🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 816988 Page: 1957 / 8170 (100 per page) Showing: 195601-195700 Last Imported: 15/05/2026, 09:32:33

🇨🇳 425,761

🇺🇸 231,518

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
39.98.78.•••:50001	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/03/2026, 06:01:30	17/04/2026, 23:58:24	Yes	Yes	Packrat	CVE-2000-1210, CVE-2001-0590, CVE-2002-0493, CVE-2005-4838, CVE-2006-7196, CVE-2007-1358, CVE-2007-2449, CVE-2008-0128, CVE-2009-2696, CVE-2012-2733, CVE-2012-3544, CVE-2012-3546, CVE-2012-4431, CVE-2012-4534, CVE-2012-5885, CVE-2012-5886, CVE-2012-5887, CVE-2013-2067, CVE-2013-2185, CVE-2013-4286, CVE-2013-4322, CVE-2013-4444, CVE-2013-4590, CVE-2013-6357, CVE-2014-0033, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119, CVE-2014-0227, CVE-2014-0230, CVE-2014-7810, CVE-2015-5174, CVE-2015-5345, CVE-2016-0706, CVE-2016-0714, CVE-2016-0762, CVE-2016-5018, CVE-2016-5388, CVE-2016-6794, CVE-2016-6796, CVE-2016-6797, CVE-2016-6816, CVE-2016-8735, CVE-2017-5647, CVE-2020-8022	02/04/2026, 17:57:42	aliyun.com
106.75.3.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS9808	China Mobile Communications Group Co., Ltd.	UCloud	25/03/2026, 06:01:30	25/03/2026, 08:49:26	-	-	-	-	-	-
139.99.117.•••:18789	-	🇮🇪 Ireland	Yes	false	Clean	AS16276	OVH SAS	Evolution Host Ltd	25/03/2026, 06:01:30	25/03/2026, 08:49:26	-	-	-	-	-	-
130.211.127.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	25/03/2026, 06:01:30	16/04/2026, 01:23:04	No	Yes	APT15, APT17, APT29, APT31, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, DragonFly, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Packrat, Patchwork, Salt Typhoon, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387	30/03/2026, 19:30:58	-
47.245.90.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	25/03/2026, 06:01:30	16/04/2026, 11:29:54	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-6484, CVE-2024-6485, CVE-2025-26465, CVE-2025-32728	06/04/2026, 15:55:13	hichina.com, alibaba-inc.com
101.96.194.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	25/03/2026, 06:01:30	17/04/2026, 10:06:40	-	-	-	-	-	-
188.166.22.•••:443	-	🇳🇱 Netherlands	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	25/03/2026, 06:01:30	17/04/2026, 10:05:46	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon, WildCard APT	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-17563, CVE-2019-17569, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-14145, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-9484, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-41079, CVE-2021-41617, CVE-2021-43980, CVE-2022-29885, CVE-2022-42252, CVE-2023-28531, CVE-2023-28708, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387	30/03/2026, 21:45:49	-
134.209.213.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	25/03/2026, 06:01:30	17/04/2026, 06:22:02	No	Yes	APT15, APT28, APT31, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Chimera APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-20012, CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, CVE-2017-15107, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-14834, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687, CVE-2021-3448, CVE-2021-36368, CVE-2021-41617, CVE-2022-0934, CVE-2023-28450, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	31/03/2026, 06:45:32	-
106.54.245.•••:6001	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Unknown	25/03/2026, 06:01:30	01/04/2026, 02:10:47	-	-	-	-	-	-
15.165.248.•••:443	-	🇰🇷 South Korea	Yes	false	Clean	AS16509	Amazon.com, Inc.	AWS Seoul Region	25/03/2026, 06:01:30	25/03/2026, 08:49:26	-	-	-	-	-	-
49.232.211.•••:443	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	25/03/2026, 06:01:30	07/04/2026, 06:33:53	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	07/04/2026, 00:01:20	tencent.com
35.177.8.•••:443	-	🇬🇧 United Kingdom	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	25/03/2026, 06:01:30	25/03/2026, 08:49:26	-	-	-	-	-	-
36.138.144.•••:18789	小虾 (🦐)	🇨🇳 China mainland	Yes	false	Leaked	AS9808	China Mobile Communications Group Co., Ltd.	China Mobile	25/03/2026, 06:01:29	03/04/2026, 15:43:02	Yes	-	-	-	30/03/2026, 22:31:52	chinamobile.com, chinamobile.cn
34.44.104.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	25/03/2026, 06:01:29	14/04/2026, 10:33:43	No	-	-	-	25/03/2026, 03:48:39	-
103.86.87.•••:18789	-	🇰🇷 South Korea	Yes	false	Clean	AS133448	Korea	NTTE Global Network	25/03/2026, 06:01:29	16/04/2026, 01:22:39	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/04/2026, 08:04:58	-
