🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 1006105 Page: 997 / 10062 (100 per page) Showing: 99601-99700 Last Imported: 14/07/2026, 07:44:58
🇨🇳 483,673
🇺🇸 290,578
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 54.93.201.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS16509 | Amazon.com, Inc. | A100 ROW | 30/05/2026, 19:52:24 | 03/06/2026, 11:13:50 | No | No | - | - | 25/05/2026, 04:21:08 | - |
| 3.93.216.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 30/05/2026, 19:52:24 | 31/05/2026, 02:12:06 | - | - | - | - | - | - |
| 108.253.179.•••:18789 | - | 🇽🇽 XX | - | false | Leaked | AS7018 | AT&T Enterprises, LLC | Unknown | 30/05/2026, 19:52:24 | 04/07/2026, 07:09:53 | Yes | No | - | CVE-2024-12254, CVE-2024-12718, CVE-2024-3219, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287 | 06/06/2026, 09:46:12 | ap-att-idns.net, nevadabell.com, att.us, currently.net, attalascom.com, mobile.com, attdns.net, snet.com, accbusiness.com, snet.net, prodigy.net, att-websites.com, attvip.com, att.com, bellsouth.com, ameritech.net, encatt.com, pacbell.net, pacbell.com, att-bundles.com, attla.com, attccc.com, sbcis.net, attwebspace.com, attcloudarchitect.com, att-idns.net, attstadium.com, mycingular.net, attmobility.com, attwatchtv.com, att.co, edgewireless.com, smartlink.com, attcenter.com, att.net, firstnet.com, cingular.com, directv.com.co, attwirelessonline.com, usi.net, atttest.com, att.com.co, accbusinessagent.com, attlocal.net, attbusiness.net, ameritech.com, attglobal.com, flash.net, itcanwait.com, sbc.com, sbcidc.com, currently.com, atttvnow.com, na-att-idns.net, attcompute.com, att-mail.com, prserv.net, attglobal.net, luckydog.com, escuelaplus.com, attcanada.com, swbell.net, sbcglobal.com, advantis.com, mobilephone.net, nvbell.net, bls.com, sbcglobal.net, bellsouth.net |
| 43.226.125.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Clean | AS152194 | CTG Server Limited | Gold Awin Levoc Group Limited | 30/05/2026, 19:52:23 | 12/07/2026, 15:26:09 | No | No | - | - | 27/05/2026, 19:01:04 | - |
| 185.197.251.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS51167 | Contabo GmbH | Contabo | 30/05/2026, 19:52:23 | 31/05/2026, 02:54:02 | Yes | Yes | APT-C-23, APT1 Comment Crew, APT10, APT15, APT19, APT27, APT28, APT29, APT30, APT31, APT33, APT34, APT35, APT37, APT39, APT40, APT41, APT5, AQUATIC PANDA, Antlion APT, BRONZE ATLAS, Bitter APT, Bluenoroff, Bronze Butler APT, Buhtrap Group, Callisto Group, Calypso APT, Carbanak, Cobalt Group, CopyKittens, DarkHydrus, Donot Team, DragonOK APT, Earth Berberoka, Energetic Bear, Equation Group, FIN6, Gamaredon Group, Gaza Cybergang, Ghostwriter, Greenbug Group, Hafnium Group, Inception Framework, Kimsuky, Konni Group, Lazarus Group, Moses Staff APT, MuddyWater Group, Orangeworm, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Silence Hacker Group, TA505, The Shadow Brokers, Thrip APT, Triton APT, Tropic Trooper, Turla APT Group, Volatile Kitten, Volt Typhoon | CVE-2014-3562, CVE-2014-4650, CVE-2015-3456, CVE-2015-5741, CVE-2015-6815, CVE-2016-20012, CVE-2016-2124, CVE-2016-2183, CVE-2016-6662, CVE-2017-1000376, CVE-2017-5645, CVE-2017-8923, CVE-2017-9953, CVE-2018-1059, CVE-2018-10869, CVE-2018-10892, CVE-2018-10926, CVE-2018-1111, CVE-2018-1128, CVE-2018-1129, CVE-2018-14462, CVE-2018-14463, CVE-2018-14465, CVE-2018-14469, CVE-2018-14622, CVE-2018-14645, CVE-2018-14879, CVE-2018-14882, CVE-2018-16229, CVE-2018-16540, CVE-2018-16871, CVE-2018-17456, CVE-2018-18311, CVE-2018-20615, CVE-2018-3665, CVE-2018-3760, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2019-10196, CVE-2019-11038, CVE-2019-11048, CVE-2019-11477, CVE-2019-11478, CVE-2019-14813, CVE-2019-14816, CVE-2019-14907, CVE-2019-19906, CVE-2019-3459, CVE-2019-3880, CVE-2019-5798, CVE-2019-6470, CVE-2019-6471, CVE-2019-6974, CVE-2019-7221, CVE-2019-7317, CVE-2020-10696, CVE-2020-10711, CVE-2020-10749, CVE-2020-10756, CVE-2020-10763, CVE-2020-14145, CVE-2020-14318, CVE-2020-14355, CVE-2020-14364, CVE-2020-14370, CVE-2020-14394, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707, CVE-2020-15778, CVE-2020-1711, CVE-2020-25639, CVE-2020-25657, CVE-2020-25710, CVE-2020-25717, CVE-2020-25743, CVE-2020-27777, CVE-2020-27786, CVE-2020-27827, CVE-2020-35518, CVE-2020-35524, CVE-2020-7067, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-20179, CVE-2021-20188, CVE-2021-20229, CVE-2021-20236, CVE-2021-20270, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-32027, CVE-2021-3516, CVE-2021-3532, CVE-2021-3533, CVE-2021-3537, CVE-2021-3621, CVE-2021-36368, CVE-2021-3669, CVE-2021-3737, CVE-2021-3752, CVE-2021-4104, CVE-2021-41617, CVE-2021-41817, CVE-2021-44142, CVE-2021-45417, CVE-2022-0711, CVE-2022-1011, CVE-2022-1227, CVE-2022-1708, CVE-2022-2132, CVE-2022-2393, CVE-2022-2795, CVE-2022-2850, CVE-2022-2989, CVE-2022-2990, CVE-2022-31628, CVE-2022-31629, CVE-2022-32545, CVE-2022-32546, CVE-2022-32547, CVE-2022-37454, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-3341, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-50387, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 02:57:06 | contaboserver.net, contabo.de, contabo.net |
| 52.207.201.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 30/05/2026, 19:52:23 | 12/07/2026, 05:21:43 | - | - | - | - | - | - |
| 113.104.237.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | CHINANET Guangdong | 30/05/2026, 19:52:22 | 31/05/2026, 02:12:04 | - | - | - | - | - | - |
| 87.106.205.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | IONOS | 30/05/2026, 19:52:22 | 09/07/2026, 11:00:59 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 09/07/2026, 10:22:43 | - |
| 117.29.141.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS4134 | Chinanet | CHINANET Fujian | 30/05/2026, 19:52:22 | 31/05/2026, 02:12:04 | - | - | - | - | - | - |
| 119.28.116.•••:18789 | - | 🇭🇰 Hong Kong | - | false | Clean | AS132203 | Tencent Building, Kejizhongyi Avenue | Tencent Cloud | 30/05/2026, 19:52:22 | 31/05/2026, 05:42:38 | - | - | - | - | - | - |
| 168.144.96.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS14061 | DigitalOcean, LLC | Unknown | 30/05/2026, 19:52:21 | 12/07/2026, 20:25:49 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/07/2026, 19:03:21 | - |
| 83.50.43.•••:18789 | - | 🇪🇸 Spain | - | false | Clean | AS3352 | TELEFONICA DE ESPANA S.A.U. | Telefonica | 30/05/2026, 19:52:21 | 09/07/2026, 00:06:44 | No | No | - | - | 02/07/2026, 19:05:12 | - |
