🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 683295 Page: 1840 / 6833 (100 per page) Showing: 183901-184000 Last Imported: 19/04/2026, 08:41:00

🇨🇳 364,448

🇺🇸 188,265

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
157.245.243.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	26/03/2026, 22:55:05	16/04/2026, 20:32:39	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	08/04/2026, 13:09:33	-
44.213.120.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	26/03/2026, 22:55:05	30/03/2026, 20:57:03	-	-	-	-	-	-
129.121.87.•••:18789	-	🇺🇸 United States	-	true	Leaked	AS31898	Oracle Corporation	OGTIPS1	26/03/2026, 22:55:05	16/04/2026, 22:48:12	Yes	Yes	FIN8	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	14/04/2026, 08:18:43	athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, mybluehost.me, dotster.com, bluehost.com
1.94.197.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS55990	Huawei Cloud Service data center	Beijing Teletron Telecom	26/03/2026, 22:55:05	11/04/2026, 20:17:41	Yes	No	-	-	05/04/2026, 09:47:14	drpeng.com.cn
34.123.128.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS396982	Google LLC	Google	26/03/2026, 22:55:05	16/04/2026, 15:59:37	No	No	-	-	04/04/2026, 16:14:10	-
43.156.24.•••:18789	-	🇸🇬 Singapore	Yes	true	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	26/03/2026, 22:55:05	18/04/2026, 00:41:11	-	-	-	-	-	-
139.9.102.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS55990	Huawei Cloud Service data center	Huawei Cloud	26/03/2026, 22:55:05	07/04/2026, 09:30:18	No	No	-	-	26/03/2026, 14:55:27	-
47.110.139.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/03/2026, 22:55:05	16/04/2026, 14:28:29	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	13/04/2026, 13:34:52	-
3.239.246.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	26/03/2026, 22:55:05	05/04/2026, 20:14:03	-	-	-	-	-	-
8.146.237.•••:18789	-	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	26/03/2026, 22:55:04	11/04/2026, 23:17:25	-	-	-	-	-	-
2.27.36.•••:18789	-	🇩🇪 Germany	Yes	true	Clean	AS215590	DpkgSoft International Limited	XorekCloud-FRA	26/03/2026, 22:55:04	18/04/2026, 00:41:40	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	08/04/2026, 20:03:56	-
146.148.100.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS396982	Google LLC	Google	26/03/2026, 22:55:04	27/03/2026, 04:11:08	-	-	-	-	-	-
156.249.227.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS139880	OWGELS INTERNATIONAL CO., LIMITED	Ares IDC Limited	26/03/2026, 22:55:04	16/04/2026, 10:41:50	No	No	-	-	26/03/2026, 00:44:27	-
34.10.143.•••:18789	-	🇺🇸 United States	-	true	Clean	AS396982	Google LLC	Google	26/03/2026, 22:55:04	17/04/2026, 18:46:50	No	No	-	-	11/04/2026, 18:50:24	-
124.223.45.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	26/03/2026, 22:55:04	16/04/2026, 01:20:02	Yes	Yes	APT37, El-Machete	CVE-2014-4078	01/04/2026, 10:21:15	tencent.com
34.71.122.•••:18789	-	🇺🇸 United States	-	true	Clean	AS396982	Google LLC	Google	26/03/2026, 22:55:04	27/03/2026, 04:11:07	-	-	-	-	-	-
3.238.185.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	26/03/2026, 22:55:04	17/04/2026, 10:03:08	No	Yes	APT17, APT28, APT35, APT36, APT37, APT39, APT45, CloudSorcerer, Cobalt Group, Daggerfly APT, Kimsuky, MuddyWater Group, Mustang Panda, Sandworm Team, SideWinder APT, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/04/2026, 14:57:06	-
116.203.66.•••:18789	-	🇩🇪 Germany	Yes	true	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	26/03/2026, 22:55:04	12/04/2026, 00:47:13	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/04/2026, 03:54:54	hetzner.de
95.111.247.•••:18789	-	🇫🇷 France	Yes	true	Clean	AS51167	Contabo GmbH	Contabo	26/03/2026, 22:55:04	01/04/2026, 19:25:54	-	-	-	-	-	-
185.215.165.•••:18789	-	🇫🇷 France	-	true	Leaked	AS51167	Contabo GmbH	Contabo	26/03/2026, 22:55:04	16/04/2026, 21:17:58	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2017-15710, CVE-2017-15715, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	29/03/2026, 23:45:31	contabo.de, contabo.net
47.77.184.•••:18789	-	🇺🇸 United States	-	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	26/03/2026, 22:55:04	12/04/2026, 00:47:29	Yes	No	-	-	02/04/2026, 13:27:29	hichina.com, alibaba-inc.com
