🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 1006105 Page: 311 / 10062 (100 per page) Showing: 31001-31100 Last Imported: 14/07/2026, 07:44:58
🇨🇳 483,673
🇺🇸 290,578
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 35.208.122.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS15169 | Google LLC / AS43515 YOUTUBE | 26/06/2026, 12:40:58 | 12/07/2026, 21:51:05 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 17:46:11 | - | |
| 104.21.55.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS13335 | Cloudflare, Inc. | Cloudflare | 26/06/2026, 12:40:58 | 26/06/2026, 19:09:24 | Yes | No | - | - | 26/06/2026, 17:46:18 | streamshop.com, vpnserver.com, anvilironworks.ca, shenji-titanium.com, fuyuanwj.com, jewishcm.org, co.nl, applications.com, educorp.com, vcorp.com, sh-hibo.com, jxxlxj.com, darkreading.com, chabadhollywoodwest.com, catuan.net, contentmanager.com, cwsse.com.cn, drtognotti.com, dermira.com, tshlkj.net, iotworldtoday.com, byteboard.com, sdkyjt.net, luckyplastic.net, chabadwindsor.com, ics-line.com, forumcorp.com, dataloop.com, 51yuezhi.com, hzfeidi.com, limpiom.net, salonnews.com, energyservices.com, sz-jl.com, ftfyempireevent.com, jewishtowson.com, youthstream.com, jetreacare.com, hbbygd88.com, avanlerberghe.com, 277312.com, bstab.com, cityfied.net, playergroup.com, globalsolutions.com, rightwaytrading.net, xintec.hk, hqpots.com, wenchyuan.com, natuzzigroup.com, informationsystems.com, meter.ln.cn, cxdingli.com, billingcenter.com, anlink.net, globalexchange.net, petloves.com.br, jxygcy.com, xl-flex.com, yac-agcc.com, tourservices.com, hmcxjc.com, itprotoday.com, originalsoulvegetarian.com, jindianglass.net, shsinotech.com, shczhsyy.com, doolittleganos.com, vbankph.com, wallofportfolios.com, gipnutmeg.com, xjhhcm.com, jiuliproduce.com, ytxweb.net, eurobank.com, alsuyar.net, graphicconnection.com, naseni.gov.ng, xiaoshejia.com, campmgmt.com, ramcolab.com, itradeonline.com, balachabad.org, gettoyourcore.com, explosystems.com, viralthread.com, wecastnetworkinc.com, petlove.com.br, retrievalmasters.com, chinasyh.net, pokies-payid.net, fiyanoventures.com, ekakitchen.com, steelforging.net, carleaseusa.com, theinnotech.net, cycleworld.com.au, jyskaiyue.com, wisehousetech.com, formationplus.fr, cloudflare.net, bluemoonoliveoil.com, ceostream.com, channel.net, terrafirma.africa, insuretech.com, gatorchucks.cn, handyman.com, co.com, lubavitch.com, galleryconnection.com, jstream.com, machinesummit.com, gamedeveloper.com, globalventures.com, kidsbud.net, karmakmakina.com, innfos.cn, ourlike.net, chicpartydress.com, bitcoinsv.com, govcoin.com, jxlingtong.com, namingsystem.com, brillantisol.fr, baselinewoods.com, poisesoft.net, luxuryventures.com, wandetech.net, hc0798.com, referral.com, willcctv.com, sciencesuite.com, pritermica.com, alghanitex.com, telecoms.com, qzz.io, birminghamneograft.com, lendstream.com, dehuiguangchang.cn, careagent.com, xjgudao.com, gransierassociates.com, vbuilders.com, porcelainchina.net, brownsprinting.com, chabadspb.org, m-printone.com, rivalcorp.com, cloudhq-mkt6.net, garyjackson.com, hzhsyr.com, biocaremalaysia.com, aboveandbeyondcleaningservices.com, socialsuite.com, forwardwirecloth.net, channelpartnersconference.com, cclvcr.com, timing-tech.com, wxkewei.com, swiftfreightlogistics.com, anichemspeciality.com, chinasand.net, homemaintenance.com, us.org, aquastorenw.com, natuzzi.it, eeh-wear.com, bolinyinwu.net, lilly.com, i2l.fr, ceconstruction.com, hzjiaolun.com, holdenbrothersfarmmarket.com, hibetw.com, chunxinghejin.com, pp.ua, tadalafilanx.com, mingstone.net, chinayinshufood.com, natuzzi.com, leisonhk.com, refee.net, xjzljt.net, gpchain.com, dongfanggufen.net, sxgas.net, wakechem.com, jialilace.com, psacloud.com.br, comecsb.com, truestory.dk, lilly.fi, customerprofile.com, yitongqingjie.com, sinotransfj.com, aibituo.net, dzrjx.net, interpraise.com, game-advertising-online.com, readystaffing.com, aptenonsjz.com, framecoframing.com, ventureos.com, maryelexports.com, yongxinco.com, code-china.com, malibupress.com, imobile.com, contrib.com, learningwire.com, leixinfoods.net, goldplateck.com, frontiersuites.com, jlhhzy.com, www.us.com, eshares.com, sanhoos.com, dldianfeng.cn, simatek.com, gaithersburgflorist.com, bamko.net, hansecontrol.com, richtechnologygroup.com, it.com, yideasa.com, jingyucn.net, lubavitchcenter.org, china-ycgkjx.com, plomberie-chauffage-ardeche.fr, oukay.net, apo-led.com, dqbxg.com, alimoglu.com, informatech.com, nbshenle.com, bnw163.net, theclubforboys.org, ebonyshemalevideos.com, beiyuecheng.com, sharemusic.es, justinboots.com, cshczfz.com, realtydao.com, hmcoptical.com, www.eu.com, eli-lilly.com, chinasotop.com, dogsparesort.com, hongyang0769.net, china-one.net, gzshengjie56.com, portcast.com, kingdisplay.net, jssd.net, eu.org, actatek.com, copaycardportal.com, investcentre.com, yangjiangshilimaoyi.com, jadzdjm.com, pesasybalanzas.com, buildfolio.com, dreamacquisition.com, tailwindgroup.com, com.de, iptunnel.com, rayinmind.com, bycast.com, www.de.com, leadstream.net, channelfutures.com, jz5288.com, guusto.io, taskmgmt.com, sloanevacations.com, lillydev.com, natuzzi.ru, kalaifashions.com, seemine.net, servicetech.com, atl-az.com, neurodyne.us, hygroup.net, shinruey.net, venturepub.com, partyworld.com, ltgjg.net, jinld.net, jollysocks.com, sport-goods.net, szlis.com.cn, vulcantowing.com, sderesources.com, northstarind.com, futurum-media.com, m-wood2.com, lnk.bio, dqkeyi.com, telecomanalysis.com, homebuilderloans.com, huadewood.com, pgi-platinum-tech.com, gaoyimall.net, vetus.com.br, calabashfd.org, linked.com, lilly-podcast.com, nesp.com, dslawn.com, lillyindia.co.in, vnoc.com, ljgyp.net, fundchannel.com, fibi.fr, szsbs.net, oracle-ag.ch, eyes-armour.com, zhaowoo.net, jiangsufuji.com, fzfortune.net, thealternativeboard.com, itmanage.net, eb5aig.net, reservationcenter.com, iirusa.com, sddyhy.net, bestwanhui.com, neumann-group.com, hkbolton.com, 