| 172.233.76.•••:18789 | - | 🇯🇵 Japan | - | false | Clean | AS63949 | Akamai Connected Cloud | Unknown | 30/05/2026, 19:52:21 | 01/07/2026, 06:16:54 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728 | 31/05/2026, 02:54:36 | - |
| 146.103.120.•••:18789 | - | 🇳🇱 Netherlands | - | false | Clean | AS216071 | SERVERS TECH FZCO | Amsterdam | 30/05/2026, 19:52:21 | 10/07/2026, 04:10:28 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 02:54:38 | - |
| 82.47.33.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Leaked | AS151407 | Hytron Network Services Limited | Private Customer | 30/05/2026, 19:52:20 | 10/07/2026, 19:50:02 | Yes | No | - | - | 31/05/2026, 02:54:51 | virginm.net |
| 123.57.63.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 30/05/2026, 19:52:20 | 13/07/2026, 18:34:53 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728 | 31/05/2026, 02:54:52 | aliyun.com |
| 52.161.47.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 30/05/2026, 19:52:20 | 09/07/2026, 21:45:30 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 09/07/2026, 16:45:04 | - |
| 34.10.78.•••:18789 | Assistant | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 30/05/2026, 19:52:20 | 02/06/2026, 17:31:55 | No | No | - | - | 25/05/2026, 02:54:59 | - | |
| 20.109.118.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 30/05/2026, 19:52:20 | 08/07/2026, 08:22:27 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 02:55:06 | - |
| 178.104.37.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner | 30/05/2026, 19:52:20 | 06/07/2026, 04:48:22 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 02:55:08 | hetzner.com |
| 157.245.92.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS14061 | DigitalOcean, LLC | Unknown | 30/05/2026, 19:52:20 | 13/07/2026, 09:57:59 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 05/07/2026, 16:43:32 | - |
| 5.161.252.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS213230 | Hetzner Online GmbH | Hetzner Online | 30/05/2026, 19:52:19 | 08/07/2026, 17:38:07 | Yes | Yes | APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 02:55:34 | paybras.com.br, modelismobh.com.br, arheletro.com.br, hetzner.com |
| 172.67.199.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS13335 | Cloudflare, Inc. | Unknown | 30/05/2026, 19:52:19 | 31/05/2026, 02:54:04 | Yes | No | - | - | 31/05/2026, 02:55:38 | etrailer.com, fuyuanwj.com, sh-hibo.com, jxxlxj.com, cbf.cl, nita.go.ug, euronextfx.com, classicelectricomaha.com, socialprotection.go.ug, triohmtec.com, tshlkj.net, kirsch.com, sdkyjt.net, luckyplastic.net, masakacity.go.ug, ics-line.com, hzfeidi.com, substantiveresearch.com, sydneyswans.com.au, californiaminisplits.com, commchips.com, redondobeachairconditioning.us, npspot.com, sz-jl.com, edymei.com, hbbygd88.com, technologybuyersguide.com, cmle.ru, cityfied.net, mindpal.org, hvacdistributors.com, rightwaytrading.net, wenchyuan.com, agsnm.com, talbottcampus.com, anlink.net, jxygcy.com, xl-flex.com, hmcxjc.com, pastarisofoods.com, shsinotech.com, shczhsyy.com, vbankph.com, art24.world, gipnutmeg.com, intaspharma.co, xjhhcm.com, jiuliproduce.com, ytxweb.net, alsuyar.net, viralthread.com, chinasyh.net, herbiewiles.com, ekakitchen.com, geelongcats.com.au, carleaseusa.com, theinnotech.net, jyskaiyue.com, wisehousetech.com, cloudflare.net, particledesign.com, nordpoolgroup.com, co.com, kidsbud.net, smcaen.fr, chicpartydress.com, paramountairconditioning.com, jxlingtong.com, commcise.com, williamsfurnacerepair.com, baselinewoods.com, agriculture.go.ug, ambassador-sz.com, alghanitex.com, vvpmlogistics.com, qzz.io, drycleanxpressfl.com, uedcl.co.ug, brownsprinting.com, m-printone.com, cloudhq-mkt6.net, valenciamoldremediation.us, forwardwirecloth.net, timing-tech.com, chinasand.net, comstock-interactivedata.com, aquastorenw.com, hunterdouglasarchitectural.com, woodworksrefinish.com, plumbingandheating.org, mantecados-sanantonio.com, chunxinghejin.com, pp.ua, mingstone.net, summitjanitorial.com, ugapost.co.ug, urbra.go.ug, leisonhk.com, refee.net, acs-mkr.com, xjzljt.net, gpchain.com, dongfanggufen.net, sxgas.net, wakechem.com, re-accounts.co.uk, idstc.com, sinotransfj.com, dzrjx.net, aptenonsjz.com, enternext.biz, polarisrc.com, code-china.com, leixinfoods.net, goldplateck.com, sanhoos.com, euronext.com, bamko.net, hansecontrol.com, 360digitalcompany.com, miamisburgmerchants.com, tern.org.au, china-ycgkjx.com, rajkotgurukul.org, health-care-systems.com, auscert.org.au, fia.go.ug, oukay.net, dfbf.dk, umra.go.ug, bhwmetals.com, xeraliving.fi, china-one.net, kingdisplay.net, eu.org, jadzdjm.com, com.de, mydhaga.com, rayinmind.com, jz5288.com, fallsmanorcatering.com, jinld.net, ursb.go.ug, ollinmedia.com, dqkeyi.com, bosautorama.com, huadewood.com, craftedup.com, pachealthholdings.com, ltern.org.au, oracle-ag.ch, globalrateset.com, eyes-armour.com, zhaowoo.net, geneseofiredept.com, jiangsufuji.com, eb5aig.net, bestwanhui.com, hkbolton.com, cins.fr, finance.go.ug, fxgowin.com, strongvalve.com, zhujigema.net, apycotelecomm.com, alinementshop.com, luckywaymall.com, grupomarquitectos.com, taocimall.com, xn--ro-bja.fr, dpmi-services.fr, workers.dev, chaolipack.com, newoceanfood.com, bjzthb.com, hunterdouglas.com, compassitsolutions.com, dechuangjixie.com, reteck.net, newportbeachgi.org, cyjoco.fr, worldagassociates.com, thenewthings.com, hunterdouglashospitality.com, pdcinc.us, 360-xj.com, xjwfcj.com, co.zm, eaststeel.net, erdcsolar.com, pet-bottle.net, scottdcooper.com, airpacks.com.br, zsnet.net, endlessevents.co, shengmeipacking.com, sdfengze.net, china114.net, propetchina.com, mermetusa.com, houstmust.com, ardc.edu.au, hy189.net, germanpool-nb.com, xjhongshun.com, prietobrindes.com.br, loginport.com, bluenorthtrading.com, ottumwa.us, gou.go.ug, geochem.org, food-machines.net, exoticaenterprise.com, dmln.net |
| 91.99.136.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 30/05/2026, 19:52:18 | 05/06/2026, 23:11:02 | Yes | No | - | CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 02:55:49 | hetzner.com |
| 43.106.2.•••:18789 | - | 🇸🇬 Singapore | - | false | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud Singapore | 30/05/2026, 19:50:34 | 30/06/2026, 18:44:39 | Yes | No | - | - | 31/05/2026, 02:12:04 | alibabacloud.com |
| 20.91.128.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 30/05/2026, 19:50:34 | 08/07/2026, 11:11:14 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 02:12:05 | - |
| 3.234.183.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 30/05/2026, 19:50:33 | 03/06/2026, 00:39:14 | No | No | - | - | 25/05/2026, 02:12:24 | - |
