🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 1006105 Page: 345 / 10062 (100 per page) Showing: 34401-34500 Last Imported: 14/07/2026, 07:44:58
🇨🇳 483,673
🇺🇸 290,578
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 222.99.115.•••:18789 | - | 🇰🇷 South Korea | - | false | Leaked | AS4766 | Korea Telecom | Korea Telecom | 24/06/2026, 21:11:00 | 25/06/2026, 02:57:48 | Yes | Yes | APT14, APT40, APT41, Cobalt Group, Gamaredon Group, Kimsuky, Lazarus Group, SharpPanda | CVE-2006-20001, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020 | 24/06/2026, 22:40:28 | kornet.net, bizmeka.com, kt.com, homeap.co.kr, hhnsfarm.co.kr, ktds.com, ktlogis.com, ktestate.com, kt-idc.com, ktsat.net, kt.co.kr, ktmediahub.com, ktcloud.com, ktfreetel.co.kr |
| 122.234.208.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 24/06/2026, 21:10:59 | 25/06/2026, 02:57:47 | No | No | - | - | 18/06/2026, 22:40:35 | - |
| 64.204.250.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS28753 | Leaseweb Deutschland GmbH | Private Customer | 24/06/2026, 21:10:59 | 01/07/2026, 01:59:28 | Yes | No | - | - | 24/06/2026, 22:40:36 | gtt.net, hiberniaatlantic.com |
| 9.244.136.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS19901 | Brightspeed | Brightspeed Block 15 | 24/06/2026, 21:10:58 | 25/06/2026, 02:57:46 | Yes | No | - | - | 24/06/2026, 22:40:53 | brightspeed.com |
| 117.72.81.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS141679 | China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch | JD.com | 24/06/2026, 21:10:58 | 25/06/2026, 09:24:26 | Yes | No | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 22:40:54 | jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com |
| 83.44.13.•••:18789 | - | 🇪🇸 Spain | - | false | Clean | AS3352 | TELEFONICA DE ESPANA S.A.U. | Telefonica | 24/06/2026, 21:10:58 | 25/06/2026, 02:57:46 | No | No | - | - | 18/06/2026, 22:40:56 | - |
| 43.106.8.•••:18789 | - | 🇸🇬 Singapore | - | true | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud Singapore | 24/06/2026, 21:10:57 | 11/07/2026, 16:30:23 | Yes | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 22:40:59 | alibabacloud.com |
| 139.202.233.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Sichuan | 24/06/2026, 21:10:57 | 28/06/2026, 23:05:20 | No | No | - | - | 18/06/2026, 22:41:03 | - |
| 121.33.113.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 24/06/2026, 21:10:57 | 26/06/2026, 11:16:31 | Yes | No | - | - | 24/06/2026, 22:41:07 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 124.67.101.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS139007 | UNICOM InnerMongolia province network | Jining Pool | 24/06/2026, 21:10:56 | 28/06/2026, 08:51:54 | - | - | - | - | - | - |
| 97.107.136.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS63949 | Akamai Connected Cloud | Linode | 24/06/2026, 21:10:56 | 25/06/2026, 02:57:44 | Yes | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Earth Berberoka, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, WIRTE | CVE-2006-20001, CVE-2007-6750, CVE-2008-0455, CVE-2008-0456, CVE-2009-1890, CVE-2009-1891, CVE-2009-1956, CVE-2009-2699, CVE-2009-3094, CVE-2009-3095, CVE-2009-3555, CVE-2009-3560, CVE-2009-3720, CVE-2010-0408, CVE-2010-0425, CVE-2010-0434, CVE-2010-1452, CVE-2010-1623, CVE-2010-2068, CVE-2011-0419, CVE-2011-3192, CVE-2011-3348, CVE-2011-3368, CVE-2011-3607, CVE-2011-3639, CVE-2011-4317, CVE-2011-4415, CVE-2012-0031, CVE-2012-0053, CVE-2012-0883, CVE-2012-2687, CVE-2012-3499, CVE-2012-4557, CVE-2012-4558, CVE-2013-1862, CVE-2013-1896, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2015-0228, CVE-2015-3183, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-3167, CVE-2017-3169, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-37436, CVE-2023-28531, CVE-2023-28625, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 22:41:22 | akasripcn.net, edgekey-staging.net, akamaitechnologies.com, akamai.ae, edgekey.net, simplicita.com, inscname.net, edgesuite.net, akamaitech.net, cotendo.com, bubblewrapp.com, chameleonx.com, akamai-staging.net, cformanalytics.com, janrainbackplane.com, verivue.com, akamaized-staging.net, nominum.com, akadns.net, akamaized.net, akamai.net, akamaistream.net, d4p.net, akamaihd.net, instart.com, akamai.dk, edgefcs.net, linodeusercontent.com, akamaihd-staging.net, cotssl.net, akafms.net, akami.com, lognormal.net, octoshape.net, akamai-access.com, instartlogic.com, limelightnetworks.com, akamaiapis.net |
