138, CVE-2016-9934, CVE-2016-9935, CVE-2017-11142, CVE-2017-11143, CVE-2017-11144, CVE-2017-11145, CVE-2017-11147, CVE-2017-11628, CVE-2017-12933, CVE-2017-15906, CVE-2017-16642, CVE-2017-7272, CVE-2017-7890, CVE-2017-7963, CVE-2017-8923, CVE-2017-9224, CVE-2017-9225, CVE-2017-9226, CVE-2017-9229, CVE-2018-10545, CVE-2018-10546, CVE-2018-10547, CVE-2018-10548, CVE-2018-10549, CVE-2018-14851, CVE-2018-14883, CVE-2018-15132, CVE-2018-15473, CVE-2018-15919, CVE-2018-17082, CVE-2018-19395, CVE-2018-19396, CVE-2018-19520, CVE-2018-20685, CVE-2018-20783, CVE-2018-5711, CVE-2018-5712, CVE-2018-7584, CVE-2019-11358, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9023, CVE-2019-9024, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9641, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2021-23017, CVE-2021-3618, CVE-2021-41617, CVE-2022-31628, CVE-2022-31629, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487 | 03/06/2026, 16:10:53 | tencent.com, tencentcloud.com |
| 220.173.56.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Guangxi | 31/05/2026, 23:07:24 | 01/06/2026, 06:12:51 | - | - | - | - | - | - |
| 167.172.225.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 31/05/2026, 23:07:23 | 01/06/2026, 06:12:51 | - | - | - | - | - | - |
| 175.0.73.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hunan Province Network | 31/05/2026, 23:07:23 | 01/06/2026, 06:12:51 | - | - | - | - | - | - |
| 213.165.87.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | IONOS | 31/05/2026, 23:07:23 | 08/07/2026, 21:54:06 | Yes | - | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 08/07/2026, 16:55:15 | profitbricks.com, pbiaas.com |
| 161.97.80.•••:18789 | - | 🇫🇷 France | Yes | false | Leaked | AS51167 | Contabo GmbH | Contabo | 31/05/2026, 23:07:23 | 16/06/2026, 01:57:46 | Yes | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Earth Berberoka, Equation Group, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2006-20001, CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3523, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-17199, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2020-11985, CVE-2020-13938, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-7071, CVE-2021-21702, CVE-2021-21703, CVE-2021-21704, CVE-2021-21705, CVE-2021-21707, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2023-25690, CVE-2023-28625, CVE-2023-31122, CVE-2023-38709, CVE-2023-45802, CVE-2024-24795, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-49812, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082 | 04/06/2026, 01:33:44 | contabo.de, contabo.net |
| 116.62.158.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 31/05/2026, 23:07:22 | 01/06/2026, 06:12:49 | - | - | - | - | - | - |
| 43.251.16.•••:18789 | - | 🇭🇰 Hong Kong | - | false | Leaked | AS55933 | Cloudie Limited | Hong Kong Virtual Internal Server | 31/05/2026, 23:07:22 | 14/07/2026, 03:49:47 | Yes | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Earth Berberoka, Energetic Bear, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, Leafminer, Luckycat APT, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2010-1899, CVE-2010-2730, CVE-2010-3972, CVE-2016-20012, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-9798, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11993, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 01/06/2026, 22:21:12 | opengw.net, rs.ba, vpngate.net, dvrdydns.com |
| 103.76.120.•••:18789 | - | 🇮🇩 Indonesia | Yes | false | Clean | AS136052 | PT Cloud Hosting Indonesia | Phylot Solusi Integrasi | 31/05/2026, 23:05:32 | 05/06/2026, 03:58:48 | Yes | No | - | CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 01/06/2026, 04:06:00 | idcloudhost.com |
| 20.194.165.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 23:05:32 | 02/07/2026, 21:34:29 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:06:04 | - |
| 52.253.108.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 23:05:32 | 02/07/2026, 18:01:05 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:06:07 | - |
| 207.58.174.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS30633 | Leaseweb USA, Inc. | Unknown | 31/05/2026, 23:05:32 | 04/07/2026, 17:49:01 | Yes | No | - | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 03:20:00 | leaseweb.com, ubiquityhosting.com |
| 34.240.157.•••:18789 | - | 🇮🇪 Ireland | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Data Services Ireland | 31/05/2026, 23:05:32 | 11/06/2026, 06:06:18 | No | No | - | - | 26/05/2026, 04:06:09 | - |
| 20.196.205.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 23:05:32 | 09/07/2026, 05:55:20 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 01/06/2026, 04:06:11 | - |
| 124.220.228.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 31/05/2026, 23:05:31 | 11/07/2026, 20:43:47 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 01/06/2026, 04:06:13 | tencent.com |
| 40.124.87.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 23:05:31 | 02/06/2026, 14:32:17 | No | No | - | - | 26/05/2026, 04:06:14 | - |