| 77.42.68.•••:18789 | - | 🇫🇮 Finland | - | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 30/05/2026, 19:50:33 | 07/07/2026, 12:18:59 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 02:12:28 | - |
| 54.93.201.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS16509 | Amazon.com, Inc. | A100 ROW | 30/05/2026, 19:50:33 | 03/06/2026, 11:11:55 | No | No | - | - | 25/05/2026, 02:12:31 | - |
| 3.93.216.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 30/05/2026, 19:50:33 | 31/05/2026, 02:10:17 | No | No | - | - | 25/05/2026, 02:12:32 | - |
| 108.253.179.•••:18789 | - | 🇽🇽 XX | - | false | Leaked | AS7018 | AT&T Enterprises, LLC | Unknown | 30/05/2026, 19:50:33 | 04/07/2026, 07:07:56 | Yes | No | - | CVE-2024-12254, CVE-2024-12718, CVE-2024-3219, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287 | 31/05/2026, 02:12:38 | ap-att-idns.net, nevadabell.com, att.us, currently.net, attalascom.com, mobile.com, attdns.net, snet.com, accbusiness.com, snet.net, prodigy.net, att-websites.com, attvip.com, att.com, bellsouth.com, ameritech.net, encatt.com, pacbell.net, pacbell.com, att-bundles.com, attla.com, attccc.com, sbcis.net, attwebspace.com, attcloudarchitect.com, att-idns.net, attstadium.com, mycingular.net, attmobility.com, attwatchtv.com, att.co, edgewireless.com, smartlink.com, attcenter.com, att.net, firstnet.com, cingular.com, directv.com.co, attwirelessonline.com, usi.net, atttest.com, att.com.co, accbusinessagent.com, attlocal.net, attbusiness.net, ameritech.com, attglobal.com, flash.net, itcanwait.com, sbc.com, sbcidc.com, currently.com, atttvnow.com, na-att-idns.net, attcompute.com, att-mail.com, prserv.net, attglobal.net, luckydog.com, escuelaplus.com, attcanada.com, swbell.net, sbcglobal.com, advantis.com, mobilephone.net, nvbell.net, bls.com, sbcglobal.net, bellsouth.net |
| 3.162.140.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 30/05/2026, 19:50:33 | 09/07/2026, 05:57:12 | No | - | - | - | 25/05/2026, 02:12:42 | - |
| 43.226.125.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Clean | AS152194 | CTG Server Limited | Gold Awin Levoc Group Limited | 30/05/2026, 19:50:33 | 12/07/2026, 15:24:11 | No | No | - | - | 25/05/2026, 02:12:53 | - |
| 185.197.251.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS51167 | Contabo GmbH | Contabo | 30/05/2026, 19:50:33 | 31/05/2026, 02:52:12 | Yes | Yes | APT-C-23, APT1 Comment Crew, APT10, APT15, APT19, APT27, APT28, APT29, APT30, APT31, APT33, APT34, APT35, APT37, APT39, APT40, APT41, APT5, AQUATIC PANDA, Antlion APT, BRONZE ATLAS, Bitter APT, Bluenoroff, Bronze Butler APT, Buhtrap Group, Callisto Group, Calypso APT, Carbanak, Cobalt Group, CopyKittens, DarkHydrus, Donot Team, DragonOK APT, Earth Berberoka, Energetic Bear, Equation Group, FIN6, Gamaredon Group, Gaza Cybergang, Ghostwriter, Greenbug Group, Hafnium Group, Inception Framework, Kimsuky, Konni Group, Lazarus Group, Moses Staff APT, MuddyWater Group, Orangeworm, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Silence Hacker Group, TA505, The Shadow Brokers, Thrip APT, Triton APT, Tropic Trooper, Turla APT Group, Volatile Kitten, Volt Typhoon | CVE-2014-3562, CVE-2014-4650, CVE-2015-3456, CVE-2015-5741, CVE-2015-6815, CVE-2016-20012, CVE-2016-2124, CVE-2016-2183, CVE-2016-6662, CVE-2017-1000376, CVE-2017-5645, CVE-2017-8923, CVE-2017-9953, CVE-2018-1059, CVE-2018-10869, CVE-2018-10892, CVE-2018-10926, CVE-2018-1111, CVE-2018-1128, CVE-2018-1129, CVE-2018-14462, CVE-2018-14463, CVE-2018-14465, CVE-2018-14469, CVE-2018-14622, CVE-2018-14645, CVE-2018-14879, CVE-2018-14882, CVE-2018-16229, CVE-2018-16540, CVE-2018-16871, CVE-2018-17456, CVE-2018-18311, CVE-2018-20615, CVE-2018-3665, CVE-2018-3760, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2019-10196, CVE-2019-11038, CVE-2019-11048, CVE-2019-11477, CVE-2019-11478, CVE-2019-14813, CVE-2019-14816, CVE-2019-14907, CVE-2019-19906, CVE-2019-3459, CVE-2019-3880, CVE-2019-5798, CVE-2019-6470, CVE-2019-6471, CVE-2019-6974, CVE-2019-7221, CVE-2019-7317, CVE-2020-10696, CVE-2020-10711, CVE-2020-10749, CVE-2020-10756, CVE-2020-10763, CVE-2020-14145, CVE-2020-14318, CVE-2020-14355, CVE-2020-14364, CVE-2020-14370, CVE-2020-14394, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707, CVE-2020-15778, CVE-2020-1711, CVE-2020-25639, CVE-2020-25657, CVE-2020-25710, CVE-2020-25717, CVE-2020-25743, CVE-2020-27777, CVE-2020-27786, CVE-2020-27827, CVE-2020-35518, CVE-2020-35524, CVE-2020-7067, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-20179, CVE-2021-20188, CVE-2021-20229, CVE-2021-20236, CVE-2021-20270, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-32027, CVE-2021-3516, CVE-2021-3532, CVE-2021-3533, CVE-2021-3537, CVE-2021-3621, CVE-2021-36368, CVE-2021-3669, CVE-2021-3737, CVE-2021-3752, CVE-2021-4104, CVE-2021-41617, CVE-2021-41817, CVE-2021-44142, CVE-2021-45417, CVE-2022-0711, CVE-2022-1011, CVE-2022-1227, CVE-2022-1708, CVE-2022-2132, CVE-2022-2393, CVE-2022-2795, CVE-2022-2850, CVE-2022-2989, CVE-2022-2990, CVE-2022-31628, CVE-2022-31629, CVE-2022-32545, CVE-2022-32546, CVE-2022-32547, CVE-2022-37454, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-3341, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-50387, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 02:12:56 | contaboserver.net, contabo.de, contabo.net |
| 52.207.201.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 30/05/2026, 19:50:32 | 12/07/2026, 05:19:50 | No | No | - | CVE-2024-7347, CVE-2025-23419 | 31/05/2026, 02:13:05 | - |
| 113.104.237.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 30/05/2026, 19:50:31 | 31/05/2026, 02:10:15 | Yes | No | - | - | 31/05/2026, 02:13:23 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 87.106.205.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | IONOS | 30/05/2026, 19:50:31 | 09/07/2026, 10:59:06 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 31/05/2026, 02:13:28 | - |
