🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 651864 Page: 889 / 6519 (100 per page) Showing: 88801-88900 Last Imported: 13/04/2026, 13:41:02
Build With Vivgrid

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.

Explore Vivgrid
Showing page 889 of 6519
Previous Next
Endpoint Assistant Name Country auth_requiredis_activehas_leaked_credsasnasn_nameorgfirst_seenlast_seenasi_has_breachasi_has_threat_actorasi_threat_actorsasi_cvesasi_enriched_atasi_domains
20.89.110.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:40:1902/04/2026, 07:22:46 - - ----
8.216.19.•••:18789 - 🇸🇬 Singapore Yes true Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud Singapore02/04/2026, 01:40:1913/04/2026, 05:31:50 No No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198505/04/2026, 00:28:12-
101.35.207.•••:18789 - 🇨🇳 China mainland - true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing02/04/2026, 01:40:1911/04/2026, 21:00:08 Yes Yes APT37, El-Machete-05/04/2026, 17:16:24tencent.com
8.166.140.•••:18789 - 🇸🇬 Singapore Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alibaba Cloud02/04/2026, 01:40:1802/04/2026, 07:22:46 - - ----
38.6.5.•••:18789 - 🇯🇵 Japan Yes true Clean AS398993PEG TECH INCPolyethylene Glycol-Lipid Association02/04/2026, 01:40:1811/04/2026, 04:51:31 No Yes APT28, APT35, APT37, APT39, APT41, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2014-1692, CVE-2014-2532, CVE-2014-2653, CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2016-0777, CVE-2016-0778, CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161708/04/2026, 07:46:22-
172.177.54.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationCloud02/04/2026, 01:40:1802/04/2026, 07:22:46 - - ----
78.46.139.•••:18789 - 🇩🇪 Germany - true Leaked AS24940Hetzner Online GmbHHetzner Online02/04/2026, 01:40:1805/04/2026, 02:05:59 Yes Yes APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2006-20001, CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-43622, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-24795, CVE-2024-27316, CVE-2024-40725, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198504/04/2026, 21:08:10hetzner.com
52.247.5.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:40:1802/04/2026, 07:22:46 - - ----
130.94.65.•••:18789 - 🇯🇵 Japan Yes true Clean AS154177LIGHT NODE LIMITEDLight Node Limited02/04/2026, 01:40:1811/04/2026, 05:36:42 - - ----
8.163.41.•••:18789 - 🇸🇬 Singapore Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alibaba Cloud02/04/2026, 01:40:1802/04/2026, 07:22:46 - - ----
47.93.62.•••:18789 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft02/04/2026, 01:40:1811/04/2026, 10:05:46 No No -CVE-2019-18348, CVE-2019-20907, CVE-2020-14422, CVE-2020-26116, CVE-2020-27619, CVE-2021-23336, CVE-2021-3177, CVE-2021-3426, CVE-2021-3733, CVE-2021-3737, CVE-2022-039108/04/2026, 13:51:14-
52.247.27.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:40:1802/04/2026, 07:22:46 - - ----
5.231.56.•••:18789 - 🇩🇪 Germany Yes true Clean AS213495SERVITRO LTDServitro02/04/2026, 01:40:1811/04/2026, 10:05:01 - - ----
39.98.67.•••:18789 - 🇨🇳 China mainland - true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft02/04/2026, 01:40:1810/04/2026, 23:26:11 Yes Yes PackratCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-20326, CVE-2021-20330, CVE-2021-32036, CVE-2021-32040, CVE-2021-36368, CVE-2021-4161710/04/2026, 18:30:59aliyun.com
68.183.168.•••:18789 - 🇺🇸 United States - true Clean AS14061DigitalOcean, LLCDigitalOcean02/04/2026, 01:40:1812/04/2026, 00:45:03 - - ----
14.103.29.•••:18789 - 🇨🇳 China mainland Yes true Clean AS137718Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)Beijing Volcano Engine Technology02/04/2026, 01:40:1713/04/2026, 12:50:19 - - ----
104.236.71.•••:18789 - 🇺🇸 United States - true Clean AS14061DigitalOcean, LLCDigitalOcean02/04/2026, 01:40:1705/04/2026, 11:14:39 No Yes APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-3272802/04/2026, 15:39:39-
115.199.229.•••:18789 - 🇨🇳 China mainland Yes true Clean AS4134ChinanetChinaNet Hangzhou02/04/2026, 01:40:1702/04/2026, 07:22:45 - - ----
116.203.110.•••:18789 - 🇩🇪 Germany Yes true Leaked AS24940Hetzner Online GmbHHetzner Online02/04/2026, 01:40:1712/04/2026, 18:36:11 Yes Yes APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-1322, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198505/04/2026, 14:14:41hetzner.de