39.98.92.•••:18789	-	🇨🇳 China mainland	-	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/03/2026, 22:55:03	15/04/2026, 11:19:46	Yes	Yes	APT15, APT28, APT29, APT31, APT32, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Careto APT, Cobalt Group, Donot Team, Emennet Pasargad, Emennet Pasargard, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon, WildCard APT	CVE-2000-1210, CVE-2001-0590, CVE-2002-0493, CVE-2005-4838, CVE-2006-7196, CVE-2007-1358, CVE-2007-2449, CVE-2008-0128, CVE-2009-2696, CVE-2012-5568, CVE-2013-2185, CVE-2013-4286, CVE-2013-4322, CVE-2013-4444, CVE-2013-4590, CVE-2013-6357, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119, CVE-2015-5174, CVE-2015-5345, CVE-2015-5346, CVE-2015-5351, CVE-2016-0706, CVE-2016-0714, CVE-2016-0762, CVE-2016-0763, CVE-2016-10708, CVE-2016-20012, CVE-2016-3092, CVE-2016-5018, CVE-2016-5388, CVE-2016-6794, CVE-2016-6796, CVE-2016-6797, CVE-2016-6816, CVE-2016-8735, CVE-2016-8745, CVE-2017-12615, CVE-2017-12616, CVE-2017-12617, CVE-2017-15906, CVE-2017-5647, CVE-2017-5648, CVE-2017-5664, CVE-2017-7674, CVE-2018-11784, CVE-2018-1304, CVE-2018-1305, CVE-2018-1336, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-8014, CVE-2018-8034, CVE-2019-0221, CVE-2019-0232, CVE-2019-12418, CVE-2019-16905, CVE-2019-17563, CVE-2019-2684, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-13935, CVE-2020-14145, CVE-2020-15778, CVE-2020-1935, CVE-2020-1938, CVE-2020-8022, CVE-2020-9484, CVE-2021-24122, CVE-2021-25329, CVE-2021-30640, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	12/04/2026, 16:25:16	aliyun.com
13.222.106.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	26/03/2026, 22:55:03	14/04/2026, 01:30:52	-	-	-	-	-	-
34.134.25.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS396982	Google LLC	Google	26/03/2026, 22:55:03	17/04/2026, 10:04:31	No	Yes	APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2024-39894, CVE-2024-6387	05/04/2026, 04:35:04	-
18.118.0.•••:18789	-	🇺🇸 United States	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon	26/03/2026, 22:55:03	27/03/2026, 04:11:07	-	-	-	-	-	-
137.184.106.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	26/03/2026, 22:55:03	27/03/2026, 04:11:06	-	-	-	-	-	-
123.57.173.•••:18789	-	🇨🇳 China mainland	-	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/03/2026, 22:55:03	17/04/2026, 22:26:57	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	27/03/2026, 04:56:32	aliyun.com
47.104.245.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/03/2026, 22:55:03	17/04/2026, 10:03:48	No	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	27/03/2026, 04:56:38	-
98.84.161.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	26/03/2026, 22:55:03	27/03/2026, 10:09:20	No	No	-	-	21/03/2026, 04:56:43	-
206.162.244.•••:18789	-	🇧🇩 Bangladesh	-	true	Clean	AS53850	GorillaServers, Inc.	Private Customer	26/03/2026, 22:55:03	18/04/2026, 00:41:17	No	Yes	APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, WIRTE	CVE-2006-20001, CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3523, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2015-9253, CVE-2016-0736, CVE-2016-10002, CVE-2016-10003, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-3167, CVE-2017-7272, CVE-2017-7679, CVE-2017-7963, CVE-2017-8923, CVE-2017-9120, CVE-2017-9225, CVE-2017-9229, CVE-2017-9788, CVE-2017-9798, CVE-2018-1000024, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-17199, CVE-2018-19395, CVE-2018-19396, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-12519, CVE-2019-12521, CVE-2019-12523, CVE-2019-12525, CVE-2019-12526, CVE-2019-12529, CVE-2019-17567, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9022, CVE-2019-9023, CVE-2019-9024, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9641, CVE-2019-9675, CVE-2020-11945, CVE-2020-11985, CVE-2020-13938, CVE-2020-14058, CVE-2020-15049, CVE-2020-1927, CVE-2020-1934, CVE-2020-25097, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-28651, CVE-2021-31807, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44790, CVE-2021-46784, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31628, CVE-2022-31629, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-28531, CVE-2023-28625, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-4577, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	27/03/2026, 04:56:44	-
