🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 994071 Page: 233 / 9941 (100 per page) Showing: 23201-23300 Last Imported: 07/07/2026, 11:27:53
🇨🇳 479,975
🇺🇸 286,842
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 49.234.57.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 24/06/2026, 10:24:23 | 05/07/2026, 16:01:31 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419 | 24/06/2026, 19:13:17 | tencent.com, tencentcloud.com |
| 44.199.197.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 10:24:22 | 06/07/2026, 14:51:15 | - | - | - | - | - | - |
| 3.238.14.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 10:24:22 | 01/07/2026, 10:36:19 | No | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Gamaredon Group, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2021-44224, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813 | 24/06/2026, 19:50:00 | - |
| 107.151.246.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS154321 | CORENET CLOUD SDN. BHD. | HK Cloud X-4 | 24/06/2026, 10:24:21 | 07/07/2026, 06:38:49 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 19:50:16 | - |
| 218.19.109.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Guangdong | 24/06/2026, 10:24:21 | 24/06/2026, 20:31:42 | Yes | No | - | - | 24/06/2026, 19:50:19 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 58.219.119.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS4134 | Chinanet | ChinaNet Jiangsu | 24/06/2026, 10:24:21 | 07/07/2026, 07:21:14 | No | No | - | - | 18/06/2026, 19:50:20 | - |
| 117.217.61.•••:18789 | Jarvis (🦾) | 🇮🇳 India | Yes | false | Leaked | AS9829 | National Internet Backbone | BSNL Broadband Multiplay Project | 24/06/2026, 10:24:21 | 24/06/2026, 20:31:42 | Yes | No | - | - | 24/06/2026, 19:50:24 | bsnl.in, dataone.in, bsnl.co.in |
| 113.89.42.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 24/06/2026, 10:24:21 | 24/06/2026, 20:31:42 | Yes | No | - | - | 24/06/2026, 19:50:25 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 118.139.167.•••:18789 | - | 🇸🇬 Singapore | - | true | Leaked | AS26496 | GoDaddy.com, LLC | GoDaddy | 24/06/2026, 10:22:26 | 07/07/2026, 07:19:05 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 24/06/2026, 13:58:47 | godaddy.com |
| 146.190.78.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 24/06/2026, 10:22:25 | 24/06/2026, 16:08:40 | No | Yes | APT41 | CVE-2023-28531, CVE-2023-38408 | 24/06/2026, 13:58:57 | - |
| 2409:8a28:d46:8431::97d:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS56041 | China Mobile communications corporation | China Mobile | 24/06/2026, 10:22:25 | 24/06/2026, 16:08:39 | - | - | - | - | - | - |
| 54.152.34.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS14618 | Amazon.com, Inc. | Amazon | 24/06/2026, 10:22:25 | 06/07/2026, 06:57:00 | No | No | - | - | 18/06/2026, 13:59:09 | - |
| 165.232.48.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 24/06/2026, 10:22:24 | 24/06/2026, 16:08:38 | No | - | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 13:59:11 | - |
| 49.234.57.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 24/06/2026, 10:22:23 | 05/07/2026, 12:25:36 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419 | 24/06/2026, 13:59:23 | tencent.com, tencentcloud.com |
| 44.199.197.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 10:22:22 | 06/07/2026, 11:14:06 | - | - | - | - | - | - |
| 3.238.14.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 10:22:22 | 01/07/2026, 06:16:59 | No | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Gamaredon Group, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2021-44224, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813 | 24/06/2026, 13:59:37 | - |