49.235.34.•••:18789 - 🇨🇳 China mainland - true Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud02/04/2026, 01:40:1711/04/2026, 07:51:20 - - ----
47.85.200.•••:18789 - 🇺🇸 United States Yes true Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud02/04/2026, 01:40:1705/04/2026, 06:00:55 - - ----
84.247.175.•••:18789 - 🇩🇪 Germany Yes true Leaked AS51167Contabo GmbHContabo02/04/2026, 01:40:1709/04/2026, 04:04:19 Yes Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-4089804/04/2026, 22:52:02contabo.de, contabo.net
18.171.190.•••:18789 - 🇬🇧 United Kingdom - true Clean AS16509Amazon.com, Inc.Amazon Web Services02/04/2026, 01:40:1702/04/2026, 15:37:22 No No --27/03/2026, 15:40:04-
3.106.235.•••:18789 - 🇦🇺 Australia - true Clean AS16509Amazon.com, Inc.Amazon Corporate Services02/04/2026, 01:40:1703/04/2026, 23:08:31 - - ----
13.73.22.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5303/04/2026, 08:07:15 - - ----
160.153.191.•••:18789 - 🇺🇸 United States - true Clean AS398101GoDaddy.com, LLCGoDaddy02/04/2026, 01:37:5312/04/2026, 10:16:31 - - ----
51.210.154.•••:18789 - 🇫🇷 France - true Leaked AS16276OVH SASSbg3 Sdagg20a B N9302/04/2026, 01:37:5305/04/2026, 02:37:38 Yes Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 07:22:37ovh.net
40.70.241.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5303/04/2026, 08:07:14 - - ----
18.171.149.•••:18789 - 🇬🇧 United Kingdom - true Clean AS16509Amazon.com, Inc.Amazon Web Services02/04/2026, 01:37:5303/04/2026, 08:52:05 No No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-3272802/04/2026, 07:22:39-
44.220.156.•••:18789 - 🇺🇸 United States - true Clean AS14618Amazon.com, Inc.Amazon Web Services02/04/2026, 01:37:5308/04/2026, 23:30:25 - - ----
13.205.14.•••:18789 - 🇮🇳 India - true Clean AS16509Amazon.com, Inc.Amazon02/04/2026, 01:37:5313/04/2026, 10:28:42 Yes No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 07:22:41icloudems.com
52.179.192.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5303/04/2026, 08:52:05 - - ----
52.231.72.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5303/04/2026, 08:52:05 - - ----
172.67.218.•••:18789 - 🇺🇸 United States - true Leaked AS13335Cloudflare, Inc.Cloudflare02/04/2026, 01:37:5303/04/2026, 08:52:05 Yes No --02/04/2026, 07:22:45digitalssite.com, needchiropractic.com, berkshirefamilychiropractic.com, sunflowerdentalca.com, jewishcm.org, footandanklewi.com, acmechiroia.com, technoesq.com, hoolina.com, alliancewellness.com, abaq-z.com, cgmprecast.com, chiro4optimalhealth.com, twf2019.com, magiccitydentistry.com, bikeweeksa.com, jscca.org, alignmentchiropracticcenter.com, hzfeidi.com, lanhamdental.com, fricksfashion.com, drtomoake.com, jewishtowson.com, simmonschiropracticgroup.com, wrightfamilychiroaustin.com, drmarshallchiro.com, 277312.com, fuhuake.com, tricarechiro.com, cityfied.net, jsmoversuk.com, encinopediatricdentalgroup.com, abpincorp.com, rockthefrockbridal.co.uk, terryparkchiro.com, specialtypodiatrycenter.com, knaflachiropractic.com, southjerseyspinecenter.com, laddersolutions.com.au, anlink.net, cirinohearthealth.com, wanowellness.com, drtomcarpenter.com, jekotrade.com, hmcxjc.com, doctorpowellhealth.com, shsinotech.com, vbankph.com, drcherylgross.com, bopcon.com, alsuyar.net, delacruzchiropractic.net, chiropractic-manhattan.com, painclinic-lv.com, balachabad.org, hbcollection-ksa.com, healinghandschiropracticandwellness.com, chirocasey.com, backintomotionchiro.com, boyu-group.com, wcfaa.com, ekakitchen.com, dentalsolutionsofbrookhaven.com, wisehousetech.com, fredrickchiropractor.com, cloudflare.net, stuartchirohealth.com, eastmannh.org, qd-baolian.com, csofam.com, newberlinchiro-therapy.com, goodehealthindiana.com, lubavitch.com, schnitmanchiro.com, hilliardchiropractic.com, mariosilvestridpm.com, kidsbud.net, greatermcdonoughchiro.com, bellafaris.com, avonchirocenter.com, vervechiropractic.net, jxlingtong.com, footwear1.com, cancercenter.uz, carcare-2u.com, corteselecto.com, pinnaclechiro.net, evo.uz, bxblue.com.br, baselinewoods.com, roundrockcomfortdentist.com, keimchiro.com, ibericbox.com, jiabinnu.com, alghanitex.com, qzz.io, myalphabetlearningcenter.com, kfstock.com, oresvc.com, soppechiropractic.com, charlottefoot.com, daralgmyelh.com, brownsprinting.com, chabadspb.org, haymarketsmiles.com, cloudhq-mkt6.net, forwardwirecloth.net, reservoirsmiles.com, medicaldevices1.com, klmymmyc.com, manolisfamilydental.com, chinasand.net, worldwidesteelbuildings.com, lewandowskichiro.com, pp.ua, hnbeixiang.com, aaram-sa.com, refee.net, xjzljt.net, acwcare.com, xjjingyoga.com, sxgas.net, wakechem.com, healthinharmonychiro.com, twoboots.com, 