869606.com, mark1airforce.com, clhosting.org, goldenstream.com, chabadgreenville.com, fxgowin.com, caviton.com, strongvalve.com, naturorama.fr, monseybcm.com, zhujigema.net, interlan.com, automations.com, luckywaymall.com, bank-easy.net, globalexport.com, taocimall.com, fedcomm.com, yijia-audio.com, workers.dev, arlindocastelao.com, chaolipack.com, lightreading.com, dublincleaningservices.com, texans.com, navissupply.com, newoceanfood.com, prnewswire.com, photochallenge.com, bjzthb.com, dechuangjixie.com, cnkejie.com, reteck.net, fairleadfinancialgroup.com, jewishgv.com, marinehub.com, thenewthings.com, 8189330.cn, filmteck.com, tigerexpressfuel.com, jack69.net, buildcorp.com, jinpac.com, flash-sonorisation.fr, motossenda.com, emalab.ae, rpbfm.fr, wallstreetandtech.com, capriloans.in, 360-xj.com, charlottecommerce.com, xjwfcj.com, co.zm, cdluniversity.org, eaststeel.net, appservice.com, sglcfj.com, nationalspecialties.net, patentboard.com, constructionforum.com, pet-bottle.net, avidrp.com, realtyconsultant.com, pollyholding.com, anhuaabrasives.net, thesaurus.ie, chabadofessex.com, importandexportspecializedequipmentandservicesinc.com, datacommunications.com, miamitelevision.com, cannabiscorp.com, l2odigital.com, gemcats.com, liyubelt.net.cn, zsnet.net, medbrokers.com, alefcenter.com, spinintel.com, energystorage.com, carmaxbolivia.com, sdfengze.net, fyinn.net, abcschools.ca, china114.net, venturebuilder.com, ameliora.fr, lassocountry.com, propetchina.com, 1800ventures.com, hightech.net, quaglino.com, houstmust.com, hy189.net, wardsauto.com, chinakangtai.net, drdobbs.com, northerncomforthvac.com, palmettochevy.com, germanpool-nb.com, entorlando.com, xjhongshun.com, vetsmart.com.br, cornerstaffing.com, health4pet.com.br, geochem.org, food-machines.net, colucid.com, dmln.net, shzhongyi.net |
| 159.75.22.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 26/06/2026, 12:40:58 | 10/07/2026, 23:24:32 | No | Yes | APT14, APT28, APT37, APT40, APT41, Cobalt Group, El-Machete, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2006-20001, CVE-2019-17567, CVE-2020-13950, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522 | 26/06/2026, 17:46:21 | - |
| 110.230.224.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Hebei | 26/06/2026, 12:40:58 | 26/06/2026, 19:09:23 | Yes | No | - | - | 26/06/2026, 17:46:24 | chinaunicom.cn |
| 115.196.131.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 26/06/2026, 12:40:57 | 26/06/2026, 18:26:24 | No | No | - | - | 20/06/2026, 17:46:28 | - |
| 222.136.125.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Henan | 26/06/2026, 12:40:57 | 26/06/2026, 19:09:23 | No | No | - | - | 20/06/2026, 17:46:30 | - |
| 141.147.75.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS31898 | Oracle Corporation | Oracle | 26/06/2026, 12:40:57 | 05/07/2026, 20:15:16 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 17:46:32 | netsuit.com, healtheintent.com, purewellness.com, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, healtheatcerner.com, oraclecloudservices.com, rsys2.net, hyperroll.com, orcale.com, oraclemobile.com, sun.co.in, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, oracleemaildelivery.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, pertmaster.com, jdedwards.com, commercialware.com, tiger-institute.org, skire.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, optika.com, jcp.org, smed.com, cernerenviza-tw.com, recruitmax.com, decisioneering.com, stortek.com, seebeyond.com, livelook.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com |
| 125.46.146.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Henan | 26/06/2026, 12:40:56 | 26/06/2026, 19:09:22 | Yes | No | - | - | 26/06/2026, 17:46:34 | chinaunicom.cn |
| 185.147.157.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS22295 | Advin Services LLC | Advin Services LLC | 26/06/2026, 12:40:56 | 11/07/2026, 20:04:50 | Yes | No | - | - | 26/06/2026, 17:46:35 | dauntlessems.com, servetech.com, loveservers.com, jcdwlaw.com, quickpacket.com |
| 128.140.43.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 26/06/2026, 12:40:56 | 27/06/2026, 07:15:09 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 26/06/2026, 17:46:44 | hetzner.com |
| 64.181.212.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS31898 | Oracle Corporation | Oracle | 26/06/2026, 12:40:56 | 26/06/2026, 19:09:21 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 17:46:46 | netsuit.com, healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, healtheatcerner.com, oracle.com, oracleoutsourcing.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, pertmaster.com, jdedwards.com, commercialware.com, tiger-institute.org, zenedge.com, skire.com, sun.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com |
| 121.63.3.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hubei | 26/06/2026, 12:40:55 | 26/06/2026, 19:09:21 | No | No | - | - | 20/06/2026, 17:46:48 | - |
| 54.227.192.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 26/06/2026, 12:40:55 | 05/07/2026, 01:43:21 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 26/06/2026, 17:46:50 | - |
| 220.184.151.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 26/06/2026, 12:40:55 | 29/06/2026, 08:20:00 | No | No | - | - | 20/06/2026, 17:46:52 | - |
