🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 683295 Page: 964 / 6833 (100 per page) Showing: 96301-96400 Last Imported: 19/04/2026, 08:41:00
Build With Vivgrid

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.

Explore Vivgrid
Showing page 964 of 6833
Previous Next
Endpoint Assistant Name Country auth_requiredis_activehas_leaked_credsasnasn_nameorgfirst_seenlast_seenasi_has_breachasi_has_threat_actorasi_threat_actorsasi_cvesasi_enriched_atasi_domains
38.127.47.•••:18789 - 🇺🇸 United States Yes true Clean AS18978Enzu IncEnzu04/04/2026, 16:53:0316/04/2026, 12:12:52 No Yes Salt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-5138507/04/2026, 18:19:22-
164.92.170.•••:18789 - 🇩🇪 Germany Yes true Clean AS14061DigitalOcean, LLCDigitalOcean04/04/2026, 16:53:0313/04/2026, 20:58:59 No Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-27043, CVE-2023-28531, CVE-2023-36632, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-0397, CVE-2024-11168, CVE-2024-3219, CVE-2024-39894, CVE-2024-4032, CVE-2024-5642, CVE-2024-6232, CVE-2024-6387, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-928707/04/2026, 17:36:58-
14.103.156.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS137718Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)Beijing Volcano Engine Technology04/04/2026, 16:53:0307/04/2026, 21:17:12 Yes No -CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198507/04/2026, 21:17:45bytedance.com
129.204.56.•••:18789 - 🇨🇳 China mainland Yes true Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing04/04/2026, 16:53:0117/04/2026, 10:03:30 No - --02/04/2026, 05:34:34-
52.141.56.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:53:0104/04/2026, 19:52:48 - - ----
106.75.16.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS9808China Mobile Communications Group Co., Ltd.UCloud04/04/2026, 16:53:0110/04/2026, 17:44:17 Yes Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138510/04/2026, 16:17:04ucloud.cn, integritytech.com.cn
172.67.133.•••:18789 - 🇺🇸 United States - true Clean AS13335Cloudflare, Inc.Cloudflare04/04/2026, 16:53:0104/04/2026, 19:52:48 - - ----
64.23.229.•••:18789 - 🇺🇸 United States - true Clean AS14061DigitalOcean, LLCDigitalOcean04/04/2026, 16:53:0104/04/2026, 19:52:48 - - ----
207.180.248.•••:18789 - 🇩🇪 Germany Yes true Clean AS51167Contabo GmbHContabo04/04/2026, 16:53:0004/04/2026, 19:52:48 - - ----
64.225.51.•••:18789 - 🇺🇸 United States - true Clean AS14061DigitalOcean, LLCDigitalOcean04/04/2026, 16:53:0012/04/2026, 15:38:50 - - ----
20.110.169.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:53:0004/04/2026, 19:52:47 - - ----
2a02:4780:2d:2553::1:18789 - 🇺🇸 United States - true Clean AS47583Hostinger International LimitedHostinger04/04/2026, 16:53:0004/04/2026, 19:52:47 - - ----
141.224.195.•••:18789 - 🇳🇱 Netherlands - true Clean AS15435DELTA Fiber NederlandHeadphones04/04/2026, 16:53:0004/04/2026, 19:52:47 - - ----
104.248.164.•••:18789 - 🇬🇧 United Kingdom - true Clean AS14061DigitalOcean, LLCDigitalOcean04/04/2026, 16:52:5918/04/2026, 00:40:22 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-3272813/04/2026, 21:47:58-
88.99.107.•••:18789 - 🇩🇪 Germany Yes true Clean AS24940Hetzner Online GmbHHetzner04/04/2026, 16:52:5916/04/2026, 22:03:13 - - ----
4.223.69.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:52:5904/04/2026, 19:52:47 - - ----
35.212.220.•••:18789 - 🇺🇸 United States - true Clean AS15169Google LLC / AS19527 Google LLCGoogle04/04/2026, 16:52:5909/04/2026, 23:28:05 No No -CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198509/04/2026, 18:08:37-
240e:3a6:e1d:e4c0:aa2c:b95c:b2e1:d02:18789 - 🇨🇳 China mainland - true Clean AS4134ChinanetChina Telecom IPv6 Broadband Address04/04/2026, 16:52:5904/04/2026, 19:52:46 - - ----
170.64.215.•••:18789 - 🇦🇺 Australia Yes true Clean AS14061DigitalOcean, LLCDigitalOcean04/04/2026, 16:52:5915/04/2026, 23:17:32 No Yes APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow BrokersCVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198515/04/2026, 22:39:28-
2a02:4780:66:be60::1:18789 - 🇧🇷 Brazil - true Clean AS47583Hostinger International LimitedHostinger04/04/2026, 16:52:5908/04/2026, 02:33:09 - - ----
101.37.64.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft04/04/2026, 16:52:5917/04/2026, 18:07:44 Yes No --14/04/2026, 05:18:48aliyun.com
52.255.108.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:52:5904/04/2026, 19:52:46 - - ----
36.170.100.•••:18789 - 🇨🇳 China mainland Yes true Clean AS9808China Mobile Communications Group Co., Ltd.China Mobile04/04/2026, 16:52:5904/04/2026, 19:52:46 - - ----
139.196.161.•••:18789 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft04/04/2026, 16:52:5904/04/2026, 19:52:46 - - ----
159.65.82.•••:18789 - 🇬🇧 United Kingdom - true Clean AS14061DigitalOcean, LLCDigitalOcean04/04/2026, 16:52:5905/04/2026, 15:00:46 No Yes APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTECVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198505/04/2026, 12:47:47-
46.62.241.•••:18789 - 🇫🇮 Finland Yes true Leaked AS24940Hetzner Online GmbHHetzner04/04/2026, 16:52:5917/04/2026, 07:49:36 Yes No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198505/04/2026, 14:17:42hetzner.com
104.21.1.•••:18789 - 🇺🇸 United States - true Clean AS13335Cloudflare, Inc.Cloudflare04/04/2026, 16:52:5805/04/2026, 11:17:01 - - ----
115.191.28.•••:18789 - 🇨🇳 China mainland Yes true Clean AS137718Beijing Volcano Engine Technology Co., Ltd.Beijing Volcano Engine Technology04/04/2026, 16:52:5816/04/2026, 01:20:48 - - ----