| 101.43.115.•••:18789 | - | 🇨🇳 China mainland | - | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 31/05/2026, 23:05:31 | 14/07/2026, 03:47:37 | Yes | Yes | APT-C-23, APT1 Comment Crew, APT27, APT28, APT29, APT34, APT35, APT36, APT37, APT39, APT41, Cobalt Group, Donot Team, Earth Longzhi, El-Machete, Equation Group, Gamaredon Group, Ghostwriter, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2011-4718, CVE-2013-3735, CVE-2013-6501, CVE-2013-7327, CVE-2014-0236, CVE-2014-2020, CVE-2014-4670, CVE-2014-5459, CVE-2014-9425, CVE-2014-9426, CVE-2014-9767, CVE-2015-1351, CVE-2015-4116, CVE-2015-4601, CVE-2015-7803, CVE-2015-7804, CVE-2015-8865, CVE-2015-8874, CVE-2015-8877, CVE-2015-8879, CVE-2015-8994, CVE-2015-9251, CVE-2015-9253, CVE-2016-10158, CVE-2016-10159, CVE-2016-10161, CVE-2016-10397, CVE-2016-10708, CVE-2016-10712, CVE-2016-1903, CVE-2016-2554, CVE-2016-3141, CVE-2016-3142, CVE-2016-4070, CVE-2016-4342, CVE-2016-4343, CVE-2016-4537, CVE-2016-4538, CVE-2016-4539, CVE-2016-4540, CVE-2016-4541, CVE-2016-4542, CVE-2016-4543, CVE-2016-5093, CVE-2016-5094, CVE-2016-5095, CVE-2016-5096, CVE-2016-5114, CVE-2016-5399, CVE-2016-5768, CVE-2016-5769, CVE-2016-5770, CVE-2016-5771, CVE-2016-5772, CVE-2016-5773, CVE-2016-6288, CVE-2016-6289, CVE-2016-6290, CVE-2016-6291, CVE-2016-6292, CVE-2016-6294, CVE-2016-6295, CVE-2016-6296, CVE-2016-6297, CVE-2016-7124, CVE-2016-7125, CVE-2016-7126, CVE-2016-7127, CVE-2016-7128, CVE-2016-7129, CVE-2016-7130, CVE-2016-7131, CVE-2016-7132, CVE-2016-7411, CVE-2016-7412, CVE-2016-7413, CVE-2016-7414, CVE-2016-7416, CVE-2016-7417, CVE-2016-7418, CVE-2016-7478, CVE-2016-9137, CVE-2016-9138, CVE-2016-9934, CVE-2016-9935, CVE-2017-11142, CVE-2017-11143, CVE-2017-11144, CVE-2017-11145, CVE-2017-11147, CVE-2017-11628, CVE-2017-12933, CVE-2017-15906, CVE-2017-16642, CVE-2017-7272, CVE-2017-7890, CVE-2017-7963, CVE-2017-8923, CVE-2017-9224, CVE-2017-9225, CVE-2017-9226, CVE-2017-9229, CVE-2018-10545, CVE-2018-10546, CVE-2018-10547, CVE-2018-10548, CVE-2018-10549, CVE-2018-14851, CVE-2018-14883, CVE-2018-15132, CVE-2018-15473, CVE-2018-15919, CVE-2018-17082, CVE-2018-19395, CVE-2018-19396, CVE-2018-19520, CVE-2018-20685, CVE-2018-20783, CVE-2018-5711, CVE-2018-5712, CVE-2018-7584, CVE-2019-11358, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9023, CVE-2019-9024, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9641, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2021-23017, CVE-2021-3618, CVE-2021-41617, CVE-2022-31628, CVE-2022-31629, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487 | 01/06/2026, 04:06:16 | tencent.com |
| 213.165.87.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | IONOS | 31/05/2026, 23:05:31 | 10/07/2026, 11:12:54 | No | - | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:06:20 | - |
| 65.94.211.•••:18789 | - | 🇨🇦 Canada | Yes | false | Leaked | AS577 | Bell Canada | Health and Safety Executive | 31/05/2026, 22:29:16 | 10/07/2026, 01:22:16 | Yes | - | - | - | 01/06/2026, 04:52:37 | noovo.ca, gosfieldtel.com, noovomoi.ca, starz.ca, ctv.ca, bell.net, bellaliant.ca, ctvnews.ca, mts.net, placebell.ca, crave.ca, mtsallstreamhosting.com, aira.com, bellaliant.net, bellmobility.ca, bellnexxia.com, themovienetwork.ca, bellmts.ca, bnnbloomberg.ca, bellaliant.com, aibn.com, bcenexxia.com, aliantzinc.ca, aliant.ca, vox.ca, aaaalarms.ca, bell.ca |
| 154.86.148.•••:8443 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134548 | DXTL Tseung Kwan O Service | Dingfeng Network | 31/05/2026, 22:29:16 | 14/06/2026, 00:34:00 | No | Yes | APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi | CVE-2014-4078 | 01/06/2026, 04:52:43 | - |
| 14.155.225.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 31/05/2026, 22:29:16 | 01/06/2026, 07:00:01 | Yes | No | - | - | 01/06/2026, 04:52:45 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 43.139.230.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 31/05/2026, 22:29:16 | 01/06/2026, 07:00:01 | Yes | No | - | - | 01/06/2026, 04:52:49 | tencent.com |
| 2a02:4780:75:9b23::1:18789 | - | 🇺🇸 United States | - | true | Clean | AS47583 | Hostinger International Limited | Hostinger | 31/05/2026, 22:29:16 | 13/07/2026, 07:08:52 | - | - | - | - | - | - |
| 204.168.219.•••:18789 | - | 🇫🇮 Finland | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 22:29:16 | 01/06/2026, 07:00:00 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:52:53 | - |
| 8.136.41.•••:3000 | - | 🇸🇬 Singapore | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 31/05/2026, 22:29:15 | 04/06/2026, 03:44:03 | - | - | - | - | - | - |
| 178.128.107.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Leaked | AS14061 | DigitalOcean, LLC | DigitalOcean | 31/05/2026, 22:29:15 | 14/07/2026, 03:54:09 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-46848, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-23638, CVE-2024-25111, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-39894, CVE-2024-45802, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:53:02 | qzz.io |
