🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 816988 Page: 1818 / 8170 (100 per page) Showing: 181701-181800 Last Imported: 15/05/2026, 09:32:33
Build With Vivgrid

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.

Explore Vivgrid
Showing page 1818 of 8170
Previous Next
Endpoint Assistant Name Country auth_requiredis_activehas_leaked_credsasnasn_nameorgfirst_seenlast_seenasi_has_breachasi_has_threat_actorasi_threat_actorsasi_cvesasi_enriched_atasi_domains
129.121.50.•••:18789 - 🇺🇸 United States Yes false Leaked AS31898Oracle CorporationOGTIPS127/03/2026, 03:22:3217/04/2026, 18:44:18 Yes No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198505/04/2026, 10:30:09athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com
47.92.99.•••:18789 - 🇨🇳 China mainland - false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft27/03/2026, 03:22:3217/04/2026, 17:26:24 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138527/03/2026, 09:25:02-
18.143.168.•••:18789 - 🇸🇬 Singapore Yes false Clean AS16509Amazon.com, Inc.Amazon Web Services27/03/2026, 03:22:3217/04/2026, 02:31:30 No No -CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 09:25:10-
99.199.203.•••:18789 - 🇨🇦 Canada Yes false Clean AS852TELUS Communications Inc.TELUS Fibre27/03/2026, 03:22:3204/04/2026, 19:06:17 No No --21/03/2026, 09:25:16-
47.76.163.•••:18789 - 🇭🇰 Hong Kong Yes false Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud27/03/2026, 03:22:3118/04/2026, 00:38:40 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 09:25:25-
43.130.251.•••:18789 - 🇯🇵 Japan - false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd27/03/2026, 03:22:3127/03/2026, 09:22:47 Yes Yes APT15, APT17, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APTCVE-2006-20001, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 09:25:26tencent.com
121.205.88.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS133776QuanzhouCHINANET Fujian27/03/2026, 03:22:3117/04/2026, 05:31:50 Yes No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 09:25:33bj189.cn, 118114.cn, datacamp.co.uk, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, daqu.com.cn, ctyun.cn
118.89.199.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud27/03/2026, 03:22:3117/04/2026, 09:17:14 Yes Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-638727/03/2026, 09:25:39tencent.com
47.92.95.•••:18789 - 🇨🇳 China mainland - false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft27/03/2026, 03:22:3115/04/2026, 01:30:37 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138527/03/2026, 09:25:42-
119.254.30.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS23844Beijing Guanghuan Xinwang DigitalBeijing Sinnet Technology27/03/2026, 03:22:3131/03/2026, 13:25:03 Yes Yes Packrat-27/03/2026, 09:25:43sinnet.com.cn, ecer.com, ghidc.net
43.159.60.•••:18789 - 🇸🇬 Singapore Yes false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd27/03/2026, 03:22:3115/04/2026, 13:26:27 Yes Yes APT15, APT17, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, CloudSorcerer, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow BrokersCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 09:25:53tencent.com
178.104.98.•••:18789 - 🇩🇪 Germany - false Clean AS24940Hetzner Online GmbHHetzner27/03/2026, 03:22:3130/03/2026, 20:54:45 - - ----
52.247.15.•••:18789 - 🇺🇸 United States - false Clean AS8075Microsoft CorporationMicrosoft27/03/2026, 03:22:3127/03/2026, 09:22:47 - - ----
44.249.31.•••:18789 - 🇺🇸 United States - false Clean AS16509Amazon.com, Inc.Amazon27/03/2026, 03:20:0827/03/2026, 11:21:32 - - ----
152.32.172.•••:18789 - 🇭🇰 Hong Kong - false Clean AS135377UCLOUD INFORMATION TECHNOLOGY (HK) LIMITEDUcloud Information Technology HK27/03/2026, 03:20:0827/03/2026, 11:21:31 No Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 10:51:00-