| 116.23.97.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 26/06/2026, 12:39:08 | 28/06/2026, 00:59:59 | Yes | No | - | - | 26/06/2026, 12:42:48 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 119.45.114.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 26/06/2026, 12:39:06 | 13/07/2026, 17:49:44 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2019-6470, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 26/06/2026, 12:43:06 | tencent.com, tencentcloud.com |
| 171.121.166.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Shanxi | 26/06/2026, 12:39:06 | 26/06/2026, 18:24:31 | Yes | No | - | - | 26/06/2026, 12:43:11 | chinaunicom.cn |
| 185.159.74.•••:18789 | - | 🇮🇱 Israel | - | false | Clean | AS44709 | O.M.C. COMPUTERS & COMMUNICATIONS LTD | Cloud Web Manage IL | 26/06/2026, 12:39:06 | 26/06/2026, 18:24:31 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 26/06/2026, 12:43:13 | - |
| 81.70.151.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 26/06/2026, 12:39:05 | 14/07/2026, 03:49:21 | No | Yes | APT37, El-Machete | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 26/06/2026, 12:43:18 | - |
| 103.162.34.•••:18789 | - | 🇮🇩 Indonesia | - | false | Leaked | AS141637 | PT Panca Budi Niaga | PT Panca Budi Niaga | 26/06/2026, 12:39:05 | 27/06/2026, 06:30:44 | Yes | Yes | Sandworm Team | CVE-2015-9251, CVE-2018-18405, CVE-2019-0199, CVE-2019-0221, CVE-2019-0232, CVE-2019-10072, CVE-2019-11358, CVE-2019-12418, CVE-2019-17563, CVE-2019-2684, CVE-2020-11022, CVE-2020-11023, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-23064, CVE-2020-8022, CVE-2020-9484, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-41079, CVE-2021-43980, CVE-2022-25762, CVE-2022-29885, CVE-2022-42252, CVE-2023-28708, CVE-2023-41080, CVE-2023-42795, CVE-2023-44487, CVE-2023-45648, CVE-2023-46589, CVE-2024-21733, CVE-2024-23672, CVE-2024-24549, CVE-2024-34750, CVE-2024-38286, CVE-2024-50379, CVE-2024-52316, CVE-2024-54677, CVE-2024-56337, CVE-2025-24813, CVE-2025-31651, CVE-2025-46701, CVE-2025-48988, CVE-2025-48989, CVE-2025-49125, CVE-2025-52434, CVE-2025-52520, CVE-2025-53506, CVE-2025-55668, CVE-2025-55752, CVE-2025-61795 | 26/06/2026, 12:43:21 | radsoftsystem.com, asuransibinagriya.com, tirtapangan.com, tribinapanutan.com, maxidrill.net, utamaglobalindocargo.com, grinvirobiotekno.com, kanzinformatics.com, pancabudi.com, sefasgroup.com, pefindobirokredit.com, intieverspring.com, aptekindo.com |
| 35.208.122.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS15169 | Google LLC / AS43515 YOUTUBE | 26/06/2026, 12:39:04 | 12/07/2026, 21:49:12 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 14:07:33 | - | |
| 159.75.22.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 26/06/2026, 12:39:03 | 10/07/2026, 23:22:39 | No | Yes | APT14, APT28, APT37, APT40, APT41, Cobalt Group, El-Machete, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2006-20001, CVE-2019-17567, CVE-2020-13950, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522 | 26/06/2026, 14:07:38 | - |
| 110.230.224.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Hebei | 26/06/2026, 12:39:03 | 26/06/2026, 19:07:33 | Yes | No | - | - | 26/06/2026, 14:07:41 | chinaunicom.cn |
| 115.196.131.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 26/06/2026, 12:39:02 | 26/06/2026, 19:07:33 | No | No | - | - | 20/06/2026, 14:07:46 | - |
| 222.136.125.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Henan | 26/06/2026, 12:39:02 | 26/06/2026, 19:07:33 | No | No | - | - | 20/06/2026, 14:07:47 | - |
| 141.147.75.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS31898 | Oracle Corporation | Oracle | 26/06/2026, 12:39:02 | 05/07/2026, 20:13:25 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 14:07:49 | netsuit.com, healtheintent.com, purewellness.com, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, healtheatcerner.com, oraclecloudservices.com, rsys2.net, hyperroll.com, orcale.com, oraclemobile.com, sun.co.in, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, oracleemaildelivery.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, pertmaster.com, jdedwards.com, commercialware.com, tiger-institute.org, skire.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, optika.com, jcp.org, smed.com, cernerenviza-tw.com, recruitmax.com, decisioneering.com, stortek.com, seebeyond.com, livelook.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com |
| 125.46.146.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Henan | 26/06/2026, 12:39:01 | 26/06/2026, 19:07:32 | Yes | No | - | - | 26/06/2026, 14:07:52 | chinaunicom.cn |
| 185.147.157.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS22295 | Advin Services LLC | Advin Services LLC | 26/06/2026, 12:39:01 | 11/07/2026, 20:03:02 | Yes | No | - | - | 26/06/2026, 14:07:53 | dauntlessems.com, servetech.com, loveservers.com, jcdwlaw.com, quickpacket.com |
| 128.140.43.•••:18789 | - | 🇩🇪 Germany | - | false | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 26/06/2026, 12:39:00 | 27/06/2026, 07:13:16 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 26/06/2026, 14:08:03 | hetzner.com |
| 64.181.212.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS31898 | Oracle Corporation | Oracle | 26/06/2026, 12:39:00 | 26/06/2026, 19:07:30 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 14:08:05 | netsuit.com, healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, healtheatcerner.com, oracle.com, oracleoutsourcing.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, pertmaster.com, jdedwards.com, commercialware.com, tiger-institute.org, zenedge.com, skire.com, sun.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com |