135.225.75.•••:18789 - 🇸🇪 Sweden - true Clean AS8075Microsoft CorporationCloud04/04/2026, 16:52:5804/04/2026, 19:52:45 - - ----
219.143.143.•••:18789 - 🇨🇳 China mainland Yes true Clean AS4847China Networks Inter-ExchangeChinaNet04/04/2026, 16:52:5808/04/2026, 08:33:31 - - ----
2a02:4780:6e:b763::1:18789 - 🇧🇷 Brazil - true Clean AS47583Hostinger International LimitedHostinger04/04/2026, 16:52:5716/04/2026, 16:45:00 - - ----
2a02:4780:7:8e5b::1:18789 - 🇫🇷 France - true Clean AS47583Hostinger International LimitedHostinger04/04/2026, 16:52:5704/04/2026, 19:52:44 - - ----
85.137.52.•••:18789 - 🇳🇱 Netherlands Yes true Clean AS43641SOLLUTIUM EU Sp z.o.o.Virtual Systems04/04/2026, 16:52:5716/04/2026, 01:20:32 - - ----
156.225.21.•••:18789 - 🇺🇸 United States Yes true Clean AS401701cognetcloud INCVapeline Technology04/04/2026, 16:52:5704/04/2026, 19:52:43 - - ----
20.214.158.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:52:5705/04/2026, 10:32:08 - - ----
172.67.138.•••:18789 - 🇺🇸 United States - true Clean AS13335Cloudflare, Inc.Cloudflare04/04/2026, 16:52:5705/04/2026, 05:18:18 - - ----
149.104.31.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS139659LUCIDACLOUD LIMITEDStarcloud Global04/04/2026, 16:52:5605/04/2026, 20:14:16 - - ----
146.59.153.•••:18789 - 🇫🇷 France Yes true Leaked AS16276OVH SASOVH04/04/2026, 16:52:5617/04/2026, 04:04:06 Yes Yes APT1 Comment Crew, APT27, APT28, APT29, APT34, APT35, APT41, Donot Team, Earth Longzhi, Sandworm Team, Turla APT GroupCVE-2012-6708, CVE-2015-9251, CVE-2019-11358, CVE-2020-11022, CVE-2020-11023, CVE-2020-7656, CVE-2024-1322, CVE-2025-5435207/04/2026, 18:17:05ovh.net
4.151.202.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:52:5604/04/2026, 19:52:43 - - ----
20.78.85.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:52:5604/04/2026, 19:52:43 - - ----
38.55.146.•••:18789 - 🇺🇸 United States Yes true Clean AS400619AROSSCLOUD INC.PEG Technology04/04/2026, 16:52:5604/04/2026, 19:52:43 - - ----
20.69.124.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:52:5504/04/2026, 19:52:42 - - ----
2408:8256:9286:2fbf:2e0:4cff:fe77:7447:18789 - 🇨🇳 China mainland - true Clean AS17816China Unicom IP network China169 Guangdong provinceChina Unicom04/04/2026, 16:52:5504/04/2026, 19:52:42 - - ----
5.45.116.•••:18789 - 🇪🇪 Estonia - true Clean AS198068P.A.G.M. OUWeb Hosting Network04/04/2026, 16:52:5505/04/2026, 09:47:10 - - ----
172.215.226.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationCloud04/04/2026, 16:52:5405/04/2026, 09:47:12 - - ----
3.227.49.•••:18789 - 🇺🇸 United States - true Clean AS14618Amazon.com, Inc.Amazon Web Services04/04/2026, 16:52:5417/04/2026, 06:19:11 No No -CVE-2006-20001, CVE-2011-4718, CVE-2012-1171, CVE-2013-3735, CVE-2013-4113, CVE-2013-4248, CVE-2013-6420, CVE-2013-6501, CVE-2013-6712, CVE-2013-7327, CVE-2013-7345, CVE-2014-0133, CVE-2014-0185, CVE-2014-0207, CVE-2014-0236, CVE-2014-0237, CVE-2014-0238, CVE-2014-1943, CVE-2014-2020, CVE-2014-2270, CVE-2014-2497, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3515, CVE-2014-3538, CVE-2014-3587, CVE-2014-3597, CVE-2014-3616, CVE-2014-3668, CVE-2014-3669, CVE-2014-3670, CVE-2014-3710, CVE-2014-3981, CVE-2014-4049, CVE-2014-4670, CVE-2014-4698, CVE-2014-4721, CVE-2014-5120, CVE-2014-5459, CVE-2014-8142, CVE-2014-9425, CVE-2014-9426, CVE-2014-9427, CVE-2014-9652, CVE-2014-9653, CVE-2014-9705, CVE-2014-9709, CVE-2014-9767, CVE-2014-9912, CVE-2015-0231, CVE-2015-0232, CVE-2015-0235, CVE-2015-0273, CVE-2015-1351, CVE-2015-1352, CVE-2015-2301, CVE-2015-2305, CVE-2015-2325, CVE-2015-2326, CVE-2015-2331, CVE-2015-2348, CVE-2015-2783, CVE-2015-2787, CVE-2015-3152, CVE-2015-3307, CVE-2015-3329, CVE-2015-3330, CVE-2015-3411, CVE-2015-3412, CVE-2015-3414, CVE-2015-3415, CVE-2015-3416, CVE-2015-4021, CVE-2015-4022, CVE-2015-4024, CVE-2015-4025, CVE-2015-4026, CVE-2015-4116, CVE-2015-4147, CVE-2015-4148, CVE-2015-4598, CVE-2015-4599, CVE-2015-4600, CVE-2015-4601, CVE-2015-4602, CVE-2015-4603, CVE-2015-4604, CVE-2015-4605, CVE-2015-4642, CVE-2015-4643, CVE-2015-4644, CVE-2015-5589, CVE-2015-5590, CVE-2015-6831, CVE-2015-6832, CVE-2015-6833, CVE-2015-6834, CVE-2015-6835, CVE-2015-6836, CVE-2015-6837, CVE-2015-6838, CVE-2015-7803, CVE-2015-7804, CVE-2015-8835, CVE-2015-8838, CVE-2015-8865, CVE-2015-8867, CVE-2015-8873, CVE-2015-8874, CVE-2015-8876, CVE-2015-8877, CVE-2015-8879, CVE-2015-8935, CVE-2015-8994, CVE-2015-9253, CVE-2016-0742, CVE-2016-0746, CVE-2016-0747, CVE-2016-10158, CVE-2016-10159, CVE-2016-10161, CVE-2016-10397, CVE-2016-10712, CVE-2016-1247, CVE-2016-1903, CVE-2016-2554, CVE-2016-3141, CVE-2016-3142, CVE-2016-3185, CVE-2016-4070, CVE-2016-4342, CVE-2016-4343, CVE-2016-4450, CVE-2016-4537, CVE-2016-4538, CVE-2016-4539, CVE-2016-4540, CVE-2016-4541, CVE-2016-4542, CVE-2016-4543, CVE-2016-5093, CVE-2016-5094, CVE-2016-5095, CVE-2016-5096, CVE-2016-5114, CVE-2016-5399, CVE-2016-5768, CVE-2016-5769, CVE-2016-5770, CVE-2016-5771, CVE-2016-5772, CVE-2016-5773, CVE-2016-6174, CVE-2016-6288, CVE-2016-6289, CVE-2016-6290, CVE-2016-6291, CVE-2016-6292, CVE-2016-6294, CVE-2016-6295, CVE-2016-6296, CVE-2016-6297, CVE-2016-7124, CVE-2016-7125, CVE-2016-7126, CVE-2016-7127, CVE-2016-7128, CVE-2016-7129, CVE-2016-7130, CVE-2016-7131, CVE-2016-7132, CVE-2016-7411, CVE-2016-7412, CVE-2016-7413, CVE-2016-7414, CVE-2016-7416, CVE-2016-7417, CVE-2016-7418, CVE-2016-7478, CVE-2016-9137, CVE-2016-9138, CVE-2016-9934, CVE-2016-9935, CVE-2017-11142, CVE-2017-11143, CVE-2017-11144, CVE-2017-11145, CVE-2017-11147, CVE-2017-11628, CVE-2017-12933, CVE-2017-16642, CVE-2017-20005, CVE-2017-7272, CVE-2017-7529, CVE-2017-7890, CVE-2017-7963, CVE-2017-8923, CVE-2017-9224, CVE-2017-9225, CVE-2017-9226, CVE-2017-9229, CVE-2018-10545, CVE-2018-10546, CVE-2018-10547, CVE-2018-10548, CVE-2018-10549, CVE-2018-14851, CVE-2018-14883, CVE-2018-15132, CVE-2018-16845, CVE-2018-17082, CVE-2018-19395, CVE-2018-19396, CVE-2018-19520, CVE-2018-20783, CVE-2018-5711, CVE-2018-5712, CVE-2018-7584, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-20372, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9023, CVE-2019-9024, CVE-2019-9517, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9641, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-3618, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31628, CVE-2022-31629, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2022-4900, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-43622, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-6620008/04/2026, 01:51:48-
117.68.122.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS140527China TelecomChinaNet Anhui04/04/2026, 16:52:5417/04/2026, 04:49:04 Yes - -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198511/04/2026, 08:38:15bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn
91.98.141.•••:18789 - 🇩🇪 Germany Yes true Clean AS24940Hetzner Online GmbHHetzner04/04/2026, 16:52:5414/04/2026, 04:32:10 No No -CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2022-3590, CVE-2023-22622, CVE-2023-2745, CVE-2023-38000, CVE-2023-38408, CVE-2023-39999, CVE-2023-48795, CVE-2023-51385, CVE-2023-5561, CVE-2023-5692, CVE-2024-31111, CVE-2024-31210, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-4439, CVE-2024-47252, CVE-2024-6305, CVE-2024-6306, CVE-2024-6307, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-54352, CVE-2025-55753, CVE-2025-58098, CVE-2025-58246, CVE-2025-58674, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-65082, CVE-2025-6620014/04/2026, 00:45:09-
171.83.56.•••:18789 - 🇨🇳 China mainland - true Clean AS137266CHINATELECOM Hubei province Wuhan 5G networkChinaNet Hubei04/04/2026, 16:52:5404/04/2026, 19:52:40 - - ----
38.127.47.•••:18789 - 🇺🇸 United States Yes true Clean AS18978Enzu IncEnzu04/04/2026, 16:52:5417/04/2026, 00:18:21 - - ----
161.35.215.•••:18789 - 🇩🇪 Germany Yes true Leaked AS14061DigitalOcean, LLCDigitalOcean04/04/2026, 16:52:5416/04/2026, 01:20:33 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MoustachedBouncer, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2007-4559, CVE-2013-0340, CVE-2015-20107, CVE-2016-10708, CVE-2016-20012, CVE-2016-3189, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-25032, CVE-2019-12900, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-10735, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-28861, CVE-2021-3618, CVE-2021-36368, CVE-2021-3733, CVE-2021-3737, CVE-2021-41617, CVE-2021-4189, CVE-2022-0391, CVE-2022-37454, CVE-2022-40468, CVE-2022-41741, CVE-2022-41742, CVE-2022-42919, CVE-2022-45061, CVE-2023-24329, CVE-2023-27043, CVE-2023-28531, CVE-2023-38408, CVE-2023-40533, CVE-2023-44487, CVE-2023-48795, CVE-2023-49606, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-3272812/04/2026, 21:37:43warpspeedvpn.com
58.37.19.•••:18789 - 🇨🇳 China mainland Yes true Clean AS4812China Telecom (Group)ChinaNet Shanghai04/04/2026, 16:52:5316/04/2026, 09:23:52 - - ----
47.77.234.•••:18789 - 🇺🇸 United States Yes true Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud04/04/2026, 16:52:5314/04/2026, 03:01:35 - - ----
20.214.153.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:52:5304/04/2026, 19:52:40 - - ----
20.94.240.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:52:5305/04/2026, 06:48:09 - - ----
45.207.201.•••:18789 - 🇭🇰 Hong Kong - true Clean AS8796FASTNET DATA INCVapeline Technology04/04/2026, 16:52:5316/04/2026, 01:21:18 No No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/04/2026, 03:01:20-
167.150.153.•••:18789 - 🇵🇦 Panama Yes true Clean AS212105WildSage Labs Inc.WildSage Labs04/04/2026, 16:52:5216/04/2026, 16:45:04 - - ----
209.38.173.•••:18789 - 🇺🇸 United States Yes true Clean AS14061DigitalOcean, LLCDigitalOcean04/04/2026, 16:52:5214/04/2026, 00:45:30 No Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-638707/04/2026, 18:19:28-
172.67.171.•••:18789 - 🇺🇸 United States - true Clean AS13335Cloudflare, Inc.Cloudflare04/04/2026, 16:52:5204/04/2026, 19:52:39 - - ----
47.254.216.•••:18789 - 🇲🇾 Malaysia - true Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud Malaysia04/04/2026, 16:52:5216/04/2026, 10:41:53 No No -CVE-2016-20012, CVE-2019-16905, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198513/04/2026, 17:13:39-
92.113.148.•••:18789 - 🇺🇦 Ukraine - true Leaked AS44803Webdock.io ApSUkrtelecom04/04/2026, 16:52:5205/04/2026, 13:31:10 Yes Yes Salt TyphoonCVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198505/04/2026, 09:02:49ukrtelecom.ua
60.186.100.•••:18789 - 🇨🇳 China mainland Yes true Clean AS4134ChinanetChinaNet Hangzhou04/04/2026, 16:52:5204/04/2026, 19:52:38 - - ----
130.61.47.•••:18789 - 🇺🇸 United States Yes true Leaked AS31898Oracle CorporationOracle Cloud04/04/2026, 16:52:5217/04/2026, 17:28:49 Yes Yes Salt TyphoonCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198508/04/2026, 02:33:08healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, elementfusion.com, netsuiteforms.com, oracleemaildelivery.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