| 47.131.248.•••:18789 | - | 🇸🇬 Singapore | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 21:09:10 | 13/07/2026, 01:22:53 | - | - | - | - | - | - |
| 78.47.168.•••:18789 | - | 🇩🇪 Germany | - | true | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 24/06/2026, 21:09:07 | 13/07/2026, 06:21:44 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-5740, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2018-5745, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6465, CVE-2019-6470, CVE-2019-6471, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-28531, CVE-2023-3341, CVE-2023-38408, CVE-2023-4408, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2024-11187, CVE-2024-1737, CVE-2024-1975, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 00:05:11 | your-server.de, hetzner.com |
| 2408:8256:310a:b421:f352:d43f:b470:edac:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS17623 | China Unicom Shenzen network | China Unicom | 24/06/2026, 21:09:07 | 28/06/2026, 14:31:17 | - | - | - | - | - | - |
| 51.44.86.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | A100 Row Inc | 24/06/2026, 21:09:07 | 25/06/2026, 10:48:56 | No | No | - | - | 19/06/2026, 00:49:45 | - |
| 178.105.51.•••:18789 | - | 🇩🇪 Germany | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 24/06/2026, 21:09:07 | 14/07/2026, 03:49:32 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 00:49:46 | - |
| 117.72.117.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS141679 | China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch | JD.com | 24/06/2026, 21:09:06 | 13/07/2026, 16:23:36 | Yes | - | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 00:02:33 | jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com |
| 119.123.217.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 24/06/2026, 21:09:05 | 25/06/2026, 02:55:57 | Yes | No | - | - | 25/06/2026, 00:02:48 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 151.244.243.•••:18789 | - | 🇳🇱 Netherlands | - | false | Clean | AS57043 | HOSTKEY B.V. | Hostkey | 24/06/2026, 21:09:05 | 28/06/2026, 08:50:04 | - | - | - | - | - | - |
| 111.228.60.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS141679 | China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch | Jingdong Headquarters | 24/06/2026, 21:09:05 | 11/07/2026, 05:03:33 | Yes | No | - | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 00:02:51 | jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com |
| 122.234.208.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Hangzhou | 24/06/2026, 21:09:04 | 25/06/2026, 02:55:55 | No | No | - | - | 19/06/2026, 00:03:00 | - |
| 64.204.250.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS28753 | Leaseweb Deutschland GmbH | Private Customer | 24/06/2026, 21:09:04 | 01/07/2026, 01:57:35 | Yes | No | - | - | 25/06/2026, 00:03:02 | gtt.net, hiberniaatlantic.com |
| 9.244.136.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS19901 | Brightspeed | Brightspeed Block 15 | 24/06/2026, 21:09:03 | 25/06/2026, 02:55:55 | Yes | No | - | - | 25/06/2026, 00:03:18 | brightspeed.com |
| 117.72.81.•••:18789 | - | 🇨🇳 China mainland | - | false | Leaked | AS141679 | China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch | JD.com | 24/06/2026, 21:09:03 | 25/06/2026, 09:22:29 | Yes | No | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 00:03:19 | jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com |
| 83.44.13.•••:18789 | - | 🇪🇸 Spain | - | false | Clean | AS3352 | TELEFONICA DE ESPANA S.A.U. | Telefonica | 24/06/2026, 21:09:03 | 25/06/2026, 02:55:54 | No | No | - | - | 19/06/2026, 00:03:21 | - |
| 43.106.8.•••:18789 | - | 🇸🇬 Singapore | - | true | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud Singapore | 24/06/2026, 21:09:03 | 11/07/2026, 16:28:23 | Yes | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 00:03:24 | alibabacloud.com |
| 139.202.233.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Sichuan | 24/06/2026, 21:09:02 | 28/06/2026, 23:03:23 | No | No | - | - | 19/06/2026, 00:03:28 | - |
