🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 1006105 Page: 970 / 10062 (100 per page) Showing: 96901-97000 Last Imported: 14/07/2026, 07:44:58
🇨🇳 483,673
🇺🇸 290,578
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 172.67.171.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS13335 | Cloudflare, Inc. | Unknown | 31/05/2026, 18:11:11 | 02/06/2026, 10:10:26 | Yes | No | - | - | 31/05/2026, 18:13:51 | summitiireit.com, svf-tecno.com, humani-web.com, cartaillaccomayras.fr, bigbstruckrepairspokane.com, systemres.fr, fuyuanwj.com, epea.com, lbx.fr, xrhy-group.com, mhelpdesk.com, cosmoluxe.fr, harasdesaintpair.com, jxxlxj.com, cplpress.com, agence-airpur.fr, roboforex.com, classicelectricomaha.com, cgmprecast.com, comartex.fr, dignityhealthstg.org, cwsse.com.cn, int-pharmaceutical-consultancy.fr, sdkyjt.net, luckyplastic.net, celec33.fr, bikeweeksa.com, ics-line.com, chateau-belloy.com, morrison-knudsen.com, dupontagencies.fr, super.com.co, perspectivesetorganisation.com, salondemontrouge.com, urmpharma.com, hzfeidi.com, hopestreetfamilycenter.org, 123habitat.fr, commchips.com, 2iprocess.fr, clementinafrog.fr, ct2r.com, ipm-immo.fr, amadagascar.fr, sandiotech.com, expressdrivethru.com, hbbygd88.com, chateau-saint-hilaire.fr, fuhuake.com, autrement-les-sols.com, cityfied.net, clickitstores.com, abpincorp.com, bleu-ciel.fr, rightwaytrading.net, xintec.hk, meubles-simonet.com, meter.ln.cn, opalgames.fr, middleeast-energy.com, anlink.net, supportsierranevada.org, jxygcy.com, agence-lagarde-maitre-doeuvre.fr, jekotrade.com, bignonet.com, hmcxjc.com, shsinotech.com, shczhsyy.com, rousselalencon.com, simia.fr, vbankph.com, gipnutmeg.com, bopcon.com, jiuliproduce.com, lafabricshop.com, ytxweb.net, epl-saintgenislaval.fr, mashmanventures.com, smcinternational.fr, cartonnageshaller.fr, woodlandhealthcare.com, emergerecoverycenter.com, boyu-group.com, ekakitchen.com, carleaseusa.com, gilleshenry.fr, jyskaiyue.com, ftw.fr, helpinc.us, wisehousetech.com, shootingstar-cm.com, cloudflare.net, maury-aop.fr, qd-baolian.com, fecag.fr, csofam.com, gatorchucks.cn, stlukeslakeside.com, co.com, kidsbud.net, identitymso.com, innfos.cn, auriac-remso.com, jxlingtong.com, dignityhealth.org, inspry.com, purplepine.co.za, belgomex.com, baselinewoods.com, omniquip.com, alsp.fr, carrosserie-langevin-automobiles.fr, gov.yk.ca, istresjudo.com, kc92.com, jiabinnu.com, mutuus.net, wosb.fr, le-st-julien.fr, alghanitex.com, qzz.io, managedcaresystems.com, waterunite.org, dehuiguangchang.cn, xjgudao.com, kfstock.com, chistfrancishealth.org, imigrantesbebidas.com.br, hotel-ledome-tignes.com, brownsprinting.com, xxglasses.net, smjclean.com, m-printone.com, peps-home.fr, cloudhq-mkt6.net, forwardwirecloth.net, e2escm.com, ehpadbleymard.fr, energy-utilities.com, timing-tech.com, klmymmyc.com, nepediatrics.com, scrivera.fr, australianportablecamps.com.au, nuancetrade.com, aquastorenw.com, azap.fr, woodworksrefinish.com, elh.fr, fitnessboost.fr, chunxinghejin.com, hnbeixiang.com, mingstone.net, esopfinance.fr, qdyzsc.com, mariettakarate.com, leisonhk.com, refee.net, xjzljt.net, xjjingyoga.com, le-cem.com, gpchain.com, dongfanggufen.net, cidyemma.com, sxgas.net, wakechem.com, cicayda.com, wxshunan.com, weilburger.fr, 1haojiyin.com, garage-auto-martinez.fr, lamaison-corse.fr, sinotransfj.com, dzrjx.net, dreso.com, vapway.com, ducotedechezfanny.fr, valleycareipa.com, tangramevent.com, aptenonsjz.com, chatteriesaintecyle.com, code-china.com, wlenergy.fr, electionsyukon.ca, leixinfoods.net, detongwiremesh.com, supportmercymerced.org, goldplateck.com, chengchewang.com, and-digital.fr, sanhoos.com, dldianfeng.cn, azurinterim.fr, improvenet.com, borome-sculptures.com, borne-arcade.be, gnvurbanart.com, dgclh.com, bamko.net, hifilink.fr, garage-auto-sport.fr, lstcarbon.com, eranetbioenergy.net, eastsacflorist.com, werisk.fr, it.com, ttstest.com, agencetraverses.fr, china-ycgkjx.com, larnaque.com, jeanlouiscacheux.com, appcdata.fr, gaetanasnyc.com, oukay.net, moana-club.fr, kropz.com, bjgxcl.com, guicarsl.com, yhjgkeji.com, advancedfmc.com, veloalto.fr, arcosmartsensor.com, beiyuecheng.com, wellersimpact.com, experts-ffg.fr, 