| 185.159.74.•••:18789 | - | 🇮🇱 Israel | - | false | Clean | AS44709 | O.M.C. COMPUTERS & COMMUNICATIONS LTD | Cloud Web Manage IL | 26/06/2026, 12:37:06 | 28/06/2026, 06:39:31 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 26/06/2026, 13:20:26 | - |
| 103.162.34.•••:18789 | - | 🇮🇩 Indonesia | - | false | Leaked | AS141637 | PT Panca Budi Niaga | PT Panca Budi Niaga | 26/06/2026, 12:37:05 | 28/06/2026, 06:39:31 | Yes | Yes | Sandworm Team | CVE-2015-9251, CVE-2018-18405, CVE-2019-0199, CVE-2019-0221, CVE-2019-0232, CVE-2019-10072, CVE-2019-11358, CVE-2019-12418, CVE-2019-17563, CVE-2019-2684, CVE-2020-11022, CVE-2020-11023, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-23064, CVE-2020-8022, CVE-2020-9484, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-41079, CVE-2021-43980, CVE-2022-25762, CVE-2022-29885, CVE-2022-42252, CVE-2023-28708, CVE-2023-41080, CVE-2023-42795, CVE-2023-44487, CVE-2023-45648, CVE-2023-46589, CVE-2024-21733, CVE-2024-23672, CVE-2024-24549, CVE-2024-34750, CVE-2024-38286, CVE-2024-50379, CVE-2024-52316, CVE-2024-54677, CVE-2024-56337, CVE-2025-24813, CVE-2025-31651, CVE-2025-46701, CVE-2025-48988, CVE-2025-48989, CVE-2025-49125, CVE-2025-52434, CVE-2025-52520, CVE-2025-53506, CVE-2025-55668, CVE-2025-55752, CVE-2025-61795 | 26/06/2026, 13:20:30 | radsoftsystem.com, asuransibinagriya.com, tirtapangan.com, tribinapanutan.com, maxidrill.net, utamaglobalindocargo.com, grinvirobiotekno.com, kanzinformatics.com, pancabudi.com, sefasgroup.com, pefindobirokredit.com, intieverspring.com, aptekindo.com |
| 104.21.55.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS13335 | Cloudflare, Inc. | Cloudflare | 26/06/2026, 12:37:05 | 28/06/2026, 06:39:31 | Yes | No | - | - | 26/06/2026, 13:20:33 | streamshop.com, vpnserver.com, anvilironworks.ca, shenji-titanium.com, fuyuanwj.com, jewishcm.org, co.nl, applications.com, educorp.com, vcorp.com, sh-hibo.com, jxxlxj.com, darkreading.com, chabadhollywoodwest.com, catuan.net, contentmanager.com, cwsse.com.cn, drtognotti.com, dermira.com, tshlkj.net, iotworldtoday.com, byteboard.com, sdkyjt.net, luckyplastic.net, chabadwindsor.com, ics-line.com, forumcorp.com, dataloop.com, 51yuezhi.com, hzfeidi.com, limpiom.net, salonnews.com, energyservices.com, sz-jl.com, ftfyempireevent.com, jewishtowson.com, youthstream.com, jetreacare.com, hbbygd88.com, avanlerberghe.com, 277312.com, bstab.com, cityfied.net, playergroup.com, globalsolutions.com, rightwaytrading.net, xintec.hk, hqpots.com, wenchyuan.com, natuzzigroup.com, informationsystems.com, meter.ln.cn, cxdingli.com, billingcenter.com, anlink.net, globalexchange.net, petloves.com.br, jxygcy.com, xl-flex.com, yac-agcc.com, tourservices.com, hmcxjc.com, itprotoday.com, originalsoulvegetarian.com, jindianglass.net, shsinotech.com, shczhsyy.com, doolittleganos.com, vbankph.com, wallofportfolios.com, gipnutmeg.com, xjhhcm.com, jiuliproduce.com, ytxweb.net, eurobank.com, alsuyar.net, graphicconnection.com, naseni.gov.ng, xiaoshejia.com, campmgmt.com, ramcolab.com, itradeonline.com, balachabad.org, gettoyourcore.com, explosystems.com, viralthread.com, wecastnetworkinc.com, petlove.com.br, retrievalmasters.com, chinasyh.net, pokies-payid.net, fiyanoventures.com, ekakitchen.com, steelforging.net, carleaseusa.com, theinnotech.net, cycleworld.com.au, jyskaiyue.com, wisehousetech.com, formationplus.fr, cloudflare.net, bluemoonoliveoil.com, ceostream.com, channel.net, terrafirma.africa, insuretech.com, gatorchucks.cn, handyman.com, co.com, lubavitch.com, galleryconnection.com, jstream.com, machinesummit.com, gamedeveloper.com, globalventures.com, kidsbud.net, karmakmakina.com, innfos.cn, ourlike.net, chicpartydress.com, bitcoinsv.com, govcoin.com, jxlingtong.com, namingsystem.com, brillantisol.fr, baselinewoods.com, poisesoft.net, luxuryventures.com, wandetech.net, hc0798.com, referral.com, willcctv.com, sciencesuite.com, pritermica.com, alghanitex.com, telecoms.com, qzz.io, birminghamneograft.com, lendstream.com, dehuiguangchang.cn, careagent.com, xjgudao.com, gransierassociates.com, vbuilders.com, porcelainchina.net, brownsprinting.com, chabadspb.org, m-printone.com, rivalcorp.com, cloudhq-mkt6.net, garyjackson.com, hzhsyr.com, biocaremalaysia.com, aboveandbeyondcleaningservices.com, socialsuite.com, forwardwirecloth.net, channelpartnersconference.com, cclvcr.com, timing-tech.com, wxkewei.com, swiftfreightlogistics.com, anichemspeciality.com, chinasand.net, homemaintenance.com, us.org, aquastorenw.com, natuzzi.it, eeh-wear.com, bolinyinwu.net, lilly.com, i2l.fr, ceconstruction.com, hzjiaolun.com, holdenbrothersfarmmarket.com, hibetw.com, chunxinghejin.com, pp.ua, tadalafilanx.com, mingstone.net, chinayinshufood.com, natuzzi.com, leisonhk.com, refee.net, xjzljt.net, gpchain.com, dongfanggufen.net, sxgas.net, wakechem.com, jialilace.com, psacloud.com.br, comecsb.com, truestory.dk, lilly.fi, customerprofile.com, yitongqingjie.com, sinotransfj.com, aibituo.net, dzrjx.net, interpraise.com, game-advertising-online.com, readystaffing.com, aptenonsjz.com, framecoframing.com, ventureos.com, maryelexports.com, yongxinco.com, code-china.com, malibupress.com, imobile.com, contrib.com, learningwire.com, leixinfoods.net, goldplateck.com, frontiersuites.com, jlhhzy.com, www.us.com, eshares.com, sanhoos.com, dldianfeng.cn, simatek.com, gaithersburgflorist.com, bamko.net, hansecontrol.com, richtechnologygroup.com, it.com, yideasa.com, jingyucn.net, lubavitchcenter.org, china-ycgkjx.com, plomberie-chauffage-ardeche.fr, oukay.net, apo-led.com, dqbxg.com, alimoglu.com, informatech.com, nbshenle.com, bnw163.net, theclubforboys.org, ebonyshemalevideos.com, beiyuecheng.com, sharemusic.es, justinboots.com, cshczfz.com, realtydao.com, hmcoptical.com, www.eu.com, eli-lilly.com, chinasotop.com, dogsparesort.com, hongyang0769.net, china-one.net, gzshengjie56.com, portcast.com, kingdisplay.net, jssd.net, eu.org, actatek.com, copaycardportal.com, investcentre.com, yangjiangshilimaoyi.com, jadzdjm.com, pesasybalanzas.com, buildfolio.com, dreamacquisition.com, tailwindgroup.com, com.de, iptunnel.com, rayinmind.com, bycast.com, www.de.com, leadstream.net, channelfutures.com, jz5288.com, guusto.io, taskmgmt.com, sloanevacations.com, lillydev.com, natuzzi.ru, kalaifashions.com, seemine.net, servicetech.com, atl-az.com, neurodyne.us, hygroup.net, shinruey.net, venturepub.com, partyworld.com, ltgjg.net, jinld.net, jollysocks.com, sport-goods.net, szlis.com.cn, vulcantowing.com, sderesources.com, northstarind.com, futurum-media.com, m-wood2.com, lnk.bio, dqkeyi.com, telecomanalysis.com, homebuilderloans.com, huadewood.com, pgi-platinum-tech.com, gaoyimall.net, vetus.com.br, calabashfd.org, linked.com, lilly-podcast.com, nesp.com, dslawn.com, lillyindia.co.in, vnoc.com, ljgyp.net, fundchannel.com, fibi.fr, szsbs.net, oracle-ag.ch, eyes-armour.com, zhaowoo.net, jiangsufuji.com, fzfortune.net, thealternativeboard.com, itmanage.net, eb5aig.net, reservationcenter.com, iirusa.com, sddyhy.net, bestwanhui.com, neumann-group.com, hkbolton.com, 869606.com, mark1airforce.com, clhosting.org, goldenstream.com, chabadgreenville.com, fxgowin.com, caviton.com, strongvalve.com, naturorama.fr, monseybcm.com, zhujigema.net, interlan.com, automations.com, luckywaymall.com, bank-easy.net, globalexport.com, taocimall.com, fedcomm.com, yijia-audio.com, workers.dev, arlindocastelao.com, chaolipack.com, lightreading.com, dublincleaningservices.com, texans.com, navissupply.com, newoceanfood.com, prnewswire.com, photochallenge.com, bjzthb.com, dechuangjixie.com, cnkejie.com, reteck.net, fairleadfinancialgroup.com, jewishgv.com, marinehub.com, thenewthings.com, 8189330.cn, filmteck.com, tigerexpressfuel.com, jack69.net, buildcorp.com, jinpac.com, flash-sonorisation.fr, motossenda.com, emalab.ae, rpbfm.fr, wallstreetandtech.com, capriloans.in, 360-xj.com, charlottecommerce.com, xjwfcj.com, co.zm, cdluniversity.org, eaststeel.net, appservice.com, sglcfj.com, nationalspecialties.net, patentboard.com, constructionforum.com, pet-bottle.net, avidrp.com, realtyconsultant.com, pollyholding.com, anhuaabrasives.net, thesaurus.ie, chabadofessex.com, importandexportspecializedequipmentandservicesinc.com, datacommunications.com, miamitelevision.com, cannabiscorp.com, l2odigital.com, gemcats.com, liyubelt.net.cn, zsnet.net, medbrokers.com, alefcenter.com, spinintel.com, energystorage.com, carmaxbolivia.com, sdfengze.net, fyinn.net, abcschools.ca, china114.net, venturebuilder.com, ameliora.fr, lassocountry.com, propetchina.com, 1800ventures.com, hightech.net, quaglino.com, houstmust.com, hy189.net, wardsauto.com, chinakangtai.net, drdobbs.com, northerncomforthvac.com, palmettochevy.com, germanpool-nb.com, entorlando.com, xjhongshun.com, vetsmart.com.br, cornerstaffing.com, health4pet.com.br, geochem.org, food-machines.net, colucid.com, dmln.net, shzhongyi.net |
| 18.117.162.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 26/06/2026, 12:37:05 | 14/07/2026, 03:48:01 | No | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Gamaredon Group, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2021-44224, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813 | 26/06/2026, 13:20:37 | - |
| 16.26.246.•••:2096 | - | 🇦🇺 Australia | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 26/06/2026, 12:04:14 | 14/07/2026, 03:57:38 | - | - | - | - | - | - |
| 61.157.50.•••:10003 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | ChinaNet Sichuan | 26/06/2026, 12:00:04 | 29/06/2026, 13:21:13 | Yes | No | - | - | 26/06/2026, 14:11:59 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 157.245.205.•••:443 | - | 🇸🇬 Singapore | Yes | true | Leaked | AS14061 | DigitalOcean, LLC | DigitalOcean | 26/06/2026, 12:00:04 | 12/07/2026, 16:54:22 | Yes | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 26/06/2026, 14:12:03 | rcnhost.com, digitaloceanspaces.com, paperspace.io, digitalocean.com, scotch.io, snapshooter.com, paperspace.com, css-tricks.com |
| 34.152.23.•••:18789 | Assistant | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 26/06/2026, 12:00:03 | 03/07/2026, 10:33:22 | No | Yes | DragonFly, Packrat | - | 26/06/2026, 14:12:07 | - | |
| 44.244.9.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 26/06/2026, 12:00:03 | 26/06/2026, 22:02:49 | No | No | - | - | 20/06/2026, 14:12:08 | - |
| 123.118.227.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4808 | China Unicom Beijing Province Network | China Unicom Beijing | 26/06/2026, 12:00:03 | 06/07/2026, 02:42:06 | Yes | No | - | - | 26/06/2026, 14:12:09 | chinaunicom.cn |
| 116.198.227.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS137699 | CHINATELECOM Jiangsu Suqian IDC network | JD.com | 26/06/2026, 12:00:03 | 12/07/2026, 03:58:24 | Yes | Yes | APT15, APT31, APT36, APT37, APT39, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-59474, CVE-2025-59475, CVE-2025-59476, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 14:12:14 | jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com |
