🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 816988 Page: 1109 / 8170 (100 per page) Showing: 110801-110900 Last Imported: 15/05/2026, 09:32:33

🇨🇳 425,761

🇺🇸 231,518

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
172.67.221.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS13335	Cloudflare, Inc.	Cloudflare	02/04/2026, 23:07:18	04/04/2026, 05:56:08	Yes	Yes	DragonFly, Packrat	-	03/04/2026, 20:09:26	fuyuanwj.com, danca.tv, huebsch-services.com, atlaseyecenter.com, alltypefire.com, cintas.com, kleenkraftservices.com, modernpestservices.com, jxxlxj.com, cplpress.com, cgmprecast.com, sdkyjt.net, luckyplastic.net, bikeweeksa.com, hzfeidi.com, datehype.com, omnistrate.com, fuhuake.com, cityfied.net, whyleavetown.com, abpincorp.com, rightwaytrading.net, arizonaacservice.com, anlink.net, jxygcy.com, lci.fr, jekotrade.com, hmcxjc.com, shsinotech.com, vbankph.com, severnautobody.com, bopcon.com, ytxweb.net, smcinternational.fr, cintas360.com, naseni.gov.ng, cliosecurity.it, judgeyachts.com, boyu-group.com, ekakitchen.com, wisehousetech.com, cloudflare.net, diagnosticaudiology.ie, qd-baolian.com, databrick.com, csofam.com, laurentiusgildet.dk, lyricsintosong.ai, kidsbud.net, jxlingtong.com, respondfirstaidandsafety.com, nardini.com, gloriouscolor.com, baselinewoods.com, vetmindnj.com, jiabinnu.com, idwager.com, rocheculturelle.com, cleanzoneheating.com, alghanitex.com, qzz.io, kfstock.com, librarytaverndc.com, koworksllc.net, ginachlaw.com, brownsprinting.com, dataprotectag.net, prins.ai, cloudhq-mkt6.net, forwardwirecloth.net, dbhn.com, klmymmyc.com, fujidentallab.com, neosec.ai, cgcg.biz, hnbeixiang.com, cintasemail.com, refee.net, xjzljt.net, xjjingyoga.com, dongfanggufen.net, sxgas.net, 1haojiyin.com, garage-auto-martinez.fr, lamaison-corse.fr, dzrjx.net, pelicancases.com, eurostampiparma.it, tf1pub.fr, mycintas.com, impactanalytics.ai, detongwiremesh.com, blockpit.io, sanhoos.com, simatek.com, gnvurbanart.com, dgclh.com, fescofire.com, bamko.net, creditop.com, hansecontrol.com, hamiltonmillpediatrics.com, lstcarbon.com, eastsacflorist.com, it.com, briefy.ai, ttstest.com, outbook.com, gaetanasnyc.com, oukay.net, yhjgkeji.com, arcosmartsensor.com, tf1.fr, experts-ffg.fr, silvergatebank.com, china-one.net, kingdisplay.net, eu.org, scheduleme.org, lehvi.com, bierte.com, garage-eiffel.fr, jadzdjm.com, prem-box.com, otisa.com, familyfarmsllc.com, com.de, thomasindustrialsupply.com, ttyt360.com, innerarrowcounseling.com, gelais.com, doradver.ru, maginus.com, barnesdennig.com, greyleywellness.com, veeglow.com, herculesind.com, richlandtexas.gov, zgkaite.com, turnoutservices.com, uphold.com, xcom-mc.fr, cintas.ca, zjdddl.com, hotel-beausejour-nevers.fr, unm.ac.id, intbot.ai, oracle-ag.ch, zjhrbz.com, international-door.com, zhaowoo.net, chedermenachem.org, anmarinternational.com, computerzone.com, einpl.com, bestwanhui.com, outdoorkitchensnorthwest.com, dino-official.com, stranghall.com, domainedelagarenne-morestel.fr, thrivetekinc.com, tf1entreprises.fr, fermeurop.fr, bain86.com, rkscpl.com, cintaspromoproducts.com, lensmam.com, eushipments.com, gvcs.com, workers.dev, movingtargetatl.com, cmimoulding.com, mallyas.com, thenewthings.com, cloudns.net, chestershd.com, 360-xj.com, xjwfcj.com, meeshamoultonlaw.com, isolation-maisons-provencales.fr, impresosmonterrey.com, shworldbest.com, ajayindiatours.com, zsnet.net, dongguansenzi.com, meridianoutboard.com, denis-carrelage.fr, sdfengze.net, physnum.com, empreintes-coiffure.fr, leadconnect.io, china114.net, smartbuildings.com, olivet-business-center.fr, dts-renovation.fr, hy189.net, dharacg.com, geditionsllc.com, kir.com.ar, xjhongshun.com, environmental-conscience.com, xmminger.com, firefightersusa.com, loginport.com, geochem.org, dmln.net