43.165.166.•••:18789 - 🇯🇵 Japan Yes true Clean AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd04/04/2026, 16:52:5217/04/2026, 10:04:16 - - ----
34.27.89.•••:18789 - 🇺🇸 United States - true Clean AS396982Google LLCGoogle04/04/2026, 16:52:5109/04/2026, 23:28:05 No Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-638709/04/2026, 18:08:50-
20.240.49.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:52:5104/04/2026, 19:52:38 - - ----
20.196.214.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:52:5104/04/2026, 19:52:38 - - ----
13.211.37.•••:18789 - 🇦🇺 Australia - true Clean AS16509Amazon.com, Inc.Amazon Corporate Services04/04/2026, 16:52:5104/04/2026, 19:52:38 - - ----
49.232.205.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud04/04/2026, 16:52:5117/04/2026, 02:33:44 Yes Yes APT37, El-Machete-14/04/2026, 08:21:16tencent.com
47.114.75.•••:18789 - 🇨🇳 China mainland - true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft04/04/2026, 16:52:5117/04/2026, 10:03:28 No No -CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198507/04/2026, 23:34:42-
101.35.91.•••:18789 - 🇨🇳 China mainland - true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing04/04/2026, 16:52:5116/04/2026, 17:30:36 Yes Yes APT37, El-MacheteCVE-2023-44487, CVE-2024-7347, CVE-2025-2341913/04/2026, 22:29:10tencent.com
20.91.192.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:52:5104/04/2026, 19:52:37 - - ----
4.223.71.•••:18789 - 🇺🇸 United States - true Leaked AS8075Microsoft CorporationMicrosoft04/04/2026, 16:50:4205/04/2026, 05:15:55 Yes No --04/04/2026, 19:06:19msn.com, videoindexer.ai, azurecr.io, microsoft.com, micorosoft.com, azurecontainerapps.io, foldershare.com, trinigy.net, hdinsightservices.net, adventure-works.com, microsoft.tw, svox.com, secureislands.com, microsoft-ppe.com, remotewebaccess.com, crmlivetie.com, attacksimulationtraining.com, powervirtualagents.com, microsoft.us, groovemusicapp.com, powerapps.us, azureedge.net, asure.com, outlookmobile.com, kameo.com, start.com, microsoft.ee, microsoft.net, azureedge.us, contoso.org, acompli.net, azurecontainer.io, movere.io, imaginecup.com, onenote.net, dotnetfoundation.org, msidentity.com, msftcloudes.com, sway-extensions.com, expresslogic.com, msdn.com, lync.com, microsoft365dsc.com, microsoft.com.kz, powershellgallery.com, yammerusercontent.com, microfost.com, azure.us, maps.bing, jclarity.com, developervelocityassessment.com, start.gg, officeliveemail.com, fluidframework.com, windows-int.net, ciamlogin.com, bingads.com, microsoft.me, microsoftready.com, deepmetrix.com, microsoftmetrics.com, orithegame.com, capptain.com, vscodeedu.com, smash.gg, b2clogin.com, fslogix.com, bigbluebox.com, buildwinjs.com, webtv.net, cyberx-labs.com, spotfront.com, assetmetrix.com, onmicrosoft.us, bing4.com, frxsoftware.com, customvision.ai, microsoft.io, account.microsoft, bing.com, azure.microsoft, microsoftusercontent.com, microsoft.com.ng, support.microsoft, microsoft.co.ke, msftclouddiagnostics.net, cloudappsecurity.com, microsoft-int.com, 1drv.com, sharepoint-mil.us, hormail.com, live.net, live.cn, phonefactor.net, hotmail.com, passport.com, phonefactor.com, e-msedge.net, segsrvcs.com, trafficmanager.net, microsoftazuresponsorships.com, officeppe.com, azgrafana.io, hotmeil.com, powerplatform.com, azurefd.us, mesh.com, hexadite.com, sqlazurelabs.com, microsoft.cn, azureiotcentral.com, swiftkey.net, bingplaces.com, gears5.com, microsoft.tv, volometrix.com, msft.net, livemail.tw, 343industries.com, securehealthvault.com, mover.io, microsoftedgeinsider.com, cloudapp.com, dragon.com, assets-yammer.com, touchtype-fluency.com, windowsphone.com, peer5.com, contoso.com, microsof.com, dynamics365.co, azurerms.com, github.co, micrsoft.com, azurewebsites.us, iegallery.com, windowsmedia.com, fluidpreview.com, mmicrosoft.com, ally.io, spza-canary.net, bingatwork.com, microsofttranslator.com, refirmlabs.com, fastsearch.com, mikrosoft.com, musiwave.com, microsoft.by, officeppe.net, lumenisity.com, aadrm.com, microsoftonline.us, hotmail.com.tw, edge.microsoft, commicrosoft.com, accipiter.com, o365.com, pass-sport.com, inmicrosoft.com, vsassets.io, powerappsportals.us, adaptivecards.io, microsoftazure.com, ceipmsn.com, affirmednetworks.com, teams.microsoft, azureml.com, microsoftpartnercommunity.com, live.cl, applicationinsights.io, hololens.com, jcloudms.com, msappproxy.net, windows.us, microsofticm.com, flip.com, acompli.com, officelive.com, azureml.net, dreamspark.com, flightsimulator.com, microsift.com, msftncsi.com, sway-cdn.com, azuredatalakeanalytics.net, technet.com, calendar.help, clearsoftware.com, microsoft.org, dot.net, lhsl.com, hotmai.com, microsoft.com.cn, studentambassadors.com, microsoft-dev.com, zone.com, accessibilityinsights.io, xboxlive.com, nuanceactionablefindings.com, msid.com, dev.microsoft, appsplatform.us, communology.com, windowsupdate.com, windowssearch.com, zoom.co, windows-ppe.net, azure.com, microsoft.windows, dynamics-int.com, microsoftonline.co, live.in, hdicore.com, systemcenteradvisor.com, azureiotcentral-dev.com, communitydays.org, parature.com, bingmapsportal.com, powerautomate.us, asur.com, microsoftcanada.com, virtualearth.net, ydx.co, mgt.dev, playwright.com, dynamics365.com, outlookmobile.us, minecrafteducation.com, msftauthimages.net, proclarity.com, mail.microsoft, windowsazure.us, fantasysalesteam.com, microsoft.stream, boswp.com, microsoftcrmportals.com, www.microsoft, monodevelop.com, microsoft.cl, mircosoft.com, msn.cn, usgovtrafficmanager.net, powerautomate.com, dynamics.microsoft, microsoft.design, visio.com, bing.net, msftidentity.com, microsoft.info, live.com, cloud.microsoft, typescriptlang.org, microsoft.ru, ccsctp.net, skypeforbusiness.com, live-int.com, msn.co, halowaypoint.com, msgamestudios.com, getmicrosoftkey.com, woodgrovedemo.com, hotamail.com, microsoftonline-p.net, microsoftstore.com.cn, portal.microsoft, icrosoft.com, microsoft.dk, a-msedge.net, omnichannelengagementhub.com, bing-exp.com, microsoftcorporation.com, microsodt.com, microsoftsupport.com, zune.net, skypeforbusiness.us, kinvolk.io, realmedia.com, outlook.jp, azure-dns.org, s-msft.com, azure.net, microsoftazuread-sso.com, cloudappsecuritygov.com, login.microsoft, bingj.com, microsoft.pr, solomon.com, risk.io, trouter.io, o365weve.com, microsft.com, nuancefoundation.org, msinvoiceexchange.com, microsoftcommunitytraining.com, microsoft.in, azuredatabricks.net, microsoftonline-p.com, microsfot.com, microsoftdynamics.us, microsoft.xbox, aadrm.us, surface.com, skype.net, frontbridge.com, m365copilot.com, microsoftoem.com, cloudappsecurity.us, office365-net.us, sharepoint.us, minit.io, azureiotsolutions.com
38.147.122.•••:18789 - 🇮🇩 Indonesia Yes true Clean AS55688PT. Beon IntermediaBeon Intermedia04/04/2026, 16:50:4216/04/2026, 22:00:55 Yes No -CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198504/04/2026, 19:06:26lavabit.com
175.178.188.•••:18789 - 🇨🇳 China mainland - true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud04/04/2026, 16:50:4213/04/2026, 05:31:56 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161704/04/2026, 19:06:31tencent.com
20.210.130.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:50:4204/04/2026, 19:50:29 - - ----
43.136.45.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing04/04/2026, 16:50:4218/04/2026, 00:38:55 Yes No --04/04/2026, 19:06:37tencent.com
123.207.204.•••:18789 - 🇨🇳 China mainland - true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud04/04/2026, 16:50:4117/04/2026, 07:47:23 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-5138504/04/2026, 19:06:41tencent.com
129.204.56.•••:18789 - 🇨🇳 China mainland Yes true Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing04/04/2026, 16:50:4117/04/2026, 10:01:10 No - --29/03/2026, 19:06:48-
52.141.56.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:50:4104/04/2026, 19:50:29 - - ----
106.75.16.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS9808China Mobile Communications Group Co., Ltd.UCloud04/04/2026, 16:50:4110/04/2026, 17:41:57 Yes Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138504/04/2026, 19:06:55ucloud.cn, integritytech.com.cn
104.21.13.•••:18789 - 🇺🇸 United States - true Leaked AS13335Cloudflare, Inc.Cloudflare04/04/2026, 16:50:4105/04/2026, 06:45:48 Yes No --04/04/2026, 19:06:58gallery-raffaele-celentano.com, deafcomm.net, tcs-transport-levage.fr, fuyuanwj.com, danca.tv, hollandfarms.com, puerto-quetzal.com, westenddentalnyc.com, jxxlxj.com, atcevents.com, rjstpierreandsons.com, willamettesurgerycenter.com, cgmprecast.com, howardlogistics.com, apie-therapeutics.com, dynamicautomation.co.in, juuri.fi, kirsch.com, sdkyjt.net, clusterfy.com.br, luckyplastic.net, qmscrushing.com, ics-line.com, hzfeidi.com, electronicengineering.com, thehotdonut.com, fricksfashion.com, sz-jl.com, bbbiotechconference.com, hbbygd88.com, grandfortunebangkok.com, fuhuake.com, cityfied.net, gx101.com, arlingtonfoodies.com, rmscva.com, abpincorp.com, rightwaytrading.net, wenchyuan.com, medtecjapan.com, jovensembaixadores.org.br, ltitrucking.com, craftech.co.in, painel2000.com, anlink.net, jxygcy.com, imobiliare.ro, jekotrade.com, grasshopperstaffing.com, hmcxjc.com, shsinotech.com, vbankph.com, gipnutmeg.com, xjhhcm.com, bopcon.com, ytxweb.net, licenseglobal.com, smcinternational.fr, smartpharmtx.com, naseni.gov.ng, judgeyachts.com, viralthread.com, chinasyh.net, vertexindia.com, boyu-group.com, scobeefoods.com, ekakitchen.com, theinnotech.net, owlmediadesign.com, wisehousetech.com, cloudflare.net, midwestohio.com, collegiateentrepreneurs.com, qd-baolian.com, csofam.com, thecricketcenter.com, co.com, kidsbud.net, aviationnow.com, jxlingtong.com, ganimlawgroup.com, org.ru, uniondalefire.com, feedstuffs.com, gloriouscolor.com, baselinewoods.com, jiabinnu.com, mpwmarketing.com, alghanitex.com, qzz.io, alpinborovets.com, kfstock.com, venturatextiles.com, brownsprinting.com, expocihac.com, rein.ai, m-printone.com, cloudhq-mkt6.net, valenciamoldremediation.us, forwardwirecloth.net, intercontinentalnc.com, 3-dtechnology.com, cclvcr.com, timing-tech.com, klmymmyc.com, hunterdouglasarchitectural.com, luckycatnyc.com, columbiaseniorcenter.com, pp.ua, wenn.com, nifftseat.com, hnbeixiang.com, leisonhk.com, refee.net, xjzljt.net, tramitesinfronteras.com, xjjingyoga.com, dongfanggufen.net, sxgas.net, fahykitchens.com, theliftboise.com, wakechem.com, bistrotmakan.com, 