1haojiyin.com, sama-lan.com, drcleyawcw.com, grupotracker.com.br, ark-car.com, mccombchiro.com, beneventochiro.com, drbiase.com, familychiroandskincare.com, drjackiemartinez.com, incrementstore.com, connollychiropracticclinic.com, comerciallogistica.com, maitlandcosmeticdentistry.com, drmichaelclopp.com, detongwiremesh.com, waverlychiropractic.com, chiropracticterrehaute.com, laan-sa.com, sunainassahgaldds.com, picpay.com, sanhoos.com, delight-sa.com, williswellnessgroup.com, dgclh.com, mcclainchiro.com, bamko.net, ausarabbusinesscouncil.com, bennettfamilychiro.com, pixelsksa.com, northvillefootspecialists.com, lstcarbon.com, mamopay.com, it.com, islandchiros.com, ttstest.com, lubavitchcenter.org, catofamilychiropractic.com, nature-mixes.com, gaetanasnyc.com, oukay.net, draunruh.com, irrigationsystems4u.com, drbrandondc.com, trussvilledentalcare.com, bielfootandanklespecialists.com, yhjgkeji.com, theedgechiro.com, mybackworks.com, simplyalignedchiro.com, shieldschiro.com, householdproducts1.com, china-one.net, palmerchiropracticlifecenter.com, kingdisplay.net, washingtonspineanddisc.com, longnerchiropractic.com, eu.org, bierte.com, nolzchiropractic.com, zyrcularfoods.com, walkerchiropracticcenter.com, massapequafootcare.com, prem-box.com, areen-alkaif.com, mtgr-altmyez.com, ttyt360.com, bezakchiroandrehab.com, batalatsa.com, mycatty23online.com, birchrunfamilydental.com, jbradleydds.com, nyackwellness.com, bazakpodiatry.com, drpieratti.com, galaxy-of-luxury.com, ficx.io, afcwellness.com, gardenproducts1.com, drzimmerchiro.com, projeccionspdc.com, zgkaite.com, avonchiropracticandwellness.com, drtroybuckridge.com, turnoutservices.com, habbenchiropractic.com, foodsouthaustralia.com.au, zjdddl.com, sadagrupo.com, ranscustombuilders.com, smartzonesa.com, lavandeparfums.com, usa-fabric.com, drbrowndc.com, absolutehealthchirowi.com, alluviumchiro.com, greatbacks.net, oracle-ag.ch, zjhrbz.com, zhaowoo.net, madisonchirosd.com, place4healing.com, construction1.com, provchiro.com, belviq.com, your-plus1.com, haritosa.com, bestwanhui.com, kellingtonchiropractic.com, tawasfamilydental.com, wolfsondentistry.com, andersonchiropracticsaviers.com, clhosting.org, spineworkschiro.com, frimancha.com, reichchiropracticclinic.com, vintonchiropractic.com, chabadgreenville.com, bain86.com, familydentalcharlotte.com, matthewschirofl.com, monseybcm.com, ciroscilingo.com, amtchiro.com, workers.dev, arlindocastelao.com, cranmarschiro.com, carsiva.com, independentlimestone.com, chirocarectr.com, leverettchiro.com, jewishgv.com, tigerexpressfuel.com, smithfamchiro.com, veterinaryproducts1.com, envhairstudio.com, proveedor211.com, wshahalamira.com, 360-xj.com, xjwfcj.com, co.zm, cdluniversity.org, ledgeschiropractic.com, actionchiropractictumwater.com, tritonimaginginc.com, chabadofessex.com, sotapt.com, aldman1.com, kimchirorehab.com, fira.com, impresosmonterrey.com, shworldbest.com, personalcare1.com, carolinafootcenters.com, zsnet.net, norden.farm, dongguansenzi.com, alefcenter.com, dalychiropractic.com, edmarkfamilychiropractic.com, lafender.com, carmaxbolivia.com, kimmaycock.com, rwhurstdc.com, lifefamilychiro.com, hesslerchiro.com, china114.net, tuckerfox.com.au, bergchirolaser.com, robertschiropracticlifecenter.com, uzpharmagency.uz, hy189.net, extrapernil.com, drfantich.com, mygallatinchiropractor.com, shmagbalanyeq.com, chippewachiropracticclinic.com, mccenterinc.com, xjhongshun.com, chatguru.com.br, eazizlildhabayihs.com, chiropracticriverside.com, raterabbit.com, geochem.org, fortleechiropractors.com, doolanshh.com.au, equinaceaprodutosnaturais.com, dmln.net
20.243.73.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5303/04/2026, 08:52:05 - - ----
3.235.94.•••:18789 - 🇺🇸 United States - true Clean AS14618Amazon.com, Inc.Amazon Web Services02/04/2026, 01:37:5311/04/2026, 18:16:30 No Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 07:22:47-
20.222.117.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5303/04/2026, 08:52:05 Yes Yes APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24990, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 07:22:49cyberwatch.fr