20.194.27.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	02/04/2026, 23:07:18	04/04/2026, 05:56:08	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 20:09:27	-
134.199.225.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	02/04/2026, 23:07:18	04/04/2026, 05:56:08	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	03/04/2026, 20:09:29	-
209.38.223.•••:18789	-	🇩🇪 Germany	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	02/04/2026, 23:07:18	04/04/2026, 05:56:08	No	Yes	APT15, APT28, APT31, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	03/04/2026, 20:09:31	-
47.83.249.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	02/04/2026, 23:07:18	16/04/2026, 00:31:18	Yes	Yes	Salt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 20:09:35	hichina.com, alibaba-inc.com
47.237.184.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	02/04/2026, 23:07:18	04/04/2026, 05:56:08	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 20:09:37	hichina.com, alibaba-inc.com
47.90.167.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	02/04/2026, 22:29:31	03/04/2026, 05:15:35	-	-	-	-	-	-
65.109.227.•••:18789	-	🇫🇮 Finland	Yes	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	02/04/2026, 22:29:30	17/04/2026, 10:06:07	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/04/2026, 15:04:44	hetzner.com
2a02:4780:6e:54fd::1:18789	-	🇧🇷 Brazil	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	02/04/2026, 22:29:30	05/04/2026, 20:16:47	-	-	-	-	-	-
47.120.69.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:29	16/04/2026, 22:51:09	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/04/2026, 22:53:30	-
2a03:6f02::cccc:18789	-	🇳🇱 Netherlands	-	false	Clean	AS9123	JSC "TIMEWEB"	Taiwan Cloud	02/04/2026, 22:29:29	15/04/2026, 13:31:11	-	-	-	-	-	-
168.119.180.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	02/04/2026, 22:29:29	17/04/2026, 10:05:33	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	08/04/2026, 09:22:35	hetzner.com
23.94.208.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS36352	HostPapa	RackNerd	02/04/2026, 22:29:29	15/04/2026, 01:34:10	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/04/2026, 09:25:16	racknerd.com
47.92.253.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:29	15/04/2026, 01:35:33	No	Yes	APT-C-23, APT10, APT28, APT35, APT37, APT39, APT40, APT41, Carbanak, Cobalt Group, Donot Team, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Sandworm Team, Slingshot APT, TA428, TA505, The Shadow Brokers, Tropic Trooper, Turla APT Group, Volt Typhoon	CVE-2015-9253, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2017-8923, CVE-2018-14851, CVE-2018-14883, CVE-2018-15132, CVE-2018-15473, CVE-2018-15919, CVE-2018-17082, CVE-2018-19395, CVE-2018-19396, CVE-2018-19518, CVE-2018-19935, CVE-2018-20685, CVE-2018-20783, CVE-2019-11034, CVE-2019-11035, CVE-2019-11036, CVE-2019-11038, CVE-2019-11039, CVE-2019-11040, CVE-2019-11041, CVE-2019-11042, CVE-2019-11043, CVE-2019-13224, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9022, CVE-2019-9023, CVE-2019-9024, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9640, CVE-2019-9641, CVE-2019-9675, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-31628, CVE-2022-31629, CVE-2024-4577	06/04/2026, 01:37:23	-
23.88.49.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	02/04/2026, 22:29:28	08/04/2026, 22:07:59	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, DarkHotel Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2017-20005, CVE-2017-7529, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	08/04/2026, 20:36:14	hetzner.com