54.159.84.•••:18789 - 🇺🇸 United States - false Clean AS14618Amazon.com, Inc.Amazon27/03/2026, 03:20:0818/04/2026, 00:35:32 No No -CVE-2024-39894, CVE-2024-638727/03/2026, 10:51:02-
137.184.172.•••:18789 - 🇨🇦 Canada - false Clean AS14061DigitalOcean, LLCDigitalOcean27/03/2026, 03:20:0818/04/2026, 00:35:52 No Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 10:51:03-
43.207.142.•••:18789 - 🇯🇵 Japan - false Clean AS16509Amazon.com, Inc.Amazon27/03/2026, 03:20:0727/03/2026, 11:21:31 No No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 10:51:06-
20.200.210.•••:18789 - 🇺🇸 United States - false Clean AS8075Microsoft CorporationMicrosoft27/03/2026, 03:20:0727/03/2026, 11:21:31 No No --21/03/2026, 10:51:08-
13.213.12.•••:18789 - 🇸🇬 Singapore - false Clean AS16509Amazon.com, Inc.Amazon Web Services27/03/2026, 03:20:0727/03/2026, 11:21:31 No No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 10:51:09-
100.31.159.•••:18789 - 🇺🇸 United States Yes false Clean AS14618Amazon.com, Inc.Amazon Web Services27/03/2026, 03:20:0727/03/2026, 11:21:31 - - ----
161.35.188.•••:18789 - 🇺🇸 United States - false Clean AS14061DigitalOcean, LLCDigitalOcean27/03/2026, 03:20:0727/03/2026, 11:21:31 No Yes APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 10:51:15-
13.70.30.•••:18789 - 🇺🇸 United States - false Clean AS8075Microsoft CorporationMicrosoft27/03/2026, 03:20:0728/03/2026, 09:17:48 No No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 10:51:16-
87.106.3.•••:18789 - 🇫🇷 France - false Clean AS8560This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE.IONOS Cloud NBZ27/03/2026, 03:20:0727/03/2026, 11:21:31 No Yes APT15, APT28, APT29, APT31, APT34, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2009-3639, CVE-2010-3867, CVE-2010-4221, CVE-2010-4652, CVE-2011-1137, CVE-2011-4130, CVE-2012-6095, CVE-2016-3125, CVE-2017-7418, CVE-2019-12815, CVE-2019-18217, CVE-2019-19269, CVE-2019-19270, CVE-2019-19271, CVE-2019-19272, CVE-2020-9272, CVE-2021-46854, CVE-2023-48795, CVE-2023-5171327/03/2026, 10:51:17-
217.154.70.•••:18789 - 🇩🇪 Germany - false Clean AS8560This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE.IONOS27/03/2026, 03:20:0727/03/2026, 11:21:31 No No -CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-6484, CVE-2024-6485, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 10:51:19-
18.231.171.•••:18789 - 🇧🇷 Brazil - false Clean AS16509Amazon.com, Inc.Amazon Web Services Brazil27/03/2026, 03:20:0727/03/2026, 11:21:31 No Yes Sandworm TeamCVE-2017-12617, CVE-2017-15706, CVE-2018-11784, CVE-2018-1304, CVE-2018-1305, CVE-2018-1336, CVE-2018-8014, CVE-2018-8034, CVE-2018-8037, CVE-2019-0199, CVE-2019-0221, CVE-2019-0232, CVE-2019-10072, CVE-2019-12418, CVE-2019-17563, CVE-2019-2684, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-8022, CVE-2020-9484, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-41079, CVE-2021-43980, CVE-2022-25762, CVE-2022-42252, CVE-2023-28708, CVE-2023-41080, CVE-2023-42795, CVE-2023-44487, CVE-2023-45648, CVE-2023-46589, CVE-2024-21733, CVE-2024-23672, CVE-2024-24549, CVE-2025-24813, CVE-2025-55752, CVE-2025-6179527/03/2026, 10:51:21-
100.54.32.•••:18789 - 🇺🇸 United States - false Clean AS14618Amazon.com, Inc.Amazon Web Services27/03/2026, 03:20:0716/04/2026, 22:43:43 - - ----
152.42.201.•••:18789 - 🇸🇬 Singapore - false Clean AS14061DigitalOcean, LLCDigitalOcean27/03/2026, 03:20:0716/04/2026, 07:32:40 Yes Yes APT-C-23, APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt TyphoonCVE-2016-20012, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 10:51:25duckdns.org
129.121.87.•••:18789 - 🇺🇸 United States - false Leaked AS31898Oracle CorporationOGTIPS127/03/2026, 03:20:0727/03/2026, 11:21:30 Yes Yes FIN8-27/03/2026, 10:51:26athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com
