🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 651864 Page: 1039 / 6519 (100 per page) Showing: 103801-103900 Last Imported: 13/04/2026, 13:41:02
Build With Vivgrid

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.

Explore Vivgrid
Showing page 1039 of 6519
Previous Next
Endpoint Assistant Name Country auth_requiredis_activehas_leaked_credsasnasn_nameorgfirst_seenlast_seenasi_has_breachasi_has_threat_actorasi_threat_actorsasi_cvesasi_enriched_atasi_domains
156.225.24.•••:18789 - 🇺🇸 United States Yes true Clean AS401701cognetcloud INCVapeline Technology01/04/2026, 00:07:2501/04/2026, 02:55:44 No Yes APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi-01/04/2026, 02:57:33-
47.104.135.•••:18789 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2512/04/2026, 17:56:17 No Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2016-20012, CVE-2018-15919, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-5138501/04/2026, 02:57:37-
13.135.197.•••:443 - 🇬🇧 United Kingdom Yes true Leaked AS16509Amazon.com, Inc.Amazon Web Services01/04/2026, 00:07:2501/04/2026, 14:10:42 Yes No --01/04/2026, 02:57:40amazon.fr, bookworm.com, amazon.com.br, audible.com, amazon.eu, amazon.ca, amzaon.com, amazaon.com, audible.in, z-exp.com, amozon.com, aws-amazon.com, shopbop.com, accept.com, amazonn.com, amazon-adsystem.com, boxofficemojo.com, amazonaws-us-gov.com, amaozn.com, awsamazon.com, amazonmusiclocal.com, a9.com, amzzon.com, mturk.com, amazonaws.cm, com.be, amazonpay.com, rooftopmedia.net, vine.com, imdb.com, ssl-images-amazon.com, amazon.com.au, amazon-rings.com, assoc-amazon.com, amazonin.com, amzn.asia, annapurnalabs.com, apn-portal.com, evi.com, amazonprime.com, audiblecareers.com, beautybar.com, junglee.com, amazon.ae, tenmarks.com, look.com, amazonwebservices.net, associates-amazon.com, amazonrobotics.com, amazon-aws.com, endless.com, amazonlocal.com, amazonm.com, amazonllc.com, media-imdb.com, amazon.com.tw, createspace.com, amazonaws.com, bookdepository.com, amzn.com, amazon.com, goodreads.com, images-amazon.com, amazon.com.co
38.76.208.•••:18789 - 🇺🇸 United States Yes true Leaked AS401696cognetcloud INCFOJ IP Technology01/04/2026, 00:07:2513/04/2026, 12:54:29 Yes No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 02:57:41cogentco.com
103.199.19.•••:18789 - 🇻🇳 Vietnam Yes true Leaked AS63734365 Online technology joint stock companyGreencloud Limited Liability Company01/04/2026, 00:07:2509/04/2026, 14:37:04 Yes No -CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-6484, CVE-2024-6485, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 02:57:43greencloudvps.com
47.76.207.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud01/04/2026, 00:07:2509/04/2026, 03:24:21 No - -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 02:57:45-
47.85.103.•••:18789 - 🇺🇸 United States Yes true Leaked AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud01/04/2026, 00:07:2512/04/2026, 00:48:56 Yes No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 02:57:46hichina.com, alibaba-inc.com
39.98.61.•••:50001 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2509/04/2026, 14:36:37 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138501/04/2026, 02:57:51aliyun.com
123.207.210.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud01/04/2026, 00:07:2513/04/2026, 12:54:19 Yes - --01/04/2026, 02:57:52tencent.com
46.1.173.•••:18789 - 🇹🇷 Türkiye Yes true Clean AS34296Millenicom Telekomunikasyon Hizmetleri Anonim SirketiMillenicom DSLNet2 and Fatih VAE Pool501/04/2026, 00:07:2512/04/2026, 00:49:26 No No -CVE-2014-407801/04/2026, 02:57:53-
185.86.92.•••:443 - 🇷🇺 Russia Yes true Clean AS61400Start2 LLCCompubyte Limited01/04/2026, 00:07:2511/04/2026, 10:54:05 Yes No -CVE-2025-61984, CVE-2025-6198503/04/2026, 15:37:02ucoz.ru, ukit.ai, narod.ru