156.253.35.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS139880	OWGELS INTERNATIONAL CO., LIMITED	Ares IDC Limited	25/03/2026, 06:01:29	15/04/2026, 01:34:47	No	No	-	-	24/03/2026, 18:34:13	-
139.9.61.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS55990	Huawei Cloud Service data center	Huawei Cloud	25/03/2026, 06:01:29	25/03/2026, 08:49:25	-	-	-	-	-	-
139.155.112.•••:18789	-	🇨🇳 China mainland	-	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	25/03/2026, 06:01:29	25/03/2026, 08:49:25	-	-	-	-	-	-
103.30.77.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS932	XNNET LLC	VH Global Limited	25/03/2026, 06:01:29	25/03/2026, 08:49:25	-	-	-	-	-	-
120.46.168.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS55990	Huawei Cloud Service data center	Huawei Cloud	25/03/2026, 06:01:29	17/04/2026, 10:06:49	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	30/03/2026, 23:18:29	smartcom.cc, huawei.com, huaweidevice.com
43.156.213.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	25/03/2026, 06:01:29	17/04/2026, 23:58:09	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-16845, CVE-2019-16905, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/04/2026, 15:54:56	tencent.com
2a02:4780:6e:1728::1:18789	-	🇧🇷 Brazil	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	25/03/2026, 06:01:29	17/04/2026, 01:06:20	-	-	-	-	-	-
106.54.207.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Unknown	25/03/2026, 06:01:29	17/04/2026, 23:57:47	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	11/04/2026, 19:01:14	tencent.com
43.163.92.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	25/03/2026, 06:01:29	11/04/2026, 10:54:36	Yes	No	-	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 05:15:23	tencent.com
20.187.80.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	25/03/2026, 06:01:28	25/03/2026, 08:49:25	-	-	-	-	-	-
47.245.58.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Japan	25/03/2026, 06:01:28	17/04/2026, 00:21:03	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	11/04/2026, 04:13:17	-
120.48.26.•••:18789	-	🇺🇸 United States	-	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/03/2026, 06:01:28	25/03/2026, 08:49:24	-	-	-	-	-	-
34.46.70.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	25/03/2026, 06:01:28	14/04/2026, 06:50:09	No	No	-	-	25/03/2026, 01:32:37	-
38.238.147.•••:18789	-	🇭🇰 Hong Kong	-	false	Clean	AS134548	DXTL Tseung Kwan O Service	Dxtl Service	25/03/2026, 06:01:28	25/03/2026, 08:49:24	-	-	-	-	-	-
35.179.137.•••:443	-	🇬🇧 United Kingdom	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	25/03/2026, 06:01:28	03/04/2026, 11:58:20	No	No	-	CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200	03/04/2026, 12:14:56	-
34.123.228.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	25/03/2026, 06:01:28	15/04/2026, 01:35:41	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	31/03/2026, 09:47:06	-
8.219.9.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	25/03/2026, 06:01:28	25/03/2026, 08:49:23	-	-	-	-	-	-
34.59.124.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	25/03/2026, 06:01:27	25/03/2026, 08:49:23	-	-	-	-	-	-
47.242.28.•••:8080	-	🇭🇰 Hong Kong	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud HK	25/03/2026, 06:01:27	25/03/2026, 08:49:23	-	-	-	-	-	-
3.26.80.•••:443	-	🇦🇺 Australia	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon Corporate Services	25/03/2026, 06:01:27	25/03/2026, 08:49:23	-	-	-	-	-	-
124.222.151.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	25/03/2026, 06:01:27	15/04/2026, 13:31:47	Yes	Yes	APT37, El-Machete	-	06/04/2026, 02:15:06	tencent.com
101.43.21.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	25/03/2026, 06:01:27	25/03/2026, 08:49:23	-	-	-	-	-	-
154.26.209.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS8796	FASTNET DATA INC	Kurun Cloud US	25/03/2026, 06:01:27	07/04/2026, 23:35:11	Yes	Yes	APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 09:35:13	hyper3d.ai, galaxea-ai.com, icphoto.cn, wuqisec.com
39.98.73.•••:50001	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/03/2026, 06:01:27	17/04/2026, 23:57:39	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347	25/03/2026, 09:35:14	aliyun.com
211.101.237.•••:18789	-	🇽🇽 XX	Yes	false	Leaked	AS58519	Cloud Computing Corporation	Unknown	25/03/2026, 06:01:27	25/03/2026, 09:34:56	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2017-15945, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	25/03/2026, 09:35:19	cnnic.cn