5.129.213.•••:18789 - 🇳🇱 Netherlands - true Leaked AS210976Timeweb, LLPTimeWeb02/04/2026, 01:37:5312/04/2026, 06:25:02 Yes No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 03:35:28novotelecom.ru
13.60.210.•••:18789 - 🇺🇸 United States - true Clean AS16509Amazon.com, Inc.Amazon Data Services Sweden02/04/2026, 01:37:5303/04/2026, 08:52:05 No No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 07:22:51-
20.210.188.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5203/04/2026, 08:52:05 No No --27/03/2026, 07:22:52-
20.222.77.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5203/04/2026, 08:52:05 - - ----
4.155.34.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5203/04/2026, 08:52:05 - - ----
20.222.57.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5203/04/2026, 08:52:05 No Yes PackratCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 07:22:58-
172.67.214.•••:18789 - 🇺🇸 United States - true Leaked AS13335Cloudflare, Inc.Cloudflare02/04/2026, 01:37:5103/04/2026, 08:52:05 Yes No --02/04/2026, 07:22:59wadeismyagent.com, clarkahrenholtz.com, summitiireit.com, mkincaidinsurance.com, masonagency.net, myagentjaredsoukup.com, focusedumatics.com, insurewithmitch.com, chrisshamoon.com, jimhallam.net, hetterinsurance.com, billyslesk.com, brandoncolom.com, venancio.com, nicksmithinsurance.com, mminsuresme.com, hibbinginsurance.com, susannanunn.com, sharonleung.com, ofici.com.mt, atcevents.com, lots.fi, mylowcountryagent.com, cgmprecast.com, teamslaughter.com, aperol.com, setpointusa.com, weinsuremuncie.com, juuri.fi, lakewoodlindsay.com, bikeweeksa.com, mysfneighbor.com, dustinondefense.com, joelnkhakis.com, agentdiego.com, insurewithjerry.com, hzfeidi.com, electronicengineering.com, protectwithallen.com, cindygleeson.com, fricksfashion.com, qfranklin.com, godleyinsurance.com, kenbullock.com, ryanrayburnagent.com, esunequipment.com, insurewithlesliej.com, bbbiotechconference.com, entrinsicbioscience.com, hajocacorona.com, bridgettehearne.com, kalynn-yourfavoriteneighbor.com, chrisford.us, barrynash.com, fuhuake.com, litriceprotectdreams.com, cityfied.net, rhettminson.com, bendavisinsurance.com, gx101.com, spillmaninsurance.com, abpincorp.com, carlsonins.com, skynet.edu.kg, jrorenstein.com, g73data.com, medtecjapan.com, johnlattimore.com, tomrocks.net, fondonegri.it, anlink.net, reginaldbinsurance.com, jrauto.com, cadencesl.com, asheagency.net, mangalam.co.in, jekotrade.com, davidschollagency.com, hmcxjc.com, jindianglass.net, courtneyismyagent.com, shsinotech.com, myagentrex.com, vbankph.com, callbillywilliams.com, laurentullos.com, bopcon.com, randlemaninsurance.com, omniumworldwide.com, jtholland.net, davidgrossberg.net, mashmanventures.com, licenseglobal.com, callcarterford.com, teamchaseinsurance.com, myetxagent.com, randytaylorinsurance.com, teamwilbrooks.com, danodom.net, jrautomation.com, kimforsyth.com, psb-technologies.com, audraginsuresme.com, etz.co.uk, texasinsagent.com, remax-central.com, tommyfay.com, gadberrygroup.com, conceptfeedback.com, mikestuckeyagent.com, douglasphelps.net, chrisganntheinsuranceman.com, davevalencia.com, boyu-group.com, ekakitchen.com, steelforging.net, kbrinkema.com, coachtolver.com, wisehousetech.com, billhagan.com, de-insurance.com, adeinsurance.com, cloudflare.net, drivewithclive.us, zachhasyourback.com, callbryansmith2.com, jimmieholmesinsurance.com, vur.co.uk, getfranco.com, ld.fi, qd-baolian.com, databrick.com, csofam.com, allenseehusen.com, nickrowaninsurance.com, mysouthbayagent.com, illsf.com, kidsbud.net, thegalindoteam.com, jarredismyagent.com, johnshafferagency.com, kevinrmartin.com, illinoisproperty.com, ycityinsurance.com, stevebanco.com, jxlingtong.com, eddiejowilliamson.com, nardini.com, frankrlewis.com, feedstuffs.com, presoteaus.com, mikesgotmecovered.com, yourtxagentdenise.com, baselinewoods.com, vetmindnj.com, wandetech.net, danrickabus.com, lisambrown.com, sfteamchris.com, jiabinnu.com, luminous-productions.com, dennisjacksonsr.com, edgarortizsf.com, lachanceagency.com, cleanzoneheating.com, alghanitex.com, dandantheinsuranceman.net, qzz.io, cindytopete.com, andersonscinsurance.com, esysautomation.com, insuredbyomar.com, fresconeedham.com, kfstock.com, agentcorona.com, mikeburtoninsurance.com, chuckcooper24-7.com, koworksllc.net, callpaulclark.net, ginachlaw.com, lindanguyenagency.com, brownsprinting.com, expocihac.com, chucksmithinsurance.com, orvilledennis.com, wozupsf.com, erinison.com, cloudhq-mkt6.net, airbiquity.com, davidpenainsurance.com, sfinsuranceservices.com, insurance4virginia.com, stickneyequipment.com, crabbydickskeywest.com, bou.fi, callspringer.com, forwardwirecloth.net, 