2spromocionalbrindes.com.br, cussac-architectes.fr, dfvbolsas.com.br, china-one.net, kingdisplay.net, eu.org, jabiru.fr, bierte.com, garage-eiffel.fr, jadzdjm.com, camn.fr, ljdynamics.com, ch-thoreau.com, prem-box.com, lesptitesabeilles.fr, ttyt360.com, pierresetmateriauxnaturels.fr, biocro.net, gelais.com, mydhaga.com, rayinmind.com, finaeo.com, pharmaciedumarche.bzh, jz5288.com, mons-hainaut-natation.be, lingduansy.com, chateau-chainchon.fr, bioceuticals.com.au, aaeexpertise.com, pri92.com, itbrm.com, basis.org, protection-plus.fr, adi73.fr, zgkaite.com, turnoutservices.com, ass.fr, odf.fr, xcom-mc.fr, pca2000.com, szlis.com.cn, lmsrevetements.fr, zjdddl.com, glensautomotiveandtowing.com, dqkeyi.com, buckleighwilliams.com, kamtools.com, bloc-coffrant-isolant.be, blackmores.com.au, hotel-beausejour-nevers.fr, jnzygc.com, sequoiahospitalfoundation.org, oracle-ag.ch, eyes-armour.com, zjhrbz.com, zhaowoo.net, jiangsufuji.com, proto-tolerie.fr, interieur-creation.be, anmarinternational.com, societe-phs.fr, taxi-lemoine.fr, eb5aig.net, ttb61.fr, gdsaiqi.com, bestwanhui.com, dino-official.com, supportcaliforniahospital.org, hkbolton.com, bakersfieldmemorial.org, domainedelagarenne-morestel.fr, metallerie-charpente-sud.fr, laservietteparis.com, fermeurop.fr, bain86.com, fitandprint.com, fxgowin.com, denzaproductions.fr, strongvalve.com, fnds3000.com, zhujigema.net, longhurst.co.uk, luckywaymall.com, lensmam.com, compu-sat.be, nt-bs.com, egypt-energy.com, espgroupe.com, taocimall.com, qh-hd.com, elcoplas.co.za, frequenceplus.fr, workers.dev, arlindocastelao.com, chaolipack.com, ad-or.be, newoceanfood.com, balta.fr, bjzthb.com, dechuangjixie.com, cnkejie.com, reteck.net, dartong.net, coastalsashanddoor.com, cabinet-demons.fr, 8189330.cn, protech-informatique.fr, apeloa-kangyu.com, neokino.fr, chestershd.com, schenkerfrance.com, dignityhealthmember.org, 360-xj.com, domainedecabrol.fr, xjwfcj.com, co.zm, yukon.ca, bros-agency.com, gusto-pizzeria.com, shinsei-corp.jp, pet-bottle.net, lye-expertise.com, easyridevideos.com, capexo-bois.com, champescargots.fr, isolation-maisons-provencales.fr, atlasbrindescorporativos.com.br, transports-brebion.fr, impresosmonterrey.com, shworldbest.com, trinityhealth.com, liyubelt.net.cn, zsnet.net, lucem.fr, dongguansenzi.com, tretton37.com, vipstarnetwork.com, denis-carrelage.fr, sdfengze.net, 963865.com, empreintes-coiffure.fr, aaae.fr, acp-cholet.fr, china114.net, propetchina.com, fourmi-distribution.com, mypeoplemyplanet.com, informamarkets.com, olivet-business-center.fr, chgef.com, houstmust.com, dts-renovation.fr, dllitong.com, waoo-digital.com, shaoyang.fr, hy189.net, dharacg.com, motortecpower.com, digitalmarketmedia.com, germanpool-nb.com, mwcapitol.com, xjhongshun.com, comartois.com, converse.dk, mercybakersfield.org, boutiquenamaste.fr, co18.fr, geochem.org, food-machines.net, dmln.net, xembly.com |
| 185.227.135.•••:18789 | - | 🇸🇬 Singapore | Yes | false | Leaked | AS141995 | Contabo Asia Private Limited | Contabo | 31/05/2026, 18:11:11 | 02/06/2026, 10:10:26 | Yes | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 31/05/2026, 18:13:52 | contabo.de, contabo.net |
| 3.12.108.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 31/05/2026, 18:11:11 | 02/06/2026, 10:10:26 | No | No | - | CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 18:13:54 | - |
| 62.238.23.•••:18789 | - | 🇫🇮 Finland | - | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 31/05/2026, 18:11:11 | 11/07/2026, 15:43:53 | Yes | Yes | APT35, Chimera APT, Cobalt Group | CVE-2009-2957, CVE-2009-2958, CVE-2012-3411, CVE-2013-0198, CVE-2015-3294, CVE-2015-8899, CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, CVE-2017-15107, CVE-2019-14513, CVE-2019-14834, CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687, CVE-2021-3448, CVE-2022-0934, CVE-2023-28450, CVE-2023-50387 | 31/05/2026, 18:13:59 | hetzner.com |
| 178.105.213.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 18:11:11 | 02/07/2026, 01:32:05 | - | - | - | - | - | - |
| 4.151.152.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 18:11:11 | 03/07/2026, 03:21:37 | No | No | - | - | 25/05/2026, 18:14:04 | - |
| 219.140.7.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Wuhan | 31/05/2026, 17:34:53 | 01/06/2026, 02:01:08 | No | No | - | CVE-2023-44487, CVE-2024-7347, CVE-2025-23419 | 31/05/2026, 19:02:10 | - |
| 45.152.51.•••:18789 | - | 🇳🇴 Norway | Yes | false | Clean | AS212500 | Surfnett AS | Surfnett AS | 31/05/2026, 17:34:53 | 12/06/2026, 12:39:27 | No | No | - | - | 25/05/2026, 19:02:11 | - |
| 13.36.165.•••:443 | - | 🇫🇷 France | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 17:34:52 | 11/07/2026, 16:32:43 | No | No | - | - | 25/05/2026, 19:02:23 | - |
| 47.115.220.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 31/05/2026, 17:34:52 | 01/06/2026, 02:01:07 | No | Yes | APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 19:02:24 | - |
| 13.53.151.•••:443 | - | 🇸🇪 Sweden | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Data Services Sweden | 31/05/2026, 17:34:52 | 04/06/2026, 21:01:48 | No | No | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 19:02:26 | - |