157.230.26.•••:8080	-	🇩🇪 Germany	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	25/03/2026, 06:01:27	30/03/2026, 21:45:10	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 09:35:20	-
154.201.64.•••:443	-	🇭🇰 Hong Kong	Yes	false	Clean	AS401696	cognetcloud INC	CognetCloud	25/03/2026, 06:01:27	17/04/2026, 23:58:22	No	Yes	APT1 Comment Crew, APT15, APT17, APT27, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Earth Longzhi, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2019-11358, CVE-2020-11022, CVE-2020-11023, CVE-2020-23064, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	25/03/2026, 09:35:24	-
154.92.52.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology Co. Limited	25/03/2026, 06:01:27	14/04/2026, 23:19:50	No	Yes	APT1, APT28, APT32, APT35, APT37, APT38, APT39, Cobalt Group, DragonFly, El-Machete, FIN8, Gamaredon-Group, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers, gozi	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	25/03/2026, 09:35:29	-
154.213.115.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology Co. Limited	25/03/2026, 06:01:26	12/04/2026, 21:41:11	No	Yes	APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi	-	25/03/2026, 09:35:41	-
39.98.84.•••:50001	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/03/2026, 06:01:26	17/04/2026, 23:58:23	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 09:35:53	aliyun.com
116.62.41.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/03/2026, 06:01:26	09/04/2026, 14:37:02	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347	25/03/2026, 09:35:55	aliyun.com
50.6.23.•••:80	-	🇺🇸 United States	Yes	false	Leaked	AS31898	Oracle Corporation	Newfold Digital	25/03/2026, 06:01:25	16/04/2026, 01:22:17	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	12/04/2026, 17:56:23	athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, mybluehost.me, dotster.com, bluehost.com
182.92.160.•••:443	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/03/2026, 06:01:25	16/04/2026, 14:31:22	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	25/03/2026, 09:36:04	aliyun.com
18.225.12.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon	25/03/2026, 06:01:25	25/03/2026, 09:34:54	No	No	-	-	19/03/2026, 09:36:10	-
45.199.20.•••:18789	-	🇭🇰 Hong Kong	-	false	Clean	AS134548	DXTL Tseung Kwan O Service	DingFeng XinHui HK Technology Limited	25/03/2026, 06:01:25	25/03/2026, 09:34:54	No	No	-	-	19/03/2026, 09:36:12	-
43.138.124.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	25/03/2026, 06:01:25	16/04/2026, 16:47:50	Yes	Yes	APT36, APT37, El-Machete, Hafnium Group, WildCard APT	CVE-2019-12418, CVE-2019-17563, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-9484, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-41079, CVE-2022-25762, CVE-2022-29885	25/03/2026, 09:36:17	tencent.com
154.213.119.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology Co. Limited	25/03/2026, 06:01:25	15/04/2026, 01:35:10	No	Yes	APT1, APT15, APT28, APT31, APT32, APT37, APT38, APT39, Bitter APT, Bluenoroff, Callisto Group, Donot Team, DragonFly, El-Machete, FIN8, Gamaredon Group, Gamaredon-Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Packrat, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers, gozi	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	25/03/2026, 09:36:18	-
82.157.201.•••:18888	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	25/03/2026, 06:01:25	11/04/2026, 10:55:46	No	-	-	-	19/03/2026, 09:36:23	-
143.244.167.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	25/03/2026, 06:01:24	15/04/2026, 13:30:54	No	Yes	APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, WIRTE	CVE-2006-20001, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020	25/03/2026, 09:36:38	-
3.125.49.•••:443	-	🇩🇪 Germany	Yes	false	Clean	AS16509	Amazon.com, Inc.	A100 ROW	25/03/2026, 06:01:24	06/04/2026, 05:15:27	No	-	-	-	19/03/2026, 09:36:50	-
3.67.9.•••:443	-	🇩🇪 Germany	Yes	false	Clean	AS16509	Amazon.com, Inc.	A100 ROW	25/03/2026, 06:01:24	16/04/2026, 16:47:53	No	Yes	APT15, APT28, APT31, APT35, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 09:36:55	-
35.178.57.•••:443	-	🇬🇧 United Kingdom	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	25/03/2026, 06:01:24	17/04/2026, 23:57:27	No	No	-	-	19/03/2026, 09:36:57	-