| 117.29.141.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS4134 | Chinanet | CHINANET Fujian | 30/05/2026, 19:50:31 | 31/05/2026, 02:10:14 | Yes | No | - | - | 31/05/2026, 02:13:29 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 119.28.116.•••:18789 | - | 🇭🇰 Hong Kong | - | false | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Tencent Cloud | 30/05/2026, 19:50:31 | 31/05/2026, 05:40:47 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2011-4718, CVE-2012-1171, CVE-2013-3735, CVE-2013-4113, CVE-2013-4248, CVE-2013-6420, CVE-2013-6501, CVE-2013-6712, CVE-2013-7327, CVE-2013-7345, CVE-2014-0185, CVE-2014-0207, CVE-2014-0236, CVE-2014-0237, CVE-2014-0238, CVE-2014-1943, CVE-2014-2020, CVE-2014-2270, CVE-2014-2497, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3515, CVE-2014-3538, CVE-2014-3587, CVE-2014-3597, CVE-2014-3668, CVE-2014-3669, CVE-2014-3670, CVE-2014-3710, CVE-2014-3981, CVE-2014-4049, CVE-2014-4670, CVE-2014-4698, CVE-2014-4721, CVE-2014-5120, CVE-2014-5459, CVE-2014-8142, CVE-2014-9425, CVE-2014-9426, CVE-2014-9427, CVE-2014-9652, CVE-2014-9653, CVE-2014-9705, CVE-2014-9709, CVE-2014-9767, CVE-2014-9912, CVE-2015-0231, CVE-2015-0232, CVE-2015-0235, CVE-2015-0273, CVE-2015-1351, CVE-2015-1352, CVE-2015-2301, CVE-2015-2305, CVE-2015-2325, CVE-2015-2326, CVE-2015-2331, CVE-2015-2348, CVE-2015-2783, CVE-2015-2787, CVE-2015-3152, CVE-2015-3307, CVE-2015-3329, CVE-2015-3330, CVE-2015-3411, CVE-2015-3412, CVE-2015-3414, CVE-2015-3415, CVE-2015-3416, CVE-2015-4021, CVE-2015-4022, CVE-2015-4024, CVE-2015-4025, CVE-2015-4026, CVE-2015-4116, CVE-2015-4147, CVE-2015-4148, CVE-2015-4598, CVE-2015-4599, CVE-2015-4600, CVE-2015-4601, CVE-2015-4602, CVE-2015-4603, CVE-2015-4604, CVE-2015-4605, CVE-2015-4642, CVE-2015-4643, CVE-2015-4644, CVE-2015-5589, CVE-2015-5590, CVE-2015-6831, CVE-2015-6832, CVE-2015-6833, CVE-2015-6834, CVE-2015-6835, CVE-2015-6836, CVE-2015-6837, CVE-2015-6838, CVE-2015-7803, CVE-2015-7804, CVE-2015-8325, CVE-2015-8835, CVE-2015-8838, CVE-2015-8865, CVE-2015-8867, CVE-2015-8873, CVE-2015-8874, CVE-2015-8876, CVE-2015-8877, CVE-2015-8879, CVE-2015-8935, CVE-2015-8994, CVE-2015-9253, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10158, CVE-2016-10159, CVE-2016-10161, CVE-2016-10397, CVE-2016-10708, CVE-2016-10712, CVE-2016-1903, CVE-2016-20012, CVE-2016-2554, CVE-2016-3115, CVE-2016-3141, CVE-2016-3142, CVE-2016-3185, CVE-2016-4070, CVE-2016-4342, CVE-2016-4343, CVE-2016-4537, CVE-2016-4538, CVE-2016-4539, CVE-2016-4540, CVE-2016-4541, CVE-2016-4542, CVE-2016-4543, CVE-2016-5093, CVE-2016-5094, CVE-2016-5095, CVE-2016-5096, CVE-2016-5114, CVE-2016-5399, CVE-2016-5768, CVE-2016-5769, CVE-2016-5770, CVE-2016-5771, CVE-2016-5772, CVE-2016-5773, CVE-2016-6174, CVE-2016-6210, CVE-2016-6288, CVE-2016-6289, CVE-2016-6290, CVE-2016-6291, CVE-2016-6292, CVE-2016-6294, CVE-2016-6295, CVE-2016-6296, CVE-2016-6297, CVE-2016-6515, CVE-2016-7124, CVE-2016-7125, CVE-2016-7126, CVE-2016-7127, CVE-2016-7128, CVE-2016-7129, CVE-2016-7130, CVE-2016-7131, CVE-2016-7132, CVE-2016-7411, CVE-2016-7412, CVE-2016-7413, CVE-2016-7414, CVE-2016-7416, CVE-2016-7417, CVE-2016-7418, CVE-2016-7478, CVE-2016-8858, CVE-2016-9137, CVE-2016-9138, CVE-2016-9934, CVE-2016-9935, CVE-2017-11142, CVE-2017-11143, CVE-2017-11144, CVE-2017-11145, CVE-2017-11147, CVE-2017-11628, CVE-2017-12933, CVE-2017-15906, CVE-2017-16642, CVE-2017-7272, CVE-2017-7890, CVE-2017-7963, CVE-2017-8923, CVE-2017-9224, CVE-2017-9225, CVE-2017-9226, CVE-2017-9229, CVE-2018-10545, CVE-2018-10546, CVE-2018-10547, CVE-2018-10548, CVE-2018-10549, CVE-2018-14851, CVE-2018-14883, CVE-2018-15132, CVE-2018-15473, CVE-2018-15919, CVE-2018-16845, CVE-2018-17082, CVE-2018-19395, CVE-2018-19396, CVE-2018-19520, CVE-2018-20685, CVE-2018-20783, CVE-2018-5711, CVE-2018-5712, CVE-2018-7584, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9023, CVE-2019-9024, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9641, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-23017, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-31628, CVE-2022-31629, CVE-2022-38177, CVE-2022-38178, CVE-2022-41741, CVE-2022-41742, CVE-2022-4900, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 00:03:54 | tencent.com |
| 168.144.96.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS14061 | DigitalOcean, LLC | Unknown | 30/05/2026, 19:50:31 | 12/07/2026, 21:06:47 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/07/2026, 16:56:27 | - |
| 83.50.43.•••:18789 | - | 🇪🇸 Spain | - | false | Clean | AS3352 | TELEFONICA DE ESPANA S.A.U. | Telefonica | 30/05/2026, 19:50:31 | 09/07/2026, 00:04:49 | - | - | - | - | - | - |
| 172.233.76.•••:18789 | - | 🇯🇵 Japan | - | false | Clean | AS63949 | Akamai Connected Cloud | Unknown | 30/05/2026, 19:50:30 | 01/07/2026, 06:15:02 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728 | 31/05/2026, 00:04:38 | - |
| 146.103.120.•••:18789 | - | 🇳🇱 Netherlands | - | false | Clean | AS216071 | SERVERS TECH FZCO | Amsterdam | 30/05/2026, 19:50:30 | 10/07/2026, 04:08:35 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 31/05/2026, 02:13:53 | - |
| 82.47.33.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Leaked | AS151407 | Hytron Network Services Limited | Private Customer | 30/05/2026, 19:50:30 | 10/07/2026, 19:48:11 | Yes | No | - | - | 31/05/2026, 02:14:05 | virginm.net |
| 123.57.63.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 30/05/2026, 19:50:30 | 13/07/2026, 18:32:57 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728 | 31/05/2026, 02:14:06 | aliyun.com |
| 52.161.47.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 30/05/2026, 19:50:29 | 09/07/2026, 21:43:41 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 09/07/2026, 15:18:00 | - |
| 34.10.78.•••:18789 | Assistant | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 30/05/2026, 19:50:29 | 02/06/2026, 17:29:25 | No | No | - | - | 25/05/2026, 02:14:14 | - | |
| 20.109.118.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 30/05/2026, 19:50:29 | 08/07/2026, 08:20:35 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 02:14:22 | - |
| 178.104.37.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner | 30/05/2026, 19:50:29 | 06/07/2026, 04:46:28 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 31/05/2026, 02:14:24 | hetzner.com |
| 157.245.92.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS14061 | DigitalOcean, LLC | Unknown | 30/05/2026, 19:50:28 | 13/07/2026, 09:56:08 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 05/07/2026, 12:23:22 | - |
| 5.161.252.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS213230 | Hetzner Online GmbH | Hetzner Online | 30/05/2026, 19:50:28 | 08/07/2026, 17:36:14 | Yes | Yes | APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 08/07/2026, 11:55:04 | conamore.com.br, paybras.com.br, modelismobh.com.br, arheletro.com.br, tryideas.com.br, pastobras.com.br, hetzner.com |
| 104.21.21.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS13335 | Cloudflare, Inc. | Unknown | 30/05/2026, 19:50:28 | 31/05/2026, 02:52:15 | - | - | - | - | - | - |
| 91.99.136.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 30/05/2026, 19:50:28 | 05/06/2026, 23:09:07 | Yes | No | - | CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 01/06/2026, 02:41:33 | hetzner.com |