5genergy.ca, aburris.com, fgb.co.uk, insuringnorthcarolina.com, klmymmyc.com, jkylehickam.com, dustinkesslerinsurance.com, sandrarowe.net, marshallbrowninsurance.com, devonellisinsurance.com, philippiersol.com, anngardnerinsurance.com, jackiezupo.com, carinsurancekennewick.com, jefferys.co.uk, aivoitus.fi, elenameroth.com, oneinamillioninsurance.com, lindsayadamsf.com, hnbeixiang.com, nilesplantservices.com, ariannaontiveros.com, refee.net, kristeneaton.net, geosimcities.com, xjzljt.net, shayneholmes.com, xjjingyoga.com, troyagent.com, sxgas.net, wakechem.com, insuremeangel.com, eastbrunswicksf.com, amysmithgardner.com, insurewithsean.com, setpointinc.com, gowithsoto.com, remax.com.au, samkrier.com, 1haojiyin.com, simpsonfamilyinsurance.com, danbell.us, edibanez.com, georgepettice.com, bridgetteemanuel.com, santee-insurance.com, rickgoree.com, briancaseyinsurance.com, insurethezeel.com, cookieoday.com, teamsexton.com, churchsf.com, myagent4sf.com, cindimeyerinsurance.com, tonyreyesinsuranceagency.com, insuredintx.com, wtw.co.in, gotlance.com, teresawilson.net, rosschaisson.com, betharnoldinsurance.com, hussainsaleem.com, myagentcinthya.com, xen.do, myagentpaul.net, leslietripp.net, dougfisherinsurance.com, paulhowellinsurance.com, mattchafin.com, tara4life.com, detongwiremesh.com, globaluavtech.com, claytonwhitlock.com, danschonert.com, gerrymoody.com, jeannieglover.com, aaron24x7.com, rosesmithinsurance.com, insuremeche.com, mabit.cl, benloper.net, ibcglobal.com, tuckerwilliams.com, sanhoos.com, tracyshriver.com, amysjones.com, edbarnhart.com, myagentventura.com, dgclh.com, dougtaylorinsurance.com, terryray.net, bamko.net, jamespiscitelli.com, ausarabbusinesscouncil.com, petemazeika.com, jasmineross.com, creditop.com, hansecontrol.com, jainwilliams.com, jayzenderinsurance.com, lstcarbon.com, michaelpittmaninsurance.com, alisonjonesins.com, bjwillie.com, ernestomartinezagency.com, it.com, insurancewithdaniel.com, ttstest.com, jakeharless.com, esteettinen.fi, outbook.com, davidrosario.net, gaetanasnyc.com, casfontenot.com, oukay.net, lynnbuss.com, kenyawells.com, timmyjohnson.com, charliebrowninsuresme.com, remaxintegra.com, irrigationsystems4u.com, dfwinsurancecenter.com, philcothran.com, danzebert.com, myagentjudy.com, adaminsures.com, boxboard.com, implex.net, yhjgkeji.com, zachcravens.com, myagentkris.com, stevendean.net, insurewithtiffany.com, callkatielamb.com, mql.co.uk, insuringquadcities.com, kathymiraval.com, conklinsf.com, china-one.net, kingdisplay.net, eu.org, agentcurtsmith.com, scheduleme.org, unified.in, bierte.com, jessemcarthur.com, promiselandccc.org, treyyelton.com, insuregirl.com, metafarms.com, rickdouglas.net, bobbiehale.com, dustinbonifay.com, com.de, dennygeorgopulos.com, vivastreet.it, ttyt360.com, chrislopez.net, kevinhaleinsurance.com, jeffdcoleman.com, leemillerismyagent.com, finaeo.com, jeffsummersinsurance.com, teamstuiso.com, jaytemaat.com, russglaze.com, sf-insurance-lady.com, myi.co.uk, tahaluf.com, ubproperties.com, cabinethdw.com, philriehlinsurance.com, alansf.com, heathmurrayinsurance.com, mottomortgageoptimum.com, seemine.net, newyorkfarmshow.com, steveridersf.com, shanefromsf.com, donsmyagent.com, ernieruelas.com, gracelkim.com, creightonsmith.com, ltgjg.net, sfteck.com, cisdigroup.com, kevinsmithagency.com, zgkaite.com, turnoutservices.com, joyestes.net, protectwithandrew.com, sfmitchell.com, matthewroth.net, janetromero.net, amandajmartin.com, russoagency.com, myagentelvia.com, storage.co.uk, myagentnari.com, sfinsureme.com, zjdddl.com, bethanyveasey.com, ericmorenoinsurance.com, ranscustombuilders.com, gunnarolson.net, kimaustin.us, lunanation2.com, levigunn.com, bigaleugene.com, leverijllc.com, jimseilsopour.com, myagentsteph.com, tekstiilitalo.fi, rupertbrowninsurance.com, agentmolina.com, jimdiaz.com, davidbrownagent.com, oracle-ag.ch, sggroupinsurance.com, firmoja.fi, gameeelliott.com, zjhrbz.com, zhaowoo.net, christinerelyea.com, sfwithd.com, meleahlongenecker.com, chedermenachem.org, georgelarry.com, waynepeaceinsurance.com, johannavelazquez.com, greghooveragency.com, mandyreedinsurance.com, collinsinsurancegf.com, iirusa.com, bestwanhui.com, kendeloach.com, outdoorkitchensnorthwest.com, miguelmyagent.com, zippererinsurance.com, richroyalty.com, tristatebergeninsurance.com, agentnikkilong.com, fifthgentech.com, cindymorganagency.com, danreichert.com, clydebryant.com, stevejoswiak.com, mylakelandagent.com, bain86.com, susansmithinsurance.com, ashleymanuel.com, donahueagency.com, candacemooresf.com, teamcripe.com, getmoodyinsurance.com, kao.co.uk, pickpete.net, insuredbynicole.com, hoivapalvelu.fi, markbrowne.net, teresatuckerinsurance.com, patrickhallagency.com, sfagentandrew.com, rigovalle.com, felixjrinsures.com, christianismyagent.com, rickmaraist.com, codywclark.com, workers.dev, steve-smith.net, ryanmosleyinsurance.com, mitchpeck.com, nolanica.com, protectedbytaylor.com, moremt.com, agentkaylamilstead.com, dirksf.com, virtueinvestgroup.com, myagentmiller.com, steveherringtonsf.com, baxtersf.com, ryankhan.com, cmimoulding.com, paulfarmer.net, aliter.com.br, bobinsuresme.com, obrieninsurancegroup.com, insureal.com, angelayancey.net, tigerexpressfuel.com, canoncityinsurance.com, carterandersen.net, cynthialeikofrost.com, ultrafarma.com.br, ricellis.com, 360-xj.com, patrickkennedyinsurance.com, fotohotelphuket.com, xjwfcj.com, jasonreedagent.com, insuredbyrenata.com, mikemuecke.com, jrinker.com, marissawilliamsinsurance.com, joefisheragency.com, meeshamoultonlaw.com, plattecityinsurance.com, lancesceroler.com, spijkerinsurance.com, insuremyneighbor.com, sandersonsf.com, georgeemontgomery.com, massiehazegh.com, victorreyna.com, aronschuhrke.com, impresosmonterrey.com, shworldbest.com, myagentshane.com, zsnet.net, lynnsf.com, insuredbyjasonpalmer.com, dongguansenzi.com, adamdeckerinsurance.com, meridianoutboard.com, tallycats.net, jloweryins.com, insuredbyamberm.com, vipstarnetwork.com, scottreidinsurance.com, jeffshumwayinsurance.com, carmaxbolivia.com, canontradeshows.com, designnews.com, teamcashman.com, charliepierce.com, physnum.com, activewebsite.com, informamarkets-info.com, first.io, china114.net, smartbuildings.com, onoinsurance.com, sarahmendozainsurance.com, harbour.fi, charlesberrouet.com, robtaylorinsurancejonesboro.com, jimclarkins.com, arcgroup.com, adamkase.com, money2020middleeast.com, johnsantorosf.com, hy189.net, jamesrogersinsurance.com, oakcreekagent.com, mikemilleragency.com, mwcapitol.com, nhantrang.com, toddneill.com, luceismyagent.com, belcrilux.com, xjhongshun.com, kimsmithinsurance.com, ryanyoakum.com, jcroberson.com, garybelanus.com, jbaylessinsurance.com, krisstallworth.com, klopfensteininsurance.com, myagentcooper.com, geochem.org, enriqueramirez.com, jimmycarrinsurance.com, whir.com, timbretone.com, paulmartinagency.com, seejenhoffman.com, micks.co.uk, equinaceaprodutosnaturais.com, adelmansf.com, shieldengineering.com, dmln.net, insuremejulie.com, myagentiswhitney.com, intertec.com, cartons.co.uk
16.146.15.•••:18789 - 🇺🇸 United States - true Clean AS16509Amazon.com, Inc.Amazon02/04/2026, 01:37:5103/04/2026, 08:52:05 - - ----
54.224.114.•••:18789 - 🇺🇸 United States - true Clean AS14618Amazon.com, Inc.Amazon02/04/2026, 01:37:5113/04/2026, 13:26:42 No No --27/03/2026, 07:23:02-
43.208.225.•••:18789 - 🇹🇭 Thailand - true Clean AS16509Amazon.com, Inc.Infrastructure02/04/2026, 01:37:5112/04/2026, 13:37:55 - - ----
20.210.237.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5103/04/2026, 08:52:04 No No --27/03/2026, 07:23:10-
20.89.110.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5103/04/2026, 08:52:04 No Yes APT1, APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, FIN8, Gamaredon-Group, Gozi, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers, goziCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161702/04/2026, 07:23:11-
172.177.54.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationCloud02/04/2026, 01:37:5103/04/2026, 08:52:04 - - ----
52.247.5.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5103/04/2026, 08:52:04 - - ----
52.247.27.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:37:5103/04/2026, 08:52:04 - - ----
68.183.168.•••:18789 - 🇺🇸 United States - true Clean AS14061DigitalOcean, LLCDigitalOcean02/04/2026, 01:37:5113/04/2026, 03:17:23 - - ----
104.236.71.•••:18789 - 🇺🇸 United States - true Clean AS14061DigitalOcean, LLCDigitalOcean02/04/2026, 01:37:5106/04/2026, 13:27:21 No Yes APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-3272802/04/2026, 11:06:58-
23.27.0.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS149440Evoxt Sdn. Bhd.Evoxt Hong Kong02/04/2026, 01:06:2811/04/2026, 10:49:29 No No -CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 01:10:21-
20.249.75.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:06:2802/04/2026, 05:52:39 No No --27/03/2026, 01:10:22-
44.210.0.•••:18789 - 🇺🇸 United States - true Clean AS14618Amazon.com, Inc.Amazon Web Services02/04/2026, 01:06:2802/04/2026, 05:52:38 No No --27/03/2026, 01:10:29-
213.21.222.•••:18789 - 🇱🇻 Latvia Yes true Clean AS199152Virtual Data Center IncVersija02/04/2026, 01:06:2811/04/2026, 04:06:26 No Yes APT15, APT17, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APTCVE-2016-20012, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 01:10:31-
4.154.168.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:06:2802/04/2026, 05:52:38 - - ----
101.96.201.•••:18789 Assistant 🇨🇳 China mainland Yes true Clean AS137718Beijing Volcano Engine Technology Co., Ltd.Beijing Volcano Engine Technology02/04/2026, 01:06:2811/04/2026, 10:49:26 - - ----
39.98.90.•••:18789 - 🇨🇳 China mainland - true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft02/04/2026, 01:06:2808/04/2026, 02:30:52 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198503/04/2026, 14:57:01aliyun.com
137.184.80.•••:18789 - 🇺🇸 United States - true Clean AS14061DigitalOcean, LLCDigitalOcean02/04/2026, 01:06:2709/04/2026, 04:04:17 - - ----
154.213.112.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS132839POWER LINE DATACENTERDigital Core Technology Co. Limited02/04/2026, 01:06:2713/04/2026, 05:32:16 No Yes APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, goziCVE-2014-407804/04/2026, 15:22:39-
116.62.71.•••:18789 - 🇨🇳 China mainland - true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft02/04/2026, 01:06:2711/04/2026, 04:06:26 Yes Yes APT-C-23, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt TyphoonCVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-2341909/04/2026, 01:49:27aliyun.com
106.14.92.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft02/04/2026, 01:06:2711/04/2026, 00:00:07 Yes No --05/04/2026, 00:26:18aliyun.com
20.3.98.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:06:2702/04/2026, 05:52:37 - - ----
180.76.121.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu02/04/2026, 01:06:2713/04/2026, 12:50:32 Yes Yes APT17, APT37, DragonFly, El-Machete, Gozi, Packrat-08/04/2026, 03:20:11baidu.com
117.72.222.•••:18789 - 🇨🇳 China mainland Yes true Clean AS141679China Telecom Beijing Tianjin Hebei Big Data Industry Park BranchJD.com02/04/2026, 01:06:2608/04/2026, 08:31:06 - - ----
4.216.152.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:06:2602/04/2026, 06:37:57 - - ----
95.217.6.•••:18789 - 🇫🇮 Finland Yes true Leaked AS24940Hetzner Online GmbHHetzner Online02/04/2026, 01:06:2611/04/2026, 23:15:11 Yes Yes APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198508/04/2026, 16:05:17hetzner.com
47.85.54.•••:18789 - 🇺🇸 United States Yes true Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud02/04/2026, 01:06:2602/04/2026, 06:37:57 - - ----
47.97.58.•••:18789 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft02/04/2026, 01:06:2602/04/2026, 06:37:57 - - ----
38.6.41.•••:18789 - 🇨🇦 Canada Yes true Clean AS398993PEG TECH INCPolyethylene Glycol-Lipid Association02/04/2026, 01:06:2612/04/2026, 06:59:58 No No --30/03/2026, 06:02:43-
43.138.245.•••:18789 - 🇨🇳 China mainland Yes true Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing02/04/2026, 01:06:2602/04/2026, 06:37:57 - - ----
129.121.86.•••:18789 - 🇺🇸 United States - true Clean AS31898Oracle CorporationOGTIPS102/04/2026, 01:06:2613/04/2026, 11:38:04 - - ----
38.6.26.•••:18789 - 🇯🇵 Japan Yes true Clean AS398993PEG TECH INCPolyethylene Glycol-Lipid Association02/04/2026, 01:06:2611/04/2026, 05:36:42 No Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138506/04/2026, 17:09:43-
38.14.254.•••:18789 - 🇺🇸 United States Yes true Clean AS400619AROSSCLOUD INC.PEG Technology02/04/2026, 01:06:2512/04/2026, 00:44:40 No - -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198508/04/2026, 18:19:38-
