🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 1006105 Page: 283 / 10062 (100 per page) Showing: 28201-28300 Last Imported: 14/07/2026, 07:44:58
🇨🇳 483,673
🇺🇸 290,578
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 114.97.198.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS4134 | Chinanet | ChinaNet Anhui Province Network | 28/06/2026, 01:41:30 | 07/07/2026, 23:03:10 | No | No | - | - | 22/06/2026, 07:25:29 | - |
| 34.141.54.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS396982 | Google LLC | 28/06/2026, 01:41:30 | 12/07/2026, 19:41:10 | No | No | - | CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 07:25:30 | - | |
| 162.243.41.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 28/06/2026, 01:39:37 | 07/07/2026, 17:18:29 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 28/06/2026, 05:16:30 | - |
| 64.227.173.•••:18789 | - | 🇮🇳 India | - | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 28/06/2026, 01:39:36 | 14/07/2026, 03:47:29 | No | No | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 05:16:31 | - |
| 186.241.76.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS400619 | AROSSCLOUD INC. | US Cloud Inc | 28/06/2026, 01:39:36 | 29/06/2026, 19:43:32 | - | - | - | - | - | - |
| 82.156.225.•••:18789 | - | 🇨🇳 China mainland | - | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 28/06/2026, 01:39:35 | 14/07/2026, 03:46:58 | No | Yes | APT37, El-Machete | - | 28/06/2026, 05:16:34 | - |
| 123.56.102.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 28/06/2026, 01:02:41 | 13/07/2026, 00:44:30 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419 | 28/06/2026, 01:49:07 | aliyun.com |
| 217.77.10.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS40021 | Contabo Inc. | Contabo | 28/06/2026, 01:02:41 | 28/06/2026, 10:19:33 | Yes | Yes | APT15, APT28, APT31, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 28/06/2026, 01:49:13 | contabo.de, contabo.net |
| 208.66.228.•••:443 | - | 🇺🇸 United States | Yes | true | Leaked | AS402279 | Geoscry Network LLC | Netutils | 28/06/2026, 01:02:40 | 13/07/2026, 15:45:05 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 01:49:23 | terrafirma.africa, ipxo.com, cyberassets.ae, capriloans.in |
| 192.210.231.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS36352 | HostPapa | RackNerd | 28/06/2026, 01:02:40 | 12/07/2026, 22:36:09 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24989, CVE-2024-24990, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-7347 | 28/06/2026, 01:49:26 | racknerd.com |
| 121.235.20.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Jiangsu | 28/06/2026, 01:02:39 | 28/06/2026, 11:02:24 | No | No | - | - | 22/06/2026, 01:49:29 | - |
| 111.231.33.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 28/06/2026, 01:02:39 | 13/07/2026, 07:08:52 | Yes | Yes | APT37, El-Machete | - | 28/06/2026, 01:49:30 | tencent.com, tencentcloud.com |
| 113.120.93.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Shandong | 28/06/2026, 01:02:39 | 28/06/2026, 11:02:23 | Yes | No | - | - | 28/06/2026, 01:49:33 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 240e:37c:f33:6700:12ff:e0ff:fe5f:2e46:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS140329 | CHINATELECOM Fujian province Fuzhou 5G network | China Telecom IPv6 Broadband Address | 28/06/2026, 01:02:38 | 01/07/2026, 08:27:45 | - | - | - | - | - | - |
| 104.225.141.•••:443 | - | 🇺🇸 United States | Yes | false | Clean | AS396949 | Kamatera, Inc. | Kamatera US TX | 28/06/2026, 01:02:38 | 28/06/2026, 19:34:14 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 06:47:52 | - |
| 167.233.68.•••:18789 | - | 🇩🇪 Germany | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 28/06/2026, 01:02:38 | 14/07/2026, 03:53:40 | - | - | - | - | - | - |
| 45.197.146.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134365 | Ansheng Network Technology Co., Limited | OneFiveEight Cloud Computing | 28/06/2026, 01:02:38 | 28/06/2026, 11:02:22 | No | Yes | APT37, El-Machete | - | 28/06/2026, 06:47:59 | - |
| 184.174.37.•••:18789 | - | 🇩🇪 Germany | Yes | true | Leaked | AS51167 | Contabo GmbH | Netutils | 28/06/2026, 01:02:37 | 13/07/2026, 15:45:09 | Yes | Yes | APT14, APT28, APT40, APT41, Cobalt Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, WIRTE | CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 06:48:04 | contaboserver.net, ipxo.com, cyberassets.ae |
| 47.112.27.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 28/06/2026, 01:02:37 | 13/07/2026, 08:34:33 | No | No | - | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 06:48:07 | - |
| 167.233.48.•••:443 | - | 🇩🇪 Germany | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 28/06/2026, 01:02:37 | 12/07/2026, 23:19:03 | - | - | - | - | - | - |
| 86.48.23.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS40021 | Contabo Inc. | Contabo | 28/06/2026, 01:02:37 | 13/07/2026, 22:54:04 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 06:48:20 | contaboserver.net, contabo.de, contabo.net |
| 183.129.56.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 28/06/2026, 01:02:36 | 28/06/2026, 11:02:15 | No | No | - | - | 22/06/2026, 06:48:28 | - |
| 85.214.91.•••:18789 | - | 🇩🇪 Germany | - | true | Leaked | AS6724 | STRATO AG | Strato Data Center | 28/06/2026, 01:00:58 | 14/07/2026, 03:50:47 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387 | 28/06/2026, 05:20:32 | strato.de |
| 217.77.10.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS40021 | Contabo Inc. | Contabo | 28/06/2026, 01:00:57 | 28/06/2026, 06:43:09 | Yes | Yes | APT15, APT28, APT31, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 28/06/2026, 05:20:54 | contabo.de, contabo.net |
| 192.210.231.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS36352 | HostPapa | RackNerd | 28/06/2026, 01:00:55 | 12/07/2026, 18:17:46 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24989, CVE-2024-24990, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-7347 | 28/06/2026, 05:21:06 | racknerd.com |
| 121.235.20.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Jiangsu | 28/06/2026, 01:00:54 | 28/06/2026, 07:26:14 | No | No | - | - | 22/06/2026, 05:21:11 | - |
| 111.231.33.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 28/06/2026, 01:00:54 | 13/07/2026, 02:07:40 | Yes | Yes | APT37, El-Machete | - | 28/06/2026, 05:21:12 | tencent.com, tencentcloud.com |