| 121.33.113.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 24/06/2026, 21:09:02 | 26/06/2026, 11:14:36 | Yes | No | - | - | 25/06/2026, 00:03:32 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 124.67.101.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS139007 | UNICOM InnerMongolia province network | Jining Pool | 24/06/2026, 21:09:01 | 28/06/2026, 08:50:03 | - | - | - | - | - | - |
| 97.107.136.•••:18789 | - | 🇺🇸 United States | Yes | false | Leaked | AS63949 | Akamai Connected Cloud | Linode | 24/06/2026, 21:09:00 | 25/06/2026, 02:55:52 | Yes | Yes | APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Earth Berberoka, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, WIRTE | CVE-2006-20001, CVE-2007-6750, CVE-2008-0455, CVE-2008-0456, CVE-2009-1890, CVE-2009-1891, CVE-2009-1956, CVE-2009-2699, CVE-2009-3094, CVE-2009-3095, CVE-2009-3555, CVE-2009-3560, CVE-2009-3720, CVE-2010-0408, CVE-2010-0425, CVE-2010-0434, CVE-2010-1452, CVE-2010-1623, CVE-2010-2068, CVE-2011-0419, CVE-2011-3192, CVE-2011-3348, CVE-2011-3368, CVE-2011-3607, CVE-2011-3639, CVE-2011-4317, CVE-2011-4415, CVE-2012-0031, CVE-2012-0053, CVE-2012-0883, CVE-2012-2687, CVE-2012-3499, CVE-2012-4557, CVE-2012-4558, CVE-2013-1862, CVE-2013-1896, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2015-0228, CVE-2015-3183, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-3167, CVE-2017-3169, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-37436, CVE-2023-28531, CVE-2023-28625, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 00:03:45 | akasripcn.net, edgekey-staging.net, akamaitechnologies.com, akamai.ae, edgekey.net, simplicita.com, inscname.net, edgesuite.net, akamaitech.net, cotendo.com, bubblewrapp.com, chameleonx.com, akamai-staging.net, cformanalytics.com, janrainbackplane.com, verivue.com, akamaized-staging.net, nominum.com, akadns.net, akamaized.net, akamai.net, akamaistream.net, d4p.net, akamaihd.net, instart.com, akamai.dk, edgefcs.net, linodeusercontent.com, akamaihd-staging.net, cotssl.net, akafms.net, akami.com, lognormal.net, octoshape.net, akamai-access.com, instartlogic.com, limelightnetworks.com, akamaiapis.net |
| 78.47.168.•••:18789 | - | 🇩🇪 Germany | - | true | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 24/06/2026, 21:07:03 | 14/07/2026, 03:47:34 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-5740, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2018-5745, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6465, CVE-2019-6470, CVE-2019-6471, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-28531, CVE-2023-3341, CVE-2023-38408, CVE-2023-4408, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2024-11187, CVE-2024-1737, CVE-2024-1975, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 02:56:44 | your-server.de, hetzner.com |
| 51.44.86.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | A100 Row Inc | 24/06/2026, 21:07:03 | 26/06/2026, 14:47:59 | No | No | - | - | 19/06/2026, 02:56:45 | - |
| 151.244.243.•••:18789 | - | 🇳🇱 Netherlands | - | false | Clean | AS57043 | HOSTKEY B.V. | Hostkey | 24/06/2026, 21:07:03 | 29/06/2026, 15:24:22 | - | - | - | - | - | - |
| 83.44.13.•••:18789 | - | 🇪🇸 Spain | - | false | Clean | AS3352 | TELEFONICA DE ESPANA S.A.U. | Telefonica | 24/06/2026, 21:07:02 | 26/06/2026, 15:31:02 | No | No | - | - | 19/06/2026, 02:56:48 | - |
| 183.23.132.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 24/06/2026, 20:30:14 | 25/06/2026, 05:52:06 | Yes | No | - | - | 24/06/2026, 23:23:43 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 124.221.255.•••:443 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 24/06/2026, 20:30:14 | 14/07/2026, 01:02:13 | Yes | Yes | APT37, El-Machete | - | 24/06/2026, 23:23:45 | tencent.com, tencentcloud.com |