| 223.167.35.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS17621 | China Unicom Shanghai network | China Unicom Shanghai | 31/05/2026, 17:34:51 | 04/06/2026, 03:01:28 | - | - | - | - | - | - |
| 209.74.85.•••:18789 | - | 🇽🇽 XX | Yes | false | Leaked | AS22612 | Namecheap, Inc. | Unknown | 31/05/2026, 17:34:51 | 01/06/2026, 02:44:01 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 19:02:41 | namecheap.com |
| 124.220.13.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 31/05/2026, 17:34:50 | 11/07/2026, 20:49:44 | Yes | Yes | APT37, El-Machete | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 19:02:45 | tencent.com |
| 36.50.26.•••:18789 | - | 🇻🇳 Vietnam | Yes | false | Clean | AS150895 | EZ TECHNOLOGY COMPANY LIMITED | Blue Sky Network Infrastructure Solutions | 31/05/2026, 17:34:50 | 16/06/2026, 02:01:56 | No | No | - | CVE-2023-27043, CVE-2023-36632, CVE-2023-40217, CVE-2024-0397, CVE-2024-11168, CVE-2024-3219, CVE-2024-4032, CVE-2024-6232, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-12084, CVE-2025-12781, CVE-2025-13836, CVE-2025-13837 | 31/05/2026, 19:02:51 | - |
| 103.242.12.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS401696 | cognetcloud INC | Hong Kong Cloud Network Technology Co., Limited | 31/05/2026, 17:34:50 | 11/07/2026, 19:24:44 | No | - | - | - | 25/05/2026, 19:02:53 | - |
| 34.180.0.•••:3000 | - | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 31/05/2026, 17:34:49 | 03/06/2026, 19:06:48 | No | No | - | CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 19:03:00 | - | |
| 34.47.131.•••:18789 | Assistant | 🇺🇸 United States | Yes | true | Clean | AS396982 | Google LLC | 31/05/2026, 17:34:49 | 14/07/2026, 03:53:33 | No | No | - | CVE-2006-20001, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3523, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 19:03:05 | - | |
| 140.143.185.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 31/05/2026, 17:34:49 | 12/07/2026, 14:45:24 | No | No | - | - | 25/05/2026, 19:03:06 | - |
| 15.237.220.•••:443 | - | 🇫🇷 France | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 17:34:48 | 01/06/2026, 10:30:39 | No | - | - | - | 25/05/2026, 21:06:46 | - |
| 3.10.18.•••:443 | - | 🇬🇧 United Kingdom | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 17:34:48 | 14/07/2026, 01:02:15 | No | No | - | - | 25/05/2026, 21:06:47 | - |
| 165.1.71.•••:443 | - | 🇽🇽 XX | Yes | false | Leaked | AS31898 | Oracle Corporation | Unknown | 31/05/2026, 17:34:48 | 26/06/2026, 11:18:46 | Yes | Yes | APT-C-23, APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2006-20001, CVE-2021-23017, CVE-2021-3618, CVE-2021-44224, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-1322, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728 | 31/05/2026, 21:06:50 | healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, healtheatcerner.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com |
| 2a0f:f01:207:6d:::443 | - | 🇩🇰 Denmark | - | false | Clean | AS44803 | Webdock.io ApS | DK Webdock | 31/05/2026, 17:34:48 | 01/06/2026, 02:43:57 | - | - | - | - | - | - |
| 47.76.230.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 31/05/2026, 17:33:05 | 13/06/2026, 14:42:10 | No | - | - | - | 28/05/2026, 14:49:57 | - |
| 43.163.222.•••:18789 | - | 🇸🇬 Singapore | - | false | Clean | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 31/05/2026, 17:33:05 | 01/06/2026, 09:04:51 | - | - | - | - | - | - |
| 219.140.7.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Wuhan | 31/05/2026, 17:33:04 | 31/05/2026, 23:52:06 | - | - | - | - | - | - |
| 65.21.224.•••:18789 | - | 🇫🇮 Finland | - | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 17:33:04 | 02/07/2026, 00:53:05 | Yes | No | - | CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 01/06/2026, 01:59:58 | your-server.de, hetzner.com |
| 45.152.51.•••:18789 | - | 🇳🇴 Norway | Yes | false | Clean | AS212500 | Surfnett AS | Surfnett AS | 31/05/2026, 17:33:04 | 12/06/2026, 09:48:24 | No | No | - | - | 28/05/2026, 16:57:08 | - |
| 45.13.225.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS58087 | Florian Kolb | Byte Hosting | 31/05/2026, 17:33:04 | 31/05/2026, 23:09:57 | - | - | - | - | - | - |