| 113.120.93.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Shandong | 28/06/2026, 01:00:54 | 28/06/2026, 07:26:14 | Yes | No | - | - | 28/06/2026, 05:21:14 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 104.21.1.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS13335 | Cloudflare, Inc. | Cloudflare | 28/06/2026, 01:00:54 | 28/06/2026, 07:26:14 | Yes | No | - | - | 28/06/2026, 05:21:17 | comfort-solutions.net, zerocarbonfood.co.uk, streamshop.com, vpnserver.com, shenji-titanium.com, fuyuanwj.com, applications.com, maac.net, educorp.com, vcorp.com, go-proteus.com, xrhy-group.com, sh-hibo.com, transpackgroup.com, jxxlxj.com, styled.fr, ashley.fr, catuan.net, contentmanager.com, cwsse.com.cn, leap.fr, tshlkj.net, byteboard.com, sdkyjt.net, luckyplastic.net, bikeweeksa.com, ics-line.com, forumcorp.com, dataloop.com, 51yuezhi.com, darche-gros.fr, hzfeidi.com, aiden-vn.com, melange.ai, anhbac.com, lonewolfdg.com, salonnews.com, gws.fr, daso.fr, energyservices.com, sz-jl.com, quatangthanhdong.com, youthstream.com, bianchi.fr, jetreacare.com, hbbygd88.com, globalmattersgroup.com, cityfied.net, playergroup.com, restack.technology, globalsolutions.com, rightwaytrading.net, xintec.hk, hqpots.com, factotum.fr, wenchyuan.com, net-lab.fr, informationsystems.com, fujiyama.fr, jw.ai, meter.ln.cn, cxdingli.com, billingcenter.com, vpauto.de, anlink.net, globalexchange.net, jxygcy.com, xl-flex.com, yac-agcc.com, veolia-transport.fr, tourservices.com, brokenshipsbistro.com, nitro.fr, hmcxjc.com, originalsoulvegetarian.com, shsinotech.com, shczhsyy.com, perfetto.fr, a-vos-souhaits.fr, vbankph.com, gipnutmeg.com, xjhhcm.com, lesmouettes.fr, jiuliproduce.com, minmetals-tj.cn, ytxweb.net, transtec.fr, eurobank.com, alsuyar.net, skyislandalliance.org, graphicconnection.com, peexy.fr, paolino.fr, happylife.ai, expressions16.fr, xiaoshejia.com, campmgmt.com, cayman.fr, ramcolab.com, itradeonline.com, explosystems.com, wecastnetworkinc.com, tribe-ecommerce.com, chinasyh.net, lateteailleurs.fr, leonne.fr, ekakitchen.com, carleaseusa.com, taxi321.com, refly.ai, jyskaiyue.com, wisehousetech.com, 44tele-infra.com, cloudflare.net, carburauto.fr, ohe.fr, ceostream.com, channel.net, databrick.com, indiantandoorialbury.com.au, gatorchucks.cn, handyman.com, activ.fr, galleryconnection.com, jstream.com, machinesummit.com, globalventures.com, lyricsintosong.ai, kidsbud.net, lebistrotduport.fr, loitoan.com, fdlois.fr, sherry.fr, sanli.com.sg, cognitionagency.co.uk, innfos.cn, ourlike.net, chicpartydress.com, govcoin.com, jxlingtong.com, fastchecker.us, namingsystem.com, nette.fr, nardini.com, altosdelchicala.com, baselinewoods.com, poisesoft.net, luxuryventures.com, vetmindnj.com, colourhim.com, hc0798.com, oriane.fr, referral.com, yin.fr, jiabinnu.com, wial.sg, sciencesuite.com, chexxinc.com, cleanzoneheating.com, alghanitex.com, christen.fr, qzz.io, lendstream.com, isotope.fr, dehuiguangchang.cn, careagent.com, xjgudao.com, telos.fr, gransierassociates.com, sanson.fr, vbuilders.com, koworksllc.net, huatai.zj.cn, ginachlaw.com, brownsprinting.com, oceans.fr, xxglasses.net, m-printone.com, prins.ai, zach.fr, rivalcorp.com, cloudhq-mkt6.net, garyjackson.com, storia.fr, champmar-ec.com, t-zoneland.com, socialsuite.com, forwardwirecloth.net, maac.com, bluescopesteel.com.au, songhycas.com, timing-tech.com, wxkewei.com, swiftfreightlogistics.com, lepicier.fr, becomingsuperhuman.com, chinasand.net, homemaintenance.com, noon.fr, aquastorenw.com, iim.com.sg, oriel.io, muabanten.com, gosocial.co, chunxinghejin.com, aerosupplycargosadecv.com, mayhoangtung.com, pp.ua, tadalafilanx.com, neosec.ai, mingstone.net, mondi.fr, turlututu.fr, flaneur.fr, lapetiteemma.fr, qdyzsc.com, teppanyaki.fr, gialoilongan.com, betzold.at, leisonhk.com, refee.net, xjzljt.net, mandarin.fr, gpchain.com, dongfanggufen.net, sxgas.net, wakechem.com, jialilace.com, zenna.fr, klavis.ai, wxshunan.com, seattlecoffeegear.com, amedee.fr, pathfinderapi.com, echap.fr, lechoix.fr, hansel.fr, customerprofile.com, fluiddesigns.com, yitongqingjie.com, sinotransfj.com, serio.fr, vrgkhaihoan.com, aibituo.net, dzrjx.net, metaworks.ai, interpraise.com, readystaffing.com, aptenonsjz.com, nada.fr, ventureos.com, code-china.com, malibupress.com, imobile.com, contrib.com, impactanalytics.ai, athenee.fr, learningwire.com, akina.fr, leixinfoods.net, goldplateck.com, umberto.fr, dentalassist.ai, essex.fr, jlhhzy.com, eshares.com, hardi.fr, sanhoos.com, dldianfeng.cn, gaithersburgflorist.com, bamko.net, creditop.com, fabi.fr, inventaire.fr, hansecontrol.com, geole.fr, orrcon.com.au, it.com, voyagevietnammoto.com, briefy.ai, jingyucn.net, carmivietnam.com, divadelnirestaurace-rakovnik.cz, lamaxwell.com, acm-studio.fr, vimedtec.com, china-ycgkjx.com, viettelsoftware.com, comfire.ca, outbook.com, itb.fr, pumpkin.fr, orchidees.fr, oukay.net, apo-led.com, dqbxg.com, gourmetz.com.sg, tourismeariege-saverdun-mazeres.fr, bnw163.net, ichiisoft.com, splendid-hotel.fr, beiyuecheng.com, cshczfz.com, realtydao.com, hmcoptical.com, china-one.net, portcast.com, kingdisplay.net, eu.org, scheduleme.org, investcentre.com, yangjiangshilimaoyi.com, jadzdjm.com, pprossmx.com, buildfolio.com, prem-box.com, dreamacquisition.com, mero.fr, neerajlovecyber.com, casaviva.it, tailwindgroup.com, com.de, iptunnel.com, rayinmind.com, bycast.com, leadstream.net, ceramic.fr, jz5288.com, kmark.com, taskmgmt.com, satorigroup.com.au, jason.fr, servicetech.com, atl-az.com, ssindustriesindia.com, hygroup.net, venturepub.com, studiovokal.cz, partyworld.com, yo-kart.com, basis.org, alliedmodular.com, jinld.net, sport-goods.net, mcdanielssubaru.com, paintersupplies.com, aldente.fr, szlis.com.cn, metropolis.ai, middlesexhcc.com, dqkeyi.com, telecomanalysis.com, cheers.fr, huadewood.com, focus.it, financeplusfrance.fr, gaoyimall.net, linked.com, mirror.fr, nesp.com, dslawn.com, oneway.fr, neschllc.com, xjnmi.com, vnoc.com, intbot.ai, ljgyp.net, fundchannel.com, szsbs.net, sandhillradio.com, oracle-ag.ch, eyes-armour.com, zhaowoo.net, formwerks.ca, mezapro.com.br, 1go.fr, jiangsufuji.com, fzfortune.net, chedermenachem.org, fittingmold.net, itmanage.net, arista.fr, computerzone.com, abc-distribution.fr, eb5aig.net, grandplace.fr, reservationcenter.com, einpl.com, energy-efficiency-network.cz, gdsaiqi.com, bestwanhui.com, bisonfire.com, neumann-group.com, hkbolton.com, comestibles.fr, electrode.fr, 869606.com, goldenstream.com, fxgowin.com, caviton.com, nash.fr, strongvalve.com, freda.fr, zhujigema.net, interlan.com, automations.com, handy.fr, luckywaymall.com, bank-easy.net, globalexport.com, taocimall.com, fedcomm.com, aout.fr, cariboo.fr, yijia-audio.com, vineog.com, naniwavn.com, workers.dev, chaolipack.com, intriq.ai, hashemfoods.com, dublincleaningservices.com, texans.com, navissupply.com, newoceanfood.com, photochallenge.com, bjzthb.com, eggstory.com.sg, nttdata-vds.com, cmimoulding.com, dechuangjixie.com, cnkejie.com, reteck.net, dartong.net, mamaromaonline.com, marinehub.com, 