| 218.19.109.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Guangdong | 24/06/2026, 10:22:19 | 24/06/2026, 16:52:11 | Yes | No | - | - | 24/06/2026, 13:59:55 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 58.219.119.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS4134 | Chinanet | ChinaNet Jiangsu | 24/06/2026, 10:22:19 | 07/07/2026, 07:19:26 | No | No | - | - | 18/06/2026, 13:59:56 | - |
| 117.217.61.•••:18789 | Jarvis (🦾) | 🇮🇳 India | Yes | false | Leaked | AS9829 | National Internet Backbone | BSNL Broadband Multiplay Project | 24/06/2026, 10:22:19 | 24/06/2026, 16:52:10 | Yes | No | - | - | 24/06/2026, 14:00:00 | bsnl.in, dataone.in, bsnl.co.in |
| 34.61.221.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS396982 | Google LLC | 24/06/2026, 10:20:32 | 07/07/2026, 07:16:46 | No | No | - | CVE-2025-61984, CVE-2025-61985 | 27/06/2026, 10:45:42 | - | |
| 43.248.100.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS56046 | China Mobile communications corporation | Jiangsu Dongyun Cloud Computing | 24/06/2026, 10:20:30 | 24/06/2026, 15:23:18 | - | - | - | - | - | - |
| 118.139.167.•••:18789 | - | 🇸🇬 Singapore | - | true | Leaked | AS26496 | GoDaddy.com, LLC | GoDaddy | 24/06/2026, 10:20:24 | 07/07/2026, 07:17:11 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 25/06/2026, 16:34:51 | godaddy.com |
| 104.21.81.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS13335 | Cloudflare, Inc. | Cloudflare | 24/06/2026, 10:20:24 | 24/06/2026, 16:06:40 | - | - | - | - | - | - |
| 146.190.78.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 24/06/2026, 10:20:23 | 24/06/2026, 16:06:39 | - | - | - | - | - | - |
| 2409:8a28:d46:8431::97d:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS56041 | China Mobile communications corporation | China Mobile | 24/06/2026, 10:20:23 | 24/06/2026, 16:06:39 | - | - | - | - | - | - |
| 54.152.34.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS14618 | Amazon.com, Inc. | Amazon | 24/06/2026, 10:20:22 | 06/07/2026, 06:55:01 | No | No | - | - | 21/06/2026, 06:33:21 | - |
| 165.232.48.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 24/06/2026, 10:20:22 | 24/06/2026, 16:06:36 | - | - | - | - | - | - |
| 49.234.57.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 24/06/2026, 10:20:20 | 05/07/2026, 12:23:43 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419 | 27/06/2026, 21:26:17 | tencent.com, tencentcloud.com |
| 44.199.197.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 10:20:19 | 06/07/2026, 11:12:10 | - | - | - | - | - | - |
| 3.238.14.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 10:20:19 | 01/07/2026, 06:15:07 | No | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Gamaredon Group, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2021-44224, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813 | 27/06/2026, 13:34:31 | - |
| 218.19.109.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Guangdong | 24/06/2026, 10:20:17 | 24/06/2026, 16:50:08 | - | - | - | - | - | - |
| 118.139.167.•••:18789 | - | 🇸🇬 Singapore | - | true | Leaked | AS26496 | GoDaddy.com, LLC | GoDaddy | 24/06/2026, 10:18:15 | 07/07/2026, 07:15:12 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 24/06/2026, 11:01:42 | godaddy.com |
| 89.184.87.•••:18789 | - | 🇺🇦 Ukraine | - | false | Leaked | AS28907 | Web hosting, datacenter and domain names registration in Ukraine | US Internet | 24/06/2026, 10:18:15 | 28/06/2026, 18:45:43 | Yes | No | - | - | 24/06/2026, 11:01:44 | mirohost.net |
| 35.174.113.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 24/06/2026, 10:18:14 | 26/06/2026, 04:46:05 | - | - | - | - | - | - |
| 165.232.48.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 24/06/2026, 10:18:14 | 26/06/2026, 04:46:05 | No | - | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 11:01:48 | - |
| 3.238.14.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 10:18:14 | 02/07/2026, 12:57:30 | No | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Gamaredon Group, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2021-44224, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813 | 24/06/2026, 11:01:51 | - |