| 103.142.25.•••:18789 | - | 🇻🇳 Vietnam | Yes | true | Clean | AS135951 | Webico Company Limited | Tino Group | 31/05/2026, 22:29:15 | 13/07/2026, 19:20:10 | No | Yes | APT-C-23, APT1 Comment Crew, APT10, APT15, APT19, APT27, APT28, APT29, APT30, APT31, APT33, APT34, APT35, APT37, APT39, APT40, APT41, APT5, AQUATIC PANDA, Antlion APT, BRONZE ATLAS, Bitter APT, Bluenoroff, Bronze Butler APT, Buhtrap Group, Callisto Group, Calypso APT, Carbanak, Cobalt Group, CopyKittens, DarkHydrus, Donot Team, DragonOK APT, Earth Berberoka, Energetic Bear, Equation Group, FIN6, Gamaredon Group, Gaza Cybergang, Greenbug Group, Hafnium Group, Inception Framework, Kimsuky, Konni Group, Lazarus Group, Moses Staff APT, MuddyWater Group, Mustang Panda, Orangeworm, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Silence Hacker Group, TA505, The Shadow Brokers, Thrip APT, Triton APT, Tropic Trooper, Volatile Kitten, Volt Typhoon | CVE-2002-2185, CVE-2004-2771, CVE-2005-0109, CVE-2012-6655, CVE-2013-5661, CVE-2014-1859, CVE-2014-2483, CVE-2014-3562, CVE-2014-3585, CVE-2014-3647, CVE-2014-3673, CVE-2014-4650, CVE-2014-5118, CVE-2014-6601, CVE-2014-8080, CVE-2014-8089, CVE-2014-8119, CVE-2014-8137, CVE-2014-8138, CVE-2014-8157, CVE-2014-8158, CVE-2014-8171, CVE-2014-8181, CVE-2015-0240, CVE-2015-0294, CVE-2015-0383, CVE-2015-0395, CVE-2015-0407, CVE-2015-0408, CVE-2015-0410, CVE-2015-0411, CVE-2015-0412, CVE-2015-1350, CVE-2015-1819, CVE-2015-2775, CVE-2015-2783, CVE-2015-3216, CVE-2015-3247, CVE-2015-3307, CVE-2015-3456, CVE-2015-3900, CVE-2015-4021, CVE-2015-4022, CVE-2015-4024, CVE-2015-4025, CVE-2015-4026, CVE-2015-4598, CVE-2015-4603, CVE-2015-4756, CVE-2015-4800, CVE-2015-4862, CVE-2015-4890, CVE-2015-4910, CVE-2015-5281, CVE-2015-5741, CVE-2015-6815, CVE-2015-7553, CVE-2015-7810, CVE-2015-7837, CVE-2016-0503, CVE-2016-0504, CVE-2016-0505, CVE-2016-0546, CVE-2016-0595, CVE-2016-0596, CVE-2016-0597, CVE-2016-0598, CVE-2016-0600, CVE-2016-0605, CVE-2016-0606, CVE-2016-0607, CVE-2016-0608, CVE-2016-0609, CVE-2016-0610, CVE-2016-0611, CVE-2016-0639, CVE-2016-0640, CVE-2016-0641, CVE-2016-0643, CVE-2016-0644, CVE-2016-0646, CVE-2016-0647, CVE-2016-0648, CVE-2016-0649, CVE-2016-0650, CVE-2016-0655, CVE-2016-0661, CVE-2016-0665, CVE-2016-0666, CVE-2016-0720, CVE-2016-0721, CVE-2016-0739, CVE-2016-0741, CVE-2016-1000002, CVE-2016-1000033, CVE-2016-10708, CVE-2016-10729, CVE-2016-10730, CVE-2016-20012, CVE-2016-2047, CVE-2016-2124, CVE-2016-2183, CVE-2016-2568, CVE-2016-3452, CVE-2016-3471, CVE-2016-3695, CVE-2016-4470, CVE-2016-4805, CVE-2016-4980, CVE-2016-4983, CVE-2016-5285, CVE-2016-5314, CVE-2016-5444, CVE-2016-5766, CVE-2016-6170, CVE-2016-6662, CVE-2016-7056, CVE-2016-8612, CVE-2016-9079, CVE-2016-9675, CVE-2016-9893, CVE-2016-9895, CVE-2016-9898, CVE-2016-9899, CVE-2016-9900, CVE-2017-1000111, CVE-2017-1000253, CVE-2017-1000366, CVE-2017-1000376, CVE-2017-12151, CVE-2017-12189, CVE-2017-15103, CVE-2017-15104, CVE-2017-15116, CVE-2017-15121, CVE-2017-15127, CVE-2017-15128, CVE-2017-15131, CVE-2017-15906, CVE-2017-2590, CVE-2017-2618, CVE-2017-2619, CVE-2017-2623, CVE-2017-2625, CVE-2017-5332, CVE-2017-5333, CVE-2017-5376, CVE-2017-5378, CVE-2017-5380, CVE-2017-5383, CVE-2017-5386, CVE-2017-5390, CVE-2017-5396, CVE-2017-5401, CVE-2017-5402, CVE-2017-5404, CVE-2017-5405, CVE-2017-5407, CVE-2017-5408, CVE-2017-5410, CVE-2017-5428, CVE-2017-5432, CVE-2017-5433, CVE-2017-5435, CVE-2017-5436, CVE-2017-5438, CVE-2017-5439, CVE-2017-5440, CVE-2017-5441, CVE-2017-5442, CVE-2017-5443, CVE-2017-5444, CVE-2017-5445, CVE-2017-5446, CVE-2017-5447, CVE-2017-5448, CVE-2017-5449, CVE-2017-5451, CVE-2017-5454, CVE-2017-5455, CVE-2017-5456, CVE-2017-5460, CVE-2017-5464, CVE-2017-5465, CVE-2017-5466, CVE-2017-5469, CVE-2017-5470, CVE-2017-5472, CVE-2017-5645, CVE-2017-7562, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7753, CVE-2017-7754, CVE-2017-7784, CVE-2017-7785, CVE-2017-7786, CVE-2017-7787, CVE-2017-7791, CVE-2017-7792, CVE-2017-7793, CVE-2017-7798, CVE-2017-7800, CVE-2017-7801, CVE-2017-7802, CVE-2017-7807, CVE-2017-7809, CVE-2017-7848, CVE-2017-9953, CVE-2018-1000026, CVE-2018-1000199, CVE-2018-1049, CVE-2018-1059, CVE-2018-1079, CVE-2018-10840, CVE-2018-10850, CVE-2018-10869, CVE-2018-1087, CVE-2018-10877, CVE-2018-10879, CVE-2018-10880, CVE-2018-10882, CVE-2018-10883, CVE-2018-10892, CVE-2018-10926, CVE-2018-10928, CVE-2018-10930, CVE-2018-10933, CVE-2018-1111, CVE-2018-11235, CVE-2018-1124, CVE-2018-1126, CVE-2018-1128, CVE-2018-1129, CVE-2018-12372, CVE-2018-12373, CVE-2018-12374, CVE-2018-14462, CVE-2018-14463, CVE-2018-14465, CVE-2018-14469, CVE-2018-14618, CVE-2018-14622, CVE-2018-14645, CVE-2018-14648, CVE-2018-14651, CVE-2018-14879, CVE-2018-14882, CVE-2018-15473, CVE-2018-15919, CVE-2018-16229, CVE-2018-16396, CVE-2018-16540, CVE-2018-16838, CVE-2018-16850, CVE-2018-16862, CVE-2018-16871, CVE-2018-16884, CVE-2018-17456, CVE-2018-18311, CVE-2018-18438, CVE-2018-18584, CVE-2018-18751, CVE-2018-19208, CVE-2018-19214, CVE-2018-19215, CVE-2018-20615, CVE-2018-20685, CVE-2018-25011, CVE-2018-25014, CVE-2018-3665, CVE-2018-3693, CVE-2018-3760, CVE-2018-5091, CVE-2018-5095, CVE-2018-5096, CVE-2018-5117, CVE-2018-5184, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2018-6914, CVE-2018-8777, CVE-2018-8778, CVE-2019-10131, CVE-2019-10140, CVE-2019-10146, CVE-2019-10166, CVE-2019-10167, CVE-2019-10168, CVE-2019-10179, CVE-2019-10196, CVE-2019-11038, CVE-2019-11234, CVE-2019-11235, CVE-2019-11477, CVE-2019-11478, CVE-2019-11811, CVE-2019-13456, CVE-2019-14813, CVE-2019-14814, CVE-2019-14815, CVE-2019-14816, CVE-2019-14822, CVE-2019-14824, CVE-2019-14826, CVE-2019-14864, CVE-2019-14866, CVE-2019-14906, CVE-2019-14907, CVE-2019-15030, CVE-2019-15031, CVE-2019-16231, CVE-2019-16233, CVE-2019-16680, CVE-2019-16994, CVE-2019-18805, CVE-2019-19081, CVE-2019-19319, CVE-2019-19332, CVE-2019-19340, CVE-2019-19906, CVE-2019-2529, CVE-2019-3459, CVE-2019-3811, CVE-2019-3825, CVE-2019-3846, CVE-2019-3874, CVE-2019-3880, CVE-2019-3890, CVE-2019-3900, CVE-2019-3902, CVE-2019-5798, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