8189330.cn, filmteck.com, buildcorp.com, proximus.fr, apeloa-kangyu.com, maymacanphu.com, fireprotectioninc.com, motossenda.com, petitspois.fr, ranbuild.com.au, 360-xj.com, jucyvietnam.com, xjwfcj.com, eaststeel.net, appservice.com, sglcfj.com, patentboard.com, constructionforum.com, pet-bottle.net, meeshamoultonlaw.com, thierrymerlincherrier.fr, realtyconsultant.com, myqo.com, prbot.ai, fatbit.com, devaconcept.fr, datacommunications.com, miamitelevision.com, cannabiscorp.com, decaconsultancy.com, gemcats.com, liyubelt.net.cn, zsnet.net, medbrokers.com, topigx.com, meridianoutboard.com, mercadobitcoin.com.br, energystorage.com, sdfengze.net, fyinn.net, monreve.fr, physnum.com, luxecatering.com.sg, china114.net, venturebuilder.com, propetchina.com, tapotefreelance.com, 1800ventures.com, vladimir.fr, exceptions.fr, hightech.net, fielders.com.au, smartbuildings.com, bluescopedistribution.com.au, vinagreenplus.com, houstmust.com, hy189.net, calzaturificioeveryn.it, germanpool-nb.com, ike.fr, xjhongshun.com, steel.com.au, isofh.com, geneoffice.com.sg, gazoline.fr, lecottage.fr, cornerstaffing.com, geochem.org, food-machines.net, malto.icu, alptech.fr, dmln.net, shzhongyi.net |
| 106.228.30.•••:18789 | Assistant | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Jiangxi | 28/06/2026, 01:00:54 | 04/07/2026, 19:18:19 | Yes | No | - | CVE-2009-4593 | 28/06/2026, 05:21:21 | bta.net.cn |
| 240e:37c:f33:6700:12ff:e0ff:fe5f:2e46:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS140329 | CHINATELECOM Fujian province Fuzhou 5G network | China Telecom IPv6 Broadband Address | 28/06/2026, 01:00:53 | 01/07/2026, 04:08:04 | - | - | - | - | - | - |
| 104.225.141.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS396949 | Kamatera, Inc. | Kamatera US TX | 28/06/2026, 01:00:53 | 28/06/2026, 15:58:50 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 05:21:31 | - |
| 167.233.68.•••:18789 | - | 🇩🇪 Germany | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 28/06/2026, 01:00:53 | 14/07/2026, 02:25:38 | - | - | - | - | - | - |
| 37.120.29.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS50436 | Tele Columbus AG | Tele Columbus | 28/06/2026, 01:00:53 | 28/06/2026, 07:26:12 | No | No | - | CVE-2016-10735, CVE-2018-14040, CVE-2018-14042, CVE-2018-20676, CVE-2018-20677, CVE-2019-8331, CVE-2024-6484, CVE-2024-6485 | 28/06/2026, 05:21:36 | - |
| 45.197.146.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134365 | Ansheng Network Technology Co., Limited | OneFiveEight Cloud Computing | 28/06/2026, 01:00:53 | 28/06/2026, 23:05:24 | No | Yes | APT37, El-Machete | - | 28/06/2026, 05:21:38 | - |
| 47.112.27.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 28/06/2026, 01:00:51 | 13/07/2026, 04:15:43 | No | No | - | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 05:21:46 | - |
| 167.233.48.•••:18789 | - | 🇩🇪 Germany | - | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 28/06/2026, 01:00:51 | 12/07/2026, 19:00:18 | - | - | - | - | - | - |
| 86.48.23.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS40021 | Contabo Inc. | Contabo | 28/06/2026, 01:00:50 | 13/07/2026, 17:51:39 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 05:21:57 | contaboserver.net, contabo.de, contabo.net |
| 123.56.102.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 28/06/2026, 00:59:05 | 12/07/2026, 20:23:57 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419 | 28/06/2026, 02:27:06 | aliyun.com |
| 217.77.10.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS40021 | Contabo Inc. | Contabo | 28/06/2026, 00:59:05 | 28/06/2026, 06:41:19 | Yes | Yes | APT15, APT28, APT31, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385 | 28/06/2026, 02:27:11 | contabo.de, contabo.net |
| 192.210.231.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS36352 | HostPapa | RackNerd | 28/06/2026, 00:59:03 | 12/07/2026, 18:15:48 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24989, CVE-2024-24990, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-7347 | 28/06/2026, 02:27:24 | racknerd.com |
| 121.235.20.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Jiangsu | 28/06/2026, 00:59:03 | 28/06/2026, 07:24:24 | No | No | - | - | 22/06/2026, 02:27:30 | - |
| 111.231.33.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 28/06/2026, 00:59:03 | 13/07/2026, 02:48:33 | Yes | Yes | APT37, El-Machete | - | 28/06/2026, 02:27:31 | tencent.com, tencentcloud.com |
| 113.120.93.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Shandong | 28/06/2026, 00:59:02 | 28/06/2026, 07:24:24 | Yes | No | - | - | 28/06/2026, 02:27:34 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 104.21.1.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS13335 | Cloudflare, Inc. | Cloudflare | 28/06/2026, 00:59:02 | 28/06/2026, 07:24:23 | Yes | No | - | - | 28/06/2026, 02:27:37 | comfort-solutions.net, zerocarbonfood.co.uk, streamshop.com, vpnserver.com, shenji-titanium.com, fuyuanwj.com, applications.com, maac.net, educorp.com, vcorp.com, go-proteus.com, xrhy-group.com, sh-hibo.com, transpackgroup.com, jxxlxj.com, styled.fr, ashley.fr, catuan.net, contentmanager.com, cwsse.com.cn, leap.fr, tshlkj.net, byteboard.com, sdkyjt.net, luckyplastic.net, bikeweeksa.com, ics-line.com, forumcorp.com, dataloop.com, 51yuezhi.com, darche-gros.fr, hzfeidi.com, aiden-vn.com, melange.ai, anhbac.com, lonewolfdg.com, salonnews.com, gws.fr, daso.fr, energyservices.com, sz-jl.com, quatangthanhdong.com, youthstream.com, bianchi.fr, jetreacare.com, hbbygd88.com, globalmattersgroup.com, cityfied.net, playergroup.com, restack.technology, globalsolutions.com, rightwaytrading.net, xintec.hk, hqpots.com, factotum.fr, wenchyuan.com, net-lab.fr, informationsystems.com, fujiyama.fr, jw.ai, meter.ln.cn, cxdingli.com, billingcenter.com, vpauto.de, anlink.net, globalexchange.net, jxygcy.com, xl-flex.com, yac-agcc.com, veolia-transport.fr, tourservices.com, brokenshipsbistro.com, nitro.fr, hmcxjc.com, originalsoulvegetarian.com, shsinotech.com, shczhsyy.com, perfetto.fr, a-vos-souhaits.fr, vbankph.com, gipnutmeg.com, xjhhcm.com, lesmouettes.fr, jiuliproduce.com, minmetals-tj.cn, ytxweb.net, transtec.fr, eurobank.com, alsuyar.net, skyislandalliance.org, graphicconnection.com, peexy.fr, paolino.fr, happylife.ai, expressions16.fr, xiaoshejia.com, campmgmt.com, cayman.fr, ramcolab.com, itradeonline.com, explosystems.com, wecastnetworkinc.com, tribe-ecommerce.com, chinasyh.net, lateteailleurs.fr, leonne.fr, ekakitchen.com, carleaseusa.com, taxi321.com, refly.ai, jyskaiyue.com, wisehousetech.com, 