43.167.171.•••:18789	-	🇸🇬 Singapore	-	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	26/03/2026, 22:55:03	16/04/2026, 09:23:51	Yes	No	-	CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	04/04/2026, 12:27:42	tencent.com
1.194.210.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS139587	China Telecom Henan Zhengzhou Shujugang IDC network	ChinaNet Henan Province Network	26/03/2026, 22:55:03	17/04/2026, 08:34:20	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	27/03/2026, 04:56:53	-
123.207.218.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	26/03/2026, 22:55:02	17/04/2026, 06:19:19	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-11187, CVE-2024-1737, CVE-2024-1975, CVE-2024-4076	27/03/2026, 04:57:00	tencent.com
62.234.158.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	26/03/2026, 22:55:02	02/04/2026, 03:40:36	-	-	-	-	-	-
161.35.201.•••:18789	-	🇩🇪 Germany	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	26/03/2026, 22:55:02	27/03/2026, 04:56:03	No	No	-	-	21/03/2026, 04:57:02	-
139.202.230.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS4134	Chinanet	ChinaNet Sichuan	26/03/2026, 22:55:02	27/03/2026, 04:56:03	No	No	-	-	21/03/2026, 04:57:04	-
47.85.48.•••:18789	-	🇺🇸 United States	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	26/03/2026, 22:55:02	05/04/2026, 17:59:35	Yes	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	27/03/2026, 04:57:16	hichina.com, alibaba-inc.com
44.246.136.•••:18789	-	🇺🇸 United States	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon	26/03/2026, 22:55:02	17/04/2026, 19:25:53	No	No	-	CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200	05/04/2026, 04:33:08	-
119.91.37.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	26/03/2026, 22:55:02	16/04/2026, 12:12:45	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	27/03/2026, 04:57:18	tencent.com
3.236.37.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	26/03/2026, 22:55:02	27/03/2026, 04:56:02	No	No	-	-	21/03/2026, 04:57:23	-
64.227.86.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	26/03/2026, 22:55:02	29/03/2026, 23:43:32	-	-	-	-	-	-
104.168.22.•••:18789	-	🇺🇸 United States	-	true	Leaked	AS36352	HostPapa	RackNerd	26/03/2026, 22:55:02	16/04/2026, 22:03:10	Yes	No	-	-	27/03/2026, 04:57:26	racknerd.com
121.41.66.•••:18789	-	🇨🇳 China mainland	-	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/03/2026, 22:55:02	15/04/2026, 22:38:45	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	27/03/2026, 04:57:29	aliyun.com
8.146.235.•••:18789	-	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	26/03/2026, 22:55:02	16/04/2026, 08:44:58	-	-	-	-	-	-
47.92.169.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/03/2026, 22:55:02	17/04/2026, 07:04:15	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	27/03/2026, 04:57:44	-
51.79.87.•••:18789	-	🇨🇦 Canada	-	true	Clean	AS16276	OVH SAS	OVH Hosting	26/03/2026, 22:55:02	27/03/2026, 04:56:02	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	27/03/2026, 04:57:51	ovh.ca
43.99.86.•••:18789	-	🇸🇬 Singapore	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	26/03/2026, 22:55:01	16/04/2026, 19:01:26	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	14/04/2026, 05:18:05	alibabacloud.com
34.135.16.•••:18789	-	🇺🇸 United States	-	true	Clean	AS396982	Google LLC	Google	26/03/2026, 22:55:01	27/03/2026, 04:56:02	No	Yes	DragonFly, Packrat	CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	27/03/2026, 04:58:03	-
45.204.163.•••:18789	-	🇭🇰 Hong Kong	Yes	true	Clean	AS139880	OWGELS INTERNATIONAL CO., LIMITED	Ares IDC Limited	26/03/2026, 22:55:01	16/04/2026, 22:03:08	No	No	-	-	21/03/2026, 04:58:13	-
1.14.144.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	26/03/2026, 22:55:01	27/03/2026, 04:56:02	-	-	-	-	-	-
3.147.126.•••:18789	-	🇺🇸 United States	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon	26/03/2026, 22:55:01	27/03/2026, 04:56:02	No	No	-	-	21/03/2026, 04:58:17	-