36.133.215.•••:18789	灵犀 Claw (💕)	🇨🇳 China mainland	Yes	false	Leaked	AS9808	China Mobile Communications Group Co., Ltd.	China Mobile	25/03/2026, 06:01:24	10/04/2026, 01:00:38	Yes	Yes	APT-C-23, APT29, APT36, Carbanak, Cobalt Group, DarkHotel Group, Equation Group, Gamaredon Group, Ghostwriter, Lazarus Group, Packrat, Turla APT Group, Volt Typhoon	CVE-2014-0160, CVE-2014-0224, CVE-2015-10003, CVE-2017-20005, CVE-2017-7529, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2021-23017, CVE-2021-3618, CVE-2022-4900, CVE-2023-31122, CVE-2023-38709, CVE-2023-43622, CVE-2023-44487, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-5458, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200	25/03/2026, 09:37:02	chinamobile.com, chinamobile.cn
34.172.124.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	25/03/2026, 06:01:24	15/04/2026, 01:35:06	No	Yes	El-Machete	CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 09:37:09	-
207.90.192.•••:18789	-	🇨🇦 Canada	Yes	false	Clean	AS26832	Rica Web Services	RWS Montreal	25/03/2026, 06:01:24	16/04/2026, 01:23:30	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 09:37:20	-
47.92.169.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/03/2026, 06:01:24	17/04/2026, 10:07:24	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 09:37:22	-
103.15.222.•••:443	-	🇻🇳 Vietnam	Yes	false	Leaked	AS149137	TAN THANH AN INTERNATIONAL TRADE DEVELOPMENT COMPANY LIMITED	Tan Thanh An	25/03/2026, 06:01:24	25/03/2026, 09:34:53	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2006-20001, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-3618, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-26691, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-7347, CVE-2025-23048, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-61984, CVE-2025-61985	25/03/2026, 09:37:24	fauxshagreenfurniture.net, vnnic.vn
154.213.120.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology Co. Limited	25/03/2026, 06:01:23	14/04/2026, 02:19:10	No	Yes	APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi	-	25/03/2026, 09:37:33	-
180.213.79.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS17638	ASN for TIANJIN Provincial Net of CT	ChinaNet Tianjin	25/03/2026, 06:01:23	17/04/2026, 23:59:24	Yes	No	-	-	25/03/2026, 09:37:43	bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, daqu.com.cn, ctyun.cn
183.238.24.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS9808	China Mobile Communications Group Co., Ltd.	China Mobile	25/03/2026, 06:01:23	07/04/2026, 23:35:13	Yes	No	-	-	25/03/2026, 09:37:47	chinamobile.com, chinamobile.cn
34.61.22.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	25/03/2026, 06:01:23	13/04/2026, 20:16:19	No	No	-	-	19/03/2026, 09:37:49	-
142.93.8.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	25/03/2026, 06:01:23	14/04/2026, 06:50:04	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	04/04/2026, 16:13:26	-
3.71.114.•••:443	-	🇩🇪 Germany	Yes	false	Clean	AS16509	Amazon.com, Inc.	A100 ROW	25/03/2026, 06:01:23	25/03/2026, 09:34:52	No	No	-	-	19/03/2026, 09:37:54	-
8.138.191.•••:443	-	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	25/03/2026, 06:01:23	17/04/2026, 23:57:35	-	-	-	-	-	-
106.13.216.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/03/2026, 06:01:23	17/04/2026, 23:58:43	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	CVE-2014-4078	25/03/2026, 09:38:03	baidu.com
113.45.7.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS55990	Huawei Cloud Service data center	Huawei Cloud	25/03/2026, 06:01:23	16/04/2026, 16:02:26	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 09:38:07	smartcom.cc, huawei.com, huaweidevice.com, hwclouds-dns.com
39.98.75.•••:50001	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/03/2026, 06:01:23	17/04/2026, 10:06:51	Yes	-	-	-	25/03/2026, 09:38:09	aliyun.com
13.38.23.•••:443	-	🇫🇷 France	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	25/03/2026, 06:01:23	10/04/2026, 01:01:02	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	25/03/2026, 09:38:14	-
121.89.83.•••:443	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/03/2026, 06:01:23	04/04/2026, 12:28:33	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	25/03/2026, 09:38:18	aliyun.com
156.249.239.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS139880	OWGELS INTERNATIONAL CO., LIMITED	Ares IDC Limited	25/03/2026, 06:01:22	15/04/2026, 13:31:14	No	No	-	-	19/03/2026, 09:38:25	-
44.248.236.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon	25/03/2026, 06:01:22	17/04/2026, 23:58:15	No	No	-	CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200	05/04/2026, 13:37:38	-