44tele-infra.com, cloudflare.net, carburauto.fr, ohe.fr, ceostream.com, channel.net, databrick.com, indiantandoorialbury.com.au, gatorchucks.cn, handyman.com, activ.fr, galleryconnection.com, jstream.com, machinesummit.com, globalventures.com, lyricsintosong.ai, kidsbud.net, lebistrotduport.fr, loitoan.com, fdlois.fr, sherry.fr, sanli.com.sg, cognitionagency.co.uk, innfos.cn, ourlike.net, chicpartydress.com, govcoin.com, jxlingtong.com, fastchecker.us, namingsystem.com, nette.fr, nardini.com, altosdelchicala.com, baselinewoods.com, poisesoft.net, luxuryventures.com, vetmindnj.com, colourhim.com, hc0798.com, oriane.fr, referral.com, yin.fr, jiabinnu.com, wial.sg, sciencesuite.com, chexxinc.com, cleanzoneheating.com, alghanitex.com, christen.fr, qzz.io, lendstream.com, isotope.fr, dehuiguangchang.cn, careagent.com, xjgudao.com, telos.fr, gransierassociates.com, sanson.fr, vbuilders.com, koworksllc.net, huatai.zj.cn, ginachlaw.com, brownsprinting.com, oceans.fr, xxglasses.net, m-printone.com, prins.ai, zach.fr, rivalcorp.com, cloudhq-mkt6.net, garyjackson.com, storia.fr, champmar-ec.com, t-zoneland.com, socialsuite.com, forwardwirecloth.net, maac.com, bluescopesteel.com.au, songhycas.com, timing-tech.com, wxkewei.com, swiftfreightlogistics.com, lepicier.fr, becomingsuperhuman.com, chinasand.net, homemaintenance.com, noon.fr, aquastorenw.com, iim.com.sg, oriel.io, muabanten.com, gosocial.co, chunxinghejin.com, aerosupplycargosadecv.com, mayhoangtung.com, pp.ua, tadalafilanx.com, neosec.ai, mingstone.net, mondi.fr, turlututu.fr, flaneur.fr, lapetiteemma.fr, qdyzsc.com, teppanyaki.fr, gialoilongan.com, betzold.at, leisonhk.com, refee.net, xjzljt.net, mandarin.fr, gpchain.com, dongfanggufen.net, sxgas.net, wakechem.com, jialilace.com, zenna.fr, klavis.ai, wxshunan.com, seattlecoffeegear.com, amedee.fr, pathfinderapi.com, echap.fr, lechoix.fr, hansel.fr, customerprofile.com, fluiddesigns.com, yitongqingjie.com, sinotransfj.com, serio.fr, vrgkhaihoan.com, aibituo.net, dzrjx.net, metaworks.ai, interpraise.com, readystaffing.com, aptenonsjz.com, nada.fr, ventureos.com, code-china.com, malibupress.com, imobile.com, contrib.com, impactanalytics.ai, athenee.fr, learningwire.com, akina.fr, leixinfoods.net, goldplateck.com, umberto.fr, dentalassist.ai, essex.fr, jlhhzy.com, eshares.com, hardi.fr, sanhoos.com, dldianfeng.cn, gaithersburgflorist.com, bamko.net, creditop.com, fabi.fr, inventaire.fr, hansecontrol.com, geole.fr, orrcon.com.au, it.com, voyagevietnammoto.com, briefy.ai, jingyucn.net, carmivietnam.com, divadelnirestaurace-rakovnik.cz, lamaxwell.com, acm-studio.fr, vimedtec.com, china-ycgkjx.com, viettelsoftware.com, comfire.ca, outbook.com, itb.fr, pumpkin.fr, orchidees.fr, oukay.net, apo-led.com, dqbxg.com, gourmetz.com.sg, tourismeariege-saverdun-mazeres.fr, bnw163.net, ichiisoft.com, splendid-hotel.fr, beiyuecheng.com, cshczfz.com, realtydao.com, hmcoptical.com, china-one.net, portcast.com, kingdisplay.net, eu.org, scheduleme.org, investcentre.com, yangjiangshilimaoyi.com, jadzdjm.com, pprossmx.com, buildfolio.com, prem-box.com, dreamacquisition.com, mero.fr, neerajlovecyber.com, casaviva.it, tailwindgroup.com, com.de, iptunnel.com, rayinmind.com, bycast.com, leadstream.net, ceramic.fr, jz5288.com, kmark.com, taskmgmt.com, satorigroup.com.au, jason.fr, servicetech.com, atl-az.com, ssindustriesindia.com, hygroup.net, venturepub.com, studiovokal.cz, partyworld.com, yo-kart.com, basis.org, alliedmodular.com, jinld.net, sport-goods.net, mcdanielssubaru.com, paintersupplies.com, aldente.fr, szlis.com.cn, metropolis.ai, middlesexhcc.com, dqkeyi.com, telecomanalysis.com, cheers.fr, huadewood.com, focus.it, financeplusfrance.fr, gaoyimall.net, linked.com, mirror.fr, nesp.com, dslawn.com, oneway.fr, neschllc.com, xjnmi.com, vnoc.com, intbot.ai, ljgyp.net, fundchannel.com, szsbs.net, sandhillradio.com, oracle-ag.ch, eyes-armour.com, zhaowoo.net, formwerks.ca, mezapro.com.br, 1go.fr, jiangsufuji.com, fzfortune.net, chedermenachem.org, fittingmold.net, itmanage.net, arista.fr, computerzone.com, abc-distribution.fr, eb5aig.net, grandplace.fr, reservationcenter.com, einpl.com, energy-efficiency-network.cz, gdsaiqi.com, bestwanhui.com, bisonfire.com, neumann-group.com, hkbolton.com, comestibles.fr, electrode.fr, 869606.com, goldenstream.com, fxgowin.com, caviton.com, nash.fr, strongvalve.com, freda.fr, zhujigema.net, interlan.com, automations.com, handy.fr, luckywaymall.com, bank-easy.net, globalexport.com, taocimall.com, fedcomm.com, aout.fr, cariboo.fr, yijia-audio.com, vineog.com, naniwavn.com, workers.dev, chaolipack.com, intriq.ai, hashemfoods.com, dublincleaningservices.com, texans.com, navissupply.com, newoceanfood.com, photochallenge.com, bjzthb.com, eggstory.com.sg, nttdata-vds.com, cmimoulding.com, dechuangjixie.com, cnkejie.com, reteck.net, dartong.net, mamaromaonline.com, marinehub.com, 8189330.cn, filmteck.com, buildcorp.com, proximus.fr, apeloa-kangyu.com, maymacanphu.com, fireprotectioninc.com, motossenda.com, petitspois.fr, ranbuild.com.au, 360-xj.com, jucyvietnam.com, xjwfcj.com, eaststeel.net, appservice.com, sglcfj.com, patentboard.com, constructionforum.com, pet-bottle.net, meeshamoultonlaw.com, thierrymerlincherrier.fr, realtyconsultant.com, myqo.com, prbot.ai, fatbit.com, devaconcept.fr, datacommunications.com, miamitelevision.com, cannabiscorp.com, decaconsultancy.com, gemcats.com, liyubelt.net.cn, zsnet.net, medbrokers.com, topigx.com, meridianoutboard.com, mercadobitcoin.com.br, energystorage.com, sdfengze.net, fyinn.net, monreve.fr, physnum.com, luxecatering.com.sg, china114.net, venturebuilder.com, propetchina.com, tapotefreelance.com, 1800ventures.com, vladimir.fr, exceptions.fr, hightech.net, fielders.com.au, smartbuildings.com, bluescopedistribution.com.au, vinagreenplus.com, houstmust.com, hy189.net, calzaturificioeveryn.it, germanpool-nb.com, ike.fr, xjhongshun.com, steel.com.au, isofh.com, geneoffice.com.sg, gazoline.fr, lecottage.fr, cornerstaffing.com, geochem.org, food-machines.net, malto.icu, alptech.fr, dmln.net, shzhongyi.net |
| 106.228.30.•••:18789 | Assistant | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Jiangxi | 28/06/2026, 00:59:02 | 04/07/2026, 19:16:26 | Yes | No | - | CVE-2009-4593 | 28/06/2026, 02:27:40 | bta.net.cn |
| 240e:37c:f33:6700:12ff:e0ff:fe5f:2e46:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS140329 | CHINATELECOM Fujian province Fuzhou 5G network | China Telecom IPv6 Broadband Address | 28/06/2026, 00:59:01 | 01/07/2026, 03:23:18 | - | - | - | - | - | - |