| 185.183.84.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS40065 | CNSERVERS LLC | Host Symbol | 31/05/2026, 17:33:04 | 01/07/2026, 06:16:55 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10002, CVE-2016-10003, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-1000024, CVE-2018-1000027, CVE-2018-15473, CVE-2018-15919, CVE-2018-19131, CVE-2018-19132, CVE-2018-20685, CVE-2019-12519, CVE-2019-12520, CVE-2019-12521, CVE-2019-12522, CVE-2019-12523, CVE-2019-12524, CVE-2019-12525, CVE-2019-12526, CVE-2019-12528, CVE-2019-12529, CVE-2019-13345, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-18860, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11945, CVE-2020-14058, CVE-2020-14145, CVE-2020-15049, CVE-2020-15778, CVE-2020-15810, CVE-2020-15811, CVE-2020-24606, CVE-2020-25097, CVE-2020-8449, CVE-2020-8450, CVE-2020-8517, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41318, CVE-2023-38408, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2025-26465, CVE-2025-32728 | 01/07/2026, 04:52:06 | - |
| 13.36.165.•••:18789 | - | 🇫🇷 France | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 17:33:03 | 11/07/2026, 12:56:30 | No | No | - | - | 26/05/2026, 00:38:40 | - |
| 47.115.220.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 31/05/2026, 17:33:03 | 01/06/2026, 00:34:09 | No | Yes | APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 01/06/2026, 00:38:45 | - |
| 13.53.151.•••:18789 | - | 🇸🇪 Sweden | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Data Services Sweden | 31/05/2026, 17:33:03 | 04/06/2026, 19:25:29 | No | No | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 01/06/2026, 00:38:48 | - |
| 223.167.35.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS17621 | China Unicom Shanghai network | China Unicom Shanghai | 31/05/2026, 17:33:03 | 04/06/2026, 00:06:42 | - | - | - | - | - | - |
| 209.74.85.•••:18789 | - | 🇽🇽 XX | Yes | false | Clean | AS22612 | Namecheap, Inc. | Unknown | 31/05/2026, 17:33:02 | 01/06/2026, 00:34:08 | - | - | - | - | - | - |
| 4.193.251.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 17:33:02 | 30/06/2026, 19:30:04 | - | - | - | - | - | - |
| 36.50.26.•••:18789 | - | 🇻🇳 Vietnam | Yes | false | Clean | AS150895 | EZ TECHNOLOGY COMPANY LIMITED | Blue Sky Network Infrastructure Solutions | 31/05/2026, 17:33:01 | 15/06/2026, 22:26:51 | No | No | - | CVE-2023-27043, CVE-2023-36632, CVE-2023-40217, CVE-2024-0397, CVE-2024-11168, CVE-2024-3219, CVE-2024-4032, CVE-2024-6232, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-12084, CVE-2025-12781, CVE-2025-13836, CVE-2025-13837 | 04/06/2026, 15:50:10 | - |
| 103.242.12.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS401696 | cognetcloud INC | Hong Kong Cloud Network Technology Co., Limited | 31/05/2026, 17:33:01 | 11/07/2026, 15:04:56 | No | - | - | - | 06/06/2026, 21:05:28 | - |
| 20.196.195.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 17:33:01 | 01/07/2026, 10:33:50 | - | - | - | - | - | - |
| 123.207.216.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 31/05/2026, 17:33:01 | 01/07/2026, 00:33:19 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 30/06/2026, 15:57:46 | tencent.com, tencentcloud.com |
| 54.196.123.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 31/05/2026, 17:33:01 | 01/06/2026, 00:34:06 | - | - | - | - | - | - |
| 34.180.0.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS396982 | Google LLC | 31/05/2026, 17:33:01 | 03/06/2026, 16:54:41 | No | No | - | CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 03/06/2026, 14:48:31 | - | |
| 34.47.131.•••:18789 | Assistant | 🇺🇸 United States | Yes | true | Clean | AS396982 | Google LLC | 31/05/2026, 17:33:00 | 14/07/2026, 03:08:37 | No | No | - | CVE-2006-20001, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3523, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 12:37:41 | - | |
| 140.143.185.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 31/05/2026, 17:33:00 | 12/07/2026, 10:24:23 | No | No | - | - | 31/05/2026, 16:03:24 | - |
| 15.237.220.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 17:32:59 | 01/06/2026, 09:04:51 | - | - | - | - | - | - |
| 3.10.18.•••:18789 | - | 🇬🇧 United Kingdom | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 17:32:59 | 13/07/2026, 20:00:48 | No | No | - | - | 27/05/2026, 02:37:33 | - |
| 165.1.71.•••:18789 | - | 🇽🇽 XX | - | false | Leaked | AS31898 | Oracle Corporation | Unknown | 31/05/2026, 17:32:59 | 26/06/2026, 07:41:32 | Yes | Yes | APT-C-23, APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2006-20001, CVE-2021-23017, CVE-2021-3618, CVE-2021-44224, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-1322, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728 | 02/06/2026, 04:00:53 | healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, healtheatcerner.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com |