119.233.184.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS4837	CHINA UNICOM China169 Backbone	Xiamen Broadcasting and TV Network Transmit	02/04/2026, 22:29:28	06/04/2026, 12:05:01	Yes	No	-	-	06/04/2026, 12:05:59	ks-shd.com, jmckjt.com, zjxinyi.com, yxtaiyu.com, wxgogocasting.com, goleadercorp.cn, greenwoodsinvest.com, ytmagnetics.com, fengyegroup.com, lvsenda.net, lvteshengwu.com, made-in-diamond.com, unis.com.cn, jx-c.com.cn, cn-yusheng.com, tygluegun.com, gadahardware.com, xtzhiliji.com, wzouli.com, bokitatools.com, sumexsoft.com, landygroup.cn, crystalindustries.com.cn, chuangong.com, awdchina.com, ykweisheng.com, ta-yu.com, get-plastic.com, chinazsi.net, xrcd.cn, multicolor-pigment.com
124.117.36.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS4134	Chinanet	ChinaNet Xinjiang	02/04/2026, 22:29:28	09/04/2026, 02:39:40	Yes	No	-	-	09/04/2026, 00:24:59	bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn
212.231.188.•••:18789	-	🇪🇸 Spain	Yes	false	Clean	AS15704	XTRA TELECOM S.A.	Xtratelecom	02/04/2026, 22:29:28	03/04/2026, 05:15:34	-	-	-	-	-	-
154.94.233.•••:32769	-	🇺🇸 United States	Yes	false	Clean	AS401701	cognetcloud INC	CognetCloud	02/04/2026, 22:29:28	03/04/2026, 05:15:33	-	-	-	-	-	-
2a01:4f9:c013:e4f8::1:18789	-	🇫🇮 Finland	-	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	02/04/2026, 22:29:28	07/04/2026, 04:19:14	-	-	-	-	-	-
47.98.231.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:27	17/04/2026, 10:06:41	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	05/04/2026, 21:04:54	-
167.71.17.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	02/04/2026, 22:29:27	03/04/2026, 05:15:32	-	-	-	-	-	-
114.55.246.•••:443	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:27	16/04/2026, 01:24:07	Yes	Yes	APT-C-23, APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Turla APT Group, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/04/2026, 11:39:16	aliyun.com, eu.org
240e:3ae:957:4d81::4c4:18789	-	🇨🇳 China mainland	-	false	Clean	AS4134	Chinanet	China Telecom IPv6 Broadband Address	02/04/2026, 22:29:27	03/04/2026, 05:15:31	-	-	-	-	-	-
47.92.26.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:26	17/04/2026, 05:36:59	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	05/04/2026, 21:46:38	-
8.136.217.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	02/04/2026, 22:29:26	03/04/2026, 05:15:31	-	-	-	-	-	-
159.223.3.•••:443	-	🇳🇱 Netherlands	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	02/04/2026, 22:29:26	17/04/2026, 23:58:09	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	05/04/2026, 09:50:33	-
3.237.240.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	02/04/2026, 22:29:25	03/04/2026, 13:28:03	-	-	-	-	-	-
164.92.240.•••:443	-	🇩🇪 Germany	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	02/04/2026, 22:29:24	15/04/2026, 13:32:08	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	05/04/2026, 22:37:01	-
112.226.72.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4837	CHINA UNICOM China169 Backbone	China Unicom Shandong	02/04/2026, 22:29:24	12/04/2026, 22:26:02	No	No	-	-	03/04/2026, 10:57:13	-
82.156.215.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	02/04/2026, 22:29:23	15/04/2026, 12:01:33	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-50379, CVE-2024-54677, CVE-2024-56337, CVE-2025-24813, CVE-2025-31650, CVE-2025-31651, CVE-2025-46701, CVE-2025-48988, CVE-2025-49124, CVE-2025-49125	09/04/2026, 21:35:24	-
39.98.79.•••:50001	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:23	17/04/2026, 23:58:32	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	09/04/2026, 10:12:06	aliyun.com