| 104.225.141.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS396949 | Kamatera, Inc. | Kamatera US TX | 28/06/2026, 00:59:01 | 28/06/2026, 15:56:58 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 02:27:49 | - |
| 37.120.29.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS50436 | Tele Columbus AG | Tele Columbus | 28/06/2026, 00:59:00 | 28/06/2026, 07:24:22 | No | No | - | CVE-2016-10735, CVE-2018-14040, CVE-2018-14042, CVE-2018-20676, CVE-2018-20677, CVE-2019-8331, CVE-2024-6484, CVE-2024-6485 | 28/06/2026, 02:27:56 | - |
| 45.197.146.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS134365 | Ansheng Network Technology Co., Limited | OneFiveEight Cloud Computing | 28/06/2026, 00:59:00 | 28/06/2026, 23:03:27 | No | Yes | APT37, El-Machete | - | 28/06/2026, 02:27:58 | - |
| 47.112.27.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 28/06/2026, 00:59:00 | 13/07/2026, 04:13:51 | No | No | - | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 02:28:05 | - |
| 167.233.48.•••:18789 | - | 🇩🇪 Germany | - | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 28/06/2026, 00:58:59 | 12/07/2026, 18:58:22 | - | - | - | - | - | - |
| 86.48.23.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS40021 | Contabo Inc. | Contabo | 28/06/2026, 00:58:58 | 13/07/2026, 17:49:43 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 02:28:19 | contaboserver.net, contabo.de, contabo.net |
| 2409:8a70:104b:6040:8bbc:c60:4a6b:b5e2:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS9808 | China Mobile Communications Group Co., Ltd. | China Mobile | 28/06/2026, 00:57:03 | 05/07/2026, 02:22:17 | - | - | - | - | - | - |
| 43.129.229.•••:18789 | - | 🇭🇰 Hong Kong | - | true | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 28/06/2026, 00:57:02 | 14/07/2026, 03:47:21 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 28/06/2026, 01:00:50 | tencent.com |
| 35.79.211.•••:18789 | - | 🇯🇵 Japan | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services Japan | 28/06/2026, 00:57:02 | 14/07/2026, 03:47:43 | No | No | - | CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419 | 28/06/2026, 01:00:52 | - |
| 104.225.141.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS396949 | Kamatera, Inc. | Kamatera US TX | 28/06/2026, 00:57:02 | 30/06/2026, 00:44:59 | No | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 01:00:53 | - |
| 37.120.29.•••:18789 | - | 🇩🇪 Germany | - | false | Clean | AS50436 | Tele Columbus AG | Tele Columbus | 28/06/2026, 00:57:02 | 29/06/2026, 19:00:17 | No | No | - | CVE-2016-10735, CVE-2018-14040, CVE-2018-14042, CVE-2018-20676, CVE-2018-20677, CVE-2019-8331, CVE-2024-6484, CVE-2024-6485 | 28/06/2026, 01:00:54 | - |
| 2403:6200:8821:a6be:9209:d0ff:fe3c:73f1:18789 | - | 🇹🇭 Thailand | - | true | Clean | AS45758 | Triple T Broadband Public Company Limited | Triple T Broadband | 28/06/2026, 00:20:06 | 13/07/2026, 06:26:01 | - | - | - | - | - | - |
| 151.241.155.•••:443 | - | 🇫🇮 Finland | Yes | false | Clean | AS57043 | HOSTKEY B.V. | Hostkey | 28/06/2026, 00:20:06 | 05/07/2026, 06:02:15 | No | No | - | CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 01:48:11 | - |
| 44.226.230.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 28/06/2026, 00:20:05 | 12/07/2026, 22:36:11 | No | No | - | - | 22/06/2026, 01:48:16 | - |
| 156.248.10.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS151407 | Hytron Network Services Limited | Hytron Network Services | 28/06/2026, 00:20:05 | 01/07/2026, 17:46:53 | No | No | - | CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 01:48:19 | - |
| 39.106.84.•••:18789 | - | 🇽🇽 XX | Yes | true | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Unknown | 28/06/2026, 00:20:04 | 13/07/2026, 09:17:29 | Yes | Yes | Packrat | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 01:48:25 | aliyun.com |
| 45.246.43.•••:18789 | - | 🇪🇬 Egypt | Yes | false | Leaked | AS24863 | LINKdotNET AS number | Link Egypt | 28/06/2026, 00:20:03 | 01/07/2026, 15:37:57 | Yes | No | - | CVE-2019-7659 | 28/06/2026, 01:48:40 | orange.co.ke, francetelecom.com, orange-store.com, sosh.fr, orangegaming.com, orange-bissau.com, orange.com, fondationorange.com, site-visibilite-orange.fr, cartier.us, orange-guinee.com, orangecustomers.net, orange-business.com, orange-sonatel.com, orange.sl, orange-sports.fr, monsite-orange.fr, orange.jobs, orangemoney.fr, orange-studio.fr, orangefab.com, orangefilms.fr |
| 117.50.181.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS23724 | IDC, China Telecommunications Corporation / AS4808 China Unicom Beijing Province Network | UCloud | 28/06/2026, 00:20:03 | 28/06/2026, 10:19:36 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2005-0004, CVE-2012-0540, CVE-2012-0572, CVE-2012-0574, CVE-2012-0578, CVE-2012-1688, CVE-2012-1689, CVE-2012-1690, CVE-2012-1697, CVE-2012-1702, CVE-2012-1703, CVE-2012-1705, CVE-2012-1734, CVE-2012-1735, CVE-2012-1756, CVE-2012-1757, CVE-2012-2750, CVE-2012-3150, CVE-2012-3158, CVE-2012-3160, CVE-2012-3163, CVE-2012-3166, CVE-2012-3167, CVE-2012-3173, CVE-2012-3177, CVE-2012-3180, CVE-2012-3197, CVE-2012-5060, CVE-2012-5096, CVE-2012-5612, CVE-2012-5614, CVE-2012-5627, CVE-2013-0367, CVE-2013-0368, CVE-2013-0371, CVE-2013-0383, CVE-2013-0384, CVE-2013-0385, CVE-2013-0386, CVE-2013-0389, CVE-2013-1502, CVE-2013-1506, CVE-2013-1511, CVE-2013-1512, CVE-2013-1521, CVE-2013-1523, CVE-2013-1526, CVE-2013-1531, CVE-2013-1532, CVE-2013-1544, CVE-2013-1548, CVE-2013-1552, CVE-2013-1555, CVE-2013-1861, CVE-2013-2375, CVE-2013-2376, CVE-2013-2378, CVE-2013-2389, CVE-2013-2391, CVE-2013-2392, CVE-2013-3783, CVE-2013-3793, CVE-2013-3794, CVE-2013-3801, CVE-2013-3802, CVE-2013-3804, CVE-2013-3805, CVE-2013-3808, CVE-2013-3809, CVE-2013-3812, CVE-2013-3839, CVE-2013-5807, CVE-2013-5891, CVE-2013-5908, CVE-2014-0001, CVE-2014-0384, CVE-2014-0386, CVE-2014-0393, CVE-2014-0401, CVE-2014-0402, CVE-2014-0412, CVE-2014-0420, CVE-2014-0437, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431, CVE-2014-2432, CVE-2014-2436, CVE-2014-2438, CVE-2014-2440, CVE-2014-2494, CVE-2014-4207, CVE-2014-4243, CVE-2014-4258, CVE-2014-4260, CVE-2014-4274, CVE-2014-4287, CVE-2014-6463, CVE-2014-6464, CVE-2014-6469, CVE-2014-6478, CVE-2014-6484, CVE-2014-6491, CVE-2014-6494, CVE-2014-6495, CVE-2014-6496, CVE-2014-6500, CVE-2014-6505, CVE-2014-6507, CVE-2014-6520, CVE-2014-6530, CVE-2014-6551, CVE-2014-6555, CVE-2014-6559, CVE-2014-6568, CVE-2015-0374, CVE-2015-0381, CVE-2015-0382, CVE-2015-0391, CVE-2015-0411, CVE-2015-0432, CVE-2015-0433, CVE-2015-0441, CVE-2015-0499, CVE-2015-0501, CVE-2015-0505, CVE-2015-2325, CVE-2015-2568, CVE-2015-2571, CVE-2015-2573, CVE-2015-2582, CVE-2015-2620, CVE-2015-2643, CVE-2015-2648, CVE-2