| 217.114.13.•••:18789 | - | 🇷🇺 Russia | Yes | true | Clean | AS198610 | Beget LLC | Beget LLC | 24/06/2026, 20:30:13 | 12/07/2026, 09:00:16 | No | Yes | Salt Typhoon | CVE-2016-10002, CVE-2016-10003, CVE-2016-20012, CVE-2017-15906, CVE-2018-1000024, CVE-2018-1000027, CVE-2018-15473, CVE-2018-15919, CVE-2018-19131, CVE-2018-19132, CVE-2018-20685, CVE-2019-12519, CVE-2019-12520, CVE-2019-12521, CVE-2019-12522, CVE-2019-12523, CVE-2019-12524, CVE-2019-12525, CVE-2019-12526, CVE-2019-12528, CVE-2019-12529, CVE-2019-13345, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-18860, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11945, CVE-2020-14058, CVE-2020-14145, CVE-2020-15049, CVE-2020-15778, CVE-2020-15810, CVE-2020-15811, CVE-2020-24606, CVE-2020-25097, CVE-2020-8449, CVE-2020-8450, CVE-2020-8517, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41318, CVE-2023-38408, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51385, CVE-2023-5824, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-39894, CVE-2024-45802, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 24/06/2026, 23:23:51 | - |
| 115.175.72.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Leaked | AS55990 | Huawei Cloud Service data center | Huawei Cloud | 24/06/2026, 20:30:13 | 14/07/2026, 03:11:00 | Yes | No | - | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 23:23:53 | smartcom.cc, huawei.com, huaweidevice.com |
| 222.241.197.•••:19800 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Zhuzhou Node Network | 24/06/2026, 20:30:12 | 28/06/2026, 01:46:45 | Yes | No | - | - | 24/06/2026, 23:24:01 | 2118.com.cn |
| 47.131.248.•••:443 | - | 🇸🇬 Singapore | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 20:30:11 | 13/07/2026, 06:26:04 | - | - | - | - | - | - |
| 44.251.247.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 24/06/2026, 20:30:10 | 08/07/2026, 10:32:39 | - | - | - | - | - | - |
| 119.29.201.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 24/06/2026, 20:30:10 | 14/07/2026, 00:19:30 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 24/06/2026, 23:24:16 | tencent.com |
| 172.105.48.•••:18789 | - | 🇮🇳 India | Yes | true | Leaked | AS63949 | Akamai Connected Cloud | Linode | 24/06/2026, 20:30:10 | 12/07/2026, 22:36:11 | Yes | Yes | APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE | CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 24/06/2026, 23:24:18 | cprapid.com |
| 84.179.133.•••:18789 | - | 🇩🇪 Germany | Yes | false | Leaked | AS3320 | Internet service provider operations | Deutsche Telekom | 24/06/2026, 20:30:10 | 25/06/2026, 06:35:13 | Yes | No | - | - | 24/06/2026, 23:24:23 | telekom.de |
| 108.137.3.•••:443 | - | 🇮🇩 Indonesia | Yes | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services Jakarta | 24/06/2026, 20:30:10 | 25/06/2026, 22:24:36 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 24/06/2026, 23:24:24 | - |
| 175.178.176.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 24/06/2026, 20:30:10 | 12/07/2026, 14:45:22 | Yes | Yes | APT37, El-Machete | - | 24/06/2026, 23:24:29 | tencent.com, tencentcloud.com |
| 129.121.113.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS31898 | Oracle Corporation | OGTIPS1 | 24/06/2026, 20:30:10 | 27/06/2026, 21:30:07 | - | - | - | - | - | - |
| 217.154.190.•••:18789 | - | 🇪🇸 Spain | Yes | true | Leaked | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | Ionos Cloud Virtual IT | 24/06/2026, 20:30:09 | 13/07/2026, 02:10:04 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 23:24:33 | ionos.com |
| 103.236.94.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS134768 | CHINANET SHAANXI province Cloud Base network | Sichuan Xiaoteyun Technology | 24/06/2026, 20:30:09 | 13/07/2026, 07:08:49 | Yes | No | - | - | 24/06/2026, 23:24:34 | cnnic.cn |
| 78.47.168.•••:443 | - | 🇩🇪 Germany | Yes | true | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 24/06/2026, 20:30:09 | 13/07/2026, 10:43:32 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-5740, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2018-5745, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6465, CVE-2019-6470, CVE-2019-6471, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-28531, CVE-2023-3341, CVE-2023-38408, CVE-2023-4408, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2024-11187, CVE-2024-1737, CVE-2024-1975, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 22:40:43 | your-server.de, hetzner.com |
| 2408:8256:310a:b421:f352:d43f:b470:edac:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS17623 | China Unicom Shenzen network | China Unicom | 24/06/2026, 20:30:09 | 28/06/2026, 18:51:47 | - | - | - | - | - | - |