47.92.77.•••:50001 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2512/04/2026, 23:54:37 No Yes APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-734701/04/2026, 02:57:56-
47.99.172.•••:18789 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2510/04/2026, 12:27:48 No No --26/03/2026, 02:57:58-
209.38.209.•••:443 - 🇩🇪 Germany Yes true Clean AS14061DigitalOcean, LLCDigitalOcean01/04/2026, 00:07:2501/04/2026, 11:09:26 - - ----
163.13.149.•••:18789 - 🇹🇼 Taiwan Yes true Leaked AS1659Taiwan Academic Network (TANet) Information CenterMOEC01/04/2026, 00:07:2409/04/2026, 14:37:47 Yes No --01/04/2026, 02:58:04macmadigan.com, chickenkiller.com, quickconnect.to, fastspeed.dk, moe.gov.tw, tku.edu.tw, synology.me
173.242.59.•••:18789 - 🇺🇦 Ukraine Yes true Clean AS200000Hosting Ukraine LTDUA Ua Hosting01/04/2026, 00:07:2412/04/2026, 22:26:04 - - ----
82.156.119.•••:18789 - 🇨🇳 China mainland Yes true Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing01/04/2026, 00:07:2412/04/2026, 20:11:03 No Yes APT-C-23, APT1 Comment Crew, APT27, APT28, APT29, APT34, APT35, APT36, APT37, APT41, Cobalt Group, Donot Team, Earth Longzhi, El-Machete, Equation Group, Gamaredon Group, Ghostwriter, Lazarus Group, Sandworm Team, Turla APT Group, Volt TyphoonCVE-2015-9251, CVE-2016-7103, CVE-2018-16845, CVE-2019-11358, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-11022, CVE-2020-11023, CVE-2021-23017, CVE-2021-3618, CVE-2021-41182, CVE-2021-41183, CVE-2021-41184, CVE-2022-31160, CVE-2022-41741, CVE-2022-41742, CVE-2023-4448701/04/2026, 02:58:16-
34.123.147.•••:443 - 🇺🇸 United States Yes true Clean AS396982Google LLCGoogle01/04/2026, 00:07:2401/04/2026, 02:55:44 No Yes DragonFly, PackratCVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161701/04/2026, 02:58:20-
103.112.185.•••:443 - 🇭🇰 Hong Kong Yes true Clean AS55933Cloudie LimitedRainbow Network01/04/2026, 00:07:2404/04/2026, 11:43:31 Yes - --01/04/2026, 02:58:21cloudie.hk
46.62.209.•••:18789 - 🇫🇮 Finland Yes true Leaked AS24940Hetzner Online GmbHHetzner Online01/04/2026, 00:07:2412/04/2026, 23:54:58 Yes No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 02:58:22hetzner.com
39.107.248.•••:18789 - 🇽🇽 XX Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Unknown01/04/2026, 00:07:2411/04/2026, 21:05:13 Yes Yes Packrat-01/04/2026, 02:58:24aliyun.com
46.224.93.•••:18789 - 🇩🇪 Germany Yes true Clean AS24940Hetzner Online GmbHHetzner01/04/2026, 00:07:2407/04/2026, 04:19:15 No No -CVE-2025-61984, CVE-2025-6198501/04/2026, 02:58:25-
47.80.23.•••:18789 - 🇺🇸 United States Yes true Leaked AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud01/04/2026, 00:07:2412/04/2026, 23:55:21 Yes - --01/04/2026, 02:58:27hichina.com, alibaba-inc.com
39.98.69.•••:50001 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2410/04/2026, 13:13:06 Yes Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138501/04/2026, 02:58:32aliyun.com
43.165.7.•••:18789 - 🇸🇬 Singapore Yes true Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd01/04/2026, 00:07:2401/04/2026, 02:55:43 Yes No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 02:58:35tencent.com
129.211.27.•••:18789 - 🇨🇳 China mainland Yes true Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing01/04/2026, 00:07:2410/04/2026, 11:42:42 No - --26/03/2026, 02:58:49-
49.51.171.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS132203Tencent Building, Kejizhongyi AvenueTencent Cloud01/04/2026, 00:07:2412/04/2026, 23:11:02 Yes Yes APT37, El-Machete, Packrat-01/04/2026, 02:58:50tencent.com
57.128.242.•••:18789 - 🇵🇱 Poland Yes true Clean AS16276OVH SASOVH Poland01/04/2026, 00:07:2401/04/2026, 02:55:43 No No -CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 02:58:51-
3.210.183.•••:443 - 🇺🇸 United States Yes true Clean AS14618Amazon.com, Inc.Amazon Web Services01/04/2026, 00:07:2401/04/2026, 16:26:49 No No --26/03/2026, 02:58:55-