015-3152, CVE-2015-4752, CVE-2015-4757, CVE-2015-4792, CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4864, CVE-2015-4870, CVE-2015-4879, CVE-2015-4913, CVE-2015-7744, CVE-2016-0502, CVE-2016-0610, CVE-2016-0616, CVE-2016-0642, CVE-2016-0651, CVE-2016-10708, CVE-2016-20012, CVE-2016-3471, CVE-2016-3492, CVE-2016-5584, CVE-2016-5612, CVE-2016-5624, CVE-2016-5626, CVE-2016-5629, CVE-2016-6664, CVE-2016-7440, CVE-2016-9843, CVE-2017-10268, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384, CVE-2017-15365, CVE-2017-15906, CVE-2017-15945, CVE-2017-3238, CVE-2017-3243, CVE-2017-3244, CVE-2017-3258, CVE-2017-3265, CVE-2017-3291, CVE-2017-3302, CVE-2017-3308, CVE-2017-3309, CVE-2017-3312, CVE-2017-3313, CVE-2017-3317, CVE-2017-3318, CVE-2017-3453, CVE-2017-3456, CVE-2017-3464, CVE-2017-3600, CVE-2017-3636, CVE-2017-3641, CVE-2017-3651, CVE-2017-3653, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668, CVE-2018-2755, CVE-2018-2761, CVE-2018-2767, CVE-2018-2771, CVE-2018-2781, CVE-2018-2813, CVE-2018-2817, CVE-2018-2819, CVE-2018-3058, CVE-2018-3063, CVE-2018-3066, CVE-2018-3081, CVE-2018-3133, CVE-2018-3174, CVE-2018-3282, CVE-2019-2455, CVE-2019-2481, CVE-2019-2503, CVE-2019-2529, CVE-2019-2614, CVE-2019-2627, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2805, CVE-2019-2974, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-14550, CVE-2020-15778, CVE-2020-2574, CVE-2020-2752, CVE-2020-2780, CVE-2020-2812, CVE-2020-28912, CVE-2020-2922, CVE-2021-2007, CVE-2021-2011, CVE-2021-2144, CVE-2021-36368, CVE-2021-41617, CVE-2021-46659, CVE-2021-46666, CVE-2021-46667, CVE-2021-46669, CVE-2022-27385, CVE-2022-27449, CVE-2022-31621, CVE-2022-31622, CVE-2022-31623, CVE-2022-31624, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-5157 | 28/06/2026, 01:48:46 | ucloud.cn |
| 85.214.91.•••:443 | - | 🇩🇪 Germany | Yes | true | Leaked | AS6724 | STRATO AG | Strato Data Center | 28/06/2026, 00:20:02 | 11/07/2026, 07:59:50 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387 | 28/06/2026, 01:48:51 | strato.de |
| 184.32.138.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 28/06/2026, 00:20:02 | 28/06/2026, 10:19:35 | - | - | - | - | - | - |
| 183.239.63.•••:3001 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS9808 | China Mobile Communications Group Co., Ltd. | China Mobile | 28/06/2026, 00:20:01 | 10/07/2026, 04:12:45 | Yes | No | - | CVE-2014-4078 | 28/06/2026, 01:49:01 | chinamobile.com, chinamobile.cn |
| 101.96.200.•••:443 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS137718 | Beijing Volcano Engine Technology Co., Ltd. | Beijing Volcano Engine Technology | 28/06/2026, 00:20:01 | 13/07/2026, 09:17:28 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 01:49:06 | bytedance.com |
| 2403:6200:8821:a6be:9209:d0ff:fe3c:73f1:18789 | - | 🇹🇭 Thailand | - | true | Clean | AS45758 | Triple T Broadband Public Company Limited | Triple T Broadband | 28/06/2026, 00:18:13 | 13/07/2026, 02:07:45 | - | - | - | - | - | - |
| 34.41.251.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS396982 | Google LLC | 28/06/2026, 00:18:13 | 28/06/2026, 06:00:46 | No | - | - | CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728 | 28/06/2026, 00:22:11 | - | |
| 151.241.155.•••:18789 | - | 🇫🇮 Finland | - | false | Clean | AS57043 | HOSTKEY B.V. | Hostkey | 28/06/2026, 00:18:13 | 05/07/2026, 03:09:03 | No | No | - | CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 00:22:13 | - |
| 34.192.63.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 28/06/2026, 00:18:12 | 28/06/2026, 09:34:33 | No | Yes | APT14, APT28, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2006-20001, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-23419, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020 | 28/06/2026, 00:22:16 | - |
| 44.226.230.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 28/06/2026, 00:18:12 | 12/07/2026, 17:34:51 | No | No | - | - | 22/06/2026, 00:22:20 | - |
| 156.248.10.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS151407 | Hytron Network Services Limited | Hytron Network Services | 28/06/2026, 00:18:12 | 01/07/2026, 14:09:43 | No | No | - | CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 05:19:56 | - |
| 39.106.84.•••:18789 | - | 🇽🇽 XX | Yes | true | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Unknown | 28/06/2026, 00:18:11 | 13/07/2026, 04:58:20 | Yes | Yes | Packrat | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 05:20:02 | aliyun.com |
| 38.76.172.•••:18789 | - | 🇭🇰 Hong Kong | - | false | Leaked | AS401701 | cognetcloud INC | Hong Kong Cloud Network Technology Co Ltd | 28/06/2026, 00:18:11 | 13/07/2026, 09:15:10 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 05:20:05 | cogentco.com, anlink.net, wisehousetech.com, baselinewoods.com, alghanitex.com, brownsprinting.com, geochem.org |
| 45.246.43.•••:18789 | - | 🇪🇬 Egypt | Yes | false | Leaked | AS24863 | LINKdotNET AS number | Link Egypt | 28/06/2026, 00:18:09 | 01/07/2026, 11:59:30 | Yes | No | - | CVE-2019-7659 | 28/06/2026, 05:20:17 | orange.co.ke, francetelecom.com, orange-store.com, sosh.fr, orangegaming.com, orange-bissau.com, orange.com, fondationorange.com, site-visibilite-orange.fr, cartier.us, orange-guinee.com, orangecustomers.net, orange-business.com, orange-sonatel.com, orange.sl, orange-sports.fr, monsite-orange.fr, orange.jobs, orangemoney.fr, orange-studio.fr, orangefab.com, orangefilms.fr |
| 117.50.181.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS23724 | IDC, China Telecommunications Corporation / AS4808 China Unicom Beijing Province Network | UCloud | 28/06/2026, 00:18:09 | 28/06/2026, 06:43:12 