| 43.106.2.•••:18789 | - | 🇸🇬 Singapore | - | false | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud Singapore | 30/05/2026, 19:48:39 | 02/07/2026, 06:31:18 | Yes | No | - | - | 30/05/2026, 21:13:17 | alibabacloud.com |
| 20.91.128.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 30/05/2026, 19:48:39 | 09/07/2026, 23:51:01 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 30/05/2026, 21:13:19 | - |
| 62.82.220.•••:18789 | - | 🇪🇸 Spain | - | false | Clean | AS6739 | Vodafone ONO AS | Telecomunicaciones Lanzarote | 30/05/2026, 19:48:39 | 01/06/2026, 11:48:47 | - | - | - | - | - | - |
| 77.42.68.•••:18789 | - | 🇫🇮 Finland | - | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 30/05/2026, 19:48:39 | 09/07/2026, 01:34:54 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 30/05/2026, 21:13:24 | - |
| 54.93.201.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS16509 | Amazon.com, Inc. | A100 ROW | 30/05/2026, 19:48:39 | 04/06/2026, 21:38:21 | No | No | - | - | 24/05/2026, 21:13:26 | - |
| 89.167.34.•••:18789 | - | 🇫🇮 Finland | - | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 30/05/2026, 19:48:39 | 02/07/2026, 15:51:14 | - | - | - | - | - | - |
| 185.197.251.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS51167 | Contabo GmbH | Contabo | 30/05/2026, 19:48:39 | 01/06/2026, 11:48:47 | Yes | Yes | APT-C-23, APT1 Comment Crew, APT10, APT15, APT19, APT27, APT28, APT29, APT30, APT31, APT33, APT34, APT35, APT37, APT39, APT40, APT41, APT5, AQUATIC PANDA, Antlion APT, BRONZE ATLAS, Bitter APT, Bluenoroff, Bronze Butler APT, Buhtrap Group, Callisto Group, Calypso APT, Carbanak, Cobalt Group, CopyKittens, DarkHydrus, Donot Team, DragonOK APT, Earth Berberoka, Energetic Bear, Equation Group, FIN6, Gamaredon Group, Gaza Cybergang, Ghostwriter, Greenbug Group, Hafnium Group, Inception Framework, Kimsuky, Konni Group, Lazarus Group, Moses Staff APT, MuddyWater Group, Orangeworm, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Silence Hacker Group, TA505, The Shadow Brokers, Thrip APT, Triton APT, Tropic Trooper, Turla APT Group, Volatile Kitten, Volt Typhoon | CVE-2014-3562, CVE-2014-4650, CVE-2015-3456, CVE-2015-5741, CVE-2015-6815, CVE-2016-20012, CVE-2016-2124, CVE-2016-2183, CVE-2016-6662, CVE-2017-1000376, CVE-2017-5645, CVE-2017-8923, CVE-2017-9953, CVE-2018-1059, CVE-2018-10869, CVE-2018-10892, CVE-2018-10926, CVE-2018-1111, CVE-2018-1128, CVE-2018-1129, CVE-2018-14462, CVE-2018-14463, CVE-2018-14465, CVE-2018-14469, CVE-2018-14622, CVE-2018-14645, CVE-2018-14879, CVE-2018-14882, CVE-2018-16229, CVE-2018-16540, CVE-2018-16871, CVE-2018-17456, CVE-2018-18311, CVE-2018-20615, CVE-2018-3665, CVE-2018-3760, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2019-10196, CVE-2019-11038, CVE-2019-11048, CVE-2019-11477, CVE-2019-11478, CVE-2019-14813, CVE-2019-14816, CVE-2019-14907, CVE-2019-19906, CVE-2019-3459, CVE-2019-3880, CVE-2019-5798, CVE-2019-6470, CVE-2019-6471, CVE-2019-6974, CVE-2019-7221, CVE-2019-7317, CVE-2020-10696, CVE-2020-10711, CVE-2020-10749, CVE-2020-10756, CVE-2020-10763, CVE-2020-14145, CVE-2020-14318, CVE-2020-14355, CVE-2020-14364, CVE-2020-14370, CVE-2020-14394, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707, CVE-2020-15778, CVE-2020-1711, CVE-2020-25639, CVE-2020-25657, CVE-2020-25710, CVE-2020-25717, CVE-2020-25743, CVE-2020-27777, CVE-2020-27786, CVE-2020-27827, CVE-2020-35518, CVE-2020-35524, CVE-2020-7067, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-20179, CVE-2021-20188, CVE-2021-20229, CVE-2021-20236, CVE-2021-20270, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-32027, CVE-2021-3516, CVE-2021-3532, CVE-2021-3533, CVE-2021-3537, CVE-2021-3621, CVE-2021-36368, CVE-2021-3669, CVE-2021-3737, CVE-2021-3752, CVE-2021-4104, CVE-2021-41617, CVE-2021-41817, CVE-2021-44142, CVE-2021-45417, CVE-2022-0711, CVE-2022-1011, CVE-2022-1227, CVE-2022-1708, CVE-2022-2132, CVE-2022-2393, CVE-2022-2795, CVE-2022-2850, CVE-2022-2989, CVE-2022-2990, CVE-2022-31628, CVE-2022-31629, CVE-2022-32545, CVE-2022-32546, CVE-2022-32547, CVE-2022-37454, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-3341, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-50387, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 30/05/2026, 21:13:29 | contaboserver.net, contabo.de, contabo.net |
| 52.207.201.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 30/05/2026, 19:48:39 | 13/07/2026, 20:39:46 | No | No | - | CVE-2024-7347, CVE-2025-23419 | 30/05/2026, 21:13:31 | - |
| 129.121.85.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS31898 | Oracle Corporation | Unknown | 30/05/2026, 19:48:39 | 09/07/2026, 17:24:37 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 07/07/2026, 21:38:35 | athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, mybluehost.me, dotster.com, bluehost.com |
| 87.106.205.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | IONOS | 30/05/2026, 19:48:38 | 11/07/2026, 01:28:25 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 30/05/2026, 21:13:36 | - |
| 119.28.116.•••:18789 | - | 🇭🇰 Hong Kong | - | false | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Tencent Cloud | 30/05/2026, 19:48:38 | 01/06/2026, 12:30:45 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2011-4718, CVE-2012-1171, CVE-2013-3735, CVE-2013-4113, CVE-2013-4248, CVE-2013-6420, CVE-2013-6501, CVE-2013-6712, CVE-2013-7327, CVE-2013-7345, CVE-2014-0185, CVE-2014-0207, CVE-2014-0236, CVE-2014-0237, CVE-2014-0238, CVE-2014-1943, CVE-2014-2020, CVE-2014-2270, CVE-2014-2497, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3515, CVE-2014-3538, CVE-2014-3587, CVE-2014-3597, CVE-2014-3668, CVE-2014-3669, CVE-2014-3670, CVE-2014-3710, CVE-2014-3981, CVE-2014-4049, CVE-2014-4670, CVE-2014-4698, CVE-2014-4721, CVE-2014-5120, CVE-2014-5459, CVE-2014-8142, CVE-2014-9425, CVE-2014-9426, CVE-2014-9427, CVE-2014-9652, CVE-2014-9653, CVE-2014-9705, CVE-2014-9709, CVE-2014-9767, CVE-2014-9912, CVE-2015-0231, CVE-2015-0232, CVE-2015-0235, CVE-2015-0273, CVE-2015-1351, CVE-2015-1352, CVE-2015-2301, CVE-2015-2305, CVE-2015-2325, CVE-2015-2326, CVE-2015-2331, CVE-2015-2348, CVE-2015-2783, CVE-2015-2787, CVE-2015-3152, CVE-2015-3307, CVE-2015-3329, CVE-2015-3330, CVE-2015-3411, CVE-2015-3412, CVE-2015-3414, CVE-2015-3415, CVE-2015-3416, CVE-2015-4021, CVE-2015-4022, CVE-2015-4024, CVE-2015-4025, CVE-2015-4026, CVE-2015-4116, CVE-2015-4147, CVE-2015-4148, CVE-2015-4598, CVE-2015-4599, CVE-2015-4600, CVE-2015-4601, CVE-2015-4602, CVE-2015-4603, CVE-2015-4604, CVE-2015-4605, CVE-2015-4642, CVE-2015-4643, CVE-2015-4644, CVE