| 178.142.245.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS9145 | EWE TEL GmbH | EWE TEL | 31/05/2026, 17:32:59 | 01/06/2026, 00:34:04 | - | - | - | - | - | - |
| 2a0f:f01:207:6d:::18789 | - | 🇩🇰 Denmark | - | false | Clean | AS44803 | Webdock.io ApS | DK Webdock | 31/05/2026, 17:32:59 | 01/06/2026, 00:34:04 | - | - | - | - | - | - |
| 47.76.230.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 31/05/2026, 17:31:11 | 13/06/2026, 14:40:22 | No | - | - | - | 25/05/2026, 23:54:30 | - |
| 43.163.222.•••:18789 | - | 🇸🇬 Singapore | - | false | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 31/05/2026, 17:31:11 | 01/06/2026, 09:03:05 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2019-6470, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 23:54:34 | tencent.com |
| 89.116.27.•••:18789 | - | 🇩🇪 Germany | Yes | true | Leaked | AS51167 | Contabo GmbH | Lithuanian Radio and TV Center | 31/05/2026, 17:31:11 | 14/07/2026, 03:49:19 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 23:54:37 | contaboserver.net, telecentras.lt |
| 219.140.7.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Wuhan | 31/05/2026, 17:31:10 | 31/05/2026, 23:50:17 | No | No | - | CVE-2023-44487, CVE-2024-7347, CVE-2025-23419 | 31/05/2026, 23:54:45 | - |
| 65.21.224.•••:18789 | - | 🇫🇮 Finland | - | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner | 31/05/2026, 17:31:10 | 02/07/2026, 00:51:15 | Yes | No | - | CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 23:54:46 | your-server.de, hetzner.com |
| 45.152.51.•••:18789 | - | 🇳🇴 Norway | Yes | false | Clean | AS212500 | Surfnett AS | Surfnett AS | 31/05/2026, 17:31:10 | 12/06/2026, 09:46:32 | No | No | - | - | 25/05/2026, 23:54:48 | - |
| 45.13.225.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS58087 | Florian Kolb | Byte Hosting | 31/05/2026, 17:31:10 | 31/05/2026, 23:50:17 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387 | 31/05/2026, 23:54:49 | - |
| 185.183.84.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS40065 | CNSERVERS LLC | Host Symbol | 31/05/2026, 17:31:10 | 01/07/2026, 06:15:02 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10002, CVE-2016-10003, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-1000024, CVE-2018-1000027, CVE-2018-15473, CVE-2018-15919, CVE-2018-19131, CVE-2018-19132, CVE-2018-20685, CVE-2019-12519, CVE-2019-12520, CVE-2019-12521, CVE-2019-12522, CVE-2019-12523, CVE-2019-12524, CVE-2019-12525, CVE-2019-12526, CVE-2019-12528, CVE-2019-12529, CVE-2019-13345, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-18860, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11945, CVE-2020-14058, CVE-2020-14145, CVE-2020-15049, CVE-2020-15778, CVE-2020-15810, CVE-2020-15811, CVE-2020-24606, CVE-2020-25097, CVE-2020-8449, CVE-2020-8450, CVE-2020-8517, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41318, CVE-2023-38408, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2025-26465, CVE-2025-32728 | 31/05/2026, 23:54:56 | - |
| 13.36.165.•••:18789 | - | 🇫🇷 France | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 17:31:10 | 11/07/2026, 12:54:40 | No | No | - | - | 26/05/2026, 04:48:54 | - |
| 47.115.220.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 31/05/2026, 17:31:10 | 01/06/2026, 00:32:19 | - | - | - | - | - | - |
| 13.53.151.•••:18789 | - | 🇸🇪 Sweden | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Data Services Sweden | 31/05/2026, 17:31:09 | 04/06/2026, 19:23:01 | - | - | - | - | - | - |
| 223.167.35.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS17621 | China Unicom Shanghai network | China Unicom Shanghai | 31/05/2026, 17:31:09 | 04/06/2026, 00:04:43 | - | - | - | - | - | - |
| 209.74.85.•••:18789 | - | 🇽🇽 XX | Yes | false | Clean | AS22612 | Namecheap, Inc. | Unknown | 31/05/2026, 17:31:08 | 01/06/2026, 00:32:18 | - | - | - | - | - | - |
| 4.193.251.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 17:31:08 | 30/06/2026, 19:28:10 | No | - | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 30/06/2026, 17:18:02 | - |
| 36.50.26.•••:18789 | - | 🇻🇳 Vietnam | Yes | false | Clean | AS150895 | EZ TECHNOLOGY COMPANY LIMITED | Blue Sky Network Infrastructure Solutions | 31/05/2026, 17:31:08 | 15/06/2026, 22:25:00 | No | No | - | CVE-2023-27043, CVE-2023-36632, CVE-2023-40217, CVE-2024-0397, CVE-2024-11168, CVE-2024-3219, CVE-2024-4032, CVE-2024-6232, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-12084, CVE-2025-12781, CVE-2025-13836, CVE-2025-13837 | 04/06/2026, 17:11:14 | - |
| 103.242.12.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS401696 | cognetcloud INC | Hong Kong Cloud Network Technology Co., Limited | 31/05/2026, 17:31:08 | 11/07/2026, 15:03:01 | No | - | - | - | 06/06/2026, 23:14:08 | - |