6470, CVE-2019-6471, CVE-2019-6974, CVE-2019-7221, CVE-2019-7317, CVE-2019-8912, CVE-2019-9213, CVE-2019-9503, CVE-2020-0570, CVE-2020-10696, CVE-2020-10711, CVE-2020-10749, CVE-2020-10756, CVE-2020-10757, CVE-2020-10759, CVE-2020-10763, CVE-2020-10769, CVE-2020-11669, CVE-2020-11868, CVE-2020-12826, CVE-2020-14145, CVE-2020-14318, CVE-2020-14331, CVE-2020-14346, CVE-2020-14351, CVE-2020-14355, CVE-2020-14361, CVE-2020-14362, CVE-2020-14364, CVE-2020-14370, CVE-2020-14394, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707, CVE-2020-15778, CVE-2020-1711, CVE-2020-1722, CVE-2020-25639, CVE-2020-25641, CVE-2020-25643, CVE-2020-25656, CVE-2020-25657, CVE-2020-25692, CVE-2020-25705, CVE-2020-25708, CVE-2020-25710, CVE-2020-25717, CVE-2020-25719, CVE-2020-25743, CVE-2020-2654, CVE-2020-2655, CVE-2020-2732, CVE-2020-27765, CVE-2020-27767, CVE-2020-27771, CVE-2020-27772, CVE-2020-27774, CVE-2020-27775, CVE-2020-27776, CVE-2020-27777, CVE-2020-27786, CVE-2020-27827, CVE-2020-29573, CVE-2020-35501, CVE-2020-35518, CVE-2020-35524, CVE-2020-36328, CVE-2020-36329, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-0129, CVE-2021-20179, CVE-2021-20188, CVE-2021-20201, CVE-2021-20229, CVE-2021-20236, CVE-2021-20244, CVE-2021-20245, CVE-2021-20246, CVE-2021-20261, CVE-2021-20270, CVE-2021-20292, CVE-2021-20314, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-26252, CVE-2021-30469, CVE-2021-30470, CVE-2021-30471, CVE-2021-30500, CVE-2021-30501, CVE-2021-31916, CVE-2021-32027, CVE-2021-3403, CVE-2021-3404, CVE-2021-3409, CVE-2021-3416, CVE-2021-3443, CVE-2021-3497, CVE-2021-3498, CVE-2021-3516, CVE-2021-3532, CVE-2021-3533, CVE-2021-3537, CVE-2021-3575, CVE-2021-3580, CVE-2021-35938, CVE-2021-3596, CVE-2021-3621, CVE-2021-3635, CVE-2021-36368, CVE-2021-3653, CVE-2021-3657, CVE-2021-3669, CVE-2021-3672, CVE-2021-3700, CVE-2021-3714, CVE-2021-3737, CVE-2021-3752, CVE-2021-3753, CVE-2021-3773, CVE-2021-3864, CVE-2021-3997, CVE-2021-4104, CVE-2021-41617, CVE-2021-41817, CVE-2021-4217, CVE-2021-42778, CVE-2021-42779, CVE-2021-42780, CVE-2021-42781, CVE-2021-44142, CVE-2021-45417, CVE-2022-0711, CVE-2022-0851, CVE-2022-0852, CVE-2022-0984, CVE-2022-1011, CVE-2022-1227, CVE-2022-1355, CVE-2022-1708, CVE-2022-2132, CVE-2022-2153, CVE-2022-2393, CVE-2022-2625, CVE-2022-2795, CVE-2022-2850, CVE-2022-28796, CVE-2022-2964, CVE-2022-2989, CVE-2022-2990, CVE-2022-32545, CVE-2022-32546, CVE-2022-32547, CVE-2022-38177, CVE-2022-38178, CVE-2022-4283, CVE-2023-1981, CVE-2023-2828, CVE-2023-3341, CVE-2023-38408, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:53:06 | - |
| 59.57.232.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Fujian | 31/05/2026, 22:29:14 | 04/06/2026, 12:15:32 | Yes | No | - | CVE-2018-19052, CVE-2018-25103, CVE-2019-11072, CVE-2024-3708 | 01/06/2026, 04:53:10 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 193.233.161.•••:8443 | - | 🇦🇹 Austria | Yes | false | Clean | AS210644 | AEZA GROUP LLC | Aeza Network Vienna | 31/05/2026, 22:29:14 | 01/06/2026, 06:59:58 | No | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Earth Berberoka, Equation Group, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-17199, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2020-11985, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813 | 01/06/2026, 04:53:18 | - |
| 167.233.25.•••:443 | - | 🇩🇪 Germany | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 22:29:13 | 01/06/2026, 15:26:04 | - | - | - | - | - | - |
| 13.58.169.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 31/05/2026, 22:29:13 | 10/06/2026, 06:07:53 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200 | 01/06/2026, 04:53:35 | - |
| 129.121.76.•••:80 | - | 🇺🇸 United States | Yes | true | Leaked | AS31898 | Oracle Corporation | Unknown | 31/05/2026, 22:29:12 | 14/07/2026, 03:54:06 | Yes | No | - | CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:53:42 | athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com |
| 167.172.164.•••:443 | - | 🇩🇪 Germany | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 31/05/2026, 22:29:12 | 01/06/2026, 07:42:43 | No | Yes | APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE | CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-13950, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-27043, CVE-2023-28531, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-0397, CVE-2024-3219, CVE-2024-39894, CVE-2024-4032, CVE-2024-6232, CVE-2024-6387, CVE-2024-6923, CVE-2024-7347, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 01/06/2026, 04:53:43 | - |
| 183.17.236.•••:9107 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 31/05/2026, 22:29:12 | 04/06/2026, 09:26:18 | Yes | No | - | - | 01/06/2026, 04:53:51 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 168.107.25.•••:443 | - | 🇺🇸 United States | Yes | false | Leaked | AS31898 | Oracle Corporation | Unknown | 31/05/2026, 22:29:12 | 13/06/2026, 23:52:04 | Yes | No | - | - | 04/06/2026, 14:26:30 | netsuit.com, healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, healtheatcerner.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, pertmaster.com, jdedwards.com, commercialware.com, tiger-institute.org, zenedge.com, skire.com, sun.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com |
| 178.105.148.•••:18789 | - | 🇩🇪 Germany | - | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 22:27:28 | 14/07/2026, 03:50:40 | No | No | - | - | 28/06/2026, 02:54:29 | - |