47.92.49.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:23	17/04/2026, 20:59:16	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 06:05:11	-
2408:824e:2501:71e1:9209:d0ff:fe5d:755c:18789	-	🇨🇳 China mainland	-	false	Clean	AS4837	CHINA UNICOM China169 Backbone	China Unicom	02/04/2026, 22:29:23	05/04/2026, 19:32:01	-	-	-	-	-	-
49.234.191.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	02/04/2026, 22:29:23	17/04/2026, 10:06:54	Yes	-	-	-	03/04/2026, 04:30:36	tencent.com
16.176.185.•••:443	-	🇦🇺 Australia	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Corporate Services	02/04/2026, 22:29:23	03/04/2026, 08:14:28	No	No	-	-	28/03/2026, 04:30:40	-
13.212.82.•••:443	-	🇸🇬 Singapore	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	02/04/2026, 22:29:22	17/04/2026, 10:05:53	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	03/04/2026, 04:31:04	-
5.189.185.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	02/04/2026, 22:29:22	05/04/2026, 20:16:50	Yes	Yes	APT14, APT28, APT35, APT37, APT39, APT40, APT41, Carbanak, Cobalt Group, Earth Berberoka, Equation Group, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE	CVE-2006-20001, CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2015-9251, CVE-2016-0736, CVE-2016-10708, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-15945, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-10352, CVE-2019-10353, CVE-2019-10354, CVE-2019-10383, CVE-2019-10384, CVE-2019-10401, CVE-2019-10402, CVE-2019-10403, CVE-2019-10404, CVE-2019-10405, CVE-2019-10406, CVE-2019-11358, CVE-2019-17567, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11022, CVE-2020-11023, CVE-2020-11985, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-2099, CVE-2020-2100, CVE-2020-2101, CVE-2020-2102, CVE-2020-2103, CVE-2020-2104, CVE-2020-2105, CVE-2020-2160, CVE-2020-2161, CVE-2020-2162, CVE-2020-2163, CVE-2020-2220, CVE-2020-2221, CVE-2020-2222, CVE-2020-2223, CVE-2020-2229, CVE-2020-2230, CVE-2020-2231, CVE-2020-2251, CVE-2020-35452, CVE-2021-21602, CVE-2021-21603, CVE-2021-21604, CVE-2021-21605, CVE-2021-21606, CVE-2021-21607, CVE-2021-21608, CVE-2021-21609, CVE-2021-21610, CVE-2021-21611, CVE-2021-21615, CVE-2021-21639, CVE-2021-21640, CVE-2021-21670, CVE-2021-21682, CVE-2021-21683, CVE-2021-21685, CVE-2021-21686, CVE-2021-21687, CVE-2021-21688, CVE-2021-21689, CVE-2021-21690, CVE-2021-21691, CVE-2021-21692, CVE-2021-21693, CVE-2021-21694, CVE-2021-21695, CVE-2021-21696, CVE-2021-21697, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-28165, CVE-2021-34798, CVE-2021-3618, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-43859, CVE-2021-44790, CVE-2022-0538, CVE-2022-2048, CVE-2022-20612, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-34174, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27899, CVE-2023-27900, CVE-2023-27901, CVE-2023-27902, CVE-2023-27903, CVE-2023-27904, CVE-2023-28625, CVE-2023-35141, CVE-2023-36478, CVE-2023-38408, CVE-2023-39151, CVE-2023-43494, CVE-2023-43495, CVE-2023-43496, CVE-2023-43497, CVE-2023-43498, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-23897, CVE-2024-43044, CVE-2024-43045, CVE-2024-47803, CVE-2024-47804, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-27622, CVE-2025-27623, CVE-2025-27624, CVE-2025-27625, CVE-2025-31720, CVE-2025-31721, CVE-2025-32728	03/04/2026, 04:31:13	contabo.de, contabo.net
47.107.251.•••:8443	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:22	16/04/2026, 01:24:07	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 04:31:14	-