139.224.207.•••:18789 - 🇨🇳 China mainland Yes false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft27/03/2026, 03:20:0627/03/2026, 11:21:30 No No --21/03/2026, 10:51:27-
52.11.116.•••:18789 - 🇺🇸 United States - false Clean AS16509Amazon.com, Inc.Amazon27/03/2026, 03:20:0602/04/2026, 20:50:12 No No --21/03/2026, 10:51:29-
113.161.32.•••:18789 - 🇻🇳 Vietnam - false Leaked AS45899VNPT CorpVNPT27/03/2026, 03:20:0627/03/2026, 11:21:30 Yes Yes APT-C-23, APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, DarkHotel Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Turla APT Group, UNC2452, Volt Typhoon, WIRTECVE-2006-20001, CVE-2013-4359, CVE-2015-3306, CVE-2016-20012, CVE-2016-3125, CVE-2017-15710, CVE-2017-15715, CVE-2017-20005, CVE-2017-3167, CVE-2017-3169, CVE-2017-7418, CVE-2017-7529, CVE-2017-7659, CVE-2017-7668, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-17189, CVE-2018-17199, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-12815, CVE-2019-17567, CVE-2019-18217, CVE-2019-19269, CVE-2019-19270, CVE-2019-19271, CVE-2019-19272, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9272, CVE-2020-9490, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-3618, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2021-46854, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51713, CVE-2024-6387, CVE-2024-7347, CVE-2025-2341927/03/2026, 10:51:30vnpt.com.vn, vnpt.vn
103.241.42.•••:18789 - 🇻🇳 Vietnam - false Clean AS135983Tino Group Joint Stock CompanyMMO Viet Nam Software Company Limited27/03/2026, 03:20:0627/03/2026, 11:21:30 - - ----
47.112.9.•••:18789 - 🇨🇳 China mainland - false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft27/03/2026, 03:20:0627/03/2026, 11:21:30 Yes No -CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 10:51:32purplevineip.com
3.111.170.•••:18789 - 🇮🇳 India Yes false Clean AS16509Amazon.com, Inc.Amazon Web Services27/03/2026, 03:20:0631/03/2026, 14:07:39 No Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161727/03/2026, 10:51:33-
44.202.214.•••:18789 - 🇺🇸 United States - false Clean AS14618Amazon.com, Inc.Amazon Web Services27/03/2026, 03:20:0618/04/2026, 00:36:32 - - ----
13.115.116.•••:18789 - 🇯🇵 Japan Yes false Clean AS16509Amazon.com, Inc.Amazon Web Services Japan27/03/2026, 03:20:0608/04/2026, 06:13:42 No No --21/03/2026, 10:51:37-
2409:8a1e:6c61:be11:22a0:90a6:3098:7:18789 - 🇨🇳 China mainland - false Clean AS24400Shanghai Mobile Communications Co.,Ltd.China Mobile27/03/2026, 03:20:0627/03/2026, 11:21:30 - - ----
114.132.121.•••:18789 - 🇨🇳 China mainland - false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud27/03/2026, 03:20:0603/04/2026, 17:51:27 Yes Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-638727/03/2026, 10:51:39tencent.com
144.91.82.•••:18789 - 🇩🇪 Germany Yes false Leaked AS51167Contabo GmbHContabo27/03/2026, 03:20:0627/03/2026, 11:21:30 Yes Yes APT37CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 10:51:40contabo.de, contabo.net
2a02:4780:79:b164::1:18789 - 🇩🇪 Germany - false Clean AS47583Hostinger International LimitedHostinger27/03/2026, 03:20:0616/04/2026, 05:18:43 - - ----
16.78.105.•••:18789 - 🇮🇩 Indonesia - false Clean AS16509Amazon.com, Inc.Amazon Web Services Jakarta27/03/2026, 03:20:0602/04/2026, 21:36:54 No No --21/03/2026, 10:51:42-
103.142.27.•••:18789 - 🇻🇳 Vietnam - false Clean AS135951Webico Company LimitedTino Group27/03/2026, 03:20:0627/03/2026, 11:21:30 No No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-3272827/03/2026, 10:51:43-
168.144.30.•••:18789 - 🇮🇳 India - false Clean AS14061DigitalOcean, LLCDigitalOcean27/03/2026, 03:20:0618/04/2026, 00:36:49 - - ----