| 220.184.51.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 24/06/2026, 09:41:10 | 24/06/2026, 19:05:31 | No | No | - | - | 18/06/2026, 09:41:18 | - |
| 2409:8a60:180e:578b:2697:edff:fe2c:8e12:59999 | - | 🇨🇳 China mainland | - | false | Clean | AS9808 | China Mobile Communications Group Co., Ltd. | China Mobile | 24/06/2026, 09:41:10 | 27/06/2026, 19:21:13 | - | - | - | - | - | - |
| 43.248.100.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS56046 | China Mobile communications corporation | Jiangsu Dongyun Cloud Computing | 24/06/2026, 09:41:08 | 24/06/2026, 19:05:30 | Yes | Yes | APT14, APT28, APT40, APT41, Cobalt Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, WIRTE | CVE-2006-20001, CVE-2010-1899, CVE-2010-2730, CVE-2010-3972, CVE-2014-4078, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 09:41:48 | cnnic.cn |
| 47.253.49.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud US | 24/06/2026, 09:41:07 | 07/07/2026, 07:21:30 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 09:42:08 | - |
| 209.38.76.•••:5000 | - | 🇺🇸 United States | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 24/06/2026, 09:41:06 | 06/07/2026, 21:18:50 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 09:42:13 | - |
| 49.51.201.•••:1433 | - | 🇫🇮 Finland | Yes | true | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Tencent Cloud | 24/06/2026, 09:41:06 | 07/07/2026, 00:10:19 | Yes | - | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 09:42:17 | tencent.com |
| 113.90.24.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 24/06/2026, 09:41:06 | 24/06/2026, 19:48:49 | Yes | No | - | - | 24/06/2026, 09:42:21 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 47.90.211.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud US | 24/06/2026, 09:41:06 | 06/07/2026, 06:16:25 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 02/07/2026, 23:04:50 | - |
| 125.121.173.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 24/06/2026, 09:41:06 | 24/06/2026, 19:48:49 | No | No | - | - | 18/06/2026, 09:42:27 | - |
| 159.65.198.•••:80 | - | 🇳🇱 Netherlands | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 24/06/2026, 09:41:05 | 07/07/2026, 07:21:00 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 24/06/2026, 09:42:29 | - |
| 46.225.214.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 24/06/2026, 09:39:19 | 25/06/2026, 03:40:54 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 02:59:05 | - |
| 220.184.51.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 24/06/2026, 09:39:18 | 24/06/2026, 15:25:17 | - | - | - | - | - | - |
| 2409:8a60:180e:578b:2697:edff:fe2c:8e12:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS9808 | China Mobile Communications Group Co., Ltd. | China Mobile | 24/06/2026, 09:39:18 | 27/06/2026, 15:44:12 | - | - | - | - | - | - |
| 79.137.222.•••:18789 | - | 🇷🇺 Russia | - | false | Clean | AS12695 | LLC Digital Network | Dinethosting | 24/06/2026, 09:39:18 | 25/06/2026, 05:49:46 | No | Yes | APT1 Comment Crew, APT15, APT17, APT27, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Earth Longzhi, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2015-9251, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-11358, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 13:58:55 | - |
| 43.248.100.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS56046 | China Mobile communications corporation | Jiangsu Dongyun Cloud Computing | 24/06/2026, 09:39:17 | 24/06/2026, 15:25:15 | Yes | Yes | APT14, APT28, APT40, APT41, Cobalt Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, WIRTE | CVE-2006-20001, CVE-2010-1899, CVE-2010-2730, CVE-2010-3972, CVE-2014-4078, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 13:57:49 | cnnic.cn |