180.130.121.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS4837	CHINA UNICOM China169 Backbone	China Unicom Yunnan	26/03/2026, 22:55:01	14/04/2026, 06:02:10	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	08/04/2026, 15:35:59	chinaunicom.cn
106.12.24.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	26/03/2026, 22:55:01	11/04/2026, 00:02:32	Yes	Yes	APT17, APT28, APT37, APT40, APT41, Cobalt Group, DragonFly, Earth Berberoka, El-Machete, Energetic Bear, Equation Group, Gozi, Leafminer, Luckycat APT, Packrat, Sandworm Team	CVE-2010-1899, CVE-2010-2730, CVE-2010-3972	27/03/2026, 04:58:37	baidu.com
175.24.128.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	26/03/2026, 22:55:01	16/04/2026, 14:28:30	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	27/03/2026, 04:58:38	tencent.com
154.83.239.•••:18789	-	🇭🇰 Hong Kong	Yes	true	Clean	AS139880	OWGELS INTERNATIONAL CO., LIMITED	Ares IDC Limited	26/03/2026, 22:55:01	14/04/2026, 22:30:10	No	-	-	-	21/03/2026, 04:58:40	-
115.190.234.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	26/03/2026, 22:55:01	16/04/2026, 12:57:59	No	No	-	-	21/03/2026, 04:58:51	-
111.196.107.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS4808	China Unicom Beijing Province Network	China Unicom Beijing	26/03/2026, 22:55:01	18/04/2026, 00:41:32	Yes	No	-	-	27/03/2026, 04:58:56	vicp.cc, eicp.net, 6655.la, chinaunicom.cn, 51vip.biz, wicp.net, gicp.net, iicp.net
54.206.110.•••:18789	-	🇦🇺 Australia	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon	26/03/2026, 22:55:01	16/04/2026, 18:15:48	No	No	-	-	21/03/2026, 04:58:57	-
82.208.23.•••:18789	-	🇩🇪 Germany	Yes	true	Leaked	AS51167	Contabo GmbH	Contabo	26/03/2026, 22:55:00	27/03/2026, 10:09:04	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2019-6470, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-3341, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	27/03/2026, 04:59:06	contabo.de, contabo.net
164.92.117.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	26/03/2026, 22:55:00	18/04/2026, 00:41:02	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	27/03/2026, 04:59:09	-
39.98.94.•••:18789	-	🇨🇳 China mainland	-	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/03/2026, 22:55:00	16/04/2026, 00:35:50	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	27/03/2026, 04:59:17	aliyun.com
47.93.198.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/03/2026, 22:55:00	11/04/2026, 21:02:32	No	No	-	-	21/03/2026, 04:59:22	-
162.14.124.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	26/03/2026, 22:55:00	07/04/2026, 17:36:46	No	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	27/03/2026, 04:59:25	-
2a09:8280:1::e9:2623:0:18789	-	🇺🇸 United States	-	true	Clean	AS40509	Fly.io, Inc.	Fly.io	26/03/2026, 22:55:00	17/04/2026, 10:04:11	-	-	-	-	-	-
155.212.224.•••:18789	-	🇱🇻 Latvia	Yes	true	Clean	AS9002	RETN Limited	Unknown	26/03/2026, 22:55:00	09/04/2026, 07:06:03	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/04/2026, 07:10:20	-
156.225.143.•••:18789	-	🇭🇰 Hong Kong	Yes	true	Clean	AS142286	LUOGELANG (FRANCE) LIMITED	CloudFly Net Inc	26/03/2026, 22:55:00	17/04/2026, 02:33:50	No	Yes	APT1, APT32, El-Machete, FIN8, Gamaredon-Group, gozi	CVE-2014-4078	27/03/2026, 04:59:31	-
39.105.203.•••:18789	-	🇽🇽 XX	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Unknown	26/03/2026, 22:55:00	30/03/2026, 09:45:39	Yes	Yes	Packrat	-	27/03/2026, 04:59:32	aliyun.com
103.72.99.•••:18789	-	🇻🇳 Vietnam	-	true	Leaked	AS149068	iNET software one member company limited	INETSOFT-VN	26/03/2026, 22:55:00	27/03/2026, 04:56:00	Yes	No	-	-	27/03/2026, 04:59:36	inet.vn
154.213.112.•••:18789	-	🇭🇰 Hong Kong	Yes	true	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology Co. Limited	26/03/2026, 22:55:00	14/04/2026, 04:32:09	No	Yes	APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi	-	27/03/2026, 04:59:40	-
47.112.22.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/03/2026, 22:55:00	30/03/2026, 11:15:14	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	27/03/2026, 04:59:44	-