104.21.40.•••:18789 - 🇺🇸 United States - false Leaked AS13335Cloudflare, Inc.Cloudflare27/03/2026, 03:20:0627/03/2026, 11:21:30 Yes No --27/03/2026, 10:51:47pixiv.co.jp, choicephysicaltherapyofohio.com, instar.io, jewishcm.org, westgablesrehabhospital.com, 10366092.com, rehabprovidernetwork.com, cgmprecast.com, riverside-rehabilitation.com, convergenetworks.net, kort.com, stmarysmpp.com, drafthouse.com, jewishtowson.com, 10366064.com, hopesea.co, fuhuake.com, rehab-associates.com, slayersofgerms.com, abpincorp.com, allevant.com, serrezistans.com, trihealthrehab.com, anlink.net, airportkzo.kz, ortenzio.com, jekotrade.com, industricare.com, bopcon.com, 10366118.com, alsuyar.net, 10366046.com, poloralphlauren.com, balachabad.org, boyu-group.com, animalequality.net, coastaldesignandconstruction.com, simpson-rehab.com, wisehousetech.com, futuregroup.com.mx, cloudflare.net, agrifocus.co.mz, benchmarkmed.com, qd-baolian.com, csofam.com, lubavitch.com, lyricsintosong.ai, bswrehab.com, selectrehab-denton.com, fantasticfest.com, occhealth.com, corteselecto.com, baselinewoods.com, ibericbox.com, jiabinnu.com, posstexas.com, topshelflobby.com, alghanitex.com, qzz.io, 302588.com, kfstock.com, oresvc.com, motorsnaps.com, emose.co.mz, selectmedical.com, brownsprinting.com, chabadspb.org, workforcemed.com, acuityhealthcare.net, paginasamarelas.co.mz, genes2me.com, cloudhq-mkt6.net, satcom.co.mz, psh-rehab.com, movitel.co.mz, center4hopeandhealing.com, marltonrehab.com, aceschooloftomorrow.com, klmymmyc.com, anorton.com, chinasand.net, pinnaclecenter.com, dignityhealthrehab.com, whoisowenjones.com, fluxcomputing.com, cpmz.co.mz, mediavine.com, ralphlaurenhome.com, intic.gov.mz, pp.ua, northshore-rehab.com, neosec.ai, hnbeixiang.com, 10366006.com, neurobehavioralaustin.com, unicity.com, csmsportsmedicine.com, xjjingyoga.com, sxgas.net, lifeworkswellnesscare.com, rlm.com, 1haojiyin.com, ommanagement.com, myunicity.com, uem.ac.mz, kfjlegal.com, contact.co.mz, pskidstherapy.com, promisefortmyers.com, ralphlauren.fr, comerciallogistica.com, automatededm.com, casareia.com, 10366090.com, dawnportertherapy.com, detongwiremesh.com, cfm.co.mz, kessler-rehab-marlton.com, pubnation.com, donnaschwartztherapist.com, dgclh.com, bamko.net, simplycounseling.com, 10366024.com, faithandhopetherapy.com, lstcarbon.com, it.com, americanliteracy.com, briefy.ai, ttstest.com, culturbook.io, lubavitchcenter.org, mackenzieccs.com, terminus.co.mz, gaetanasnyc.com, pearcey.org.au, helpinghandsinspirehappyhearts.com, ilmascalzone.com, downtownstatesville.com, 10366038.com, yhjgkeji.com, faniacharity.com, eu.org, dawnthompsontherapy.com, bierte.com, lasvegasnvtherapist.com, zyrcularfoods.com, polo.com, ttyt360.com, worknetoccupationalmedicine.com, chaps.com, advancedpsychologicalwellness.com, projeccionspdc.com, promise-miami.com, zgkaite.com, turnoutservices.com, concentra.com, cotur.co.mz, zjdddl.com, sadagrupo.com, edgeptandrehab.com, cbcwaco.com, bebek.kz, edm.co.mz, intbot.ai, ralphlauren.com, oracle-ag.ch, lancestrailersales.com, zjhrbz.com, animalequality.org, computerzone.com, cornelder.co.mz, impacto.co.mz, haritosa.com, einpl.com, bestwanhui.com, car-y.fr, clhosting.org, frimancha.com, lbcplasticsolutions.com, chabadgreenville.com, bain86.com, polobarralphlauren.com, carrieamorrisonpsyd.com, monseybcm.com, kathyfujita.com, humandynamicsinc.net, parlamento.mz, workers.dev, jornalnoticias.co.mz, 10366110.com, carsiva.com, jewishgv.com, selectrehabilitationhospital.com, willamette-riverkeeper.org, tybeemarket.com, rehabhospital.com, iandomedical.com, ralphlauren.com.hk, chabadofessex.com, 10366068.com, fira.com, impresosmonterrey.com, shworldbest.com, dongguansenzi.com, alefcenter.com, mozabanco.co.mz, jjshawcounseling.com, 2a3a.ru, china114.net, timelesscounseling.com, occalamance.com, honorhealth-rehab.com, extrapernil.com, cga.co.mz, ef.com.cn, promise-villages.com, medis.co.mz, terrafirma.co.mz, geochem.org, dkrausfootprints.com, 10366146.com, hollard.co.mz, mex.co.mz, 10366034.com, remplan.com.au
18.189.145.•••:18789 - 🇺🇸 United States - false Clean AS16509Amazon.com, Inc.Amazon27/03/2026, 03:20:0627/03/2026, 11:21:30 No No --21/03/2026, 10:51:48-