-2015-5589, CVE-2015-5590, CVE-2015-6831, CVE-2015-6832, CVE-2015-6833, CVE-2015-6834, CVE-2015-6835, CVE-2015-6836, CVE-2015-6837, CVE-2015-6838, CVE-2015-7803, CVE-2015-7804, CVE-2015-8325, CVE-2015-8835, CVE-2015-8838, CVE-2015-8865, CVE-2015-8867, CVE-2015-8873, CVE-2015-8874, CVE-2015-8876, CVE-2015-8877, CVE-2015-8879, CVE-2015-8935, CVE-2015-8994, CVE-2015-9253, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10158, CVE-2016-10159, CVE-2016-10161, CVE-2016-10397, CVE-2016-10708, CVE-2016-10712, CVE-2016-1903, CVE-2016-20012, CVE-2016-2554, CVE-2016-3115, CVE-2016-3141, CVE-2016-3142, CVE-2016-3185, CVE-2016-4070, CVE-2016-4342, CVE-2016-4343, CVE-2016-4537, CVE-2016-4538, CVE-2016-4539, CVE-2016-4540, CVE-2016-4541, CVE-2016-4542, CVE-2016-4543, CVE-2016-5093, CVE-2016-5094, CVE-2016-5095, CVE-2016-5096, CVE-2016-5114, CVE-2016-5399, CVE-2016-5768, CVE-2016-5769, CVE-2016-5770, CVE-2016-5771, CVE-2016-5772, CVE-2016-5773, CVE-2016-6174, CVE-2016-6210, CVE-2016-6288, CVE-2016-6289, CVE-2016-6290, CVE-2016-6291, CVE-2016-6292, CVE-2016-6294, CVE-2016-6295, CVE-2016-6296, CVE-2016-6297, CVE-2016-6515, CVE-2016-7124, CVE-2016-7125, CVE-2016-7126, CVE-2016-7127, CVE-2016-7128, CVE-2016-7129, CVE-2016-7130, CVE-2016-7131, CVE-2016-7132, CVE-2016-7411, CVE-2016-7412, CVE-2016-7413, CVE-2016-7414, CVE-2016-7416, CVE-2016-7417, CVE-2016-7418, CVE-2016-7478, CVE-2016-8858, CVE-2016-9137, CVE-2016-9138, CVE-2016-9934, CVE-2016-9935, CVE-2017-11142, CVE-2017-11143, CVE-2017-11144, CVE-2017-11145, CVE-2017-11147, CVE-2017-11628, CVE-2017-12933, CVE-2017-15906, CVE-2017-16642, CVE-2017-7272, CVE-2017-7890, CVE-2017-7963, CVE-2017-8923, CVE-2017-9224, CVE-2017-9225, CVE-2017-9226, CVE-2017-9229, CVE-2018-10545, CVE-2018-10546, CVE-2018-10547, CVE-2018-10548, CVE-2018-10549, CVE-2018-14851, CVE-2018-14883, CVE-2018-15132, CVE-2018-15473, CVE-2018-15919, CVE-2018-16845, CVE-2018-17082, CVE-2018-19395, CVE-2018-19396, CVE-2018-19520, CVE-2018-20685, CVE-2018-20783, CVE-2018-5711, CVE-2018-5712, CVE-2018-7584, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9023, CVE-2019-9024, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9641, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-23017, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-31628, CVE-2022-31629, CVE-2022-38177, CVE-2022-38178, CVE-2022-41741, CVE-2022-41742, CVE-2022-4900, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 30/05/2026, 21:13:37 | tencent.com |
| 83.50.43.•••:18789 | - | 🇪🇸 Spain | - | false | Clean | AS3352 | TELEFONICA DE ESPANA S.A.U. | Telefonica | 30/05/2026, 19:48:38 | 10/07/2026, 14:03:46 | No | No | - | - | 02/07/2026, 17:33:59 | - |
| 172.233.76.•••:18789 | - | 🇯🇵 Japan | - | false | Clean | AS63949 | Akamai Connected Cloud | Unknown | 30/05/2026, 19:48:38 | 02/07/2026, 09:22:52 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728 | 30/05/2026, 21:13:41 | - |
| 146.103.120.•••:18789 | - | 🇳🇱 Netherlands | - | false | Clean | AS216071 | SERVERS TECH FZCO | Amsterdam | 30/05/2026, 19:48:38 | 11/07/2026, 18:35:37 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 30/05/2026, 21:13:42 | - |
| 77.237.243.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS51167 | Contabo GmbH | Contabo | 30/05/2026, 19:48:38 | 01/06/2026, 12:30:45 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 30/05/2026, 21:13:43 | contaboserver.net, contabo.de, nip.io, contabo.net |
| 52.161.47.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 30/05/2026, 19:48:38 | 11/07/2026, 12:52:51 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 09/07/2026, 17:27:09 | - |
| 20.109.118.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 30/05/2026, 19:48:38 | 09/07/2026, 21:41:50 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 30/05/2026, 21:13:46 | - |
| 178.104.37.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner | 30/05/2026, 19:48:38 | 07/07/2026, 17:18:29 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 30/05/2026, 21:13:47 | hetzner.com |
| 13.218.99.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 30/05/2026, 19:48:38 | 14/07/2026, 03:47:02 | - | - | - | - | - | - |
| 5.161.252.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS213230 | Hetzner Online GmbH | Hetzner Online | 30/05/2026, 19:48:38 | 10/07/2026, 06:57:15 | Yes | Yes | APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 30/05/2026, 21:13:49 | paybras.com.br, modelismobh.com.br, arheletro.com.br, hetzner.com |
| 104.21.21.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS13335 | Cloudflare, Inc. | Unknown | 30/05/2026, 19:48:38 | 01/06/2026, 12:30:45 | Yes | No | - | - | 30/05/2026, 21:13:50 | etrailer.com, fuyuanwj.com, sh-hibo.com, jxxlxj.com, cbf.cl, nita.go.ug, euronextfx.com, classicelectricomaha.com, socialprotection.go.ug, triohmtec.com, tshlkj.net, kirsch.com, sdkyjt.net, luckyplastic.net, masakacity.go.ug, ics-line.com, hzfeidi.com, substantiveresearch.com, sydneyswans.com.au, californiaminisplits.com, commchips.com, redondobeachairconditioning.us, npspot.com, sz-jl.com, edymei.com, hbbygd88.com, technologybuyersguide.com, cmle.ru, cityfied.net, mindpal.org, hvacdistributors.com, rightwaytrading.net, wenchyuan.com, agsnm.com, talbottcampus.com, anlink.net, jxygcy.com, xl-flex.com, hmcxjc.com, pastarisofoods.com, shsinotech.com, shczhsyy.com, vbankph.com, art24.world, gipnutmeg.com, intaspharma.co, xjhhcm.com, jiuliproduce.com, ytxweb.net, alsuyar.net, viralthread.com, chinasyh.net, herbiewiles.com, ekakitchen.com, geelongcats.com.au, carleaseusa.com, theinnotech.net, jyskaiyue.com, wisehousetech.com, cloudflare.net, particledesign.com, nordpoolgroup.com, co.com, kidsbud.net, smcaen.fr, chicpartydress.com, paramountairconditioning.com, jxlingtong.com, commcise.com, williamsfurnacerepair.com, baselinewoods.com, agriculture.go.ug, ambassador-sz.com, alghanitex.com, vvpmlogistics.com, qzz.io, drycleanxpressfl.com, uedcl.co.ug, brownsprinting.com, m-printone.com, cloudhq-mkt6.net, valenciamoldremediation.us, forwardwirecloth.net, timing-tech.com, chinasand.net, comstock-interactivedata.com, aquastorenw.com, hunterdouglasarchitectural.com, woodworksrefinish.com, plumbingandheating.org, mantecados-sanantonio.com, chunxinghejin.com, pp.ua, mingstone.net, summitjanitorial.com, ugapost.co.ug, urbra.go.ug, leisonhk.com, refee.net, acs-mkr.com, xjzljt.net, gpchain.com, dongfanggufen.net, sxgas.net, wakechem.com, re-accounts.co.uk, idstc.com, sinotransfj.com, dzrjx.net, aptenonsjz.com, enternext.biz, polarisrc.com, code-china.com, leixinfoods.net, goldplateck.com, sanhoos.com, euronext.com, bamko.net, hansecontrol.com, 