3.219.29.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	26/03/2026, 22:55:00	02/04/2026, 23:58:29	No	Yes	APT28, APT29, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers, UNC2452	CVE-2013-0340, CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-12900, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-29921, CVE-2021-3733, CVE-2021-3737, CVE-2021-41617, CVE-2022-0391	27/03/2026, 04:59:56	-
59.95.153.•••:18789	Jarvis (🦾)	🇮🇳 India	Yes	true	Clean	AS9829	National Internet Backbone	National Internet Backbone	26/03/2026, 22:55:00	27/03/2026, 04:56:00	No	No	-	-	21/03/2026, 04:59:58	-
147.182.230.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	26/03/2026, 22:55:00	14/04/2026, 00:00:20	No	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2016-20012, CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, CVE-2017-15107, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-14834, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687, CVE-2021-28041, CVE-2021-3448, CVE-2021-36368, CVE-2021-41617, CVE-2022-0934, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28450, CVE-2023-28531, CVE-2023-31122, CVE-2023-3823, CVE-2023-3824, CVE-2023-38408, CVE-2023-38709, CVE-2023-43622, CVE-2023-45802, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2024-1874, CVE-2024-24795, CVE-2024-27316, CVE-2024-2756, CVE-2024-3096, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	27/03/2026, 05:00:00	-
194.163.159.•••:18789	-	🇩🇪 Germany	Yes	true	Clean	AS51167	Contabo GmbH	Contabo	26/03/2026, 22:55:00	27/03/2026, 04:56:00	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-4577, CVE-2024-5458, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728	27/03/2026, 05:00:03	-
106.13.73.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	26/03/2026, 22:55:00	16/04/2026, 18:15:58	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	27/03/2026, 05:00:04	baidu.com
98.92.90.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	26/03/2026, 22:54:59	17/04/2026, 20:56:30	-	-	-	-	-	-
212.56.46.•••:18789	-	🇩🇪 Germany	Yes	true	Leaked	AS40021	Contabo Inc.	Contabo	26/03/2026, 22:54:59	30/03/2026, 18:47:41	Yes	Yes	APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-1322, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-61984, CVE-2025-61985	27/03/2026, 05:00:16	contaboserver.net, contabo.de, contabo.net
3.209.2.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	26/03/2026, 22:54:59	10/04/2026, 16:14:07	No	No	-	-	21/03/2026, 03:29:11	-
115.196.102.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS4134	Chinanet	ChinaNet Hangzhou	26/03/2026, 22:54:59	27/03/2026, 04:56:00	No	No	-	-	21/03/2026, 05:00:18	-
1.14.192.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	26/03/2026, 22:54:59	11/04/2026, 04:53:49	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE	CVE-2016-1546, CVE-2016-4975, CVE-2016-4979, CVE-2016-5387, CVE-2016-8612, CVE-2016-8740, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-3167, CVE-2017-3169, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-17189, CVE-2018-17199, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2020-11985, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	27/03/2026, 05:00:19	tencent.com
2a02:4780:4:6f2a::1:18789	-	🇺🇸 United States	-	true	Clean	AS47583	Hostinger International Limited	Hostinger	26/03/2026, 22:54:59	27/03/2026, 04:56:00	-	-	-	-	-	-
13.59.14.•••:18789	-	🇺🇸 United States	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon	26/03/2026, 22:54:59	04/04/2026, 19:53:21	-	-	-	-	-	-
212.227.251.•••:18789	-	🇪🇸 Spain	-	true	Leaked	AS8560	This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE.	Ionos Cloud	26/03/2026, 22:54:59	04/04/2026, 19:53:23	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	04/04/2026, 19:56:39	ionos.com
111.228.27.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS141679	China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch	Jingdong Headquarters	26/03/2026, 22:54:59	01/04/2026, 17:55:01	-	-	-	-	-	-