20.229.26.•••:18789 - 🇺🇸 United States - false Clean AS8075Microsoft CorporationMicrosoft27/03/2026, 03:20:0627/03/2026, 11:21:30 - - ----
13.250.18.•••:18789 - 🇸🇬 Singapore - false Clean AS16509Amazon.com, Inc.Amazon Web Services27/03/2026, 03:20:0617/04/2026, 19:21:14 No No -CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 10:51:50-
18.130.24.•••:18789 - 🇬🇧 United Kingdom - false Clean AS16509Amazon.com, Inc.Amazon Web Services27/03/2026, 03:20:0630/03/2026, 23:08:09 Yes No --27/03/2026, 10:51:51voneus.com
104.214.234.•••:18789 - 🇺🇸 United States - false Clean AS8075Microsoft CorporationMicrosoft27/03/2026, 02:44:5031/03/2026, 15:02:57 - - ----
121.89.85.•••:18789 Assistant 🇨🇳 China mainland Yes false Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft27/03/2026, 02:44:5018/04/2026, 00:01:11 Yes No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 03:30:42aliyun.com
192.227.167.•••:443 - 🇺🇸 United States - false Leaked AS36352HostPapaRackNerd27/03/2026, 02:42:2527/03/2026, 08:43:05 Yes Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-61984, CVE-2025-6198527/03/2026, 07:15:34racknerd.com
52.79.82.•••:443 - 🇰🇷 South Korea Yes false Clean AS16509Amazon.com, Inc.AWS Seoul Region27/03/2026, 02:42:1502/04/2026, 19:27:28 No No --21/03/2026, 02:45:25-
140.83.35.•••:18789 - 🇺🇸 United States Yes false Clean AS31898Oracle CorporationOracle27/03/2026, 02:42:1517/04/2026, 23:58:07 No Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, DragonFly, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon, goziCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198527/03/2026, 02:45:32-
103.49.9.•••:18789 - 🇭🇰 Hong Kong Yes false Clean AS132839POWER LINE DATACENTERPowerline27/03/2026, 02:42:1512/04/2026, 23:54:34 Yes No --27/03/2026, 02:45:33powerline.hk
39.108.178.•••:18789 - 🇽🇽 XX Yes false Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Unknown27/03/2026, 02:42:1517/04/2026, 07:07:04 Yes Yes APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon, WildCard APTCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-16845, CVE-2018-20685, CVE-2019-12418, CVE-2019-17563, CVE-2019-20372, CVE-2019-2684, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-14145, CVE-2020-15778, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-8022, CVE-2020-9484, CVE-2021-23017, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-3618, CVE-2021-36368, CVE-2021-41079, CVE-2021-41617, CVE-2021-43980, CVE-2022-25762, CVE-2022-29885, CVE-2022-41741, CVE-2022-41742, CVE-2022-42252, CVE-2023-28708, CVE-2023-38408, CVE-2023-41080, CVE-2023-42795, CVE-2023-44487, CVE-2023-45648, CVE-2023-46589, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-21733, CVE-2024-23672, CVE-2024-24549, CVE-2024-7347, CVE-2025-26465, CVE-2025-3272827/03/2026, 02:45:38aliyun.com, zjky.cn
154.206.189.•••:18789 - 🇭🇰 Hong Kong Yes false Clean AS139880OWGELS INTERNATIONAL CO., LIMITEDStarbow Ltd27/03/2026, 02:42:1517/04/2026, 07:52:21 No - --21/03/2026, 02:45:41-
18.133.237.•••:443 - 🇬🇧 United Kingdom Yes false Clean AS16509Amazon.com, Inc.Amazon Web Services27/03/2026, 02:42:1517/04/2026, 10:06:08 No Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-4161727/03/2026, 02:45:46-
3.219.216.•••:443 - 🇺🇸 United States Yes false Clean AS14618Amazon.com, Inc.Amazon Web Services27/03/2026, 02:42:1417/04/2026, 10:06:32 No Yes APT15, APT28, APT31, APT35, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow BrokersCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-5138527/03/2026, 02:45:51-
114.231.128.•••:8443 - 🇨🇳 China mainland Yes false Clean AS4134ChinanetChinanet Jiangsu Province Network27/03/2026, 02:42:1427/03/2026, 09:27:50 No No --21/03/2026, 02:45:52-
34.121.113.•••:18789 - 🇺🇸 United States Yes false Clean AS396982Google LLCGoogle27/03/2026, 02:42:1413/04/2026, 20:16:15 No Yes DragonFly, Packrat-27/03/2026, 02:45:59-