| 47.253.49.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud US | 24/06/2026, 09:39:14 | 07/07/2026, 05:09:42 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 13:58:10 | - |
| 167.86.91.•••:18789 | - | 🇩🇪 Germany | Yes | true | Leaked | AS51167 | Contabo GmbH | Contabo | 24/06/2026, 09:39:14 | 07/07/2026, 00:50:54 | Yes | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-16905, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-14145, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 13:58:17 | contaboserver.net, contabo.de, contabo.net |
| 209.38.76.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 24/06/2026, 09:39:14 | 06/07/2026, 17:41:05 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 13:58:18 | - |
| 113.90.24.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 24/06/2026, 09:39:13 | 24/06/2026, 15:25:10 | Yes | No | - | - | 24/06/2026, 13:58:26 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 47.90.211.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud US | 24/06/2026, 09:39:13 | 06/07/2026, 03:22:43 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 02/07/2026, 22:23:32 | - |
| 125.121.173.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 24/06/2026, 09:39:12 | 24/06/2026, 15:25:10 | No | No | - | - | 18/06/2026, 13:58:32 | - |
| 159.65.198.•••:18789 | - | 🇳🇱 Netherlands | - | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 24/06/2026, 09:39:11 | 07/07/2026, 07:19:12 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 24/06/2026, 13:58:35 | - |
| 157.180.115.•••:18789 | - | 🇫🇮 Finland | Yes | true | Leaked | AS24940 | Hetzner Online GmbH | Hetzner | 24/06/2026, 09:37:28 | 02/07/2026, 07:58:38 | Yes | No | - | CVE-2005-0004, CVE-2012-0540, CVE-2012-0572, CVE-2012-0574, CVE-2012-0578, CVE-2012-1688, CVE-2012-1689, CVE-2012-1690, CVE-2012-1697, CVE-2012-1702, CVE-2012-1703, CVE-2012-1705, CVE-2012-1734, CVE-2012-1735, CVE-2012-1756, CVE-2012-1757, CVE-2012-2750, CVE-2012-3150, CVE-2012-3158, CVE-2012-3160, CVE-2012-3163, CVE-2012-3166, CVE-2012-3167, CVE-2012-3173, CVE-2012-3177, CVE-2012-3180, CVE-2012-3197, CVE-2012-5060, CVE-2012-5096, CVE-2012-5612, CVE-2012-5614, CVE-2012-5627, CVE-2013-0367, CVE-2013-0368, CVE-2013-0371, CVE-2013-0383, CVE-2013-0384, CVE-2013-0385, CVE-2013-0386, CVE-2013-0389, CVE-2013-1502, CVE-2013-1506, CVE-2013-1511, CVE-2013-1512, CVE-2013-1521, CVE-2013-1523, CVE-2013-1526, CVE-2013-1531, CVE-2013-1532, CVE-2013-1544, CVE-2013-1548, CVE-2013-1552, CVE-2013-1555, CVE-2013-1861, CVE-2013-2375, CVE-2013-2376, CVE-2013-2378, CVE-2013-2389, CVE-2013-2391, CVE-2013-2392, CVE-2013-3783, CVE-2013-3793, CVE-2013-3794, CVE-2013-3801, CVE-2013-3802, CVE-2013-3804, CVE-2013-3805, CVE-2013-3808, CVE-2013-3809, CVE-2013-3812, CVE-2013-3839, CVE-2013-5807, CVE-2013-5891, CVE-2013-5908, CVE-2014-0001, CVE-2014-0384, CVE-2014-0386, CVE-2014-0393, CVE-2014-0401, CVE-2014-0402, CVE-2014-0412, CVE-2014-0420, CVE-2014-0437, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431, CVE-2014-2432, CVE-2014-2436, CVE-2014-2438, CVE-2014-2440, CVE-2014-2494, CVE-2014-4207, CVE-2014-4243, CVE-2014-4258, CVE-2014-4260, CVE-2014-4274, CVE-2014-4287, CVE-2014-6463, CVE-2014-6464, CVE-2014-6469, CVE-2014-6478, CVE-2014-6484, CVE-2014-6491, CVE-2014-6494, CVE-2014-6495, CVE-2014-6496, CVE-2014-6500, CVE-2014-6505, CVE-2014-6507, CVE-2014-6520, CVE-2014-6530, CVE-2014-6551, CVE-2014-6555, CVE-2014-6559, CVE-2014-6568, CVE-2015-0374, CVE-2015-0381, CVE-2015-0382, CVE-2015-0391, CVE-2015-0411, CVE-2015-0432, CVE-2015-0433, CVE-2015-0441, CVE-2015-0499, CVE-2015-0501, CVE-2015-0505, CVE-2015-2325, CVE-2015-2568, CVE-2015-2571, CVE-2015-2573, CVE-2015-2582, CVE-2015-2620, CVE-2015-2643, CVE-2015-2648, CVE-2015-3152, CVE-2015-4752, CVE-2015-4757, CVE-2015-4792, CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4864, CVE-2015-4870, CVE-2015-4879, CVE-2015-4913, CVE-2015-7744, CVE-