1haojiyin.com, garage-auto-martinez.fr, alertbrasil.com.br, lamaison-corse.fr, sinotransfj.com, dzrjx.net, fenoplast.com, aptenonsjz.com, eurostampiparma.it, american-testing.com, globalinternation.com, ibinfotech.net.in, maryelexports.com, cudge.net, cadmarc.com, detongwiremesh.com, usconstitution.net, ibcglobal.com, sanhoos.com, simatek.com, apipl.co.in, dgclh.com, nordicmobility.no, bamko.net, ausarabbusinesscouncil.com, hansecontrol.com, lstcarbon.com, retailtrafficmag.com, cphi.com, it.com, ttstest.com, lamaxwell.com, event1.io, gaetanasnyc.com, eatnuleaf.com, oukay.net, irrigationsystems4u.com, dachcafe.com, boxboard.com, uotz.com.br, yhjgkeji.com, fiva.com, experts-ffg.fr, succescomm.fr, sikuel.it, china-one.net, kingdisplay.net, eu.org, bierte.com, netups.com.br, garage-eiffel.fr, jadzdjm.com, pesasybalanzas.com, westwoodhistoricalsociety.com, otisa.com, com.de, ttyt360.com, mandarinoriental.it, shirkeswitch.net, hancockalbanese.com, godavaripaper.com, sortimage.com, doradver.ru, drchengsdental.com, maginus.com, tahaluf.com, barnesdennig.com, metalsunited.com, bozhongyuan.com, olivermma.com, newyorkfarmshow.com, richlandtexas.gov, zgkaite.com, turnoutservices.com, jgtowingsc.com, xcom-mc.fr, zjdddl.com, ranscustombuilders.com, huadewood.com, accuristix.com, xjnmi.com, hotel-beausejour-nevers.fr, sconesinthecity.com, oracle-ag.ch, eyes-armour.com, zjhrbz.com, zhaowoo.net, alsaharestaurant.com, jiangsufuji.com, tfobrien.com, lifesharecarolinas.org, iirusa.com, bestwanhui.com, louieschickenfingers.com, wikas.in, domainedelagarenne-morestel.fr, torresfence.com, bymer.com, collinite.com, fermeurop.fr, bain86.com, fxgowin.com, alchemy.io, eushipments.com, denverkickersoktoberfest.com, paintglow.com, nextekpower.com, workers.dev, weamv.com, hashemfoods.com, crmt.fr, charliejohns.com, newoceanfood.com, radionigeria.gov.ng, hunterdouglas.com, dechuangjixie.com, mallyas.com, tigerexpressfuel.com, cloudns.net, deakinchamberspsychologists.net, hunterdouglashospitality.com, 360-xj.com, eatatbens.com, playerssportsbarmadison.com, xjwfcj.com, co.zm, financeirobatbrasil.com.br, vhnwindiana.com, isolation-maisons-provencales.fr, impresosmonterrey.com, shworldbest.com, alchemyapi.io, zsnet.net, dongguansenzi.com, carmaxbolivia.com, denis-carrelage.fr, sdfengze.net, canontradeshows.com, designnews.com, informamarkets-info.com, empreintes-coiffure.fr, china114.net, olivet-business-center.fr, scitz.com, dts-renovation.fr, arcgroup.com, money2020middleeast.com, hy189.net, twin-cities.ru, erc.edu, net.ru, xjhongshun.com, scanqr.org, geochem.org, food-machines.net, whir.com, apfadvogados.com.br, equinaceaprodutosnaturais.com, dmln.net, intertec.com
64.23.229.•••:18789 - 🇺🇸 United States - true Clean AS14061DigitalOcean, LLCDigitalOcean04/04/2026, 16:50:4104/04/2026, 19:50:29 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-3272804/04/2026, 19:07:02-
104.21.14.•••:18789 - 🇺🇸 United States - true Leaked AS13335Cloudflare, Inc.Cloudflare04/04/2026, 16:50:4104/04/2026, 19:50:28 Yes No --04/04/2026, 19:07:08riskadvantage.com, pearlvisionindia.com, acepathfinder.com, cgmprecast.com, aceins.com, airconservice.us, qmscrushing.com, bikeweeksa.com, elnuevodia.com, ics-line.com, spagroindustries.com, acemobileinsurance.com, hzfeidi.com, pckit.org, roca-sl.com, californiaminisplits.com, govservices.us, fricksfashion.com, redondobeachairconditioning.us, sz-jl.com, tubemp3.is, chubbautoupdate.com, hbbygd88.com, forgepartners.org, fuhuake.com, acepremiertravel.com, cityfied.net, abpincorp.com, hvacdistributors.com, wenchyuan.com, ahg.co.kr, atlasformen.co, anlink.net, allwallpaper.in, mghpittsburgh.com, jekotrade.com, hmcxjc.com, jindianglass.net, shsinotech.com, vbankph.com, gipnutmeg.com, xjhhcm.com, bopcon.com, chubbcyberindex.com, chubbriskmanager.com, viralthread.com, irongateriskpartners.com, cheesecake.com, retrievalmasters.com, chinasyh.net, boyu-group.com, ekakitchen.com, steelforging.net, theinnotech.net, ace-travel-insurance.com, drlokken.com, solomonconstruction.us, wisehousetech.com, cloudflare.net, iacobuccigroup.com, qd-baolian.com, csofam.com, co.com, montrose.is, eplassist.com, paramountairconditioning.com, jxlingtong.com, reidlandfarley.com, aceincomeinsurance.com, nezer.us, baselinewoods.com, wandetech.net, jiabinnu.com, airconditioningdistributor.us, alghanitex.com, qzz.io, kfstock.com, catdogmail.live, samaritan.care, aceclaim.com, porcelainchina.net, brownsprinting.com, mclaughlincounselingswla.com, ibatrust.org, m-printone.com, cloudhq-mkt6.net, akshayacreation.com, jus.com.br, center4hopeandhealing.com, cclvcr.com, timing-tech.com, klmymmyc.com, flashpoint.live, anorton.com, pinnaclecenter.com, us.org, credholdingcorp.com, plumbingandheating.org, hnbeixiang.com, susankingsley.biz, chinayinshufood.com, neurobehavioralaustin.com, strawberries.com, eccim.com.br, liveatlakeshore.com, leisonhk.com, kcsprivateltd.com, xjjingyoga.com, dongfanggufen.net, sxgas.net, wakechem.com, lifeworkswellnesscare.com, binswangerbrazil.com.br, tejelectricals.com, 1haojiyin.com, endi.com, sinotransfj.com, chubbdigital.com, aptenonsjz.com, globalinternation.com, maryelexports.com, cchsa.org, concordfire.net, gourmetgiftbaskets.com, westchester.com, dawnportertherapy.com, detongwiremesh.com, chubbcyber.com, pnbgentravel.com, www.us.com, sanhoos.com, donnaschwartztherapist.com, dgclh.com, generalmusic.us, bamko.net, ausarabbusinesscouncil.com, nadeemleathers.com, simplycounseling.com, faithandhopetherapy.com, casino-club.com.ar, lstcarbon.com, it.com, unitaal.com.br, ttstest.com, mackenzieccs.com, gaetanasnyc.com, helpinghandsinspirehappyhearts.com, irrigationsystems4u.com, writecache.com, esis.com, cncf.org, yhjgkeji.com, chubbinsurance.net, www.eu.com, china-one.net, jssd.net, eu.org, dawnthompsontherapy.com, bierte.com, lasvegasnvtherapist.com, pesasybalanzas.com, onnercapital.com.br, prem-box.com, ttyt360.com, www.de.com, chubb.com, advancedpsychologicalwellness.com, corbinhousing.org, shoreham.bank, bozhongyuan.com, seemine.net, ltgjg.net, zgkaite.com, turnoutservices.com, chubbcyberalert.com, zjdddl.com, ranscustombuilders.com, huadewood.com, nidec-gpm.com.br, chubbclaims.com, horisen.com, yopmail.co, orangeairconditioning.us, isc2.org, mountbatten.hants.sch.uk, christianchanges.com, feicferramentaria.com.br, oracle-ag.ch, eyes-armour.com, zjhrbz.com, zhaowoo.net, jiangsufuji.com, xshtdq.com, atlanticmutual.com, bestwanhui.com, chubbtravelinsurance.com, globalhub-outandequal.org, oasisassist.com, aceeuropeonweb.com, couponsale.in, gettravelprotection.com, acecyberrisk.com, android-dz.com, bain86.com, fxgowin.com, carrieamorrisonpsyd.com, ntgtraining.co.uk, humandynamicsinc.net, workers.dev, healthypawspetinsurance.com, newoceanfood.com, dechuangjixie.com, tigerexpressfuel.com, jinpac.com, 