95.165.10.•••:18789 - 🇷🇺 Russia Yes false Clean AS25513PJSC Moscow city telephone networkMGTS27/03/2026, 02:42:1427/03/2026, 09:27:50 No No --21/03/2026, 02:46:03-
5.189.158.•••:80 - 🇩🇪 Germany Yes false Leaked AS51167Contabo GmbHContabo27/03/2026, 02:42:1414/04/2026, 10:35:03 Yes Yes APT10, APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Konni Group, Lazarus Group, MuddyWater Group, Patchwork, REAVER APT, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, Silence Hacker Group, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2016-2124, CVE-2017-11103, CVE-2017-12150, CVE-2017-12151, CVE-2017-12163, CVE-2017-14746, CVE-2017-15275, CVE-2017-7494, CVE-2018-1050, CVE-2018-1057, CVE-2018-10858, CVE-2018-10919, CVE-2018-14629, CVE-2018-16841, CVE-2018-16851, CVE-2019-14833, CVE-2019-14847, CVE-2019-14861, CVE-2019-14870, CVE-2019-14902, CVE-2019-3880, CVE-2020-10704, CVE-2020-10730, CVE-2020-10745, CVE-2020-10760, CVE-2020-14145, CVE-2020-14318, CVE-2020-14323, CVE-2020-14383, CVE-2020-17049, CVE-2020-25717, CVE-2020-25718, CVE-2020-25719, CVE-2020-25722, CVE-2020-27840, CVE-2021-20251, CVE-2021-20254, CVE-2021-20277, CVE-2021-28041, CVE-2021-36368, CVE-2021-3738, CVE-2021-41617, CVE-2022-0336, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-32744, CVE-2022-32746, CVE-2022-3437, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 20:58:24contaboserver.net, contabo.de, contabo.net
154.9.243.•••:18789 - 🇺🇸 United States Yes false Leaked AS979NetLab GlobalCogent Communications27/03/2026, 02:42:1416/04/2026, 12:15:34 Yes - -CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 01:57:36cogentco.com
47.92.75.•••:50001 - 🇨🇳 China mainland Yes false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft27/03/2026, 02:42:1417/04/2026, 21:44:54 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-2341905/04/2026, 06:05:51-
8.130.151.•••:18789 - 🇸🇬 Singapore Yes false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alibaba Cloud27/03/2026, 02:42:1317/04/2026, 05:36:59 No No -CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-3272802/04/2026, 02:26:17-
165.154.152.•••:18789 - 🇭🇰 Hong Kong Yes false Clean AS135377UCLOUD INFORMATION TECHNOLOGY (HK) LIMITEDUcloud Information Technology HK27/03/2026, 02:42:1327/03/2026, 09:27:49 - - ----
3.25.84.•••:443 - 🇦🇺 Australia Yes false Clean AS16509Amazon.com, Inc.Amazon Corporate Services27/03/2026, 02:42:1317/04/2026, 03:21:48 - - ----
44.201.58.•••:443 - 🇺🇸 United States Yes false Clean AS14618Amazon.com, Inc.Amazon Web Services27/03/2026, 02:42:1317/04/2026, 19:28:31 No No --24/03/2026, 19:01:00-
117.80.143.•••:2000 - 🇨🇳 China mainland Yes false Clean AS4134ChinanetChinaNet Jiangsu27/03/2026, 02:42:1327/03/2026, 09:27:49 - - ----
159.89.227.•••:443 - 🇺🇸 United States Yes false Clean AS14061DigitalOcean, LLCDigitalOcean27/03/2026, 02:42:1317/04/2026, 00:21:08 No Yes APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow BrokersCVE-2016-20012, CVE-2019-16905, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-3272816/04/2026, 17:33:22-
154.213.120.•••:18789 - 🇭🇰 Hong Kong Yes false Clean AS132839POWER LINE DATACENTERDigital Core Technology Co. Limited27/03/2026, 02:42:1308/04/2026, 23:37:41 No Yes APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi-02/04/2026, 07:29:48-
47.92.94.•••:50001 - 🇨🇳 China mainland Yes false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft27/03/2026, 02:42:1217/04/2026, 07:07:08 No Yes Sandworm TeamCVE-2016-20012, CVE-2017-15906, CVE-2018-11784, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-0199, CVE-2019-0221, CVE-2019-0232, CVE-2019-10072, CVE-2019-12418, CVE-2019-17563, CVE-2019-2684, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-14145, CVE-2020-15778, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-8022, CVE-2020-9484, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-36368, CVE-2021-41079, CVE-2021-41617, CVE-2021-43980, CVE-2022-25762, CVE-2022-42252, CVE-2023-28708, CVE-2023-38408, CVE-2023-41080, CVE-2023-42795, CVE-2023-44487, CVE-2023-45648, CVE-2023-46589, CVE-2023-48795, CVE-2023-51385, CVE-2024-21733, CVE-2024-23672, CVE-2024-24549, CVE-2025-24813, CVE-2025-26465, CVE-2025-32728, CVE-2025-55752, CVE-2025-61795, CVE-2025-61984, CVE-2025-6198506/04/2026, 23:56:39-