38.6.56.•••:18789	-	🇨🇦 Canada	Yes	false	Clean	AS398993	PEG TECH INC	Polyethylene Glycol-Lipid Association	02/04/2026, 22:29:22	15/04/2026, 01:34:47	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2014-1692, CVE-2014-2532, CVE-2014-2653, CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2016-0777, CVE-2016-0778, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	03/04/2026, 04:31:23	-
49.83.116.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS4134	Chinanet	ChinaNet Jiangsu	02/04/2026, 22:29:22	15/04/2026, 13:30:49	Yes	No	-	-	03/04/2026, 04:31:24	bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn
47.92.30.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:22	15/04/2026, 13:31:50	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	03/04/2026, 04:31:40	-
13.212.1.•••:443	-	🇸🇬 Singapore	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	02/04/2026, 22:29:22	03/04/2026, 21:43:47	No	Yes	APT14, APT28, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE	CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813	03/04/2026, 04:31:44	-
47.251.162.•••:443	-	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	02/04/2026, 22:29:21	06/04/2026, 03:45:53	Yes	Yes	APT15, APT28, APT31, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41317, CVE-2022-41318, CVE-2023-38408, CVE-2023-44487, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51385, CVE-2023-5824, CVE-2024-25111, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-39894, CVE-2024-45802, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 04:31:57	elex-tech.com, elexapp.com
45.39.210.•••:18789	-	🇳🇱 Netherlands	Yes	false	Leaked	AS268624	Gamers Club Ltda	EGI Hosting	02/04/2026, 22:29:21	15/04/2026, 12:44:58	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2017-15945, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200	03/04/2026, 04:32:02	egihosting.com
39.98.82.•••:50001	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:21	15/04/2026, 12:01:28	Yes	Yes	APT-C-23, APT28, APT35, APT36, APT37, APT39, Cobalt Group, Equation Group, Gamaredon Group, Ghostwriter, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-23017, CVE-2021-3618, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347	03/04/2026, 04:32:08	aliyun.com
47.245.108.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	02/04/2026, 22:29:21	16/04/2026, 01:23:08	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	03/04/2026, 04:32:11	hichina.com, alibaba-inc.com
47.90.216.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	02/04/2026, 22:29:21	09/04/2026, 10:08:28	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-27043, CVE-2023-36632, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51385, CVE-2024-0397, CVE-2024-11168, CVE-2024-24795, CVE-2024-27316, CVE-2024-3219, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-4032, CVE-2024-40898, CVE-2024-6232, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-12084, CVE-2025-12781, CVE-2025-13836, CVE-2025-13837, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 04:32:19	-
202.95.17.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS152194	CTG Server Limited	Rackip Consultancy	02/04/2026, 22:29:21	11/04/2026, 21:05:14	No	No	-	-	28/03/2026, 04:32:25	-
47.92.51.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:21	17/04/2026, 23:58:56	No	Yes	APT1 Comment Crew, APT15, APT27, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Earth Longzhi, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2015-9251, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-11358, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 04:32:32	-
44.197.175.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	02/04/2026, 22:29:21	17/04/2026, 07:07:01	No	-	-	-	28/03/2026, 04:32:35	-