360-xj.com, xjwfcj.com, co.zm, mightyoaksprogram.org, adamgrindlinger.com, pollyholding.com, anhuaabrasives.net, probuzzmedia.com, impresosmonterrey.com, shworldbest.com, zsnet.net, dongguansenzi.com, yourimageink.com, carmaxbolivia.com, jjshawcounseling.com, kyschool.us, china114.net, chubbsmallbusiness.com, chubbconferencecenter.com, inatrustfsb.com, chubbtravelsmart.com, timelesscounseling.com, occalamance.com, nidec.com.br, outandequal.org, chinakangtai.net, xjhongshun.com, acegroup.com, ace-arabia.com, chubbprotection.com, efitness.pl, geochem.org, dkrausfootprints.com, food-machines.net, chubbsamaggi.com, equinaceaprodutosnaturais.com, zorbadogdesign.com
207.180.248.•••:18789 - 🇩🇪 Germany Yes true Leaked AS51167Contabo GmbHContabo04/04/2026, 16:50:4104/04/2026, 19:50:28 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198504/04/2026, 19:07:10contabo.de, contabo.net
64.225.51.•••:18789 - 🇺🇸 United States - true Clean AS14061DigitalOcean, LLCDigitalOcean04/04/2026, 16:50:4115/04/2026, 09:25:38 No Yes APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, Volt Typhoon, WIRTECVE-2006-20001, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-3618, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-3272804/04/2026, 19:07:15-
104.21.45.•••:18789 - 🇺🇸 United States - true Leaked AS13335Cloudflare, Inc.Cloudflare04/04/2026, 16:50:4005/04/2026, 03:13:41 Yes No --04/04/2026, 19:07:30digitalssite.com, streamshop.com, vpnserver.com, danca.tv, accds.com, wisdomxj.cn, applications.com, vcorp.com, continentalrv.com, cepro.com, hoolina.com, abaq-z.com, pyropartenope.it, cedia.net, cgmprecast.com, twf2019.com, cwsse.com.cn, fashionfloors.co, byteboard.com, qmscrushing.com, bikeweeksa.com, ics-line.com, forumcorp.com, dataloop.com, hzfeidi.com, jiskinc.net, salonnews.com, fricksfashion.com, energyservices.com, xjkrx.cn, youthstream.com, hbbygd88.com, ssasweden.com, lordbissell.com, fuhuake.com, cityfied.net, playergroup.com, abpincorp.com, cpmginc.com, globalsolutions.com, xintec.hk, informationsystems.com, meter.ln.cn, anlink.net, globalexchange.net, lormac.fr, rentrightnow.com, mangalam.co.in, tourservices.com, jekotrade.com, campussafetymagazine.com, hmcxjc.com, shsinotech.com, why-weight.ca, vbankph.com, gipnutmeg.com, bopcon.com, jennifermorehousemft.com, thestdavidshotel.com, eurobank.com, graphicconnection.com, naseni.gov.ng, poloralphlauren.com, judgeyachts.com, campmgmt.com, itradeonline.com, hbcollection-ksa.com, boyu-group.com, ekakitchen.com, wisehousetech.com, cloudflare.net, ceostream.com, channel.net, qd-baolian.com, csofam.com, gatorchucks.cn, handyman.com, galleryconnection.com, jstream.com, globalventures.com, grplantmaint.com, bellafaris.com, hackensackmeridianhealth.org, innfos.cn, govcoin.com, jxlingtong.com, laravel.com, palisadesmedical.org, gloriouscolor.com, baselinewoods.com, labordemarine.com, luxuryventures.com, avarinfo.com, referral.com, jiabinnu.com, sciencesuite.com, nynow.com, alghanitex.com, lendstream.com, dehuiguangchang.cn, pantexinternational.it, xjgudao.com, kfstock.com, vbuilders.com, daralgmyelh.com, brownsprinting.com, druce.com, riverviewmedicalcenter.com, m-printone.com, rivalcorp.com, bearpawtackle.com, cloudhq-mkt6.net, truckersbooks.ca, cclvcr.com, timing-tech.com, klmymmyc.com, homemaintenance.com, argei.it, ralphlaurenhome.com, biocomppharma.com, wenn.com, thanasiri.com, hnbeixiang.com, aaram-sa.com, everymantherapy.com, radishnyc.com, stoneart.co.in, portobeloresidencial.com.br, leisonhk.com, machinetek.com, navispherecarrier.com, xjjingyoga.com, dongfanggufen.net, sxgas.net, wakechem.com, medtrade.com, rlm.com, 1haojiyin.com, sama-lan.com, surtex.com, ark-car.com, customerprofile.com, mubayyin.cn, sinotransfj.com, interpraise.com, cglcondominiosfechados.com.br, readystaffing.com, aptenonsjz.com, eurostampiparma.it, globalinternation.com, ventureos.com, maryelexports.com, malibupress.com, incrementstore.com, imobile.com, contrib.com, jkorcounseling.com, pragmaticplay.com, xjxhhydropower.com, engageboost.com, learningwire.com, detongwiremesh.com, laan-sa.com, eshares.com, sanhoos.com, dldianfeng.cn, delight-sa.com, simatek.com, cglcondominios.com.br, missionpharmacal.com, nationalpavementexpo.com, dgclh.com, bamko.net, ausarabbusinesscouncil.com, pixelsksa.com, lstcarbon.com, mobilepediatricdentistry.com, it.com, ttstest.com, nature-mixes.com, gaetanasnyc.com, irrigationsystems4u.com, flamcounseling.com, mrgroup.in, yhjgkeji.com, beiyuecheng.com, herrerainc.com, realtydao.com, china-one.net, windowcleaningltd.com, plantationprestige.com, eu.org, unified.in, bierte.com, investcentre.com, pesasybalanzas.com, buildfolio.com, polo.com, prem-box.com, areen-alkaif.com, otisa.com, mtgr-altmyez.com, tailwindgroup.com, iptunnel.com, ttyt360.com, mandarinoriental.it, innerarrowcounseling.com, hancockalbanese.com, batalatsa.com, bycast.com, leadstream.net, burnettown.com, mycatty23online.com, chaps.com, doradver.ru, maginus.com, battlefieldcounselingcenters.com, sfpl.in, wppiexpo.com, barnesdennig.com, stillwellpartners.com, taskmgmt.com, galaxy-of-luxury.com, servicetech.com, hackensackumc.org, mohta.in, richlandtexas.gov, basis.org, zgkaite.com, turnoutservices.com, qmctelecom.com, 