2a02:4780:f:4601::1:18789 - 🇬🇧 United Kingdom - true Clean AS47583Hostinger International LimitedHostinger01/04/2026, 00:07:2410/04/2026, 01:00:27 - - ----
143.198.195.•••:443 - 🇸🇬 Singapore Yes true Leaked AS14061DigitalOcean, LLCDigitalOcean01/04/2026, 00:07:2312/04/2026, 23:55:00 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2006-20001, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2022-36760, CVE-2022-37436, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 02:59:12cprapid.com
211.144.114.•••:18789 - 🇨🇳 China mainland Yes true Clean AS17775shanghai science and technology network communication limited companyHuansha Road 109901/04/2026, 00:07:2310/04/2026, 17:45:49 Yes No --01/04/2026, 02:59:15stnc.cn, stnc.com.cn
39.106.137.•••:18789 - 🇽🇽 XX Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Unknown01/04/2026, 00:07:2312/04/2026, 23:55:37 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2014-9649, CVE-2014-9650, CVE-2016-10708, CVE-2016-20012, CVE-2016-9877, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-22116, CVE-2021-32718, CVE-2021-32719, CVE-2021-36368, CVE-2021-41617, CVE-2022-31008, CVE-2023-38408, CVE-2023-46118, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 02:59:17aliyun.com
118.145.117.•••:18789 - 🇨🇳 China mainland Yes true Clean AS137718Beijing Volcano Engine Technology Co., Ltd.Beijing Volcano Engine Technology01/04/2026, 00:07:2313/04/2026, 12:54:42 - - ----
2a02:4780:28:b759::1:18789 - 🇫🇷 France - true Clean AS47583Hostinger International LimitedHostinger01/04/2026, 00:07:2312/04/2026, 00:49:06 - - ----
23.22.184.•••:18789 - 🇺🇸 United States Yes true Clean AS14618Amazon.com, Inc.Amazon Web Services01/04/2026, 00:07:2301/04/2026, 02:55:42 No Yes APT14, APT28, APT40, APT41, Cobalt Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, WIRTECVE-2006-20001, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-13950, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-4580201/04/2026, 02:59:30-
118.196.108.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS137718Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)Beijing Volcano Engine Technology01/04/2026, 00:07:2306/04/2026, 15:49:37 Yes No --01/04/2026, 02:59:34bytedance.com
39.105.52.•••:18789 - 🇽🇽 XX Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Unknown01/04/2026, 00:07:2309/04/2026, 14:37:09 Yes Yes APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 02:59:39aliyun.com
123.56.15.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2310/04/2026, 17:47:28 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-4161701/04/2026, 02:59:41aliyun.com
39.98.45.•••:50001 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2309/04/2026, 14:36:46 Yes No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-5138501/04/2026, 02:59:42aliyun.com
101.96.231.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS137718Beijing Volcano Engine Technology Co., Ltd.Beijing Volcano Engine Technology01/04/2026, 00:07:2312/04/2026, 23:54:58 Yes No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198504/04/2026, 06:11:41bytedance.com
8.130.170.•••:18789 - 🇸🇬 Singapore Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alibaba Cloud01/04/2026, 00:07:2307/04/2026, 09:33:20 No Yes APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-2341901/04/2026, 02:59:51-
182.92.220.•••:443 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2312/04/2026, 23:54:34 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MoustachedBouncer, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, TA505, The Shadow Brokers, Volt TyphoonCVE-2007-4559, CVE-2013-0340, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20406, CVE-2018-20685, CVE-2018-20852, CVE-2019-10160, CVE-2019-15903, CVE-2019-16056, CVE-2019-16935, CVE-2019-18348, CVE-2019-20907, CVE-2019-5010, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9636, CVE-2019-9674, CVE-2019-9740, CVE-2019-9947, CVE-2019-9948, CVE-2020-14145, CVE-2020-14422, CVE-2020-15523, CVE-2020-15778, CVE-2020-26116, CVE-2020-27619, CVE-2020-8315, CVE-2020-8492, CVE-2021-23336, CVE-2021-28861, CVE-2021-3177, CVE-2021-3426, CVE-2021-36368, CVE-2021-3733, CVE-2021-3737, CVE-2021-41617, CVE-2021-4189, CVE-2022-0391, CVE-2022-26488, CVE-2022-37454, CVE-2022-45061, CVE-2022-48560, CVE-2022-48564, CVE-2022-48565, CVE-2022-48566, CVE-2023-24329, CVE-2023-27043, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-48795, CVE-2023-51385, CVE-2024-0397, CVE-2024-4030, CVE-2024-4032, CVE-2024-564201/04/2026, 02:59:54aliyun.com