161.35.140.•••:443 - 🇺🇸 United States - false Clean AS14061DigitalOcean, LLCDigitalOcean27/03/2026, 02:42:1227/03/2026, 09:27:49 - - ----
35.92.95.•••:443 - 🇺🇸 United States Yes false Clean AS16509Amazon.com, Inc.Amazon27/03/2026, 02:42:1216/04/2026, 15:16:55 No No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-65082, CVE-2025-6620002/04/2026, 22:32:05-
89.213.41.•••:443 - 🇧🇷 Brazil Yes false Clean AS262725RG SILVEIRA LTDAPrivate Customer27/03/2026, 02:42:1227/03/2026, 09:27:49 - - ----
111.202.236.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS4808China Unicom Beijing Province NetworkChina Unicom Beijing27/03/2026, 02:42:1215/04/2026, 11:22:25 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2000-1210, CVE-2001-0590, CVE-2002-0493, CVE-2005-4838, CVE-2006-7196, CVE-2007-1358, CVE-2007-2449, CVE-2008-0128, CVE-2009-2696, CVE-2013-2185, CVE-2013-4286, CVE-2013-4322, CVE-2013-4444, CVE-2013-4590, CVE-2013-6357, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119, CVE-2016-20012, CVE-2016-8735, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2020-8022, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138505/04/2026, 21:46:54chinaunicom.cn
156.225.143.•••:18789 - 🇭🇰 Hong Kong Yes false Clean AS142286LUOGELANG (FRANCE) LIMITEDCloudFly Net Inc27/03/2026, 02:42:1215/04/2026, 12:46:44 No Yes APT1, APT32, El-Machete, FIN8, Gamaredon-Group, goziCVE-2014-407811/04/2026, 19:01:35-
117.72.222.•••:8080 - 🇨🇳 China mainland Yes false Leaked AS141679China Telecom Beijing Tianjin Hebei Big Data Industry Park BranchJD.com27/03/2026, 02:42:1205/04/2026, 15:03:24 Yes No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198530/03/2026, 18:43:18jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com
57.180.86.•••:443 - 🇯🇵 Japan Yes false Leaked AS16509Amazon.com, Inc.Amazon Web Services Japan27/03/2026, 02:42:1217/04/2026, 10:06:05 Yes Yes APT14, APT40, APT41, Cobalt Group, Gamaredon Group, Kimsuky, Lazarus Group, SharpPandaCVE-2006-20001, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-4089817/04/2026, 07:11:53amazon.fr, bookworm.com, amazon.com.br, audible.com, lovefilm.com, amazon.eu, amzaon.com, amazaon.com, audible.in, z-exp.com, amozon.com, aws-amazon.com, shopbop.com, accept.com, amazonn.com, boxofficemojo.com, amazonaws-us-gov.com, amaozn.com, awsamazon.com, amazonmusiclocal.com, a9.com, amzzon.com, mturk.com, amazonaws.cm, com.be, amazonpay.com, rooftopmedia.net, vine.com, imdb.com, ssl-images-amazon.com, amazon.com.au, amazon-rings.com, assoc-amazon.com, amazonin.com, amzn.asia, annapurnalabs.com, apn-portal.com, evi.com, amazonprime.com, audiblecareers.com, beautybar.com, junglee.com, amazon.ae, tenmarks.com, amazonwebservices.net, associates-amazon.com, amazonrobotics.com, amazon-aws.com, endless.com, amazonlocal.com, amazonm.com, amazonllc.com, media-imdb.com, amazon.com.tw, createspace.com, amazonaws.com, amzn.com, amazon.com, images-amazon.com, amazon.com.co
240e:356:29e:2b00:2e0:4cff:fe68:894a:18789 - 🇨🇳 China mainland - false Clean AS4134ChinanetChina Telecom IPv6 Broadband Address27/03/2026, 02:42:1227/03/2026, 09:27:48 - - ----
129.121.84.•••:80 - 🇺🇸 United States Yes false Clean AS31898Oracle CorporationOGTIPS127/03/2026, 02:42:1227/03/2026, 09:27:48 - - ----
112.126.27.•••:443 - 🇨🇳 China mainland Yes false Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft27/03/2026, 02:42:1217/04/2026, 19:28:35 Yes Yes Salt TyphoonCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-3272802/04/2026, 20:58:45aliyun.com