2016-0502, CVE-2016-0610, CVE-2016-0616, CVE-2016-0642, CVE-2016-0651, CVE-2016-20012, CVE-2016-3471, CVE-2016-3492, CVE-2016-5584, CVE-2016-5612, CVE-2016-5624, CVE-2016-5626, CVE-2016-5629, CVE-2016-6664, CVE-2016-7440, CVE-2016-9843, CVE-2017-10268, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384, CVE-2017-15365, CVE-2017-15945, CVE-2017-3238, CVE-2017-3243, CVE-2017-3244, CVE-2017-3258, CVE-2017-3265, CVE-2017-3291, CVE-2017-3302, CVE-2017-3308, CVE-2017-3309, CVE-2017-3312, CVE-2017-3313, CVE-2017-3317, CVE-2017-3318, CVE-2017-3453, CVE-2017-3456, CVE-2017-3464, CVE-2017-3600, CVE-2017-3636, CVE-2017-3641, CVE-2017-3651, CVE-2017-3653, CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668, CVE-2018-2755, CVE-2018-2761, CVE-2018-2767, CVE-2018-2771, CVE-2018-2781, CVE-2018-2813, CVE-2018-2817, CVE-2018-2819, CVE-2018-3058, CVE-2018-3063, CVE-2018-3066, CVE-2018-3081, CVE-2018-3133, CVE-2018-3174, CVE-2018-3282, CVE-2019-16905, CVE-2019-2455, CVE-2019-2481, CVE-2019-2503, CVE-2019-2529, CVE-2019-2614, CVE-2019-2627, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2805, CVE-2019-2974, CVE-2020-14145, CVE-2020-14550, CVE-2020-15778, CVE-2020-2574, CVE-2020-2752, CVE-2020-2780, CVE-2020-2812, CVE-2020-28912, CVE-2020-2922, CVE-2021-2007, CVE-2021-2011, CVE-2021-2144, CVE-2021-36368, CVE-2021-41617, CVE-2021-46659, CVE-2021-46666, CVE-2021-46667, CVE-2021-46669, CVE-2022-27385, CVE-2022-27449, CVE-2022-31621, CVE-2022-31622, CVE-2022-31623, CVE-2022-31624, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-5157, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 13:16:15 | your-server.de, hetzner.com |
| 3.237.85.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 09:37:23 | 06/07/2026, 16:13:05 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 25/06/2026, 05:07:54 | - |
| 3.128.172.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 24/06/2026, 09:37:23 | 06/07/2026, 09:46:09 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 27/06/2026, 22:08:41 | - |
| 46.225.214.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 24/06/2026, 09:37:23 | 25/06/2026, 03:38:55 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 00:04:24 | - |
| 220.184.51.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 24/06/2026, 09:37:22 | 24/06/2026, 15:23:20 | - | - | - | - | - | - |
| 2409:8a60:180e:578b:2697:edff:fe2c:8e12:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS9808 | China Mobile Communications Group Co., Ltd. | China Mobile | 24/06/2026, 09:37:22 | 27/06/2026, 15:42:20 | - | - | - | - | - | - |
| 79.137.222.•••:18789 | - | 🇷🇺 Russia | - | false | Clean | AS12695 | LLC Digital Network | Dinethosting | 24/06/2026, 09:37:22 | 25/06/2026, 05:47:49 | No | Yes | APT1 Comment Crew, APT15, APT17, APT27, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Earth Longzhi, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2015-9251, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-11358, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 25/06/2026, 05:07:23 | - |
| 47.253.49.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud US | 24/06/2026, 09:37:18 | 07/07/2026, 05:07:39 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 27/06/2026, 03:42:07 | - |
| 167.86.91.•••:18789 | - | 🇩🇪 Germany | Yes | true | Leaked | AS51167 | Contabo GmbH | Contabo | 24/06/2026, 09:37:18 | 07/07/2026, 01:32:09 | Yes | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-16905, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-14145, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 25/06/2026, 02:59:21 | contaboserver.net, contabo.de, contabo.net |
| 209.38.76.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 24/06/2026, 09:37:17 | 06/07/2026, 17:39:08 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 27/06/2026, 16:26:15 | - |