81.70.254.•••:18888	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	02/04/2026, 22:29:21	12/04/2026, 16:26:17	No	Yes	APT37, El-Machete	-	03/04/2026, 04:32:38	-
38.6.50.•••:18789	-	🇨🇦 Canada	Yes	false	Clean	AS398993	PEG TECH INC	Polyethylene Glycol-Lipid Association	02/04/2026, 22:29:21	12/04/2026, 23:54:52	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	03/04/2026, 04:32:42	-
218.244.139.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:21	06/04/2026, 05:15:16	Yes	No	-	-	03/04/2026, 04:32:44	aliyun.com
43.139.75.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	02/04/2026, 22:29:20	15/04/2026, 01:35:27	Yes	No	-	-	03/04/2026, 04:32:48	tencent.com
97.107.130.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS63949	Akamai Connected Cloud	Linode	02/04/2026, 22:29:20	17/04/2026, 23:57:29	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 04:33:05	akasripcn.net, edgekey-staging.net, akamaitechnologies.com, akamai.ae, edgekey.net, simplicita.com, inscname.net, edgesuite.net, akamaitech.net, cotendo.com, bubblewrapp.com, chameleonx.com, akamai-staging.net, cformanalytics.com, janrainbackplane.com, verivue.com, akamaized-staging.net, nominum.com, akadns.net, akamaized.net, akamai.net, akamaistream.net, d4p.net, akamaihd.net, instart.com, akamai.dk, edgefcs.net, linodeusercontent.com, akamaihd-staging.net, cotssl.net, akafms.net, akami.com, lognormal.net, octoshape.net, akamai-access.com, instartlogic.com, limelightnetworks.com, akamaiapis.net
116.62.80.•••:443	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:29:20	03/04/2026, 06:00:26	Yes	No	-	-	03/04/2026, 04:33:08	aliyun.com
165.154.45.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS135377	UCLOUD INFORMATION TECHNOLOGY (HK) LIMITED	Ucloud Information Technology HK	02/04/2026, 22:29:20	17/04/2026, 07:52:22	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 04:33:10	-
66.212.18.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS36352	HostPapa	HostPapa	02/04/2026, 22:29:20	16/04/2026, 01:23:58	Yes	Yes	APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Earth Berberoka, Equation Group, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE	CVE-2006-20001, CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-10002, CVE-2016-10003, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1000024, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-17199, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-12519, CVE-2019-12521, CVE-2019-12523, CVE-2019-12525, CVE-2019-12526, CVE-2019-12529, CVE-2019-17567, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2020-11945, CVE-2020-11985, CVE-2020-14058, CVE-2020-15049, CVE-2020-1927, CVE-2020-1934, CVE-2020-25097, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-28651, CVE-2021-31807, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44790, CVE-2021-46784, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 04:33:12	hostpapa.com
45.76.13.•••:443	-	🇺🇸 United States	Yes	false	Leaked	AS20473	The Constant Company, LLC	Vultr Holdings	02/04/2026, 22:29:20	03/04/2026, 06:00:25	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, DragonFly, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 04:33:23	neotechnetworks.com, vultr.com
158.179.17.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS31898	Oracle Corporation	Oracle	02/04/2026, 22:27:23	05/04/2026, 21:44:08	-	-	-	-	-	-
117.72.43.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS141679	China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch	JD.com	02/04/2026, 22:27:23	06/04/2026, 03:43:11	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/04/2026, 00:00:53	jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com
20.200.210.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	02/04/2026, 22:27:21	03/04/2026, 02:58:25	-	-	-	-	-	-