161.97.175.•••:18789	-	🇫🇷 France	Yes	true	Leaked	AS51167	Contabo GmbH	Contabo	26/03/2026, 22:54:59	08/04/2026, 22:05:20	Yes	Yes	APT1 Comment Crew, APT14, APT15, APT17, APT27, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Earth Longzhi, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Turla APT Group, UNC2452, Volt Typhoon	CVE-2006-20001, CVE-2012-6708, CVE-2013-0340, CVE-2015-20107, CVE-2015-9251, CVE-2016-10708, CVE-2016-20012, CVE-2016-3189, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-25032, CVE-2019-10160, CVE-2019-11358, CVE-2019-12900, CVE-2019-17514, CVE-2019-18348, CVE-2019-20907, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11022, CVE-2020-11023, CVE-2020-12062, CVE-2020-14145, CVE-2020-14422, CVE-2020-15778, CVE-2020-26116, CVE-2020-27619, CVE-2020-7656, CVE-2020-8315, CVE-2020-8492, CVE-2021-23336, CVE-2021-28041, CVE-2021-28861, CVE-2021-29921, CVE-2021-3177, CVE-2021-3426, CVE-2021-36368, CVE-2021-3733, CVE-2021-3737, CVE-2021-41617, CVE-2021-4189, CVE-2022-0391, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2022-45061, CVE-2023-0567, CVE-2023-0568, CVE-2023-0662, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-3247, CVE-2023-3823, CVE-2023-3824, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-5458, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020	08/04/2026, 22:07:58	contabo.de, contabo.net
52.193.64.•••:18789	-	🇯🇵 Japan	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Japan	26/03/2026, 22:54:59	18/04/2026, 00:41:46	No	Yes	DragonFly	CVE-2006-20001, CVE-2017-8923, CVE-2019-17567, CVE-2020-13938, CVE-2020-13950, CVE-2020-35452, CVE-2020-7071, CVE-2021-21702, CVE-2021-21703, CVE-2021-21704, CVE-2021-21705, CVE-2021-21706, CVE-2021-21707, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31628, CVE-2022-31629, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2022-4900, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-7347, CVE-2025-23048, CVE-2025-23419, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200	12/04/2026, 23:10:20	-
37.187.149.•••:18789	-	🇫🇷 France	Yes	true	Clean	AS16276	OVH SAS	OVH	26/03/2026, 22:54:59	27/03/2026, 04:55:59	-	-	-	-	-	-
14.109.228.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS4134	Chinanet	Chinanet Chongqing	26/03/2026, 22:54:59	27/03/2026, 04:55:59	-	-	-	-	-	-
8.162.11.•••:18789	-	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	26/03/2026, 22:54:59	30/03/2026, 08:21:15	-	-	-	-	-	-
15.156.207.•••:18789	-	🇨🇦 Canada	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Canada	26/03/2026, 22:54:59	27/03/2026, 04:55:59	-	-	-	-	-	-
82.156.209.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	26/03/2026, 22:54:59	17/04/2026, 10:03:41	No	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	14/04/2026, 05:17:22	-
43.156.142.•••:18789	-	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	26/03/2026, 22:54:59	16/04/2026, 22:03:08	Yes	Yes	APT37, El-Machete	-	02/04/2026, 03:02:32	tencent.com
34.10.61.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS396982	Google LLC	Google	26/03/2026, 22:54:58	08/04/2026, 12:20:36	No	No	-	-	23/03/2026, 21:32:25	-
8.219.85.•••:18789	-	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	26/03/2026, 22:54:58	30/03/2026, 11:14:34	-	-	-	-	-	-
103.150.196.•••:18789	-	🇮🇩 Indonesia	-	true	Leaked	AS133800	PT Biznet Gio Nusantara	Biznet Gio Nusantara	26/03/2026, 22:54:58	17/04/2026, 23:11:51	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2016-20012, CVE-2019-11358, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2020-23064, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2021-44224, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	04/04/2026, 07:58:03	biznetgio.com
103.241.42.•••:18789	-	🇻🇳 Vietnam	-	true	Clean	AS135983	Tino Group Joint Stock Company	MMO Viet Nam Software Company Limited	26/03/2026, 22:54:58	27/03/2026, 04:55:59	-	-	-	-	-	-
180.125.202.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS140292	CHINATELECOM Jiangsu province Suzhou 5G network	Chinanet Jiangsu Province Network	26/03/2026, 22:54:58	27/03/2026, 04:55:59	-	-	-	-	-	-
47.97.119.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/03/2026, 22:54:58	27/03/2026, 04:55:58	-	-	-	-	-	-
89.167.65.•••:18789	-	🇫🇮 Finland	-	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	26/03/2026, 22:54:58	17/04/2026, 07:49:45	-	-	-	-	-	-
85.215.105.•••:18789	-	🇩🇪 Germany	-	true	Clean	AS8560	This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE.	IONOS	26/03/2026, 22:54:58	27/03/2026, 04:55:58	-	-	-	-	-	-

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.