| 113.90.24.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | CHINANET Guangdong | 24/06/2026, 09:37:16 | 24/06/2026, 15:23:15 | - | - | - | - | - | - |
| 47.90.211.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud US | 24/06/2026, 09:37:16 | 06/07/2026, 03:20:44 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 06/07/2026, 00:30:18 | - |
| 125.121.173.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 24/06/2026, 09:37:16 | 24/06/2026, 16:06:42 | - | - | - | - | - | - |
| 159.65.198.•••:18789 | - | 🇳🇱 Netherlands | - | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 24/06/2026, 09:37:15 | 07/07/2026, 07:17:17 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 27/06/2026, 22:51:46 | - |
| 120.55.56.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 24/06/2026, 09:35:10 | 26/06/2026, 04:03:24 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 11:01:28 | aliyun.com |
| 34.61.221.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS396982 | Google LLC | 24/06/2026, 09:35:10 | 07/07/2026, 07:14:51 | No | No | - | CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 11:01:29 | - | |
| 3.128.172.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 24/06/2026, 09:35:10 | 07/07/2026, 07:15:21 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 11:01:31 | - |
| 46.225.214.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 24/06/2026, 09:35:10 | 26/06/2026, 04:03:24 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 11:01:32 | - |
| 167.86.91.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS51167 | Contabo GmbH | Contabo | 24/06/2026, 09:35:09 | 26/06/2026, 04:03:23 | Yes | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-16905, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-14145, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 11:01:36 | contaboserver.net, contabo.de, contabo.net |
| 216.22.13.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS30633 | Leaseweb USA, Inc. | Leaseweb USA | 24/06/2026, 09:35:09 | 26/06/2026, 15:31:02 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 11:01:38 | leaseweb.com, ubiquityhosting.com |
| 8.130.184.•••:1003 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 24/06/2026, 08:57:54 | 06/07/2026, 20:35:47 | No | - | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 12:35:35 | - |
| 162.251.93.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Clean | AS154321 | CORENET CLOUD SDN. BHD. | G Network LLC | 24/06/2026, 08:57:54 | 05/07/2026, 21:42:55 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2010-1899, CVE-2010-2730, CVE-2010-3972, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387 | 24/06/2026, 12:35:36 | - |
| 31.76.102.•••:18789 | - | 🇫🇮 Finland | Yes | true | Clean | AS201988 | https://vpspay.net | VPSPay | 24/06/2026, 08:57:53 | 07/07/2026, 03:45:47 | - | - | - | - | - | - |
| 171.213.199.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Sichuan | 24/06/2026, 08:57:53 | 28/06/2026, 01:04:07 | No | No | - | CVE-2018-19052, CVE-2018-25103, CVE-2019-11072, CVE-2024-3708 | 24/06/2026, 12:35:46 | - |
| 47.98.63.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 24/06/2026, 08:57:53 | 07/07/2026, 02:19:11 | No | No | - | - | 18/06/2026, 12:35:47 | - |
| 8.136.185.•••:443 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 24/06/2026, 08:57:53 | 06/07/2026, 18:26:28 | - | - | - | - | - | - |