0991df.net, szlis.com.cn, zjdddl.com, skyinfotech.in, aquoral.com, ranscustombuilders.com, telecomanalysis.com, smartzonesa.com, lavandeparfums.com, usa-fabric.com, allegribriganti.it, linked.com, retailtouchpoints.com, vnoc.com, cgl.com.br, pavimental.it, fundchannel.com, ralphlauren.com, oracle-ag.ch, nestlersgroup.com, eyes-armour.com, zjhrbz.com, zhaowoo.net, adl.co.in, jiangsufuji.com, itmanage.net, your-plus1.com, reservationcenter.com, brooktechmaintenance.com, bestwanhui.com, accuityhealthcare.com, redlodgemountain.com, retrospectcounseling.com, goldenstream.com, bain86.com, polobarralphlauren.com, fxgowin.com, ja-newyork.com, goldtreecounseling.com, interlan.com, automations.com, arbejdsdirektoratet.dk, quickerliquor.ca, eismann.io, carrierclinic.com, globalexport.com, eushipments.com, counseling-connections.com, milou.in, workers.dev, texans.com, newoceanfood.com, photochallenge.com, dechuangjixie.com, abidjan.net, cnkejie.com, mallyas.com, marinehub.com, 8189330.cn, filmteck.com, tigerexpressfuel.com, buildcorp.com, cloudns.net, proveedor211.com, wshahalamira.com, 360-xj.com, xjwfcj.com, appservice.com, patentboard.com, constructionforum.com, my-catalogue.co.za, aldman1.com, datacommunications.com, miamitelevision.com, cannabiscorp.com, impresosmonterrey.com, shworldbest.com, liyubelt.net.cn, wombgallery.com, zsnet.net, aspirewy.com, medbrokers.com, dongguansenzi.com, cspnet.it, energystorage.com, lafender.com, carmaxbolivia.com, china114.net, venturebuilder.com, commercialintegrator.com, 1800ventures.com, rfidjournalevents.com, espacocontemporaneo.com.br, niriusa.org, cpmgevents.com, shmagbalanyeq.com, xjhongshun.com, eazizlildhabayihs.com, skihomewood.com, cornerstaffing.com, usidetention.com, geochem.org, food-machines.net, ironworkers380.org, equinaceaprodutosnaturais.com
20.110.169.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:50:4004/04/2026, 19:50:28 - - ----
2a02:4780:2d:2553::1:18789 - 🇺🇸 United States - true Clean AS47583Hostinger International LimitedHostinger04/04/2026, 16:50:4004/04/2026, 19:50:28 - - ----
141.224.195.•••:18789 - 🇳🇱 Netherlands - true Clean AS15435DELTA Fiber NederlandHeadphones04/04/2026, 16:50:4004/04/2026, 19:50:28 No No -CVE-2024-6484, CVE-2024-648504/04/2026, 19:07:41-
104.248.164.•••:18789 - 🇬🇧 United Kingdom - true Clean AS14061DigitalOcean, LLCDigitalOcean04/04/2026, 16:50:4018/04/2026, 00:38:00 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-3272804/04/2026, 19:07:53-
88.99.107.•••:18789 - 🇩🇪 Germany Yes true Clean AS24940Hetzner Online GmbHHetzner04/04/2026, 16:50:4016/04/2026, 22:00:52 - - ----
35.212.220.•••:18789 - 🇺🇸 United States - true Clean AS15169Google LLC / AS19527 Google LLCGoogle04/04/2026, 16:50:3909/04/2026, 23:25:40 No No -CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198504/04/2026, 19:08:19-
240e:3a6:e1d:e4c0:aa2c:b95c:b2e1:d02:18789 - 🇨🇳 China mainland - true Clean AS4134ChinanetChina Telecom IPv6 Broadband Address04/04/2026, 16:50:3904/04/2026, 19:50:26 - - ----
170.64.215.•••:18789 - 🇦🇺 Australia Yes true Clean AS14061DigitalOcean, LLCDigitalOcean04/04/2026, 16:50:3915/04/2026, 23:15:10 No Yes APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow BrokersCVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198504/04/2026, 19:08:49-
2a02:4780:66:be60::1:18789 - 🇧🇷 Brazil - true Clean AS47583Hostinger International LimitedHostinger04/04/2026, 16:50:3908/04/2026, 02:30:46 - - ----
101.37.64.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft04/04/2026, 16:50:3917/04/2026, 18:05:22 Yes No --04/04/2026, 19:08:55aliyun.com
52.255.108.•••:18789 - 🇺🇸 United States - true Clean AS8075Microsoft CorporationMicrosoft04/04/2026, 16:50:3904/04/2026, 19:50:26 - - ----
36.170.100.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS9808China Mobile Communications Group Co., Ltd.China Mobile04/04/2026, 16:50:3804/04/2026, 19:50:26 Yes No --04/04/2026, 19:09:00chinamobile.com, chinamobile.cn
139.196.161.•••:18789 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft04/04/2026, 16:50:3804/04/2026, 19:50:26 No Yes APT10, APT15, APT17, APT28, APT29, APT31, APT32, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2014-8161, CVE-2015-0241, CVE-2015-0242, CVE-2015-0243, CVE-2015-0244, CVE-2015-3165, CVE-2015-3166, CVE-2015-3167, CVE-2015-5288, CVE-2015-5289, CVE-2016-0766, CVE-2016-0773, CVE-2016-10708, CVE-2016-20012, CVE-2016-5423, CVE-2016-5424, CVE-2016-7048, CVE-2017-12172, CVE-2017-14798, CVE-2017-15098, CVE-2017-15906, CVE-2017-7484, CVE-2017-7485, CVE-2017-7486, CVE-2017-7546, CVE-2017-7547, CVE-2017-7548, CVE-2018-1053, CVE-2018-1058, CVE-2018-10915, CVE-2018-10925, CVE-2018-1115, CVE-2018-15473, CVE-2018-15919, CVE-2018-16850, CVE-2018-20685, CVE-2019-10127, CVE-2019-10128, CVE-2019-10208, CVE-2019-10210, CVE-2019-10211, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9193, CVE-2020-14145, CVE-2020-15778, CVE-2020-25694, CVE-2020-25695, CVE-2021-23214, CVE-2021-3393, CVE-2021-36368, CVE-2021-41617, CVE-2022-24735, CVE-2022-24736, CVE-2022-31144, CVE-2022-33105, CVE-2022-35951, CVE-2022-35977, CVE-2023-22458, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138504/04/2026, 19:09:04-