| 51.79.248.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS16276 | OVH SAS | OVH Singapore | 26/06/2026, 12:00:03 | 08/07/2026, 18:23:05 | Yes | Yes | APT14, APT28, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2016-20012, CVE-2018-20685, CVE-2019-16905, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 14:12:16 | ovh.ca |
| 89.125.198.•••:443 | - | 🇫🇮 Finland | Yes | true | Clean | AS213459 | Snowd Security OU | Snowd Security OU | 26/06/2026, 12:00:03 | 13/07/2026, 20:03:03 | No | No | - | - | 20/06/2026, 14:12:19 | - |
| 89.169.125.•••:18789 | - | 🇫🇮 Finland | Yes | false | Clean | AS213291 | Nebius B.V. | Nebius DC | 26/06/2026, 12:00:02 | 26/06/2026, 22:02:48 | - | - | - | - | - | - |
| 35.180.136.•••:443 | - | 🇫🇷 France | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 26/06/2026, 12:00:02 | 26/06/2026, 22:02:48 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 14:12:29 | - |
| 193.112.178.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 26/06/2026, 12:00:02 | 14/07/2026, 03:53:16 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 26/06/2026, 14:12:30 | telstra.com.au, muru-d.com, ivision.com.au, medicaldirector.com, bigond.com, telstrainternationalgroup.com, telstra.com, telstra-global.com, bigpond.com, emerging.com.au, telstraglobal.com, telstrainternational.com, telstraglobal.net |
| 31.56.233.•••:18789 | - | 🇳🇱 Netherlands | Yes | false | Clean | AS214677 | Matteo Martelloni trading as DELUXHOST | [name redacted] | 26/06/2026, 12:00:02 | 05/07/2026, 22:25:34 | Yes | No | - | CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 26/06/2026, 14:12:33 | pp.ua |
| 13.38.91.•••:443 | - | 🇫🇷 France | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 26/06/2026, 12:00:02 | 26/06/2026, 22:02:47 | - | - | - | - | - | - |
| 43.204.178.•••:443 | - | 🇮🇳 India | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 26/06/2026, 12:00:01 | 10/07/2026, 16:18:50 | No | No | - | - | 20/06/2026, 14:12:36 | - |
| 115.29.143.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 26/06/2026, 12:00:01 | 26/06/2026, 22:02:46 | Yes | Yes | APT28, APT40, Energetic Bear, Equation Group, Leafminer, Luckycat APT | CVE-2010-1899, CVE-2010-2730, CVE-2010-3972, CVE-2016-9589, CVE-2017-12165, CVE-2017-12196, CVE-2017-2670, CVE-2018-1047, CVE-2018-1067 | 26/06/2026, 14:12:37 | aliyun.com |
| 101.35.52.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 26/06/2026, 12:00:01 | 13/07/2026, 23:36:50 | Yes | Yes | APT1 Comment Crew, APT15, APT27, APT28, APT29, APT31, APT34, APT35, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Earth Longzhi, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon, WildCard APT | CVE-2016-10707, CVE-2016-20012, CVE-2019-11358, CVE-2019-16905, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2020-15778, CVE-2020-23064, CVE-2021-32036, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 26/06/2026, 14:12:39 | tencent.com, tencentcloud.com |
| 124.222.220.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 26/06/2026, 12:00:00 | 12/07/2026, 11:52:00 | Yes | Yes | APT28, APT35, APT36, APT37, APT39, Cobalt Group, El-Machete, Equation Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2022-29885, CVE-2022-34305, CVE-2022-42252, CVE-2022-45143, CVE-2023-28708 | 26/06/2026, 14:12:47 | tencent.com, tencentcloud.com |
| 82.207.226.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS8881 | 1&1 Versatel GmbH | VT Customer Pool | 26/06/2026, 12:00:00 | 26/06/2026, 22:02:45 | Yes | No | - | - | 26/06/2026, 14:12:49 | 1und1.net, versatel.de |
| 13.228.9.•••:80 | - | 🇸🇬 Singapore | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 26/06/2026, 12:00:00 | 26/06/2026, 22:02:45 | No | No | - | - | 20/06/2026, 14:12:54 | - |
| 15.204.160.•••:10081 | - | 🇺🇸 United States | Yes | true | Leaked | AS16276 | OVH SAS | Maggie Infra | 26/06/2026, 12:00:00 | 13/07/2026, 06:26:03 | Yes | No | - | CVE-2025-61984, CVE-2025-61985 | 26/06/2026, 14:12:55 | ovhcloud.com |
| 54.236.207.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 26/06/2026, 11:59:59 | 26/06/2026, 22:02:44 | No | No | - | CVE-2025-61984, CVE-2025-61985 | 26/06/2026, 14:13:00 | - |
| 3.145.115.•••:8443 | - | 🇺🇸 United States | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 26/06/2026, 11:59:59 | 06/07/2026, 11:59:23 | No | - | - | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 26/06/2026, 14:13:08 | - |
| 61.157.50.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS4134 | Chinanet | ChinaNet Sichuan | 26/06/2026, 11:58:16 | 30/06/2026, 21:38:30 | Yes | No | - | - | 26/06/2026, 17:44:32 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 157.245.205.•••:18789 | - | 🇸🇬 Singapore | - | true | Leaked | AS14061 | DigitalOcean, LLC | DigitalOcean | 26/06/2026, 11:58:16 | 12/07/2026, 11:49:41 | Yes | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 26/06/2026, 17:44:36 | rcnhost.com, digitaloceanspaces.com, paperspace.io, digitalocean.com, scotch.io, snapshooter.com, paperspace.com, css-tricks.com |
| 34.152.23.•••:18789 | Assistant | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 26/06/2026, 11:58:15 | 03/07/2026, 06:58:27 | No | Yes | DragonFly, Packrat | - | 26/06/2026, 17:44:40 | - | |
| 44.244.9.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 26/06/2026, 11:58:15 | 26/06/2026, 17:43:31 | No | No | - | - | 20/06/2026, 17:44:41 | - |
| 123.118.227.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4808 | China Unicom Beijing Province Network | China Unicom Beijing | 26/06/2026, 11:58:15 | 06/07/2026, 00:31:29 | Yes | No | - | - | 26/06/2026, 17:44:42 | chinaunicom.cn |