101.96.199.•••:18789 - 🇨🇳 China mainland Yes true Clean AS137718Beijing Volcano Engine Technology Co., Ltd.Beijing Volcano Engine Technology01/04/2026, 00:07:2301/04/2026, 02:55:41 - - ----
178.104.107.•••:443 - 🇩🇪 Germany Yes true Clean AS24940Hetzner Online GmbHHetzner01/04/2026, 00:07:2310/04/2026, 00:59:37 - - ----
47.108.230.•••:80 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2312/04/2026, 23:54:25 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-3272801/04/2026, 02:59:57-
154.218.7.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS150706Hong Kong Zhengxing Technology Co., Ltd.Anchnet Asia Limited01/04/2026, 00:07:2313/04/2026, 12:55:34 No Yes PackratCVE-2010-1899, CVE-2010-2730, CVE-2010-3972, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 02:59:58-
192.34.60.•••:31917 - 🇺🇸 United States Yes true Clean AS14061DigitalOcean, LLCDigitalOcean01/04/2026, 00:07:2301/04/2026, 02:55:41 No Yes APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41611, CVE-2021-41617, CVE-2021-44224, CVE-2021-46784, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-638701/04/2026, 02:59:59-
3.93.197.•••:18789 - 🇺🇸 United States Yes true Clean AS14618Amazon.com, Inc.Amazon Web Services01/04/2026, 00:07:2301/04/2026, 02:55:41 No No --26/03/2026, 03:00:02-
185.55.243.•••:18789 - 🇩🇪 Germany Yes true Leaked AS35042Layer7 Networks GmbHL7 Networks GmbH01/04/2026, 00:07:2312/04/2026, 23:54:13 Yes No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-3272801/04/2026, 03:00:04layer7.net
5.78.138.•••:443 - 🇺🇸 United States Yes true Leaked AS212317Hetzner Online GmbHHetzner Online01/04/2026, 00:07:2307/04/2026, 02:49:22 Yes No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 03:00:05hetzner.com
154.83.239.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS139880OWGELS INTERNATIONAL CO., LIMITEDAres IDC Limited01/04/2026, 00:07:2310/04/2026, 17:47:29 No - --26/03/2026, 03:00:08-
8.148.185.•••:18789 - 🇸🇬 Singapore Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alibaba Cloud01/04/2026, 00:07:2309/04/2026, 10:08:27 No No -CVE-2016-10002, CVE-2016-10003, CVE-2018-1000024, CVE-2018-1000027, CVE-2018-19131, CVE-2018-19132, CVE-2019-12519, CVE-2019-12520, CVE-2019-12521, CVE-2019-12522, CVE-2019-12523, CVE-2019-12524, CVE-2019-12525, CVE-2019-12526, CVE-2019-12528, CVE-2019-12529, CVE-2019-13345, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-18860, CVE-2020-11945, CVE-2020-14058, CVE-2020-15049, CVE-2020-15810, CVE-2020-15811, CVE-2020-24606, CVE-2020-25097, CVE-2020-8449, CVE-2020-8450, CVE-2020-8517, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-46784, CVE-2022-41318, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-5824, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-45802, CVE-2025-5457401/04/2026, 03:00:09-
119.29.112.•••:18888 - 🇨🇳 China mainland Yes true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud01/04/2026, 00:07:2312/04/2026, 19:26:05 Yes Yes APT37, El-Machete-01/04/2026, 03:00:10tencent.com
46.225.19.•••:18789 - 🇩🇪 Germany Yes true Clean AS24940Hetzner Online GmbHHetzner01/04/2026, 00:07:2312/04/2026, 23:54:58 No No --26/03/2026, 03:00:11-