| 20.196.195.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 17:31:07 | 01/07/2026, 10:31:59 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/07/2026, 06:15:45 | - |
| 123.207.216.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 31/05/2026, 17:31:07 | 01/07/2026, 00:31:21 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 01/06/2026, 07:00:00 | tencent.com |
| 54.196.123.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 31/05/2026, 17:31:07 | 01/06/2026, 00:32:16 | - | - | - | - | - | - |
| 34.180.0.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS396982 | Google LLC | 31/05/2026, 17:31:07 | 03/06/2026, 16:52:51 | No | No | - | CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 03/06/2026, 16:53:54 | - | |
| 34.47.131.•••:18789 | Assistant | 🇺🇸 United States | Yes | true | Clean | AS396982 | Google LLC | 31/05/2026, 17:31:07 | 14/07/2026, 03:06:40 | No | No | - | CVE-2006-20001, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3523, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 09/06/2026, 15:15:41 | - | |
| 140.143.185.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 31/05/2026, 17:31:06 | 12/07/2026, 10:22:16 | No | No | - | - | 28/05/2026, 11:54:30 | - |
| 15.237.220.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 17:31:06 | 01/06/2026, 09:03:04 | No | - | - | - | 26/05/2026, 02:39:24 | - |
| 3.10.18.•••:18789 | - | 🇬🇧 United Kingdom | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 17:31:06 | 13/07/2026, 19:58:53 | No | No | - | - | 27/05/2026, 01:53:29 | - |
| 165.1.71.•••:18789 | - | 🇽🇽 XX | - | false | Leaked | AS31898 | Oracle Corporation | Unknown | 31/05/2026, 17:31:06 | 26/06/2026, 07:39:37 | Yes | Yes | APT-C-23, APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2006-20001, CVE-2021-23017, CVE-2021-3618, CVE-2021-44224, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-1322, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728 | 01/06/2026, 02:39:27 | healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, healtheatcerner.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com |
| 43.163.222.•••:18789 | - | 🇸🇬 Singapore | - | false | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 31/05/2026, 17:29:17 | 02/06/2026, 08:46:21 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2019-6470, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 18:13:20 | tencent.com |
| 45.13.225.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS58087 | Florian Kolb | Byte Hosting | 31/05/2026, 17:29:17 | 02/06/2026, 09:28:25 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387 | 31/05/2026, 18:13:21 | - |
| 13.36.165.•••:18789 | - | 🇫🇷 France | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 17:29:17 | 13/07/2026, 04:12:00 | No | No | - | - | 25/05/2026, 18:13:25 | - |
| 209.74.85.•••:18789 | - | 🇽🇽 XX | Yes | false | Leaked | AS22612 | Namecheap, Inc. | Unknown | 31/05/2026, 17:29:16 | 02/06/2026, 09:28:25 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 18:13:29 | namecheap.com |
| 147.135.213.•••:18789 | - | 🇫🇷 France | Yes | false | Leaked | AS16276 | OVH SAS | OVH | 31/05/2026, 17:29:16 | 14/07/2026, 03:47:37 | Yes | Yes | APT15, APT28, APT31, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 18:13:30 | ovh.net |
| 85.239.249.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS40021 | Contabo Inc. | Contabo | 31/05/2026, 17:29:16 | 02/06/2026, 09:28:25 | Yes | - | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 31/05/2026, 18:13:31 | terratransit.de, contaboserver.net, contabo.de, contabo.net |
| 4.193.251.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 17:29:16 | 02/07/2026, 07:13:59 | No | - | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 18:13:32 | - |
| 15.237.220.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 17:29:16 | 02/06/2026, 09:28:24 | No | - | - | - | 25/05/2026, 18:13:37 | - |
| 38.76.219.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS401701 | cognetcloud INC | FOJ IP Technology | 31/05/2026, 16:52:55 | 13/07/2026, 10:00:16 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 19:00:39 | cogentco.com |
| 139.224.228.•••:8881 | - | 🇨🇳 China mainland | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 31/05/2026, 16:52:55 | 17/06/2026, 16:35:26 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 31/05/2026, 19:00:52 | - |
| 120.1.63.•••:10000 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Hebei | 31/05/2026, 16:52:55 | 03/06/2026, 17:40:15 | No | No | - | - | 25/05/2026, 19:00:57 | - |