161.35.188.•••:18789 - 🇺🇸 United States - true Clean AS14061DigitalOcean, LLCDigitalOcean02/04/2026, 01:06:2511/04/2026, 10:50:04 No Yes APT15, APT28, APT31, APT35, APT36, APT37, APT39, Bitter APT, Bluenoroff, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Salt Typhoon, Sandworm Team, SideWinder APT, The Shadow BrokersCVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 19:25:59-
18.216.141.•••:18789 - 🇺🇸 United States Yes true Clean AS16509Amazon.com, Inc.Amazon02/04/2026, 01:06:2502/04/2026, 06:37:56 - - ----
101.200.1.•••:18789 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft02/04/2026, 01:06:2504/04/2026, 19:51:01 - - ----
3.99.139.•••:18789 - 🇨🇦 Canada - true Clean AS16509Amazon.com, Inc.Amazon Web Services Canada02/04/2026, 01:06:2502/04/2026, 14:06:23 - - ----
2407:3641:2316:7507::1:18789 - 🇸🇬 Singapore - true Clean AS141995Contabo Asia Private LimitedContabo Asia02/04/2026, 01:06:2411/04/2026, 10:50:11 - - ----
152.70.114.•••:18789 - 🇺🇸 United States Yes true Leaked AS31898Oracle CorporationOracle02/04/2026, 01:06:2411/04/2026, 03:21:29 Yes Yes DragonFly, Packrat, goziCVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-4161708/04/2026, 04:01:33healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
4.216.232.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:06:2402/04/2026, 06:37:55 - - ----
52.71.222.•••:18789 - 🇺🇸 United States - true Clean AS14618Amazon.com, Inc.Amazon02/04/2026, 01:06:2402/04/2026, 21:39:49 - - ----
52.215.204.•••:18789 - 🇮🇪 Ireland - true Clean AS16509Amazon.com, Inc.Amazon Data Services Ireland02/04/2026, 01:06:2404/04/2026, 19:50:16 - - ----
14.216.134.•••:18789 - 🇨🇳 China mainland Yes true Clean AS4134ChinanetCHINANET Guangdong02/04/2026, 01:06:2402/04/2026, 06:37:55 - - ----
91.196.32.•••:18789 - 🇩🇪 Germany Yes true Clean AS207957SERV.HOST GROUP LTDFrankfurt, Germany02/04/2026, 01:06:2411/04/2026, 10:04:33 No Yes APT17, APT36, APT37, APT45, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT, The Shadow BrokersCVE-2006-20001, CVE-2016-20012, CVE-2018-17189, CVE-2018-17199, CVE-2019-0190, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-16905, CVE-2019-17567, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198503/04/2026, 18:39:03-
120.46.150.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS55990Huawei Cloud Service data centerHuawei Cloud02/04/2026, 01:06:2405/04/2026, 11:14:37 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198505/04/2026, 06:02:44smartcom.cc, huawei.com, huaweidevice.com
89.116.211.•••:18789 - 🇺🇸 United States Yes true Clean AS46475Limestone Networks, Inc.Ethernet Server02/04/2026, 01:06:2402/04/2026, 06:37:55 - - ----
38.6.5.•••:18789 - 🇯🇵 Japan Yes true Clean AS398993PEG TECH INCPolyethylene Glycol-Lipid Association02/04/2026, 01:06:2312/04/2026, 07:00:51 No Yes APT28, APT35, APT37, APT39, APT41, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2014-1692, CVE-2014-2532, CVE-2014-2653, CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2016-0777, CVE-2016-0778, CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161709/04/2026, 06:19:44-
52.179.211.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft02/04/2026, 01:06:2302/04/2026, 08:07:22 - - ----
2a01:4f8:1c0c:7beb::1:18789 - 🇩🇪 Germany - true Clean AS24940Hetzner Online GmbHHetzner Online02/04/2026, 01:06:2311/04/2026, 05:36:37 - - ----
240e:b8f:5775:2e00:9209:d0ff:fe34:244f:18789 - 🇨🇳 China mainland - true Clean AS4134ChinanetChina Telecom IPv6 Broadband Address02/04/2026, 01:06:2308/04/2026, 06:16:00 - - ----
64.181.248.•••:18789 - 🇺🇸 United States - true Clean AS31898Oracle CorporationOracle02/04/2026, 01:06:2302/04/2026, 06:37:54 - - ----
16.148.38.•••:18789 - 🇺🇸 United States - true Clean AS16509Amazon.com, Inc.Amazon02/04/2026, 01:06:2312/04/2026, 00:44:10 - - ----
159.65.94.•••:18789 - 🇬🇧 United Kingdom - true Clean AS14061DigitalOcean, LLCDigitalOcean02/04/2026, 01:06:2312/04/2026, 06:59:57 No Yes APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt TyphoonCVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-3272811/04/2026, 10:07:33-
172.67.191.•••:18789 - 🇺🇸 United States - true Clean AS13335Cloudflare, Inc.Cloudflare02/04/2026, 01:06:2302/04/2026, 22:26:05 - - ----
15.223.114.•••:18789 - 🇨🇦 Canada - true Clean AS16509Amazon.com, Inc.Amazon Web Services Canada02/04/2026, 01:06:2302/04/2026, 14:51:29 - - ----
162.55.178.•••:18789 - 🇩🇪 Germany Yes true Clean AS24940Hetzner Online GmbHHetzner Online02/04/2026, 01:06:2302/04/2026, 06:37:54 - - ----