39.98.41.•••:50001 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2312/04/2026, 17:56:22 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138501/04/2026, 03:00:15alimama.cn, linezing.com, iconfont.cn, aliyun.com, etao.com, tanx.com, alipcsec.com, jiyoujia.com, taobao.org, dingtalk.com, tbmcas.com, taohua.com, atpanel.com, taopiaopiao.com, taobaocdn.com, xiami.com, mmcdn.cn, taobao.com, tbcdn.cn, tmall.com
178.38.178.•••:18789 - 🇨🇭 Switzerland Yes true Leaked AS6730Sunrise GmbHSunrise ADSL01/04/2026, 00:07:2310/04/2026, 09:32:38 Yes No --01/04/2026, 03:00:16macmadigan.com, chickenkiller.com, quickconnect.to, fastspeed.dk, es.io, synology.me
202.60.229.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS136501HKBN Enterprise Solutions HK LimitedSuperhub Ltd01/04/2026, 00:07:2212/04/2026, 23:55:16 Yes No -CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 03:00:17superhub.com.hk
167.71.204.•••:443 - 🇸🇬 Singapore Yes true Clean AS14061DigitalOcean, LLCDigitalOcean01/04/2026, 00:07:2201/04/2026, 11:09:24 No Yes APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2006-20001, CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2021-44224, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 03:00:20-
39.98.57.•••:50001 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2213/04/2026, 12:55:20 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161701/04/2026, 03:00:23aliyun.com
204.168.223.•••:18789 - 🇫🇮 Finland Yes true Clean AS24940Hetzner Online GmbHHetzner01/04/2026, 00:07:2207/04/2026, 09:32:14 - - ----
103.90.224.•••:80 - 🇻🇳 Vietnam Yes true Clean AS135905VIETNAM POSTS AND TELECOMMUNICATIONS GROUPVietnix Cloud Company Limited01/04/2026, 00:07:2201/04/2026, 02:55:41 No No -CVE-2006-20001, CVE-2021-23017, CVE-2021-3618, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2024-7347, CVE-2025-23048, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-61984, CVE-2025-6198501/04/2026, 03:00:26-
13.229.77.•••:443 - 🇸🇬 Singapore Yes true Clean AS16509Amazon.com, Inc.Amazon Web Services01/04/2026, 00:07:2206/04/2026, 15:48:26 No Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-3272801/04/2026, 03:00:27-
188.120.233.•••:8443 - 🇷🇺 Russia Yes true Clean AS29182JSC IOTJoint Stock Company Internet of Things01/04/2026, 00:07:2212/04/2026, 00:50:10 No Yes APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-10733, CVE-2020-14145, CVE-2020-14349, CVE-2020-14350, CVE-2020-1720, CVE-2020-25694, CVE-2020-25695, CVE-2020-25696, CVE-2021-23017, CVE-2021-23214, CVE-2021-23222, CVE-2021-32027, CVE-2021-32028, CVE-2021-32029, CVE-2021-3393, CVE-2021-3618, CVE-2021-3677, CVE-2021-41617, CVE-2021-43767, CVE-2022-1552, CVE-2022-2625, CVE-2022-3559, CVE-2022-3620, CVE-2022-37451, CVE-2022-41741, CVE-2022-41742, CVE-2022-41862, CVE-2023-2454, CVE-2023-2455, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-39417, CVE-2023-42114, CVE-2023-42115, CVE-2023-42116, CVE-2023-42117, CVE-2023-42119, CVE-2023-43622, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51766, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39929, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347, CVE-2025-2341901/04/2026, 03:00:30-
121.196.233.•••:18789 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2212/04/2026, 23:54:48 - - ----
118.25.139.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing01/04/2026, 00:07:2212/04/2026, 23:55:39 Yes No --03/04/2026, 22:33:35tencent.com
16.171.0.•••:80 - 🇺🇸 United States Yes true Clean AS16509Amazon.com, Inc.Amazon Data Services Sweden01/04/2026, 00:07:2212/04/2026, 21:41:13 No Yes APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTECVE-2016-20012, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-3181312/04/2026, 21:41:59-
2a02:4780:12:ed50::1:18789 - 🇮🇳 India - true Clean AS47583Hostinger International LimitedHostinger01/04/2026, 00:07:2212/04/2026, 20:56:00 - - ----