| 14.155.225.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | CHINANET Guangdong | 31/05/2026, 22:27:27 | 01/06/2026, 04:49:13 | - | - | - | - | - | - |
| 43.139.230.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 31/05/2026, 22:27:27 | 01/06/2026, 04:49:13 | - | - | - | - | - | - |
| 2a02:4780:75:9b23::1:18789 | - | 🇺🇸 United States | - | true | Clean | AS47583 | Hostinger International Limited | Hostinger | 31/05/2026, 22:27:27 | 13/07/2026, 02:07:40 | - | - | - | - | - | - |
| 20.89.43.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 22:27:27 | 01/06/2026, 04:49:13 | - | - | - | - | - | - |
| 204.168.219.•••:18789 | - | 🇫🇮 Finland | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 22:27:27 | 01/06/2026, 04:49:12 | - | - | - | - | - | - |
| 8.136.41.•••:18789 | - | 🇸🇬 Singapore | - | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 31/05/2026, 22:27:27 | 04/06/2026, 10:48:42 | - | - | - | - | - | - |
| 152.136.166.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 31/05/2026, 22:27:27 | 01/07/2026, 06:59:24 | No | Yes | APT37, El-Machete | - | 30/06/2026, 20:12:47 | - |
| 178.128.107.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Leaked | AS14061 | DigitalOcean, LLC | DigitalOcean | 31/05/2026, 22:27:26 | 13/07/2026, 22:51:47 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-46848, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-23638, CVE-2024-25111, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-39894, CVE-2024-45802, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 04/06/2026, 05:54:25 | qzz.io |
| 74.208.49.•••:18789 | - | 🇽🇽 XX | - | false | Leaked | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | Unknown | 31/05/2026, 22:27:25 | 10/07/2026, 01:20:00 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 05:32:40 | ionos.com |
| 219.85.28.•••:18789 | - | 🇹🇼 Taiwan | - | false | Clean | AS18182 | Sony Network Taiwan Limited | So-net Entertainment Taiwan | 31/05/2026, 22:27:25 | 01/06/2026, 05:31:48 | - | - | - | - | - | - |
| 59.57.232.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Fujian | 31/05/2026, 22:27:25 | 04/06/2026, 09:23:51 | Yes | No | - | CVE-2018-19052, CVE-2018-25103, CVE-2019-11072, CVE-2024-3708 | 01/06/2026, 15:27:13 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 167.233.25.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 22:27:24 | 01/06/2026, 13:16:23 | - | - | - | - | - | - |
| 104.21.74.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS13335 | Cloudflare, Inc. | Unknown | 31/05/2026, 22:27:24 | 02/07/2026, 03:44:05 | Yes | No | - | - | 01/07/2026, 11:19:38 | digitalssite.com, streamshop.com, vpnserver.com, yielm.com, danca.tv, co.nl, applications.com, educorp.com, vcorp.com, sh-hibo.com, liveathercules.com, axiom.co, hoolina.com, abaq-z.com, contentmanager.com, rgcengineering.co.za, cgmprecast.com, sigmapkg.us, tenxtenx.com, twf2019.com, tshlkj.net, byteboard.com, weavind.co.za, bikeweeksa.com, ics-line.com, forumcorp.com, dataloop.com, prestigeconsumerhealthcare.com, obajatour.com, dekorativka.cz, wisetech.com.ar, dmdjiayuan.com, lajollaendoscopy.com, hzfeidi.com, armstrong.fr, prestigebrands.ca, pivotsmo.com, dentek-eu.com, salonnews.com, energyservices.com, sz-jl.com, tubemp3.is, com.ru, youthstream.com, creamlanddairy.com, jetreacare.com, hbbygd88.com, inotrend.net, gruppoesi.it, globalmattersgroup.com, fuhuake.com, cityfied.net, playergroup.com, abpincorp.com, globalsolutions.com, hqpots.com, wenchyuan.com, informationsystems.com, istorsolutions.com, omda.org, billingcenter.com, vitronc.com, anlink.net, globalexchange.net, xl-flex.com, pakmax.co.za, tourservices.com, jekotrade.com, hmcxjc.com, mbfonline.com.ar, cargowiseone.com.ar, repenergy.us, originalsoulvegetarian.com, shsinotech.com, shczhsyy.com, vbankph.com, gipnutmeg.com, xjhhcm.com, bopcon.com, betongkhanhvinh.com, grovemedicalequipment.com, efile360.com, spb.ru, eurobank.com, graphicconnection.com, naseni.gov.ng, judgeyachts.com, campmgmt.com, ramcolab.com, itradeonline.com, explosystems.com, audiencegain.net, hbcollection-ksa.com, chinasyh.net, boyu-group.com, casablancatravel.us, ekakitchen.com, carleaseusa.com, ruppsstorage.com, wisehousetech.com, cyberblock.org, cloudflare.net, optionmodelandmedia.com, amanbiotech.com, ceostream.com, channel.net, qd-baolian.com, csofam.com, dentek.com, handyman.com, hanofoods.com, galleryconnection.com, jstream.com, tsue.uz, machinesummit.com, globalventures.com, gebane.co.za, bellafaris.com, montrose.is, chicpartydress.com, govcoin.com, jxlingtong.com, thesplintergroupspirits.com, namingsystem.com, altosdelchicala.com, baselinewoods.com, poisesoft.net, luxuryventures.com, docent.ai, hc0798.com, referral.com, jiabinnu.com, sciencesuite.com, alghanitex.com, qzz.io, lendstream.com, armstrongceillings.com, careagent.com, kfstock.com, gransierassociates.com, vbuilders.com, jfmselfstorage.com, kinetika.cn, daralgmyelh.com, brownsprinting.com, phutho.work, m-printone.com, rivalcorp.com, cloudhq-mkt6.net, garyjackson.com, valenciamoldremediation.us, champmar-ec.com, tennis-florida.com, aboveandbeyondcleaningservices.com, socialsuite.com, songhycas.com, 