| 157.180.115.•••:18789 | - | 🇫🇮 Finland | Yes | true | Leaked | AS24940 | Hetzner Online GmbH | Hetzner | 24/06/2026, 08:57:53 | 30/06/2026, 17:22:16 | Yes | No | - | CVE-2005-0004, CVE-2012-0540, CVE-2012-0572, CVE-2012-0574, CVE-2012-0578, CVE-2012-1688, CVE-2012-1689, CVE-2012-1690, CVE-2012-1697, CVE-2012-1702, CVE-2012-1703, CVE-2012-1705, CVE-2012-1734, CVE-2012-1735, CVE-2012-1756, CVE-2012-1757, CVE-2012-2750, CVE-2012-3150, CVE-2012-3158, CVE-2012-3160, CVE-2012-3163, CVE-2012-3166, CVE-2012-3167, CVE-2012-3173, CVE-2012-3177, CVE-2012-3180, CVE-2012-3197, CVE-2012-5060, CVE-2012-5096, CVE-2012-5612, CVE-2012-5614, CVE-2012-5627, CVE-2013-0367, CVE-2013-0368, CVE-2013-0371, CVE-2013-0383, CVE-2013-0384, CVE-2013-0385, CVE-2013-0386, CVE-2013-0389, CVE-2013-1502, CVE-2013-1506, CVE-2013-1511, CVE-2013-1512, CVE-2013-1521, CVE-2013-1523, CVE-2013-1526, CVE-2013-1531, CVE-2013-1532, CVE-2013-1544, CVE-2013-1548, CVE-2013-1552, CVE-2013-1555, CVE-2013-1861, CVE-2013-2375, CVE-2013-2376, CVE-2013-2378, CVE-2013-2389, CVE-2013-2391, CVE-2013-2392, CVE-2013-3783, CVE-2013-3793, CVE-2013-3794, CVE-2013-3801, CVE-2013-3802, CVE-2013-3804, CVE-2013-3805, CVE-2013-3808, CVE-2013-3809, CVE-2013-3812, CVE-2013-3839, CVE-2013-5807, CVE-2013-5891, CVE-2013-5908, CVE-2014-0001, CVE-2014-0384, CVE-2014-0386, CVE-2014-0393, CVE-2014-0401, CVE-2014-0402, CVE-2014-0412, CVE-2014-0420, CVE-2014-0437, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431, CVE-2014-2432, CVE-2014-2436, CVE-2014-2438, CVE-2014-2440, CVE-2014-2494, CVE-2014-4207, CVE-2014-4243, CVE-2014-4258, CVE-2014-4260, CVE-2014-4274, CVE-2014-4287, CVE-2014-6463, CVE-2014-6464, CVE-2014-6469, CVE-2014-6478, CVE-2014-6484, CVE-2014-6491, CVE-2014-6494, CVE-2014-6495, CVE-2014-6496, CVE-2014-6500, CVE-2014-6505, CVE-2014-6507, CVE-2014-6520, CVE-2014-6530, CVE-2014-6551, CVE-2014-6555, CVE-2014-6559, CVE-2014-6568, CVE-2015-0374, CVE-2015-0381, CVE-2015-0382, CVE-2015-0391, CVE-2015-0411, CVE-2015-0432, CVE-2015-0433, CVE-2015-0441, CVE-2015-0499, CVE-2015-0501, CVE-2015-0505, CVE-2015-2325, CVE-2015-2568, CVE-2015-2571, CVE-2015-2573, CVE-2015-2582, CVE-2015-2620, CVE-2015-2643, CVE-2015-2648, CVE-2015-3152, CVE-2015-4752, CVE-2015-4757, CVE-2015-4792, CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4864, CVE-2015-4870, CVE-2015-4879, CVE-2015-4913, CVE-2015-7744, CVE-2016-0502, CVE-2016-0610, CVE-2016-0616, CVE-2016-0642, CVE-2016-0651, CVE-2016-20012, CVE-2016-3471, CVE-2016-3492, CVE-2016-5584, CVE-2016-5612, CVE-2016-5624, CVE-2016-5626, CVE-2016-5629, CVE-2016-6664, CVE-2016-7440, CVE-2016-9843, CVE-2017-10268, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384, CVE-2017-15365, CVE-2017-15945, CVE-2017-3238, CVE-2017-3243, CVE-2017-3244, CVE-2017-3258, CVE-2017-3265, CVE-2017-3291, CVE-2017-3302, CVE-2017-3308, CVE-2017-3309, CVE-2017-3312, CVE-2017-3313, CVE-2017-3317, CVE-2017-3318, CVE-2017-3453, CVE-2017-3456, CVE-2017-3464, CVE-2017-3600, CVE-2017-3636, CVE-2017-3641, CVE-2017-3651, CVE-2017-3653, CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668, CVE-2018-2755, CVE-2018-2761, CVE-2018-2767, CVE-2018-2771, CVE-2018-2781, CVE-2018-2813, CVE-2018-2817, CVE-2018-2819, CVE-2018-3058, CVE-2018-3063, CVE-2018-3066, CVE-2018-3081, CVE-2018-3133, CVE-2018-3174, CVE-2018-3282, CVE-2019-16905, CVE-2019-2455, CVE-2019-2481, CVE-2019-2503, CVE-2019-2529, CVE-2019-2614, CVE-2019-2627, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2805, CVE-2019-2974, CVE-2020-14145, CVE-2020-14550, CVE-2020-15778, CVE-2020-2574, CVE-2020-2752, CVE-2020-2780, CVE-2020-2812, CVE-2020-28912, CVE-2020-2922, CVE-2021-2007, CVE-2021-2011, CVE-2021-2144, CVE-2021-36368, CVE-2021-41617, CVE-2021-46659, CVE-2021-46666, CVE-2021-46667, CVE-2021-46669, CVE-2022-27385, CVE-2022-27449, CVE-2022-31621, CVE-2022-31622, CVE-2022-31623, CVE-2022-31624, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-5157, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 12:35:51 | your-server.de, hetzner.com |
| 74.1.20.•••:443 | - | 🇧🇷 Brazil | Yes | true | Leaked | AS213738 | HOSTEG HOSPEDAGEM E SERVIDORES LTDA | HostG | 24/06/2026, 08:57:52 | 07/07/2026, 03:45:52 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 12:36:02 | gtt.net, hiberniaatlantic.com |
| 217.216.108.•••:18789 | - | 🇩🇪 Germany | Yes | true | Leaked | AS141995 | Contabo Asia Private Limited | Contabo | 24/06/2026, 08:57:52 | 05/07/2026, 19:34:57 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 12:36:10 | contaboserver.net, contabo.de, contabo.net |