49.234.21.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud01/04/2026, 00:07:2212/04/2026, 22:26:02 Yes Yes APT-C-23, APT28, APT35, APT36, APT37, APT39, Cobalt Group, El-Machete, Equation Group, Gamaredon Group, Ghostwriter, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2015-9253, CVE-2016-10708, CVE-2017-15906, CVE-2017-7272, CVE-2017-7963, CVE-2017-8923, CVE-2017-9120, CVE-2018-15473, CVE-2018-15919, CVE-2018-19395, CVE-2018-19396, CVE-2018-19935, CVE-2018-20685, CVE-2018-20783, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9022, CVE-2019-9023, CVE-2019-9024, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9641, CVE-2019-9675, CVE-2020-14145, CVE-2021-23017, CVE-2021-3618, CVE-2021-41617, CVE-2022-31628, CVE-2022-31629, CVE-2023-4448706/04/2026, 23:24:45tencent.com
2.27.32.•••:18789 - 🇫🇮 Finland Yes true Clean AS215590DpkgSoft International LimitedHelsinki01/04/2026, 00:07:2210/04/2026, 17:46:43 No No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/04/2026, 23:16:07-
157.131.22.•••:18789 - 🇺🇸 United States Yes true Clean AS46375Sonic Telecom LLCSonic.net, Inc.01/04/2026, 00:07:2203/04/2026, 14:58:09 - - ----
101.96.195.•••:18789 - 🇨🇳 China mainland Yes true Clean AS137718Beijing Volcano Engine Technology Co., Ltd.Beijing Volcano Engine Technology01/04/2026, 00:07:2209/04/2026, 05:38:54 - - ----
43.163.8.•••:18789 - 🇸🇬 Singapore Yes true Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd01/04/2026, 00:07:2207/04/2026, 08:48:44 Yes Yes APT17, APT36, APT37, APT45, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, SideWinder APT, The Shadow BrokersCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-40468, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198507/04/2026, 08:07:35tencent.com
39.98.62.•••:50001 - 🇨🇳 China mainland Yes true Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2212/04/2026, 00:48:49 Yes Yes APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, DarkHotel Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2017-20005, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138503/04/2026, 17:15:06aliyun.com
82.197.68.•••:18789 - 🇩🇪 Germany Yes true Leaked AS141995Contabo Asia Private LimitedContabo01/04/2026, 00:07:2211/04/2026, 05:41:45 Yes - --04/04/2026, 07:51:17contabo.de, contabo.net
180.97.254.•••:10002 - 🇨🇳 China mainland Yes true Leaked AS4134ChinanetChinanet Jiangsu Province Network01/04/2026, 00:07:2210/04/2026, 01:00:08 Yes - -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198503/04/2026, 23:18:52bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn
174.138.75.•••:443 - 🇺🇸 United States Yes true Clean AS14061DigitalOcean, LLCDigitalOcean01/04/2026, 00:07:2203/04/2026, 15:43:07 No No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198503/04/2026, 15:46:09-
129.204.53.•••:18789 - 🇨🇳 China mainland Yes true Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing01/04/2026, 00:07:2209/04/2026, 14:36:59 No Yes APT37, El-Machete-03/04/2026, 18:50:56-
202.152.197.•••:18789 - 🇮🇩 Indonesia Yes true Clean AS63859PT. Eka Mas RepublikBakrie Telecom01/04/2026, 00:07:2204/04/2026, 12:28:27 - - ----
154.213.120.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS132839POWER LINE DATACENTERDigital Core Technology Co. Limited01/04/2026, 00:07:2210/04/2026, 00:59:13 - - ----
8.136.214.•••:18789 - 🇸🇬 Singapore Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alibaba Cloud01/04/2026, 00:07:2212/04/2026, 23:55:20 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138507/04/2026, 06:34:47-
45.204.163.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS139880OWGELS INTERNATIONAL CO., LIMITEDAres IDC Limited01/04/2026, 00:07:2212/04/2026, 18:41:19 No No --28/03/2026, 17:17:07-
101.126.12.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS137718Beijing Volcano Engine Technology Co., Ltd.Beijing Volcano Engine Technology01/04/2026, 00:07:2209/04/2026, 14:38:11 Yes Yes APT-C-23, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198509/04/2026, 14:43:42bytedance.com