51quchou.com, timing-tech.com, swiftfreightlogistics.com, klmymmyc.com, xspotstorage.com, homemaintenance.com, aquastorenw.com, visionsource-dewittoptometrypc.com, muabanten.com, ceconstruction.com, hzjiaolun.com, chunxinghejin.com, aerosupplycargosadecv.com, faitid.org, pp.ua, tadalafilanx.com, hnbeixiang.com, aaram-sa.com, leisonhk.com, ngea.uz, xjjingyoga.com, gpchain.com, dongfanggufen.net, sxgas.net, goin-vn.com, wakechem.com, jialilace.com, delco-construction.com, vsun-solar.com, gdyws.cn, indonga.net, lamitindustries.com, cyberlotus.com, 1haojiyin.com, sama-lan.com, ark-car.com, customerprofile.com, yitongqingjie.com, sinotransfj.com, otiumleather.co.za, tiandixinsm.net, interpraise.com, jlyfs.cn, readystaffing.com, aptenonsjz.com, eurostampiparma.it, ventureos.com, code-china.com, malibupress.com, incrementstore.com, imobile.com, contrib.com, fahrneyford.com, learningwire.com, detongwiremesh.com, laan-sa.com, jlhhzy.com, datacenterresources.com, eshares.com, gema.biz, sanhoos.com, delight-sa.com, simatek.com, gaithersburgflorist.com, toptal.com, dgclh.com, bamko.net, sicmi.com, kanefurn.com, hansecontrol.com, pixelsksa.com, lstcarbon.com, cengage.com.ar, it.com, jingyucn.net, taiviet.net, ttstest.com, newhollandford.com, mindandbodyrenewal.co.za, imperialsprinkler.com, ijxcc.com, china-ycgkjx.com, vaco.pt, hanacans.com, nature-mixes.com, gaetanasnyc.com, mercedes-benz.com.ar, dqbxg.com, globalcreditmgt.com, forresterlincoln.com, cuacuonanbinh.com, silvamil.co.za, armstrongceilings.com, rohigreen.com, jc-opt.com.cn, puratos.com.ar, yhjgkeji.com, cargowise.com.ar, msk.ru, u-saveselfstorage.com, uzcard.uz, realtydao.com, hmcoptical.com, china-one.net, portcast.com, chuyenphatnhanhgiare.net, eu.org, armstrong.cn, bierte.com, investcentre.com, miramaminerals.com, pprossmx.com, buildfolio.com, ecrel.com.br, prem-box.com, dreamacquisition.com, hbssy.com, areen-alkaif.com, otisa.com, mtgr-altmyez.com, tailwindgroup.com, com.de, iptunnel.com, ttyt360.com, elmerhareford.com, batalatsa.com, bycast.com, leadstream.net, mycatty23online.com, doradver.ru, maginus.com, myfreighter.uz, barnesdennig.com, taskmgmt.com, galaxy-of-luxury.com, dajisteeltower.com, servicetech.com, atl-az.com, themoms.cn, venturepub.com, partyworld.com, richlandtexas.gov, basis.org, zgkaite.com, turnoutservices.com, encouragingheartshca.us, adtc.org, pacuthbert.co.za, retronet.com.ar, arktura.com, cansoford.ca, vulcantowing.com, clarisconstruction.com, bokmodern.com, brinsonfordlincolnofathens.com, zjdddl.com, dailuguandao.com, dvipcdn.com, dqkeyi.com, telecomanalysis.com, huadewood.com, smartzonesa.com, lavandeparfums.com, usa-fabric.com, linked.com, missouriwolverines.com, wisetechglobal.com.ar, nesp.com, dslawn.com, adic.org, robuschi.it, auro-dri.com, vnoc.com, geenee.ar, argenpork.com.ar, width.ai, fundchannel.com, armstrongcabinets.com, oracle-ag.ch, subwaysurfers.com, eyes-armour.com, zjhrbz.com, zhaowoo.net, jiangsufuji.com, itmanage.net, bentonford.com, mediterranealg.it, your-plus1.com, reservationcenter.com, transpacificvn.com, bestwanhui.com, natasaspa.com, armstrong.co.in, kisimarealestate.com, neumann-group.com, mmakaumining.co.za, sisfrete.com.br, goldenstream.com, bain86.com, fxgowin.com, caviton.com, vatlieumientrung.com, ariete.com.br, interlan.com, automations.com, luckywaymall.com, globalexport.com, stemgineers.com.au, bpnet.uz, eushipments.com, fedcomm.com, yijia-audio.com, workers.dev, chaolipack.com, dublincleaningservices.com, texans.com, navissupply.com, newoceanfood.com, prnewswire.com, qualitymotorsindependence.com, photochallenge.com, bjzthb.com, patriotpreston.com, dechuangjixie.com, reteck.net, mallyas.com, marinehub.com, filmteck.com, buildcorp.com, cloudns.net, anmacvietnam.com, msk.su, proveedor211.com, cargowiseworld.com.ar, fleetlabs.com, motossenda.com, wshahalamira.com, 360-xj.com, buttpaste.com, charlottecommerce.com, xjwfcj.com, appservice.com, patentboard.com, constructionforum.com, pet-bottle.net, realtyconsultant.com, petdairy.com, rightcor.co.za, acteil.com, emerckupdates.com.ar, aldman1.com, datacommunications.com, redhillconsulting.us, miamitelevision.com, cannabiscorp.com, impresosmonterrey.com, shworldbest.com, gemcats.com, zsnet.net, medbrokers.com, dongguansenzi.com, gaolongan.com, spinintel.com, energystorage.com, lafender.com, mrc.co, constructionmodern.com, china114.net, 970storage.com, venturebuilder.com, qyfxs.cn, 1800ventures.com, hightech.net, vanajeweler.com, jrconsulting.org, houstmust.com, subtlepatterns.com, garnetford.com, buzz.ai, shmagbalanyeq.com, germanpool-nb.com, kaiyuanep.com.cn, xjhongshun.com, kobeexpresswnc.com, isofh.com, cxashop.cn, eazizlildhabayihs.com, cornerstaffing.com, jilyphukhai.com, geochem.org, food-machines.net, greenviet.net, chothuemaylamda.com |
| 129.121.76.•••:18789 | - | 🇺🇸 United States | - | true | Leaked | AS31898 | Oracle Corporation | Unknown | 31/05/2026, 22:27:23 | 13/07/2026, 23:34:34 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 06/06/2026, 14:38:18 | athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com |
| 167.172.164.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 31/05/2026, 22:27:23 | 02/06/2026, 10:57:21 | - | - | - | - | - | - |
| 94.62.148.•••:18789 | - | 🇵🇹 Portugal | - | false | Clean | AS12353 | Vodafone Portugal | Vodafone Portugal | 31/05/2026, 22:27:23 | 02/07/2026, 10:52:07 | No | No | - | - | 26/06/2026, 08:47:03 | - |