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2005-0004, CVE-2012-0540, CVE-2012-0572, CVE-2012-0574, CVE-2012-0578, CVE-2012-1688, CVE-2012-1689, CVE-2012-1690, CVE-2012-1697, CVE-2012-1702, CVE-2012-1703, CVE-2012-1705, CVE-2012-1734, CVE-2012-1735, CVE-2012-1756, CVE-2012-1757, CVE-2012-2750, CVE-2012-3150, CVE-2012-3158, CVE-2012-3160, CVE-2012-3163, CVE-2012-3166, CVE-2012-3167, CVE-2012-3173, CVE-2012-3177, CVE-2012-3180, CVE-2012-3197, CVE-2012-5060, CVE-2012-5096, CVE-2012-5612, CVE-2012-5614, CVE-2012-5627, CVE-2013-0367, CVE-2013-0368, CVE-2013-0371, CVE-2013-0383, CVE-2013-0384, CVE-2013-0385, CVE-2013-0386, CVE-2013-0389, CVE-2013-1502, CVE-2013-1506, CVE-2013-1511, CVE-2013-1512, CVE-2013-1521, CVE-2013-1523, CVE-2013-1526, CVE-2013-1531, CVE-2013-1532, CVE-2013-1544, CVE-2013-1548, CVE-2013-1552, CVE-2013-1555, CVE-2013-1861, CVE-2013-2375, CVE-2013-2376, CVE-2013-2378, CVE-2013-2389, CVE-2013-2391, CVE-2013-2392, CVE-2013-3783, CVE-2013-3793, CVE-2013-3794, CVE-2013-3801, CVE-2013-3802, CVE-2013-3804, CVE-2013-3805, CVE-2013-3808, CVE-2013-3809, CVE-2013-3812, CVE-2013-3839, CVE-2013-5807, CVE-2013-5891, CVE-2013-5908, CVE-2014-0001, CVE-2014-0384, CVE-2014-0386, CVE-2014-0393, CVE-2014-0401, CVE-2014-0402, CVE-2014-0412, CVE-2014-0420, CVE-2014-0437, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431, CVE-2014-2432, CVE-2014-2436, CVE-2014-2438, CVE-2014-2440, CVE-2014-2494, CVE-2014-4207, CVE-2014-4243, CVE-2014-4258, CVE-2014-4260, CVE-2014-4274, CVE-2014-4287, CVE-2014-6463, CVE-2014-6464, CVE-2014-6469, CVE-2014-6478, CVE-2014-6484, CVE-2014-6491, CVE-2014-6494, CVE-2014-6495, CVE-2014-6496, CVE-2014-6500, CVE-2014-6505, CVE-2014-6507, CVE-2014-6520, CVE-2014-6530, CVE-2014-6551, CVE-2014-6555, CVE-2014-6559, CVE-2014-6568, CVE-2015-0374, CVE-2015-0381, CVE-2015-0382, CVE-2015-0391, CVE-2015-0411, CVE-2015-0432, CVE-2015-0433, CVE-2015-0441, CVE-2015-0499, CVE-2015-0501, CVE-2015-0505, CVE-2015-2325, CVE-2015-2568, CVE-2015-2571, CVE-2015-2573, CVE-2015-2582, CVE-2015-2620, CVE-2015-2643, CVE-2015-2648, CVE-2015-3152, CVE-2015-4752, CVE-2015-4757, CVE-2015-4792, CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4864, CVE-2015-4870, CVE-2015-4879, CVE-2015-4913, CVE-2015-7744, CVE-2016-0502, CVE-2016-0610, CVE-2016-0616, CVE-2016-0642, CVE-2016-0651, CVE-2016-10708, CVE-2016-20012, CVE-2016-3471, CVE-2016-3492, CVE-2016-5584, CVE-2016-5612, CVE-2016-5624, CVE-2016-5626, CVE-2016-5629, CVE-2016-6664, CVE-2016-7440, CVE-2016-9843, CVE-2017-10268, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384, CVE-2017-15365, CVE-2017-15906, CVE-2017-15945, CVE-2017-3238, CVE-2017-3243, CVE-2017-3244, CVE-2017-3258, CVE-2017-3265, CVE-2017-3291, CVE-2017-3302, CVE-2017-3308, CVE-2017-3309, CVE-2017-3312, CVE-2017-3313, CVE-2017-3317, CVE-2017-3318, CVE-2017-3453, CVE-2017-3456, CVE-2017-3464, CVE-2017-3600, CVE-2017-3636, CVE-2017-3641, CVE-2017-3651, CVE-2017-3653, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668, CVE-2018-2755, CVE-2018-2761, CVE-2018-2767, CVE-2018-2771, CVE-2018-2781, CVE-2018-2813, CVE-2018-2817, CVE-2018-2819, CVE-2018-3058, CVE-2018-3063, CVE-2018-3066, CVE-2018-3081, CVE-2018-3133, CVE-2018-3174, CVE-2018-3282, CVE-2019-2455, CVE-2019-2481, CVE-2019-2503, CVE-2019-2529, CVE-2019-2614, CVE-2019-2627, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2805, CVE-2019-2974, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-14550, CVE-2020-15778, CVE-2020-2574, CVE-2020-2752, CVE-2020-2780, CVE-2020-2812, CVE-2020-28912, CVE-2020-2922, CVE-2021-2007, CVE-2021-2011, CVE-2021-2144, CVE-2021-36368, CVE-2021-41617, CVE-2021-46659, CVE-2021-46666, CVE-2021-46667, CVE-2021-46669, CVE-2022-27385, CVE-2022-27449, CVE-2022-31621, CVE-2022-31622, CVE-2022-31623, CVE-2022-31624, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-5157 | 28/06/2026, 05:20:26 | ucloud.cn |
| 80.80.96.•••:18789 | - | 🇷🇺 Russia | - | false | Leaked | AS8359 | MTS PJSC | Digital Telephone Lines Ltd | 28/06/2026, 00:18:09 | 28/06/2026, 07:26:09 | Yes | Yes | APT28, GreyEnergy Group, SandCat | CVE-2017-9765, CVE-2019-7659 | 28/06/2026, 05:20:28 | irteya.ru, rubank.ru, newtown.ru, perm.su, aaanet.ru, triomed.pro, mtu-net.ru, vrnt.ru, sandy.ru, perm.ru, mtsgsm.com, karofilm.ru, lepse.com, nis-glonass.ru, sogaz.ru, udmurt.ru, comstar-uts.ru, kamas.ru, mts.ru |
| 184.32.138.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 28/06/2026, 00:18:07 | 28/06/2026, 06:43:11 | - | - | - | - | - | - |
| 103.31.141.•••:18789 | - | 🇮🇳 India | - | false | Leaked | AS138296 | Juweriyah Networks Private Limited | Keva Kaipo Industries | 28/06/2026, 00:18:07 | 28/06/2026, 06:43:10 | Yes | No | - | CVE-2017-8923, CVE-2019-11048, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2022-31628, CVE-2022-31629, CVE-2022-37454, CVE-2022-4900, CVE-2024-39894, CVE-2024-6387, CVE-2024-6484, CVE-2024-6485, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 05:20:42 | www.in |
| 123.56.102.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 28/06/2026, 00:18:06 | 12/07/2026, 20:25:54 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419 | 28/06/2026, 05:20:48 | aliyun.com |
| 2403:6200:8821:a6be:9209:d0ff:fe3c:73f1:18789 | - | 🇹🇭 Thailand | - | true | Clean | AS45758 | Triple T Broadband Public Company Limited | Triple T Broadband | 28/06/2026, 00:16:13 | 13/07/2026, 02:05:50 | - | - | - | - | - | - |
| 34.41.251.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS396982 | Google LLC | 28/06/2026, 00:16:12 | 28/06/2026, 05:58:56 | No | - | - | CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728 | 28/06/2026, 02:26:02 | - | |
| 151.241.155.•••:18789 | - | 🇫🇮 Finland | - | false | Clean | AS57043 | HOSTKEY B.V. | Hostkey | 28/06/2026, 00:16:12 | 05/07/2026, 03:07:04 | No | No | - | CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 02:26:05 | - |
| 34.192.63.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 28/06/2026, 00:16:12 | 28/06/2026, 09:32:43 | No | Yes | APT14, APT28, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2006-20001, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-23419, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020 | 28/06/2026, 02:26:09 | - |
| 44.226.230.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 28/06/2026, 00:16:11 | 12/07/2026, 17:32:54 | No | No | - | - | 22/06/2026, 02:26:13 | - |
| 156.248.10.•••:18789 | - | 🇭🇰 Hong Kong | Yes | false | Clean | AS151407 | Hytron Network Services Limited | Hytron Network Services | 28/06/2026, 00:16:11 | 01/07/2026, 14:07:39 | No | No | - | CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 02:26:16 | - |
| 39.106.84.•••:18789 | - | 🇽🇽 XX | Yes | true | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Unknown | 28/06/2026, 00:16:10 | 13/07/2026, 04:56:27 | Yes | Yes | Packrat | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 02:26:22 | aliyun.com |
| 38.76.172.•••:18789 | - | 🇭🇰 Hong Kong | - | false | Leaked | AS401701 | cognetcloud INC | Hong Kong Cloud Network Technology Co Ltd | 28/06/2026, 00:16:10 | 13/07/2026, 09:13:10 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 02:26:24 | cogentco.com, anlink.net, wisehousetech.com, baselinewoods.com, alghanitex.com, brownsprinting.com, geochem.org |
| 45.246.43.•••:18789 | - | 🇪🇬 Egypt | Yes | false | Leaked | AS24863 | LINKdotNET AS number | Link Egypt | 28/06/2026, 00:16:09 | 01/07/2026, 11:57:37 | Yes | No | - | CVE-2019-7659 | 28/06/2026, 02:26:39 | orange.co.ke, francetelecom.com, orange-store.com, sosh.fr, orangegaming.com, orange-bissau.com, orange.com, fondationorange.com, site-visibilite-orange.fr, cartier.us, orange-guinee.com, orangecustomers.net, orange-business.com, orange-sonatel.com, orange.sl, orange-sports.fr, monsite-orange.fr, orange.jobs, orangemoney.fr, orange-studio.fr, orangefab.com, orangefilms.fr |