2001:41d0:20a:900::3ab:18789 - 🇫🇷 France - false Clean AS16276OVH SASVPS EU West RBX27/03/2026, 02:42:1216/04/2026, 20:35:27 - - ----
36.137.120.•••:18789 Assistant 🇨🇳 China mainland Yes false Clean AS9808China Mobile Communications Group Co., Ltd.China Mobile27/03/2026, 02:42:1227/03/2026, 09:27:48 - - ----
34.217.39.•••:443 - 🇺🇸 United States Yes false Clean AS16509Amazon.com, Inc.Amazon27/03/2026, 02:42:1227/03/2026, 09:27:48 - - ----
154.213.108.•••:18789 - 🇭🇰 Hong Kong Yes false Clean AS132839POWER LINE DATACENTERDigital Core Technology Co. Limited27/03/2026, 02:42:1210/04/2026, 17:47:17 No Yes APT-C-23, APT1, APT28, APT32, APT35, APT37, APT38, APT39, Cobalt Group, DragonFly, El-Machete, FIN8, Gamaredon Group, Gamaredon-Group, Ghostwriter, Kimsuky, Lazarus Group, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers, Turla APT Group, Volt Typhoon, goziCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-3618, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-4448710/04/2026, 12:28:57-
54.254.217.•••:443 - 🇯🇵 Japan Yes false Clean AS16509Amazon.com, Inc.Amazon Web Services Japan27/03/2026, 02:42:1105/04/2026, 12:04:25 No No -CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 19:31:52-
154.213.118.•••:18789 - 🇭🇰 Hong Kong Yes false Clean AS132839POWER LINE DATACENTERDigital Core Technology Co. Limited27/03/2026, 02:42:1115/04/2026, 01:35:36 No Yes APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi-06/04/2026, 03:47:03-
3.26.38.•••:443 - 🇦🇺 Australia Yes false Clean AS16509Amazon.com, Inc.Amazon Corporate Services27/03/2026, 02:42:1127/03/2026, 09:27:47 - - ----
156.249.239.•••:18789 - 🇺🇸 United States Yes false Clean AS139880OWGELS INTERNATIONAL CO., LIMITEDAres IDC Limited27/03/2026, 02:42:1116/04/2026, 01:23:02 No No --04/04/2026, 15:32:30-
212.64.20.•••:8080 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing27/03/2026, 02:42:1111/04/2026, 07:56:22 No Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-638702/04/2026, 08:58:34-
47.254.206.•••:443 - 🇲🇾 Malaysia Yes false Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud Malaysia27/03/2026, 02:42:1117/04/2026, 18:49:27 No No -CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198505/04/2026, 05:22:26-
159.65.20.•••:18789 - 🇬🇧 United Kingdom Yes false Clean AS14061DigitalOcean, LLCDigitalOcean27/03/2026, 02:42:1101/04/2026, 18:44:31 - - ----
120.46.95.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS55990Huawei Cloud Service data centerHuawei Cloud27/03/2026, 02:42:1117/04/2026, 23:59:13 Yes No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198505/04/2026, 18:05:07smartcom.cc, huawei.com, huaweidevice.com
44.250.182.•••:443 - 🇺🇸 United States Yes false Clean AS16509Amazon.com, Inc.Amazon27/03/2026, 02:42:1109/04/2026, 01:54:47 - - ----
64.227.64.•••:443 - 🇳🇱 Netherlands Yes false Clean AS14061DigitalOcean, LLCDigitalOcean27/03/2026, 02:42:1117/04/2026, 23:57:57 No Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-31122, CVE-2023-38709, CVE-2023-43622, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-638705/04/2026, 18:52:36-
3.226.47.•••:443 - 🇺🇸 United States Yes false Clean AS14618Amazon.com, Inc.Amazon Web Services27/03/2026, 02:42:1117/04/2026, 20:59:14 No No -CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-6620003/04/2026, 05:21:27-
136.115.227.•••:18789 - 🇺🇸 United States Yes false Clean AS396982Google LLCGoogle27/03/2026, 02:42:1117/04/2026, 10:07:05 No No -CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198508/04/2026, 12:26:16-
101.32.251.•••:18789 - 🇸🇬 Singapore Yes false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd27/03/2026, 02:42:1017/04/2026, 08:37:22 Yes Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198508/04/2026, 08:39:22tencent.com