| 183.17.236.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 31/05/2026, 22:27:23 | 05/06/2026, 13:55:58 | Yes | No | - | - | 04/06/2026, 05:09:33 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 204.168.217.•••:18789 | - | 🇫🇮 Finland | - | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 22:25:37 | 01/06/2026, 04:47:25 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 23:11:04 | - |
| 178.105.148.•••:18789 | - | 🇩🇪 Germany | - | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 22:25:35 | 14/07/2026, 03:48:47 | No | No | - | - | 28/06/2026, 02:11:24 | - |
| 65.94.211.•••:18789 | - | 🇨🇦 Canada | Yes | false | Leaked | AS577 | Bell Canada | Health and Safety Executive | 31/05/2026, 22:25:35 | 09/07/2026, 21:43:41 | Yes | - | - | - | 31/05/2026, 23:11:27 | noovo.ca, gosfieldtel.com, noovomoi.ca, starz.ca, ctv.ca, bell.net, bellaliant.ca, ctvnews.ca, mts.net, placebell.ca, crave.ca, mtsallstreamhosting.com, aira.com, bellaliant.net, bellmobility.ca, bellnexxia.com, themovienetwork.ca, bellmts.ca, bnnbloomberg.ca, bellaliant.com, aibn.com, bcenexxia.com, aliantzinc.ca, aliant.ca, vox.ca, aaaalarms.ca, bell.ca |
| 14.155.225.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | CHINANET Guangdong | 31/05/2026, 22:25:34 | 01/06/2026, 04:47:23 | - | - | - | - | - | - |
| 43.139.230.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 31/05/2026, 22:25:34 | 01/06/2026, 04:47:23 | - | - | - | - | - | - |
| 2a02:4780:75:9b23::1:18789 | - | 🇺🇸 United States | - | true | Clean | AS47583 | Hostinger International Limited | Hostinger | 31/05/2026, 22:25:34 | 13/07/2026, 02:48:33 | - | - | - | - | - | - |
| 20.89.43.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 22:25:34 | 01/06/2026, 04:47:23 | - | - | - | - | - | - |
| 204.168.219.•••:18789 | - | 🇫🇮 Finland | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 22:25:33 | 01/06/2026, 04:47:23 | - | - | - | - | - | - |
| 8.136.41.•••:18789 | - | 🇸🇬 Singapore | - | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 31/05/2026, 22:25:33 | 04/06/2026, 10:46:47 | - | - | - | - | - | - |
| 152.136.166.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 31/05/2026, 22:25:33 | 01/07/2026, 06:57:30 | No | Yes | APT37, El-Machete | - | 30/06/2026, 23:07:47 | - |
| 178.128.107.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Leaked | AS14061 | DigitalOcean, LLC | DigitalOcean | 31/05/2026, 22:25:32 | 13/07/2026, 22:49:55 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-46848, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-23638, CVE-2024-25111, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-39894, CVE-2024-45802, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 02/06/2026, 16:03:13 | qzz.io |
| 90.188.115.•••:18789 | - | 🇷🇺 Russia | - | false | Leaked | AS12389 | PJSC "Rostelecom". Technical Team | Sibirtelecom | 31/05/2026, 22:25:32 | 01/07/2026, 04:06:14 | Yes | No | - | - | 10/06/2026, 19:34:48 | rostelecom.ru, ncnet.ru, onego.ru, mostelecom.ru, dsv.ru, rt.ru, sakhalin.ru, primorye.ru, zebratelecom.ru |
| 74.208.49.•••:18789 | - | 🇽🇽 XX | - | false | Leaked | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | Unknown | 31/05/2026, 22:25:32 | 10/07/2026, 01:18:02 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 09/07/2026, 08:07:41 | ionos.com |
| 219.85.28.•••:18789 | - | 🇹🇼 Taiwan | - | false | Clean | AS18182 | Sony Network Taiwan Limited | So-net Entertainment Taiwan | 31/05/2026, 22:25:32 | 01/06/2026, 05:29:56 | - | - | - | - | - | - |
| 59.57.232.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Fujian | 31/05/2026, 22:25:32 | 04/06/2026, 09:21:59 | Yes | No | - | CVE-2018-19052, CVE-2018-25103, CVE-2019-11072, CVE-2024-3708 | 01/06/2026, 19:35:12 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 167.233.25.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 22:25:30 | 01/06/2026, 12:32:26 | - | - | - | - | - | - |
| 13.58.169.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 31/05/2026, 22:25:29 | 10/06/2026, 02:32:56 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200 | 03/06/2026, 22:41:08 | - |
| 129.121.76.•••:18789 | - | 🇺🇸 United States | - | true | Leaked | AS31898 | Oracle Corporation | Unknown | 31/05/2026, 22:25:29 | 13/07/2026, 23:32:43 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 16:12:58 | athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com |
| 167.172.164.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 31/05/2026, 22:25:29 | 02/06/2026, 10:55:13 | No | Yes | APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE | CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-13950, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-27043, CVE-2023-28531, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-0397, CVE-2024-3219, CVE-2024-39894, CVE-2024-4032, CVE-2024-6232, CVE-2024-6387, CVE-2024-6923, CVE-2024-7347, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 02/06/2026, 10:55:55 | - |
| 94.62.148.•••:18789 | - | 🇵🇹 Portugal | - | false | Clean | AS12353 | Vodafone Portugal | Vodafone Portugal | 31/05/2026, 22:25:28 | 02/07/2026, 10:50:12 | No | No | - | - | 26/06/2026, 04:27:05 | - |
| 20.97.10.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 22:23:37 | 11/07/2026, 06:27:28 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:05:41 | - |
| 189.15.20.•••:18789 | - | 🇧🇷 Brazil | - | false | Leaked | AS53006 | ALGAR TELECOM S/A | Algar Telecom | 31/05/2026, 22:23:36 | 02/06/2026, 13:48:09 | Yes | No | - | - | 01/06/2026, 04:05:42 | algarfranquias.com.br, ctbc.com.br, algartelecom.com.br, algartelecomfranquias.com.br, cloudalgartelecom.com.br |