| 51.44.86.•••:443 | - | 🇫🇷 France | Yes | false | Clean | AS16509 | Amazon.com, Inc. | A100 Row Inc | 24/06/2026, 20:30:09 | 25/06/2026, 14:28:58 | No | No | - | - | 18/06/2026, 23:24:40 | - |
| 178.105.51.•••:18789 | - | 🇩🇪 Germany | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 24/06/2026, 20:30:09 | 14/07/2026, 03:53:14 | No | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 23:24:41 | - |
| 110.157.202.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Xinjiang | 24/06/2026, 20:28:23 | 25/06/2026, 02:15:03 | - | - | - | - | - | - |
| 183.23.132.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 24/06/2026, 20:28:22 | 27/06/2026, 01:34:29 | Yes | No | - | - | 24/06/2026, 20:29:41 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 124.221.255.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 24/06/2026, 20:28:22 | 13/07/2026, 20:00:45 | Yes | Yes | APT37, El-Machete | - | 24/06/2026, 20:29:43 | tencent.com, tencentcloud.com |
| 115.175.72.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Leaked | AS55990 | Huawei Cloud Service data center | Huawei Cloud | 24/06/2026, 20:28:21 | 13/07/2026, 22:51:49 | Yes | No | - | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 20:29:54 | smartcom.cc, huawei.com, huaweidevice.com |
| 222.241.197.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS4134 | Chinanet | ChinaNet Zhuzhou Node Network | 24/06/2026, 20:28:20 | 27/06/2026, 21:27:43 | Yes | No | - | - | 24/06/2026, 20:30:05 | 2118.com.cn |
| 20.45.52.•••:18789 | - | 🇺🇸 United States | - | false | Clean | AS8075 | Microsoft Corporation | Microsoft | 24/06/2026, 20:28:19 | 25/06/2026, 01:31:36 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 20:30:06 | - |
| 47.131.248.•••:18789 | - | 🇸🇬 Singapore | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 20:28:18 | 13/07/2026, 01:24:45 | - | - | - | - | - | - |
| 44.251.247.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 24/06/2026, 20:28:18 | 08/07/2026, 06:14:08 | - | - | - | - | - | - |
| 119.29.201.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 24/06/2026, 20:28:18 | 13/07/2026, 19:17:43 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 24/06/2026, 20:30:21 | tencent.com |
| 191.189.51.•••:18789 | - | 🇧🇷 Brazil | - | false | Leaked | AS28573 | Claro NXT Telecomunicacoes Ltda | Claro NXT Telecomunicacoes | 24/06/2026, 20:28:18 | 25/06/2026, 10:50:57 | Yes | - | - | - | 24/06/2026, 20:30:23 | bluepex.com.br |
| 172.105.48.•••:18789 | - | 🇮🇳 India | Yes | true | Leaked | AS63949 | Akamai Connected Cloud | Linode | 24/06/2026, 20:28:17 | 12/07/2026, 17:34:51 | Yes | Yes | APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE | CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 24/06/2026, 20:30:24 | cprapid.com |
| 117.30.236.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Fujian | 24/06/2026, 20:28:17 | 25/06/2026, 02:14:58 | Yes | No | - | - | 24/06/2026, 20:30:26 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 108.137.3.•••:18789 | - | 🇮🇩 Indonesia | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services Jakarta | 24/06/2026, 20:28:17 | 25/06/2026, 18:46:04 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 24/06/2026, 20:30:29 | - |
| 129.121.113.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS31898 | Oracle Corporation | OGTIPS1 | 24/06/2026, 20:28:16 | 27/06/2026, 17:52:23 | - | - | - | - | - | - |
| 217.154.190.•••:18789 | - | 🇪🇸 Spain | Yes | true | Leaked | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | Ionos Cloud Virtual IT | 24/06/2026, 20:28:16 | 12/07/2026, 21:08:36 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 20:30:37 | ionos.com |
| 43.157.91.•••:18789 | - | 🇸🇬 Singapore | - | false | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 24/06/2026, 20:28:16 | 25/06/2026, 02:14:57 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 20:30:38 | tencent.com |
| 103.236.94.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS134768 | CHINANET SHAANXI province Cloud Base network | Sichuan Xiaoteyun Technology | 24/06/2026, 20:28:16 | 13/07/2026, 02:50:23 | Yes | No | - | - | 24/06/2026, 20:30:39 | cnnic.cn |