| 117.50.181.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS23724 | IDC, China Telecommunications Corporation / AS4808 China Unicom Beijing Province Network | UCloud | 28/06/2026, 00:16:08 | 28/06/2026, 06:41:22 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2005-0004, CVE-2012-0540, CVE-2012-0572, CVE-2012-0574, CVE-2012-0578, CVE-2012-1688, CVE-2012-1689, CVE-2012-1690, CVE-2012-1697, CVE-2012-1702, CVE-2012-1703, CVE-2012-1705, CVE-2012-1734, CVE-2012-1735, CVE-2012-1756, CVE-2012-1757, CVE-2012-2750, CVE-2012-3150, CVE-2012-3158, CVE-2012-3160, CVE-2012-3163, CVE-2012-3166, CVE-2012-3167, CVE-2012-3173, CVE-2012-3177, CVE-2012-3180, CVE-2012-3197, CVE-2012-5060, CVE-2012-5096, CVE-2012-5612, CVE-2012-5614, CVE-2012-5627, CVE-2013-0367, CVE-2013-0368, CVE-2013-0371, CVE-2013-0383, CVE-2013-0384, CVE-2013-0385, CVE-2013-0386, CVE-2013-0389, CVE-2013-1502, CVE-2013-1506, CVE-2013-1511, CVE-2013-1512, CVE-2013-1521, CVE-2013-1523, CVE-2013-1526, CVE-2013-1531, CVE-2013-1532, CVE-2013-1544, CVE-2013-1548, CVE-2013-1552, CVE-2013-1555, CVE-2013-1861, CVE-2013-2375, CVE-2013-2376, CVE-2013-2378, CVE-2013-2389, CVE-2013-2391, CVE-2013-2392, CVE-2013-3783, CVE-2013-3793, CVE-2013-3794, CVE-2013-3801, CVE-2013-3802, CVE-2013-3804, CVE-2013-3805, CVE-2013-3808, CVE-2013-3809, CVE-2013-3812, CVE-2013-3839, CVE-2013-5807, CVE-2013-5891, CVE-2013-5908, CVE-2014-0001, CVE-2014-0384, CVE-2014-0386, CVE-2014-0393, CVE-2014-0401, CVE-2014-0402, CVE-2014-0412, CVE-2014-0420, CVE-2014-0437, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431, CVE-2014-2432, CVE-2014-2436, CVE-2014-2438, CVE-2014-2440, CVE-2014-2494, CVE-2014-4207, CVE-2014-4243, CVE-2014-4258, CVE-2014-4260, CVE-2014-4274, CVE-2014-4287, CVE-2014-6463, CVE-2014-6464, CVE-2014-6469, CVE-2014-6478, CVE-2014-6484, CVE-2014-6491, CVE-2014-6494, CVE-2014-6495, CVE-2014-6496, CVE-2014-6500, CVE-2014-6505, CVE-2014-6507, CVE-2014-6520, CVE-2014-6530, CVE-2014-6551, CVE-2014-6555, CVE-2014-6559, CVE-2014-6568, CVE-2015-0374, CVE-2015-0381, CVE-2015-0382, CVE-2015-0391, CVE-2015-0411, CVE-2015-0432, CVE-2015-0433, CVE-2015-0441, CVE-2015-0499, CVE-2015-0501, CVE-2015-0505, CVE-2015-2325, CVE-2015-2568, CVE-2015-2571, CVE-2015-2573, CVE-2015-2582, CVE-2015-2620, CVE-2015-2643, CVE-2015-2648, CVE-2015-3152, CVE-2015-4752, CVE-2015-4757, CVE-2015-4792, CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4864, CVE-2015-4870, CVE-2015-4879, CVE-2015-4913, CVE-2015-7744, CVE-2016-0502, CVE-2016-0610, CVE-2016-0616, CVE-2016-0642, CVE-2016-0651, CVE-2016-10708, CVE-2016-20012, CVE-2016-3471, CVE-2016-3492, CVE-2016-5584, CVE-2016-5612, CVE-2016-5624, CVE-2016-5626, CVE-2016-5629, CVE-2016-6664, CVE-2016-7440, CVE-2016-9843, CVE-2017-10268, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384, CVE-2017-15365, CVE-2017-15906, CVE-2017-15945, CVE-2017-3238, CVE-2017-3243, CVE-2017-3244, CVE-2017-3258, CVE-2017-3265, CVE-2017-3291, CVE-2017-3302, CVE-2017-3308, CVE-2017-3309, CVE-2017-3312, CVE-2017-3313, CVE-2017-3317, CVE-2017-3318, CVE-2017-3453, CVE-2017-3456, CVE-2017-3464, CVE-2017-3600, CVE-2017-3636, CVE-2017-3641, CVE-2017-3651, CVE-2017-3653, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668, CVE-2018-2755, CVE-2018-2761, CVE-2018-2767, CVE-2018-2771, CVE-2018-2781, CVE-2018-2813, CVE-2018-2817, CVE-2018-2819, CVE-2018-3058, CVE-2018-3063, CVE-2018-3066, CVE-2018-3081, CVE-2018-3133, CVE-2018-3174, CVE-2018-3282, CVE-2019-2455, CVE-2019-2481, CVE-2019-2503, CVE-2019-2529, CVE-2019-2614, CVE-2019-2627, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2805, CVE-2019-2974, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-14550, CVE-2020-15778, CVE-2020-2574, CVE-2020-2752, CVE-2020-2780, CVE-2020-2812, CVE-2020-28912, CVE-2020-2922, CVE-2021-2007, CVE-2021-2011, CVE-2021-2144, CVE-2021-36368, CVE-2021-41617, CVE-2021-46659, CVE-2021-46666, CVE-2021-46667, CVE-2021-46669, CVE-2022-27385, CVE-2022-27449, CVE-2022-31621, CVE-2022-31622, CVE-2022-31623, CVE-2022-31624, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-5157 | 28/06/2026, 02:26:45 | ucloud.cn |
| 80.80.96.•••:18789 | - | 🇷🇺 Russia | - | false | Leaked | AS8359 | MTS PJSC | Digital Telephone Lines Ltd | 28/06/2026, 00:16:08 | 28/06/2026, 07:24:20 | Yes | Yes | APT28, GreyEnergy Group, SandCat | CVE-2017-9765, CVE-2019-7659 | 28/06/2026, 02:26:47 | irteya.ru, rubank.ru, newtown.ru, perm.su, aaanet.ru, triomed.pro, mtu-net.ru, vrnt.ru, sandy.ru, perm.ru, mtsgsm.com, karofilm.ru, lepse.com, nis-glonass.ru, sogaz.ru, udmurt.ru, comstar-uts.ru, kamas.ru, mts.ru |
| 85.214.91.•••:18789 | - | 🇩🇪 Germany | - | true | Leaked | AS6724 | STRATO AG | Strato Data Center | 28/06/2026, 00:16:07 | 14/07/2026, 03:48:55 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387 | 28/06/2026, 02:26:52 | strato.de |
| 184.32.138.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 28/06/2026, 00:16:06 | 28/06/2026, 06:41:20 | - | - | - | - | - | - |
| 103.31.141.•••:18789 | - | 🇮🇳 India | - | false | Leaked | AS138296 | Juweriyah Networks Private Limited | Keva Kaipo Industries | 28/06/2026, 00:16:05 | 28/06/2026, 06:41:20 | Yes | No | - | CVE-2017-8923, CVE-2019-11048, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2022-31628, CVE-2022-31629, CVE-2022-37454, CVE-2022-4900, CVE-2024-39894, CVE-2024-6387, CVE-2024-6484, CVE-2024-6485, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 28/06/2026, 02:27:00 | www.in |
| 34.41.251.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS396982 | Google LLC | 28/06/2026, 00:14:04 | 29/06/2026, 17:33:39 | No | - | - | CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728 | 28/06/2026, 00:14:56 | - | |
| 80.80.96.•••:18789 | - | 🇷🇺 Russia | - | false | Leaked | AS8359 | MTS PJSC | Digital Telephone Lines Ltd | 28/06/2026, 00:14:03 | 29/06/2026, 18:16:40 | Yes | Yes | APT28, GreyEnergy Group, SandCat | CVE-2017-9765, CVE-2019-7659 | 28/06/2026, 00:15:03 | irteya.ru, rubank.ru, newtown.ru, perm.su, aaanet.ru, triomed.pro, mtu-net.ru, vrnt.ru, sandy.ru, perm.ru, mtsgsm.com, karofilm.ru, lepse.com, nis-glonass.ru, sogaz.ru, udmurt.ru, comstar-uts.ru, kamas.ru, mts.ru |
| 103.76.120.•••:18789 | - | 🇮🇩 Indonesia | Yes | true | Clean | AS136052 | PT Cloud Hosting Indonesia | Phylot Solusi Integrasi | 28/06/2026, 00:14:03 | 14/07/2026, 03:47:48 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 28/06/2026, 00:15:05 | idcloudhost.com |