171.247.169.•••:18789	-	🇻🇳 Vietnam	-	false	Leaked	AS7552	Viettel Group	Viettel	02/04/2026, 22:27:11	03/04/2026, 02:58:16	Yes	No	-	-	03/04/2026, 03:01:35	viettel.com.vn
157.245.122.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	02/04/2026, 22:27:11	03/04/2026, 02:58:16	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 03:01:36	-
48.218.160.•••:18789	-	🇯🇵 Japan	-	false	Clean	AS8075	Microsoft Corporation	Cloud	02/04/2026, 22:27:11	03/04/2026, 02:58:15	-	-	-	-	-	-
47.110.40.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:27:11	14/04/2026, 21:44:51	No	No	-	-	28/03/2026, 03:01:48	-
8.161.107.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	02/04/2026, 22:27:11	17/04/2026, 07:04:20	-	-	-	-	-	-
8.138.212.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	02/04/2026, 22:27:10	03/04/2026, 02:58:15	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	03/04/2026, 03:02:01	-
47.90.167.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	02/04/2026, 22:27:10	03/04/2026, 02:58:15	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 03:02:16	-
138.128.242.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS396949	Kamatera, Inc.	Cloud Web Manage Data Texas	02/04/2026, 22:27:10	17/04/2026, 10:03:46	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	14/04/2026, 10:35:18	-
65.109.227.•••:18789	-	🇫🇮 Finland	Yes	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	02/04/2026, 22:27:10	17/04/2026, 10:03:47	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/04/2026, 19:29:45	hetzner.com
2a02:4780:6e:54fd::1:18789	-	🇧🇷 Brazil	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	02/04/2026, 22:27:10	05/04/2026, 18:44:09	-	-	-	-	-	-
2a03:6f02::cccc:18789	-	🇳🇱 Netherlands	-	false	Clean	AS9123	JSC "TIMEWEB"	Taiwan Cloud	02/04/2026, 22:27:09	15/04/2026, 13:28:49	-	-	-	-	-	-
168.119.180.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	02/04/2026, 22:27:09	17/04/2026, 10:03:14	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	17/04/2026, 10:04:06	hetzner.com
23.94.208.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS36352	HostPapa	RackNerd	02/04/2026, 22:27:09	15/04/2026, 01:31:46	-	-	-	-	-	-
47.92.253.•••:18789	-	🇨🇳 China mainland	-	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:27:09	15/04/2026, 01:33:16	No	Yes	APT-C-23, APT10, APT28, APT35, APT37, APT39, APT40, APT41, Carbanak, Cobalt Group, Donot Team, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Sandworm Team, Slingshot APT, TA428, TA505, The Shadow Brokers, Tropic Trooper, Turla APT Group, Volt Typhoon	CVE-2015-9253, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2017-8923, CVE-2018-14851, CVE-2018-14883, CVE-2018-15132, CVE-2018-15473, CVE-2018-15919, CVE-2018-17082, CVE-2018-19395, CVE-2018-19396, CVE-2018-19518, CVE-2018-19935, CVE-2018-20685, CVE-2018-20783, CVE-2019-11034, CVE-2019-11035, CVE-2019-11036, CVE-2019-11038, CVE-2019-11039, CVE-2019-11040, CVE-2019-11041, CVE-2019-11042, CVE-2019-11043, CVE-2019-13224, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9022, CVE-2019-9023, CVE-2019-9024, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9640, CVE-2019-9641, CVE-2019-9675, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-31628, CVE-2022-31629, CVE-2024-4577	11/04/2026, 21:48:08	-
89.125.255.•••:18789	-	🇳🇱 Netherlands	-	false	Clean	AS212477	RoyaleHosting BV	Moula World LLC	02/04/2026, 22:27:09	03/04/2026, 03:43:14	-	-	-	-	-	-
217.160.144.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS8560	This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE.	IONOS	02/04/2026, 22:27:08	17/04/2026, 10:03:22	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	03/04/2026, 09:44:22	online.de, wolkenburg.de