| 20.89.43.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 22:23:36 | 02/06/2026, 13:48:09 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:05:45 | - |
| 152.136.166.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 31/05/2026, 22:23:36 | 02/07/2026, 18:43:49 | No | Yes | APT37, El-Machete | - | 01/06/2026, 04:05:49 | - |
| 43.133.237.•••:18789 | - | 🇰🇷 South Korea | - | true | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 31/05/2026, 22:23:36 | 13/07/2026, 11:20:33 | Yes | Yes | APT15, APT17, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers | CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 01/06/2026, 04:05:50 | tencent.com |
| 90.188.115.•••:18789 | - | 🇷🇺 Russia | - | false | Leaked | AS12389 | PJSC "Rostelecom". Technical Team | Sibirtelecom | 31/05/2026, 22:23:36 | 02/07/2026, 15:51:13 | Yes | No | - | - | 01/06/2026, 04:05:53 | rostelecom.ru, ncnet.ru, onego.ru, mostelecom.ru, dsv.ru, rt.ru, sakhalin.ru, primorye.ru, zebratelecom.ru |
| 74.208.49.•••:18789 | - | 🇽🇽 XX | - | false | Leaked | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | Unknown | 31/05/2026, 22:23:35 | 11/07/2026, 15:43:53 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:05:54 | ionos.com |
| 167.233.25.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 22:23:35 | 02/06/2026, 14:32:18 | - | - | - | - | - | - |
| 94.62.148.•••:18789 | - | 🇵🇹 Portugal | - | false | Clean | AS12353 | Vodafone Portugal | Vodafone Portugal | 31/05/2026, 22:23:35 | 03/07/2026, 23:15:08 | No | No | - | - | 26/05/2026, 04:05:57 | - |
| 42.193.191.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 31/05/2026, 21:47:07 | 12/06/2026, 21:50:00 | Yes | No | - | - | 01/06/2026, 04:51:31 | tencent.com |
| 103.191.50.•••:443 | - | 🇸🇬 Singapore | Yes | true | Clean | AS147181 | Flarezen Ltd. | MetroVPS | 31/05/2026, 21:47:06 | 12/07/2026, 07:32:42 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:51:32 | - |
| 143.95.211.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS31898 | Oracle Corporation | Unknown | 31/05/2026, 21:47:06 | 07/06/2026, 12:29:23 | Yes | No | - | - | 03/06/2026, 20:33:04 | athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com |
| 150.158.32.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 31/05/2026, 21:47:06 | 01/06/2026, 06:17:07 | Yes | Yes | APT-C-23, APT32, APT36, APT37, Careto APT, El-Machete, Emennet Pasargad, Emennet Pasargard, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Lazarus Group, MuddyWater Group, Turla APT Group, Volt Typhoon, WildCard APT | CVE-2017-15706, CVE-2018-11784, CVE-2018-1304, CVE-2018-1305, CVE-2018-1336, CVE-2018-8014, CVE-2018-8034, CVE-2018-8037, CVE-2019-0199, CVE-2019-0221, CVE-2019-0232, CVE-2019-10072, CVE-2019-12418, CVE-2019-17563, CVE-2019-2684, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-8022, CVE-2020-9484, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-41079, CVE-2021-43980, CVE-2022-25762, CVE-2022-42252, CVE-2023-28708, CVE-2023-41080, CVE-2023-42795, CVE-2023-44487, CVE-2023-45648, CVE-2023-46589, CVE-2024-21733, CVE-2024-23672, CVE-2024-24549 | 01/06/2026, 04:51:34 | tencent.com |
| 161.33.14.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS31898 | Oracle Corporation | Unknown | 31/05/2026, 21:47:06 | 20/06/2026, 16:04:06 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:51:36 | healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, healtheatcerner.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com |
| 111.230.243.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 31/05/2026, 21:47:05 | 12/07/2026, 01:49:33 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 01/06/2026, 04:51:45 | tencent.com |
| 37.82.144.•••:18789 | - | 🇩🇪 Germany | Yes | false | Clean | AS3320 | Internet service provider operations | Telekom Deutschland | 31/05/2026, 21:47:03 | 01/06/2026, 06:17:04 | No | No | - | - | 26/05/2026, 04:51:59 | - |
| 167.172.244.•••:443 | - | 🇺🇸 United States | Yes | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 31/05/2026, 21:47:03 | 01/06/2026, 06:17:03 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Salt Typhoon, Sandworm Team, The Shadow Brokers | CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:52:03 | - |
| 175.13.8.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Hunan Province Network | 31/05/2026, 21:47:03 | 04/06/2026, 03:44:03 | Yes | No | - | - | 01/06/2026, 04:52:04 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 49.234.181.•••:443 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 31/05/2026, 21:47:02 | 13/07/2026, 10:00:20 | Yes | Yes | APT37, El-Machete | - | 01/06/2026, 04:52:07 | tencent.com |
| 60.27.118.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Tianjin | 31/05/2026, 21:47:02 | 01/06/2026, 07:00:05 | No | No | - | - | 26/05/2026, 04:52:11 | - |
| 43.155.217.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 31/05/2026, 21:47:02 | 13/07/2026, 07:08:50 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 04:52:14 | tencent.com |
| 2a02:4780:59:c7a6::1:18789 | - | 🇮🇩 Indonesia | - | true | Clean | AS47583 | Hostinger International Limited | Hostinger | 31/05/2026, 21:47:02 | 13/07/2026, 12:52:23 | - | - | - | - | - | - |
| 171.213.132.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Sichuan | 31/05/2026, 21:47:01 | 13/06/2026, 01:21:45 | No | No | - | - | 26/05/2026, 04:52:20 | - |