| 183.23.157.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 24/06/2026, 08:57:51 | 24/06/2026, 19:05:35 | Yes | No | - | - | 24/06/2026, 12:36:15 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 51.83.161.•••:18789 | - | 🇵🇱 Poland | Yes | true | Clean | AS16276 | OVH SAS | OVH Poland | 24/06/2026, 08:57:51 | 05/07/2026, 23:08:07 | No | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Earth Berberoka, Equation Group, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-10708, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-14145, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 12:36:21 | - |
| 183.23.53.•••:8443 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 24/06/2026, 08:57:50 | 27/06/2026, 14:21:16 | Yes | No | - | - | 24/06/2026, 12:36:22 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 154.217.246.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS400619 | AROSSCLOUD INC. | Fastmos Co Limited | 24/06/2026, 08:57:50 | 06/07/2026, 10:33:27 | No | Yes | Salt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728 | 24/06/2026, 12:36:23 | - |
| 136.111.3.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS396982 | Google LLC | 24/06/2026, 08:57:50 | 06/07/2026, 15:34:29 | No | No | - | CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 12:36:26 | - | |
| 47.253.169.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud US | 24/06/2026, 08:57:50 | 05/07/2026, 21:42:54 | No | Yes | APT15, APT17, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 12:36:32 | - |
| 36.232.180.•••:18789 | - | 🇹🇼 Taiwan | Yes | false | Leaked | AS3462 | Data Communication Business Group | Chunghwa Telecom Data Group | 24/06/2026, 08:57:49 | 24/06/2026, 19:05:33 | Yes | No | - | - | 24/06/2026, 12:36:38 | twgate.net, hinet.net, xuite.net, cht.com.tw, chttl.com.tw |
| 183.128.126.•••:8443 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 24/06/2026, 08:57:49 | 27/06/2026, 11:31:17 | No | No | - | - | 18/06/2026, 12:36:40 | - |
| 32.198.34.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 24/06/2026, 08:57:49 | 24/06/2026, 19:05:32 | - | - | - | - | - | - |
| 34.61.221.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS396982 | Google LLC | 24/06/2026, 08:57:49 | 07/07/2026, 07:20:31 | No | No | - | CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 12:36:47 | - | |
| 3.237.85.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 08:57:49 | 06/07/2026, 19:52:44 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 24/06/2026, 12:36:48 | - |
| 3.128.172.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 24/06/2026, 08:57:49 | 06/07/2026, 10:33:25 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 12:36:50 | - |
| 47.100.89.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 24/06/2026, 08:57:49 | 06/07/2026, 20:35:50 | No | Yes | APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Earth Berberoka, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2006-4110, CVE-2006-4154, CVE-2007-1741, CVE-2007-1742, CVE-2007-1743, CVE-2007-4465, CVE-2007-5000, CVE-2007-6203, CVE-2007-6388, CVE-2007-6420, CVE-2007-6421, CVE-2007-6422, CVE-2007-6750, CVE-2008-0455, CVE-2008-0456, CVE-2008-2168, CVE-2008-2939, CVE-2009-1195, CVE-2009-1890, CVE-2009-1891, CVE-2009-3095, CVE-2009-3555, CVE-2010-0408, CVE-2010-0434, CVE-2010-1452, CVE-2011-0419, CVE-2011-3192, CVE-2011-3348, CVE-2011-3368, CVE-2011-3607, CVE-2011-3639, CVE-2011-4317, CVE-2011-4415, CVE-2012-0031, CVE-2012-0053, CVE-2012-0883, CVE-2012-2687, CVE-2012-3499, CVE-2012-4558, CVE-2013-1862, CVE-2013-1896, CVE-2013-2249, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0231, CVE-2016-20012, CVE-2016-4975, CVE-2017-15906, CVE-2017-3167, CVE-2017-3169, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347 | 24/06/2026, 09:41:12 | - |