| 78.47.168.•••:18789 | - | 🇩🇪 Germany | - | true | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 24/06/2026, 20:28:16 | 13/07/2026, 06:23:41 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-5740, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2018-5745, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6465, CVE-2019-6470, CVE-2019-6471, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-28531, CVE-2023-3341, CVE-2023-38408, CVE-2023-4408, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2024-11187, CVE-2024-1737, CVE-2024-1975, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 24/06/2026, 20:30:43 | your-server.de, hetzner.com |
| 2408:8256:310a:b421:f352:d43f:b470:edac:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS17623 | China Unicom Shenzen network | China Unicom | 24/06/2026, 20:28:16 | 28/06/2026, 14:33:11 | - | - | - | - | - | - |
| 52.77.215.•••:18789 | - | 🇸🇬 Singapore | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 24/06/2026, 20:26:33 | 14/07/2026, 03:49:54 | No | Yes | APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419 | 25/06/2026, 00:47:31 | - |
| 159.65.56.•••:18789 | - | 🇬🇧 United Kingdom | - | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 24/06/2026, 20:26:33 | 10/07/2026, 00:35:34 | No | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 00:47:32 | - |
| 220.189.154.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS4134 | Chinanet | CHINANET-ZJ-TZ | 24/06/2026, 20:26:33 | 25/06/2026, 01:29:46 | No | No | - | - | 19/06/2026, 00:47:33 | - |
| 35.180.54.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 20:26:28 | 25/06/2026, 10:05:34 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 25/06/2026, 00:48:29 | - |
| 154.222.30.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Clean | AS401701 | cognetcloud INC | Vapeline Technology | 24/06/2026, 20:26:28 | 14/07/2026, 02:23:46 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 25/06/2026, 00:48:30 | - |
| 110.157.202.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Clean | AS4134 | Chinanet | ChinaNet Xinjiang | 24/06/2026, 20:26:28 | 25/06/2026, 02:13:09 | - | - | - | - | - | - |
| 183.23.132.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Guangdong | 24/06/2026, 20:26:28 | 27/06/2026, 00:49:45 | Yes | No | - | - | 25/06/2026, 00:48:43 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 124.221.255.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 24/06/2026, 20:26:28 | 13/07/2026, 19:58:51 | Yes | Yes | APT37, El-Machete | - | 25/06/2026, 00:48:45 | tencent.com, tencentcloud.com |
| 115.175.72.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Leaked | AS55990 | Huawei Cloud Service data center | Huawei Cloud | 24/06/2026, 20:26:26 | 13/07/2026, 22:49:58 | Yes | No | - | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 00:48:55 | smartcom.cc, huawei.com, huaweidevice.com |
| 222.241.197.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS4134 | Chinanet | ChinaNet Zhuzhou Node Network | 24/06/2026, 20:26:25 | 27/06/2026, 21:25:48 | Yes | No | - | - | 25/06/2026, 00:49:03 | 2118.com.cn |
| 44.251.247.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 24/06/2026, 20:26:23 | 08/07/2026, 06:12:10 | - | - | - | - | - | - |
| 119.29.201.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 24/06/2026, 20:26:23 | 13/07/2026, 19:15:50 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 25/06/2026, 00:49:20 | tencent.com |
| 191.189.51.•••:18789 | - | 🇧🇷 Brazil | - | false | Leaked | AS28573 | Claro NXT Telecomunicacoes Ltda | Claro NXT Telecomunicacoes | 24/06/2026, 20:26:22 | 25/06/2026, 10:48:59 | Yes | - | - | - | 25/06/2026, 00:49:21 | bluepex.com.br |
| 172.105.48.•••:18789 | - | 🇮🇳 India | Yes | true | Leaked | AS63949 | Akamai Connected Cloud | Linode | 24/06/2026, 20:26:22 | 12/07/2026, 17:32:54 | Yes | Yes | APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE | CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385 | 25/06/2026, 00:49:24 | cprapid.com |
| 117.30.236.•••:18789 | - | 🇨🇳 China mainland | Yes | false | Leaked | AS4134 | Chinanet | CHINANET Fujian | 24/06/2026, 20:26:22 | 25/06/2026, 02:13:03 | Yes | No | - | - | 25/06/2026, 00:49:26 | bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn |
| 108.137.3.•••:18789 | - | 🇮🇩 Indonesia | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services Jakarta | 24/06/2026, 20:26:22 | 25/06/2026, 18:44:08 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 25/06/2026, 00:49:29 | - |
| 129.121.113.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS31898 | Oracle Corporation | OGTIPS1 | 24/06/2026, 20:26:21 | 27/06/2026, 17:50:33 | - | - | - | - | - | - |
| 217.154.190.•••:18789 | - | 🇪🇸 Spain | Yes | true | Leaked | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | Ionos Cloud Virtual IT | 24/06/2026, 20:26:21 | 12/07/2026, 21:06:42 | Yes | No | - | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 00:49:36 | ionos.com |
| 43.157.91.•••:18789 | - | 🇸🇬 Singapore | - | false | Leaked | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 24/06/2026, 20:26:21 | 25/06/2026, 02:55:59 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 00:49:37 | tencent.com |
| 103.236.94.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS134768 | CHINANET SHAANXI province Cloud Base network | Sichuan Xiaoteyun Technology | 24/06/2026, 20:26:21 | 13/07/2026, 02:48:30 | Yes | No | - | - | 25/06/2026, 00:49:38 | cnnic.cn |
| 35.180.54.•••:18789 | - | 🇫🇷 France | - | false | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 20:24:20 | 26/06/2026, 14:04:25 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 25/06/2026, 02:56:32 | - |
| 140.245.65.•••:18789 | - | 🇺🇸 United States | - | false | Leaked | AS31898 | Oracle Corporation | Oracle | 24/06/2026, 20:24:19 | 26/06/2026, 14:48:00 | Yes | No | - | CVE-2024-6484, CVE-2024-6485 | 25/06/2026, 02:56:37 | netsuit.com, healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, healtheatcerner.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, pertmaster.com, jdedwards.com, commercialware.com, tiger-institute.org, zenedge.com, skire.com, sun.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com |
| 82.157.113.•••:18789 | - | 🇨🇳 China mainland | - | false | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 24/06/2026, 20:24:19 | 26/06/2026, 14:48:00 | No | Yes | APT37, El-Machete | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617 | 25/06/2026, 02:56:39 | - |
| 47.131.248.•••:18789 | - | 🇸🇬 Singapore | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 24/06/2026, 20:24:19 | 14/07/2026, 03:47:40 | - | - | - | - | - | - |
| 3.107.225.•••:443 | - | 🇦🇺 Australia | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Corporate Services | 24/06/2026, 19:47:14 | 11/07/2026, 13:41:42 | No | No | - | - | 19/06/2026, 03:49:22 | - |
| 18.234.137.•••:18789 | - | 🇺🇸 United States | Yes | false | Clean | AS14618 | Amazon.com, Inc. | Amazon | 24/06/2026, 19:47:12 | 25/06/2026, 05:09:01 | No | No | - | - | 19/06/2026, 03:49:33 | - |
| 168.107.58.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS31898 | Oracle Corporation | Oracle | 24/06/2026, 19:47:12 | 12/07/2026, 20:28:17 | Yes | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 03/07/2026, 21:15:17 | netsuit.com, healtheintent.com, purewellness.com, lodestarcorp.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, glog.com, healtheatcerner.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, torexretail.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, pertmaster.com, jdedwards.com, commercialware.com, tiger-institute.org, zenedge.com, skire.com, sun.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, mobilemd.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, berkeleydb.org, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com |
| 111.229.171.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 24/06/2026, 19:47:12 | 14/07/2026, 03:54:04 | Yes | Yes | APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-50379, CVE-2024-52316, CVE-2024-52317, CVE-2024-54677, CVE-2024-56337, CVE-2024-6387, CVE-2025-24813, CVE-2025-26465, CVE-2025-31650, CVE-2025-31651, CVE-2025-32728, CVE-2025-46701, CVE-2025-48988, CVE-2025-48989, CVE-2025-49124, CVE-2025-49125, CVE-2025-52434, CVE-2025-52520, CVE-2025-53506, CVE-2025-55668, CVE-2025-55752, CVE-2025-55754, CVE-2025-61795, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414 | 25/06/2026, 03:49:43 | tencent.com, tencentcloud.com |