64.23.169.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	25/03/2026, 06:01:22	25/03/2026, 09:34:52	No	Yes	APT17, APT36, APT37, APT45, Kimsuky, MuddyWater Group, SideWinder APT	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387	25/03/2026, 09:38:31	-
8.147.56.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	25/03/2026, 06:01:22	16/04/2026, 11:29:52	-	-	-	-	-	-
178.104.111.•••:18789	-	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	25/03/2026, 06:01:22	15/04/2026, 13:31:52	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/04/2026, 02:39:23	-
1.52.9.•••:18789	-	🇻🇳 Vietnam	Yes	false	Leaked	AS18403	FPT Telecom Company	FPT Telecom	25/03/2026, 06:01:22	25/03/2026, 09:34:51	Yes	No	-	-	25/03/2026, 09:38:58	fpt.com.vn
39.98.42.•••:50001	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/03/2026, 06:01:22	15/04/2026, 12:46:47	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	25/03/2026, 09:39:03	aliyun.com
49.12.187.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	25/03/2026, 06:01:22	16/04/2026, 01:22:31	Yes	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	06/04/2026, 15:06:52	hetzner.de
16.148.15.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon	25/03/2026, 06:01:21	17/04/2026, 10:06:56	-	-	-	-	-	-
111.228.39.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS141679	China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch	Jingdong Headquarters	25/03/2026, 06:01:21	17/04/2026, 07:07:09	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/04/2026, 17:08:32	jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com
106.12.111.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/03/2026, 06:01:21	25/03/2026, 09:34:51	-	-	-	-	-	-
159.65.220.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	25/03/2026, 06:01:21	17/04/2026, 10:06:21	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	04/04/2026, 19:17:20	-
106.12.167.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/03/2026, 06:01:21	25/03/2026, 09:34:49	-	-	-	-	-	-
104.131.56.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	25/03/2026, 06:01:21	15/04/2026, 13:31:51	No	Yes	APT14, APT28, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE	CVE-2006-20001, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 15:45:57	-
107.149.161.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS398823	PEG TECH INC	Peg Tech Inc	25/03/2026, 06:01:20	11/04/2026, 20:20:21	Yes	No	-	CVE-2014-4078	11/04/2026, 17:54:48	duckdns.org
106.53.183.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	25/03/2026, 06:01:20	25/03/2026, 09:34:49	-	-	-	-	-	-
104.192.80.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS398478	PEG TECH INC	Dignitas Technology	25/03/2026, 06:01:20	25/03/2026, 09:34:49	-	-	-	-	-	-
35.226.82.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	25/03/2026, 06:01:20	13/04/2026, 14:59:47	No	Yes	DragonFly, Packrat	CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	01/04/2026, 00:36:39	-
124.130.40.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4837	CHINA UNICOM China169 Backbone	China Unicom Shandong	25/03/2026, 06:01:20	25/03/2026, 09:34:49	-	-	-	-	-	-
20.219.181.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS8075	Microsoft Corporation	Microsoft	25/03/2026, 06:01:19	25/03/2026, 09:34:49	-	-	-	-	-	-
185.235.242.•••:443	-	🇷🇺 Russia	Yes	false	Leaked	AS33993	UFO Hosting LLC	UFO Hosting	25/03/2026, 06:01:19	17/04/2026, 23:57:46	Yes	Yes	APT15, APT28, APT31, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/04/2026, 18:42:28	pq.hosting, greece-geo-ips.gr
34.160.1.•••:80	-	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	25/03/2026, 06:01:19	25/03/2026, 09:34:49	-	-	-	-	-	-
111.228.26.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS141679	China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch	Jingdong Headquarters	25/03/2026, 06:01:19	25/03/2026, 09:34:48	-	-	-	-	-	-
156.253.35.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS139880	OWGELS INTERNATIONAL CO., LIMITED	Ares IDC Limited	25/03/2026, 06:01:19	17/04/2026, 19:28:33	No	No	-	-	28/03/2026, 07:34:53	-
144.126.221.•••:443	Fritzi (🐾)	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	25/03/2026, 06:01:19	15/04/2026, 01:35:41	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 08:18:42	-
47.85.14.•••:443	-	🇺🇸 United States	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	25/03/2026, 06:01:19	04/04/2026, 19:55:08	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/04/2026, 07:31:18	hichina.com, alibaba-inc.com

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.