| 8.138.203.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 31/05/2026, 16:52:55 | 12/07/2026, 22:36:11 | No | No | - | - | 25/05/2026, 19:00:59 | - |
| 43.135.167.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 31/05/2026, 16:52:55 | 11/07/2026, 19:24:47 | Yes | Yes | APT14, APT15, APT17, APT28, APT31, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Salt Typhoon, Sandworm Team, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, WIRTE | CVE-2006-20001, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-16905, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 19:01:02 | tencent.com |
| 160.22.79.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS152900 | Onidel Pty Ltd | Onidel | 31/05/2026, 16:52:55 | 13/07/2026, 22:54:08 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 19:01:04 | - |
| 103.236.95.•••:20001 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS134768 | CHINANET SHAANXI province Cloud Base network | Sichuan Xiaoteyun Technology | 31/05/2026, 16:52:55 | 06/06/2026, 16:46:34 | Yes | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 19:01:05 | cnnic.cn |
| 180.112.90.•••:50001 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | Chinanet Jiangsu Province Network | 31/05/2026, 16:52:54 | 06/06/2026, 21:41:27 | - | - | - | - | - | - |
| 43.160.196.•••:18789 | - | 🇸🇬 Singapore | Yes | false | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 31/05/2026, 16:52:53 | 18/06/2026, 16:00:17 | Yes | Yes | MuddyWater Group | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2025-63391, CVE-2025-64495, CVE-2025-64496, CVE-2025-65958, CVE-2025-65959, CVE-2026-26192, CVE-2026-26193, CVE-2026-28786, CVE-2026-28788, CVE-2026-29070, CVE-2026-29071, CVE-2026-34222, CVE-2026-34225, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 19:01:24 | tencent.com |
| 192.238.184.•••:18789 | - | 🇽🇽 XX | Yes | false | Clean | AS138995 | Antbox Networks Limited | Unknown | 31/05/2026, 16:52:53 | 14/06/2026, 07:35:20 | No | No | - | - | 25/05/2026, 19:01:25 | - |
| 18.130.208.•••:80 | - | 🇬🇧 United Kingdom | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 16:52:52 | 01/06/2026, 02:01:12 | No | No | - | - | 25/05/2026, 19:01:27 | - |
| 187.44.230.•••:80 | - | 🇧🇷 Brazil | Yes | false | Clean | AS28186 | ITS TELECOMUNICACOES LTDA | ITS Telecomunicacoes | 31/05/2026, 16:52:52 | 01/06/2026, 02:01:12 | No | Yes | APT14, APT29, APT35, Callisto Group, Cobalt Group, Gamaredon Group, Kimsuky, MoustachedBouncer | CVE-2006-20001, CVE-2007-4559, CVE-2013-0340, CVE-2015-20107, CVE-2016-3189, CVE-2018-25032, CVE-2019-12900, CVE-2020-10735, CVE-2021-28861, CVE-2021-29921, CVE-2021-3733, CVE-2021-3737, CVE-2022-0391, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2022-42919, CVE-2022-45061, CVE-2023-24329, CVE-2023-25690, CVE-2023-27043, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-40217, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898 | 31/05/2026, 19:01:32 | - |
| 117.50.182.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS23724 | IDC, China Telecommunications Corporation / AS4808 China Unicom Beijing Province Network | UCloud | 31/05/2026, 16:52:52 | 04/06/2026, 05:52:20 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 19:01:34 | ucloud.cn |
| 1.234.82.•••:19715 | - | 🇰🇷 South Korea | Yes | false | Leaked | AS9318 | SK Broadband Co Ltd | SK Broadband | 31/05/2026, 16:52:52 | 03/07/2026, 08:25:42 | Yes | Yes | APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Volt Typhoon, WIRTE | CVE-2005-0004, CVE-2006-20001, CVE-2012-0540, CVE-2012-0572, CVE-2012-0574, CVE-2012-0578, CVE-2012-1688, CVE-2012-1689, CVE-2012-1690, CVE-2012-1697, CVE-2012-1702, CVE-2012-1703, CVE-2012-1705, CVE-2012-1734, CVE-2012-1735, CVE-2012-1756, CVE-2012-1757, CVE-2012-2750, CVE-2012-3150, CVE-2012-3158, CVE-2012-3160, CVE-2012-3163, CVE-2012-3166, CVE-2012-3167, CVE-2012-3173, CVE-2012-3177, CVE-2012-3180, CVE-2012-3197, CVE-2012-5060, CVE-2012-5096, CVE-2012-5612, CVE-2012-5614, CVE-2012-5627, CVE-2013-0367, CVE-2013-0368, CVE-2013-0371, CVE-2013-0383, CVE-2013-0384, CVE-2013-0385, CVE-2013-0386, CVE-2013-0389, CVE-2013-1502, CVE-2013-1506, CVE-2013-1511, CVE-2013-1512, CVE-2013-1521, CVE-2013-1523, CVE-2013-1526, CVE-2013-1531, CVE-2013-1532, CVE-2013-1544, CVE-2013-1548, CVE-2013-1552, CVE-2013-1555, CVE-2013-1861, CVE-2013-2375, CVE-2013-2376, CVE-2013-2378, CVE-2013-2389, CVE-2013-2391, CVE-2013-2392, CVE-2013-3783, CVE-2013-3793, CVE-2013-3794, CVE-2013-3801, CVE-2013-3802, CVE-2013-3804, CVE-2013-3805, CVE-2013-3808, CVE-2013-3809, CVE-2013-3812, CVE-2013-3839, CVE-2013-4352, CVE-2013-5704, CVE-2013-5807, CVE-2013-5891, CVE-2013-5908, CVE-2013-6438, CVE-2014-0001, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-0384, CVE-2014-0386, CVE-2014-0393, CVE-2014-0401, CVE-2014-0402, CVE-2014-0412, CVE-2014-0420, CVE-2014-0437, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431, CVE-2014-2432, CVE-2014-2436, CVE-2014-2438, CVE-2014-2440, CVE-2014-2494, CVE-2014-3523, CVE-2014-3581, CVE-2014-4207, CVE-2014-4243, CVE-2014-4258, CVE-2014-4260, CVE-2014-4274, CVE-2014-4287, CVE-2014-6463, CVE-2014-6464, CVE-2014-6469, CVE-2014-6478, CVE-2014-6484, CVE-2014-6491, CVE-2014-6494, CVE-2014-6495, CVE-2014-6496, CVE-2014-6500, CVE-2014-6505, CVE-2014-6507, CVE-2014-6520, CVE-2014-6530, CVE-2014-6551, CVE-2014-6555, CVE-2014-6559, CVE-2014-6568, CVE-2014-8109, CVE-2015-0228, CVE-2015-0374, CVE-2015-0381, CVE-2015-0382, CVE-2015-0391, CVE-2015-0411, CVE-2015-0432, CVE-2015-0433, CVE-2015-0441, CVE-2015-0499, CVE-2015-0501, CVE-2015-0505, CVE-2015-2325, CVE-2015-2568, CVE-2015-2571, CVE-2015-2573, CVE-2015-2582, CVE-2015-2620, CVE-2015-2643, CVE-2015-2648, CVE-2015-3152, CVE-2015-3183, CVE-2015-3185, CVE-2015-4752, CVE-2015-4757, CVE-2015-4792, CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4864, CVE-2015-4870, CVE-2015-4879, CVE-2015-4913, CVE-2015-7744, CVE-2016-0502, CVE-2016-0610, CVE-2016-0616, CVE-2016-0642, CVE-2016-0651, CVE-2016-0736, CVE-2016-10708, CVE-2016-20012, CVE-2016-2161, CVE-2016-3471, CVE-2016-3492, CVE-2016-4975, CVE-2016-5387, CVE-2016-5584, CVE-2016-5612, CVE-2016-5624, CVE-2016-5626, CVE-2016-5629, CVE-2016-6664, CVE-2016-7440, CVE-2016-8612, CVE-2016-8743, CVE-2016-9843, CVE-2017-10268, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384, CVE-2017-15365, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-15945, CVE-2017-3167, CVE-2017-3238, CVE-2017-3243, CVE-2017-3244, CVE-2017-3258, CVE-2017-3265, CVE-2017-3291, CVE-2017-3302, CVE-2017-3308, CVE-2017-3309, CVE-2017-3312, CVE-2017-3313, CVE-2017-3317, CVE-2017-3318, CVE-2017-3453, CVE-2017-3456, CVE-2017-3464, CVE-2017-3600, CVE-2017-3636, CVE-2017-3641, CVE-2017-3651, CVE-2017-3653, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668, CVE-2018-2755, CVE-2018-2761, CVE-2018-2767, CVE-2018-2771, CVE-2018-2781, CVE-2018-2813, CVE-2018-2817, CVE-2018-2819, CVE-2018-3058, CVE-2018-3063, CVE-2018-3066, CVE-2018-3081, CVE-2018-3133, CVE-2018-3174, CVE-2018-3282, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-2455, CVE-2019-2481, CVE-2019-2503, CVE-2019-2529, CVE-2019-2614, CVE-2019-2627, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2805, CVE-2019-2974, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-13938, CVE-2020-14145, CVE-2020-14550, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-2574, CVE-2020-2752, CVE-2020-2780, CVE-2020-2812, CVE-2020-28912, CVE-2020-2922, CVE-2020-35452, CVE-2021-1636, CVE-2021-2007, CVE-2021-2011, CVE-2021-2144, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-3618, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2021-46659, CVE-2021-46666, CVE-2021-46667, CVE-2021-46669, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-27385, CVE-2022-27449, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29143, CVE-2022-29404, CVE-2022-30556, CVE-2022-31621, CVE-2022-31622, CVE-2022-31623, CVE-2022-31624, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-21528, CVE-2023-21704, CVE-2023-21705, CVE-2023-21713, CVE-2023-21718, CVE-2023-23384, CVE-2023-25690, CVE-2023-28531, CVE-2023-29349, CVE-2023-29356, CVE-2023-31122, CVE-2023-32025, CVE-2023-32026, CVE-2023-32027, CVE-2023-32028, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-5157, CVE-2024-24795, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-59474, CVE-2025-59475, CVE-2025-59476, CVE-2025-61984, CVE-2025-61985, CVE-2025-67635, CVE-2025-67636, CVE-2025-67637, CVE-2025-67638, CVE-2025-67639, CVE-2026-27099, CVE-2026-27100 | 31/05/2026, 19:01:37 | hananet.net, broadbandmedia.kr, skbroadband.com |
| 13.40.94.•••:443 | - | 🇬🇧 United Kingdom | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 31/05/2026, 16:52:51 | 01/06/2026, 02:01:11 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 19:01:45 | - |
| 47.76.230.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 31/05/2026, 16:52:50 | 13/06/2026, 17:32:58 | No | - | - | - | 25/05/2026, 19:02:00 | - |
| 38.76.219.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS401701 | cognetcloud INC | FOJ IP Technology | 31/05/2026, 16:51:08 | 13/07/2026, 21:26:28 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 18:11:03 | cogentco.com |
| 20.196.218.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 31/05/2026, 16:51:08 | 10/07/2026, 01:20:02 | - | - | - | - | - | - |