360digitalcompany.com, miamisburgmerchants.com, tern.org.au, china-ycgkjx.com, rajkotgurukul.org, health-care-systems.com, auscert.org.au, fia.go.ug, oukay.net, dfbf.dk, umra.go.ug, bhwmetals.com, xeraliving.fi, china-one.net, kingdisplay.net, eu.org, jadzdjm.com, com.de, mydhaga.com, rayinmind.com, jz5288.com, fallsmanorcatering.com, jinld.net, ursb.go.ug, ollinmedia.com, dqkeyi.com, bosautorama.com, huadewood.com, craftedup.com, pachealthholdings.com, ltern.org.au, oracle-ag.ch, globalrateset.com, eyes-armour.com, zhaowoo.net, geneseofiredept.com, jiangsufuji.com, eb5aig.net, bestwanhui.com, hkbolton.com, cins.fr, finance.go.ug, fxgowin.com, strongvalve.com, zhujigema.net, apycotelecomm.com, alinementshop.com, luckywaymall.com, grupomarquitectos.com, taocimall.com, xn--ro-bja.fr, dpmi-services.fr, workers.dev, chaolipack.com, newoceanfood.com, bjzthb.com, hunterdouglas.com, compassitsolutions.com, dechuangjixie.com, reteck.net, newportbeachgi.org, cyjoco.fr, worldagassociates.com, thenewthings.com, hunterdouglashospitality.com, pdcinc.us, 360-xj.com, xjwfcj.com, co.zm, eaststeel.net, erdcsolar.com, pet-bottle.net, scottdcooper.com, airpacks.com.br, zsnet.net, endlessevents.co, shengmeipacking.com, sdfengze.net, china114.net, propetchina.com, mermetusa.com, houstmust.com, ardc.edu.au, hy189.net, germanpool-nb.com, xjhongshun.com, prietobrindes.com.br, loginport.com, bluenorthtrading.com, ottumwa.us, gou.go.ug, geochem.org, food-machines.net, exoticaenterprise.com, dmln.net |
| 171.235.80.•••:18789 | - | 🇻🇳 Vietnam | Yes | false | Leaked | AS7552 | Viettel Group | Viettel | 30/05/2026, 19:12:06 | 31/05/2026, 03:38:25 | Yes | No | - | - | 30/05/2026, 19:58:01 | viettel.com.vn |
| 154.86.147.•••:8443 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134548 | DXTL Tseung Kwan O Service | Dingfeng Network | 30/05/2026, 19:12:06 | 12/06/2026, 11:14:48 | No | Yes | APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi | CVE-2014-4078 | 30/05/2026, 19:58:04 | - |
| 116.193.190.•••:18789 | - | 🇮🇩 Indonesia | - | false | Clean | AS136052 | PT Cloud Hosting Indonesia | IDCloudHost | 30/05/2026, 19:12:06 | 31/05/2026, 03:38:24 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 30/05/2026, 19:58:08 | - |
| 168.144.122.•••:443 | - | 🇮🇳 India | Yes | false | Clean | AS14061 | DigitalOcean, LLC | Unknown | 30/05/2026, 19:12:06 | 15/06/2026, 18:56:00 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/06/2026, 04:14:47 | - |
| 18.130.208.•••:443 | - | 🇬🇧 United Kingdom | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 30/05/2026, 19:12:06 | 31/05/2026, 03:38:24 | No | No | - | - | 24/05/2026, 19:58:16 | - |
| 47.97.217.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 30/05/2026, 19:12:05 | 20/06/2026, 10:25:38 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 30/05/2026, 19:58:23 | - |
| 154.86.136.•••:8443 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134548 | DXTL Tseung Kwan O Service | DingFeng XinHui HK Technology Limited | 30/05/2026, 19:12:05 | 14/06/2026, 10:24:11 | No | Yes | APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi | - | 30/05/2026, 19:58:24 | - |
| 154.86.136.•••:8443 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134548 | DXTL Tseung Kwan O Service | DingFeng XinHui HK Technology Limited | 30/05/2026, 19:12:05 | 14/06/2026, 21:40:56 | No | Yes | APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi | CVE-2014-4078 | 30/05/2026, 22:02:30 | - |
| 79.145.180.•••:18789 | - | 🇪🇸 Spain | Yes | false | Clean | AS3352 | TELEFONICA DE ESPANA S.A.U. | IP Service Network | 30/05/2026, 19:12:04 | 02/06/2026, 19:45:53 | - | - | - | - | - | - |
| 154.86.147.•••:8443 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134548 | DXTL Tseung Kwan O Service | Dingfeng Network | 30/05/2026, 19:12:04 | 12/06/2026, 01:24:34 | No | Yes | APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi | CVE-2014-4078 | 30/05/2026, 22:02:33 | - |
| 154.86.148.•••:8443 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134548 | DXTL Tseung Kwan O Service | Dingfeng Network | 30/05/2026, 19:12:04 | 14/06/2026, 23:05:48 | No | Yes | APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi | - | 30/05/2026, 22:02:42 | - |
| 125.94.174.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS140308 | CHINATELECOM Guangdong province Zhuhai 5G network | CHINANET Guangdong | 30/05/2026, 19:12:04 | 02/06/2026, 21:12:10 | Yes | No | - | - | 30/05/2026, 22:02:45 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 201.5.192.•••:8443 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134175 | UNIT A17,9/F SILVERCORP INT'L TOWER 707-713 NATHAN RD | Hong Kong Service | 30/05/2026, 19:12:03 | 12/06/2026, 03:31:03 | No | No | - | - | 31/05/2026, 03:26:41 | - |
| 209.182.213.•••:4326 | - | 🇺🇸 United States | Yes | true | Leaked | AS54641 | InMotion Hosting, Inc. | Unknown | 30/05/2026, 19:12:03 | 13/07/2026, 21:28:43 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2005-0004, CVE-2012-0540, CVE-2012-0572, CVE-2012-0574, CVE-2012-0578, CVE-2012-1688, CVE-2012-1689, CVE-2012-1690, CVE-2012-1697, CVE-2012-1702, CVE-2012-1703, CVE-2012-1705, CVE-2012-1734, CVE-2012-1735, CVE-2012-1756, CVE-2012-1757, CVE-2012-2750, CVE-2012-3150, CVE-2012-3158, CVE-2012-3160, CVE-2012-3163, CVE-2012-3166, CVE-2012-3167, CVE-2012-3173, CVE-2012-3177, CVE-2012-3180, CVE-2012-3197, CVE-2012-5060, CVE-2012-5096, CVE-2012-5612, CVE-2012-5614, CVE-2012-5627, CVE-2013-0367, CVE-2013-0368, CVE-2013-0371, CVE-2013-0383, CVE-2013-0384, CVE-2013-0385, CVE-2013-0386, CVE-2013-0389, CVE-2013-1502, CVE-2013-1506, CVE-2013-1511, CVE-2013-1512, CVE-2013-1521, CVE-2013-1523, CVE-2013-1526, CVE-2013-1531, CVE-2013-1532, CVE-2013-1544, CVE-2013-1548, CVE-2013-1552, CVE-2013-1555, CVE-2013-1861, CVE-2013-2375, CVE-2013-2376, CVE-2013-2378, CVE-2013-2389, CVE-2013-2391, CVE-2013-2392, CVE-2013-3783, CVE-2013-3793, CVE-2013-3794, CVE-2013-3801, CVE-2013-3802, CVE-2013-3804, CVE-2013-3805, CVE-2013-3808, CVE-2013-3809, CVE-2013-3812, CVE-2013-3839, CVE-2013-5807, CVE-2013-5891, CVE-2013-5908, CVE-2014-0001, CVE-2014-0384, CVE-2014-0386, CVE-2014-0393, CVE-2014-0401, CVE-2014-0402, CVE-2014-0412, CVE-2014-0420, CVE-2014-0437, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431, CVE-2014-2432, CVE-2014-2436, CVE-2014-2438, CVE-2014-2440, CVE-2014-2494, CVE-2014-4207, CVE-2014-4243, CVE-2014-4258, CVE-2014-4260, CVE-2014-4274, CVE-2014-4287, CVE-2014-6463, CVE-2014-6464, CVE-2014-6469, CVE-2014-6478, CVE-2014-6484, CVE-2014-6491, CVE-2014-6494, CVE-2014-6495, CVE-2014-6496, CVE-2014-6500, CVE-2014-6505, CVE-2014-6507, CVE-2014-6520, CVE-2014-6530, CVE-2014-6551, CVE-2014-6555, CVE-2014-6559, CVE-2014-6568, CVE-2015-0374, CVE-2015-0381, CVE-2015-0382, CVE-2015-0391, CVE-2015-0411, CVE-2015-0432, CVE-2015-0433, CVE-2015-0441, CVE-2015-0499, CVE-2015-0501, CVE-2015-0505, CVE-2015-2325, CVE-2015-2568, CVE-2015-2571, CVE-2015-2573, CVE-2015-2582, CVE-2015-2620, CVE-2015-2643, CVE-2015-2648, CVE-2015-3152, CVE-2015-4752, CVE-2015-4757, CVE-2015-4792, CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4864, CVE-2015-4870, CVE-2015-4879, CVE-2015-4913, CVE-2015-7744, CVE-2016-0502, CVE-2016-0610, CVE-2016-0616, CVE-2016-0642, CVE-2016-0651, CVE-2016-20012, CVE-2016-3471, CVE-2016-3492, CVE-2016-5584, CVE-2016-5612, CVE-2016-5624, CVE-2016-5626, CVE-2016-5629, CVE-2016-6664, CVE-2016-7440, CVE-2016-9843, CVE-2017-10268, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384, CVE-2017-15365, CVE-2017-15906, CVE-2017-15945, CVE-2017-3238, CVE-2017-3243, CVE-2017-3244, CVE-2017-3258, CVE-2017-3265, CVE-2017-3291, CVE-2017-3302, CVE-2017-3308, CVE-2017-3309, CVE-2017-3312, CVE-2017-3313, CVE-2017-3317, CVE-2017-3318, CVE-2017-3453, CVE-2017-3456, CVE-2017-3464, CVE-2017-3600, CVE-2017-3636, CVE-2017-3641, CVE-2017-3651, CVE-2017-3653, CVE-2017-8923, CVE-2018-15473, CVE-2018-15919, CVE-2018-16845, CVE-2018-20685, CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668, CVE-2018-2755, CVE-2018-2761, CVE-2018-2767, CVE-2018-2771, CVE-2018-2781, CVE-2018-2813, CVE-2018-2817, CVE-2018-2819, CVE-2018-3058, CVE-2018-3063, CVE-2018-3066, CVE-2018-3081, CVE-2018-3133, CVE-2018-3174, CVE-2018-3282, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2019-11048, CVE-2019-16905, CVE-2019-20372, CVE-2019-2455, CVE-2019-2481, CVE-2019-2503, CVE-2019-2529, CVE-2019-2614, CVE-2019-2627, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2805, CVE-2019-2974, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6470, CVE-2019-6471, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-14550, CVE-2020-15778, CVE-2020-2574, CVE-2020-2752, CVE-2020-2780, CVE-2020-2812, CVE-2020-28912, CVE-2020-2922, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-2007, CVE-2021-2011, CVE-2021-2144, CVE-2021-23017, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2021-46659, CVE-2021-46666, CVE-2021-46667, CVE-2021-46669, CVE-2022-27385, CVE-2022-27449, CVE-2022-2795, CVE-2022-31621, CVE-2022-31622, CVE-2022-31623, CVE-2022-31624, CVE-2022-31628, CVE-2022-31629, CVE-2022-37454, CVE-2022-38177, CVE-2022-38178, CVE-2022-41741, CVE-2022-41742, CVE-2022-4900, CVE-2023-2828, CVE-2023-3341, CVE-2023-38408, CVE-2023-4408, CVE-2023-44487, CVE-2023-48795, CVE-2023-50387, CVE-2023-50868, CVE-2023-51384, CVE-2023-51385, CVE-2023-5157, CVE-2023-5680, CVE-2024-11187, CVE-2024-1737, CVE-2024-1975, CVE-2024-39894, CVE-2024-4076, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 30/05/2026, 22:02:53 | inmotionhosting.com |
| 52.47.132.•••:443 | - | 🇫🇷 France | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 30/05/2026, 19:12:03 | 12/06/2026, 08:26:08 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 30/05/2026, 22:02:58 | - |
| 3.13.92.•••:443 | - | 🇺🇸 United States | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 30/05/2026, 19:12:03 | 03/06/2026, 05:38:48 | Yes | Yes | APT14, APT37, APT39, Gamaredon Group, Inception Framework, Kimsuky, WIRTE | CVE-2006-20001, CVE-2016-1546, CVE-2016-4975, CVE-2016-4979, CVE-2016-5387, CVE-2016-8612, CVE-2016-8740, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-3167, CVE-2017-3169, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-17189, CVE-2018-17199, CVE-2019-0196, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2020-11985, CVE-2020-13938, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-3618, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-31122, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-7347 | 30/05/2026, 22:02:59 | westerracu.com |
| 154.86.136.•••:8443 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134548 | DXTL Tseung Kwan O Service | DingFeng XinHui HK Technology Limited | 30/05/2026, 19:12:03 | 14/06/2026, 16:44:06 | No | Yes | APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi | - | 30/05/2026, 22:03:01 | - |
| 39.98.172.•••:50001 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 30/05/2026, 19:12:02 | 31/05/2026, 04:20:27 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 30/05/2026, 22:03:06 | aliyun.com |
| 65.49.215.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS25820 | IT7 Networks Inc | IT7 Networks | 30/05/2026, 19:12:02 | 31/05/2026, 04:20:27 | - | - | - | - | - | - |
| 142.93.196.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS14061 | DigitalOcean, LLC | Unknown | 30/05/2026, 19:12:02 | 13/07/2026, 10:00:16 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6531, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 30/05/2026, 22:03:14 | - |
| 120.48.151.•••:18789 | Assistant | 🇨🇳 China mainland | Yes | false | Leaked | AS38365 | Beijing Baidu Netcom Science and Technology Co., Ltd. | Baidu | 30/05/2026, 19:12:02 | 31/05/2026, 04:20:27 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 30/05/2026, 22:03:15 | baidu.com |
| 154.86.147.•••:8443 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134548 | DXTL Tseung Kwan O Service | Dingfeng Network | 30/05/2026, 19:12:02 | 14/06/2026, 16:01:40 | No | Yes | APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi | - | 30/05/2026, 22:03:16 | - |
| 34.52.175.•••:18789 | Assistant | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 30/05/2026, 19:12:01 | 03/06/2026, 10:34:21 | No | No | - | - | 24/05/2026, 22:03:18 | - | |
| 103.101.163.•••:18789 | - | 🇻🇳 Vietnam | Yes | true | Clean | AS131353 | NhanHoa Software company | NhanHoa Software | 30/05/2026, 19:12:01 | 13/07/2026, 20:03:03 | Yes | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Packrat, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, WIRTE | CVE-2006-20001, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 30/05/2026, 22:03:22 | duckdns.org |
| 154.86.148.•••:8443 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134548 | DXTL Tseung Kwan O Service | Dingfeng Network | 30/05/2026, 19:12:01 | 12/06/2026, 02:48:41 | No | Yes | APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi | - | 30/05/2026, 22:03:23 | - |
| 193.181.212.•••:443 | - | 🇩🇰 Denmark | Yes | false | Clean | AS44803 | Webdock.io ApS | Webdock | 30/05/2026, 19:12:01 | 31/05/2026, 12:43:15 | No | No | - | - | 24/05/2026, 22:03:24 | - |