| 184.107.106.•••:18789 | - | 🇨🇦 Canada | - | false | Clean | AS32613 | Leaseweb Canada Inc. | Leaseweb Canada | 26/06/2026, 11:58:15 | 27/06/2026, 09:22:22 | - | - | - | - | - | - |
| 116.198.227.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS137699 | CHINATELECOM Jiangsu Suqian IDC network | JD.com | 26/06/2026, 11:58:15 | 11/07/2026, 23:38:50 | Yes | Yes | APT15, APT31, APT36, APT37, APT39, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-59474, CVE-2025-59475, CVE-2025-59476, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 17:44:49 | jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com |
| 51.79.248.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS16276 | OVH SAS | OVH Singapore | 26/06/2026, 11:58:15 | 11/07/2026, 10:05:28 | Yes | Yes | APT14, APT28, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2016-20012, CVE-2018-20685, CVE-2019-16905, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 17:44:51 | ovh.ca |
| 89.125.198.•••:18789 | - | 🇫🇮 Finland | - | true | Clean | AS213459 | Snowd Security OU | Snowd Security OU | 26/06/2026, 11:58:15 | 13/07/2026, 15:42:38 | No | No | - | - | 20/06/2026, 17:44:54 | - |
| 89.169.125.•••:18789 | - | 🇫🇮 Finland | Yes | false | Clean | AS213291 | Nebius B.V. | Nebius DC | 26/06/2026, 11:58:15 | 26/06/2026, 22:00:24 | - | - | - | - | - | - |
| 35.180.136.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 26/06/2026, 11:58:14 | 26/06/2026, 17:43:29 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 11:58:22 | - |
| 193.112.178.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 26/06/2026, 11:58:14 | 14/07/2026, 03:51:29 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 26/06/2026, 11:58:24 | telstra.com.au, muru-d.com, ivision.com.au, medicaldirector.com, bigond.com, telstrainternationalgroup.com, telstra.com, telstra-global.com, bigpond.com, emerging.com.au, telstraglobal.com, telstrainternational.com, telstraglobal.net |
| 31.56.233.•••:18789 | - | 🇳🇱 Netherlands | Yes | false | Clean | AS214677 | Matteo Martelloni trading as DELUXHOST | [name redacted] | 26/06/2026, 11:58:13 | 06/07/2026, 00:31:25 | Yes | No | - | CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 26/06/2026, 11:58:26 | pp.ua |
| 13.38.91.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 26/06/2026, 11:58:13 | 26/06/2026, 18:26:32 | - | - | - | - | - | - |
| 43.204.178.•••:18789 | - | 🇮🇳 India | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 26/06/2026, 11:58:13 | 10/07/2026, 11:59:01 | No | No | - | - | 20/06/2026, 11:58:34 | - |
| 115.29.143.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 26/06/2026, 11:58:13 | 26/06/2026, 18:26:32 | Yes | Yes | APT28, APT40, Energetic Bear, Equation Group, Leafminer, Luckycat APT | CVE-2010-1899, CVE-2010-2730, CVE-2010-3972, CVE-2016-9589, CVE-2017-12165, CVE-2017-12196, CVE-2017-2670, CVE-2018-1047, CVE-2018-1067 | 26/06/2026, 11:58:35 | aliyun.com |
| 101.35.52.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 26/06/2026, 11:58:13 | 13/07/2026, 18:34:48 | Yes | Yes | APT1 Comment Crew, APT15, APT27, APT28, APT29, APT31, APT34, APT35, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Earth Longzhi, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon, WildCard APT | CVE-2016-10707, CVE-2016-20012, CVE-2019-11358, CVE-2019-16905, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2020-15778, CVE-2020-23064, CVE-2021-32036, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 26/06/2026, 11:58:36 | tencent.com, tencentcloud.com |
| 124.222.220.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 26/06/2026, 11:58:11 | 12/07/2026, 07:30:19 | Yes | Yes | APT28, APT35, APT36, APT37, APT39, Cobalt Group, El-Machete, Equation Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2022-29885, CVE-2022-34305, CVE-2022-42252, CVE-2022-45143, CVE-2023-28708 | 26/06/2026, 11:58:46 | tencent.com, tencentcloud.com |
| 82.207.226.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS8881 | 1&1 Versatel GmbH | VT Customer Pool | 26/06/2026, 11:58:11 | 26/06/2026, 18:26:31 | Yes | No | - | - | 26/06/2026, 11:58:47 | 1und1.net, versatel.de |
| 13.228.9.•••:18789 | - | 🇸🇬 Singapore | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 26/06/2026, 11:58:11 | 26/06/2026, 18:26:30 | No | No | - | - | 20/06/2026, 11:58:51 | - |
| 54.236.207.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 26/06/2026, 11:58:10 | 26/06/2026, 18:26:29 | No | No | - | CVE-2025-61984, CVE-2025-61985 | 26/06/2026, 11:58:57 | - |
| 113.81.193.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 26/06/2026, 11:56:32 | 26/06/2026, 16:58:48 | Yes | No | - | - | 26/06/2026, 17:01:50 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 34.123.177.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS396982 | Google LLC | 26/06/2026, 11:56:27 | 11/07/2026, 22:11:15 | No | - | - | - | 20/06/2026, 12:41:13 | - | |
| 40.90.232.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 26/06/2026, 11:56:27 | 11/07/2026, 17:11:13 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 12:41:17 | - |
| 103.3.60.•••:18789 | - | 🇸🇬 Singapore | - | false | Leaked | AS63949 | Akamai Connected Cloud | Akamai Linode | 26/06/2026, 11:56:27 | 27/06/2026, 11:27:07 | Yes | Yes | APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2016-20012, CVE-2020-14145, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 12:41:20 | akasripcn.net, edgekey-staging.net, akamaitechnologies.com, akamai.ae, edgekey.net, simplicita.com, inscname.net, edgesuite.net, akamaitech.net, cotendo.com, bubblewrapp.com, chameleonx.com, akamai-staging.net, cformanalytics.com, janrainbackplane.com, verivue.com, akamaized-staging.net, nominum.com, akadns.net, akamaized.net, akamai.net, akamaistream.net, d4p.net, akamaihd.net, instart.com, akamai.dk, edgefcs.net, linodeusercontent.com, akamaihd-staging.net, cotssl.net, akafms.net, akami.com, lognormal.net, octoshape.net, akamai-access.com, instartlogic.com, limelightnetworks.com, akamaiapis.net, linode.com |