129.151.130.•••:7800 - 🇺🇸 United States Yes true Leaked AS31898Oracle CorporationOracle01/04/2026, 00:07:2212/04/2026, 19:26:05 Yes Yes APT1 Comment Crew, APT15, APT27, APT28, APT29, APT31, APT34, APT35, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Earth Longzhi, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt TyphoonCVE-2011-4969, CVE-2012-6708, CVE-2015-9251, CVE-2016-20012, CVE-2019-11358, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2020-7656, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-3272809/04/2026, 21:35:58healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
2a02:4780:28:8aa2::1:18789 - 🇫🇷 France - true Clean AS47583Hostinger International LimitedHostinger01/04/2026, 00:07:2009/04/2026, 14:37:45 - - ----
64.81.112.•••:443 - 🇯🇵 Japan Yes true Clean AS979NetLab GlobalNetLab Global01/04/2026, 00:07:2010/04/2026, 17:45:38 - - ----
129.121.85.•••:80 - 🇺🇸 United States Yes true Clean AS31898Oracle CorporationOGTIPS101/04/2026, 00:07:2010/04/2026, 00:59:27 - - ----
57.180.57.•••:443 - 🇯🇵 Japan Yes true Clean AS16509Amazon.com, Inc.Amazon Web Services Japan01/04/2026, 00:07:2001/04/2026, 11:09:23 - - ----
175.24.2.•••:8011 - 🇨🇳 China mainland Yes true Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud01/04/2026, 00:07:2010/04/2026, 01:00:26 - - ----
111.229.250.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud01/04/2026, 00:07:2011/04/2026, 03:26:33 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-5138504/04/2026, 13:15:46tencent.com
207.154.193.•••:18789 - 🇩🇪 Germany Yes true Clean AS14061DigitalOcean, LLCDigitalOcean01/04/2026, 00:07:2013/04/2026, 12:54:14 No Yes APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-29323, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-1695, CVE-2025-26465, CVE-2025-26466, CVE-2025-3272804/04/2026, 06:14:06-
47.92.36.•••:50001 - 🇨🇳 China mainland Yes true Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft01/04/2026, 00:07:2011/04/2026, 07:56:28 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198511/04/2026, 02:01:22-
111.229.154.•••:18789 - 🇨🇳 China mainland Yes true Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud01/04/2026, 00:07:2012/04/2026, 23:55:54 Yes - --07/04/2026, 01:21:27tencent.com
91.108.80.•••:18789 - 🇩🇪 Germany Yes true Clean AS212341Stephan Rakowski, trading as CSN-Solutions GmbHMoritz Moeller Workstations01/04/2026, 00:07:2011/04/2026, 07:11:37 No No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-3272804/04/2026, 11:00:05-
167.179.83.•••:18789 - 🇯🇵 Japan Yes true Clean AS20473The Constant Company, LLCThe Constant Company01/04/2026, 00:07:2010/04/2026, 10:12:30 No Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/04/2026, 23:21:18-
49.233.192.•••:18789 - 🇨🇳 China mainland Yes true Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud01/04/2026, 00:07:2012/04/2026, 20:55:59 - - ----
154.206.189.•••:18789 - 🇭🇰 Hong Kong Yes true Clean AS139880OWGELS INTERNATIONAL CO., LIMITEDStarbow Ltd01/04/2026, 00:07:2012/04/2026, 23:55:32 No - --31/03/2026, 23:40:22-
89.22.235.•••:443 - 🇸🇪 Sweden Yes true Clean AS210644AEZA GROUP LLCAeza Group01/04/2026, 00:07:2012/04/2026, 23:55:21 No Yes APT17, APT28, APT35, APT36, APT37, APT39, APT41, APT45, CloudSorcerer, Cobalt Group, Daggerfly APT, Earth Berberoka, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Sandworm Team, SideWinder APT, The Shadow BrokersCVE-2013-1862, CVE-2013-1896, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2016-4975, CVE-2016-5387, CVE-2016-8743, CVE-2017-3167, CVE-2017-3169, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-3272807/04/2026, 00:37:09-
43.159.63.•••:18789 - 🇸🇬 Singapore Yes true Clean AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd01/04/2026, 00:07:2001/04/2026, 02:55:39 - - ----
115.201.114.•••:8443 - 🇨🇳 China mainland Yes true Clean AS4134ChinanetCHINANET-ZJ-TZ01/04/2026, 00:07:2001/04/2026, 02:55:39 - - ----