20.214.254.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	02/04/2026, 22:27:08	03/04/2026, 03:43:13	-	-	-	-	-	-
23.88.49.•••:18789	-	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner Online	02/04/2026, 22:27:08	08/04/2026, 20:40:21	-	-	-	-	-	-
119.233.184.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS4837	CHINA UNICOM China169 Backbone	Xiamen Broadcasting and TV Network Transmit	02/04/2026, 22:27:08	06/04/2026, 05:11:35	Yes	No	-	-	03/04/2026, 08:57:16	ks-shd.com, jmckjt.com, zjxinyi.com, yxtaiyu.com, wxgogocasting.com, goleadercorp.cn, greenwoodsinvest.com, ytmagnetics.com, fengyegroup.com, lvsenda.net, lvteshengwu.com, made-in-diamond.com, unis.com.cn, jx-c.com.cn, cn-yusheng.com, tygluegun.com, gadahardware.com, xtzhiliji.com, wzouli.com, bokitatools.com, sumexsoft.com, landygroup.cn, crystalindustries.com.cn, chuangong.com, awdchina.com, ykweisheng.com, ta-yu.com, get-plastic.com, chinazsi.net, xrcd.cn, multicolor-pigment.com
124.117.36.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	ChinaNet Xinjiang	02/04/2026, 22:27:08	09/04/2026, 01:05:06	-	-	-	-	-	-
20.168.181.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	02/04/2026, 22:27:08	11/04/2026, 21:47:28	-	-	-	-	-	-
212.231.188.•••:18789	-	🇪🇸 Spain	Yes	false	Clean	AS15704	XTRA TELECOM S.A.	Xtratelecom	02/04/2026, 22:27:08	04/04/2026, 16:09:33	Yes	No	-	-	03/04/2026, 13:26:31	macmadigan.com, synology.me
172.67.212.•••:18789	-	🇺🇸 United States	-	false	Clean	AS13335	Cloudflare, Inc.	Cloudflare	02/04/2026, 22:27:08	03/04/2026, 02:58:13	-	-	-	-	-	-
154.94.233.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS401701	cognetcloud INC	CognetCloud	02/04/2026, 22:27:07	16/04/2026, 22:03:09	-	-	-	-	-	-
2a01:4f9:c013:e4f8::1:18789	-	🇫🇮 Finland	-	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	02/04/2026, 22:27:07	07/04/2026, 02:46:34	-	-	-	-	-	-
20.222.143.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	02/04/2026, 22:27:07	03/04/2026, 03:43:12	-	-	-	-	-	-
172.67.175.•••:18789	-	🇺🇸 United States	-	false	Clean	AS13335	Cloudflare, Inc.	Cloudflare	02/04/2026, 22:27:07	03/04/2026, 03:43:12	-	-	-	-	-	-
47.98.231.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:27:07	17/04/2026, 10:04:24	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	09/04/2026, 18:07:23	-
167.71.17.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	02/04/2026, 22:27:07	03/04/2026, 03:43:12	-	-	-	-	-	-
114.55.246.•••:18789	-	🇨🇳 China mainland	-	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:27:06	16/04/2026, 17:30:29	-	-	-	-	-	-
240e:3ae:957:4d81::4c4:18789	-	🇨🇳 China mainland	-	false	Clean	AS4134	Chinanet	China Telecom IPv6 Broadband Address	02/04/2026, 22:27:06	03/04/2026, 03:43:11	-	-	-	-	-	-
52.141.23.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	02/04/2026, 22:27:06	03/04/2026, 02:58:11	-	-	-	-	-	-
13.71.155.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	02/04/2026, 22:27:06	03/04/2026, 02:58:11	-	-	-	-	-	-
129.146.27.•••:18789	-	🇺🇸 United States	-	false	Clean	AS31898	Oracle Corporation	Oracle	02/04/2026, 22:27:06	13/04/2026, 12:14:35	-	-	-	-	-	-
47.92.26.•••:18789	-	🇨🇳 China mainland	-	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	02/04/2026, 22:27:05	17/04/2026, 03:19:03	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	05/04/2026, 23:16:07	-
44.220.255.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	02/04/2026, 22:27:05	06/04/2026, 02:58:08	-	-	-	-	-	-
8.136.217.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	02/04/2026, 22:27:05	03/04/2026, 03:43:10	-	-	-	-	-	-

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.