| 61.157.50.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS4134 | Chinanet | ChinaNet Sichuan | 26/06/2026, 11:56:26 | 30/06/2026, 21:36:40 | Yes | No | - | - | 26/06/2026, 12:41:25 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 157.245.205.•••:18789 | - | 🇸🇬 Singapore | - | true | Leaked | AS14061 | DigitalOcean, LLC | DigitalOcean | 26/06/2026, 11:56:26 | 12/07/2026, 11:47:49 | Yes | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 26/06/2026, 12:41:31 | rcnhost.com, digitaloceanspaces.com, paperspace.io, digitalocean.com, scotch.io, snapshooter.com, paperspace.com, css-tricks.com |
| 34.152.23.•••:18789 | Assistant | 🇺🇸 United States | Yes | false | Clean | AS396982 | Google LLC | 26/06/2026, 11:56:25 | 03/07/2026, 07:39:22 | No | Yes | DragonFly, Packrat | - | 26/06/2026, 12:41:35 | - | |
| 44.244.9.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon | 26/06/2026, 11:56:25 | 26/06/2026, 17:41:37 | No | No | - | - | 20/06/2026, 12:41:36 | - |
| 123.118.227.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4808 | China Unicom Beijing Province Network | China Unicom Beijing | 26/06/2026, 11:56:25 | 06/07/2026, 00:29:31 | Yes | No | - | - | 26/06/2026, 12:41:37 | chinaunicom.cn |
| 184.107.106.•••:18789 | - | 🇨🇦 Canada | - | false | Clean | AS32613 | Leaseweb Canada Inc. | Leaseweb Canada | 26/06/2026, 11:56:25 | 27/06/2026, 09:20:31 | - | - | - | - | - | - |
| 116.198.227.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS137699 | CHINATELECOM Jiangsu Suqian IDC network | JD.com | 26/06/2026, 11:56:25 | 11/07/2026, 23:37:02 | Yes | Yes | APT15, APT31, APT36, APT37, APT39, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-59474, CVE-2025-59475, CVE-2025-59476, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 12:41:44 | jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com |
| 51.79.248.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS16276 | OVH SAS | OVH Singapore | 26/06/2026, 11:56:25 | 11/07/2026, 10:03:34 | Yes | Yes | APT14, APT28, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE | CVE-2016-20012, CVE-2018-20685, CVE-2019-16905, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 12:41:46 | ovh.ca |
| 89.125.198.•••:18789 | - | 🇫🇮 Finland | - | true | Clean | AS213459 | Snowd Security OU | Snowd Security OU | 26/06/2026, 11:56:25 | 13/07/2026, 15:40:45 | No | No | - | - | 20/06/2026, 12:41:50 | - |
| 89.169.125.•••:18789 | - | 🇫🇮 Finland | Yes | false | Clean | AS213291 | Nebius B.V. | Nebius DC | 26/06/2026, 11:56:24 | 26/06/2026, 21:58:31 | - | - | - | - | - | - |
| 35.180.136.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 26/06/2026, 11:56:23 | 26/06/2026, 17:41:35 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 26/06/2026, 12:42:04 | - |
| 193.112.178.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 26/06/2026, 11:56:23 | 14/07/2026, 03:49:35 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon | CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 26/06/2026, 12:42:07 | telstra.com.au, muru-d.com, ivision.com.au, medicaldirector.com, bigond.com, telstrainternationalgroup.com, telstra.com, telstra-global.com, bigpond.com, emerging.com.au, telstraglobal.com, telstrainternational.com, telstraglobal.net |
| 31.56.233.•••:18789 | - | 🇳🇱 Netherlands | Yes | false | Clean | AS214677 | Matteo Martelloni trading as DELUXHOST | [name redacted] | 26/06/2026, 11:56:22 | 06/07/2026, 00:29:27 | Yes | No | - | CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 26/06/2026, 12:42:09 | pp.ua |
| 13.38.91.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 26/06/2026, 11:56:22 | 26/06/2026, 18:24:37 | - | - | - | - | - | - |
| 43.204.178.•••:18789 | - | 🇮🇳 India | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 26/06/2026, 11:56:22 | 10/07/2026, 11:57:10 | No | No | - | - | 20/06/2026, 12:42:15 | - |
| 115.29.143.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 26/06/2026, 11:56:22 | 26/06/2026, 18:24:36 | Yes | Yes | APT28, APT40, Energetic Bear, Equation Group, Leafminer, Luckycat APT | CVE-2010-1899, CVE-2010-2730, CVE-2010-3972, CVE-2016-9589, CVE-2017-12165, CVE-2017-12196, CVE-2017-2670, CVE-2018-1047, CVE-2018-1067 | 26/06/2026, 12:42:16 | aliyun.com |
| 101.35.52.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 26/06/2026, 11:56:22 | 13/07/2026, 18:32:53 | Yes | Yes | APT1 Comment Crew, APT15, APT27, APT28, APT29, APT31, APT34, APT35, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Earth Longzhi, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon, WildCard APT | CVE-2016-10707, CVE-2016-20012, CVE-2019-11358, CVE-2019-16905, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2020-15778, CVE-2020-23064, CVE-2021-32036, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 26/06/2026, 12:42:17 | tencent.com, tencentcloud.com |
| 124.222.220.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 26/06/2026, 11:56:20 | 12/07/2026, 07:28:24 | Yes | Yes | APT28, APT35, APT36, APT37, APT39, Cobalt Group, El-Machete, Equation Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2022-29885, CVE-2022-34305, CVE-2022-42252, CVE-2022-45143, CVE-2023-28708 | 26/06/2026, 12:42:26 | tencent.com, tencentcloud.com |