🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 683295 Page: 2031 / 6833 (100 per page) Showing: 203001-203100 Last Imported: 19/04/2026, 08:41:00

🇨🇳 364,448

🇺🇸 188,265

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
43.143.125.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	24/03/2026, 08:25:41	30/03/2026, 11:18:19	Yes	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	24/03/2026, 16:01:48	tencent.com
185.217.125.•••:18789	-	🇫🇷 France	Yes	true	Leaked	AS51167	Contabo GmbH	Contabo	24/03/2026, 08:25:40	02/04/2026, 11:56:38	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2018-19131, CVE-2018-19132, CVE-2019-12519, CVE-2019-12520, CVE-2019-12521, CVE-2019-12522, CVE-2019-12523, CVE-2019-12524, CVE-2019-12525, CVE-2019-12526, CVE-2019-12527, CVE-2019-12528, CVE-2019-12529, CVE-2019-12854, CVE-2019-13345, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-18860, CVE-2020-11945, CVE-2020-14058, CVE-2020-15049, CVE-2020-15810, CVE-2020-15811, CVE-2020-24606, CVE-2020-25097, CVE-2020-8449, CVE-2020-8450, CVE-2020-8517, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-28662, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-46784, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-61984, CVE-2025-61985	30/03/2026, 21:01:12	contaboserver.net, contabo.de, contabo.net
240e:3b4:3812:b180:5be6:19f9:31a5:2ff2:18789	-	🇨🇳 China mainland	-	true	Clean	AS134774	CHINANET Guangdong province Shenzhen MAN network	China Telecom IPv6 Broadband Address	24/03/2026, 08:25:40	24/03/2026, 15:57:20	-	-	-	-	-	-
39.97.131.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	24/03/2026, 08:25:40	16/04/2026, 15:16:57	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/04/2026, 10:51:29	aliyun.com
147.182.143.•••:31917	-	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	24/03/2026, 08:25:40	27/03/2026, 04:13:56	No	Yes	APT14, APT28, APT40, APT41, Cobalt Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	24/03/2026, 16:02:12	-
39.98.167.•••:50001	-	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	24/03/2026, 08:25:40	15/04/2026, 01:35:41	Yes	Yes	APT28, APT40, APT41, Cobalt Group, Earth Berberoka, Energetic Bear, Equation Group, Leafminer, Luckycat APT, Packrat, Sandworm Team	CVE-2010-1899, CVE-2010-2730, CVE-2010-3972	24/03/2026, 16:02:13	aliyun.com
52.14.14.•••:443	-	🇺🇸 United States	Yes	true	Leaked	AS16509	Amazon.com, Inc.	Amazon	24/03/2026, 08:25:40	24/03/2026, 15:57:20	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	24/03/2026, 16:02:14	netflix.net
42.51.34.•••:50000	-	🇨🇳 China mainland	Yes	true	Clean	AS56005	Zhengzhou Fastidc Technology Co.,Ltd.	Henan Telcom Union Technology	24/03/2026, 08:25:40	09/04/2026, 04:09:24	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	24/03/2026, 16:02:15	-
2.27.62.•••:18789	-	🇩🇪 Germany	Yes	true	Leaked	AS200051	RIZKI ABDUL AZIS	Kyonix Networks	24/03/2026, 08:25:40	15/04/2026, 01:35:01	Yes	No	-	-	24/03/2026, 16:02:21	ee.co.uk
39.97.51.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	24/03/2026, 08:25:40	06/04/2026, 13:34:48	Yes	No	-	-	06/04/2026, 14:00:12	aliyun.com
203.161.42.•••:18789	-	🇬🇪 Georgia	Yes	true	Leaked	AS22612	Namecheap, Inc.	[name redacted]	24/03/2026, 08:25:40	17/04/2026, 01:06:22	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	30/03/2026, 07:57:57	namecheap.com
139.155.127.•••:80	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	24/03/2026, 08:25:40	24/03/2026, 15:57:20	-	-	-	-	-	-
95.166.58.•••:18789	-	🇬🇧 United Kingdom	Yes	true	Clean	AS48101	Trooli Ltd	Callflow	24/03/2026, 08:25:40	27/03/2026, 04:13:50	-	-	-	-	-	-
45.55.238.•••:443	-	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	24/03/2026, 08:25:40	01/04/2026, 06:38:54	-	-	-	-	-	-
54.179.179.•••:443	-	🇸🇬 Singapore	Yes	true	Clean	AS16509	Amazon.com, Inc.	Amazon	24/03/2026, 08:25:39	24/03/2026, 15:57:20	-	-	-	-	-	-
8.213.206.•••:18789	-	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	24/03/2026, 08:25:39	11/04/2026, 10:54:05	-	-	-	-	-	-
154.213.119.•••:18789	-	🇭🇰 Hong Kong	Yes	true	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology Co. Limited	24/03/2026, 08:25:39	15/04/2026, 01:35:51	No	Yes	APT1, APT32, APT37, APT38, DragonFly, El-Machete, FIN8, Gamaredon-Group, Packrat, gozi	CVE-2017-15906, CVE-2018-15473, CVE-2021-36368, CVE-2021-41617, CVE-2020-15778, CVE-2016-20012, CVE-2019-6111, CVE-2019-6110, CVE-2018-20685, CVE-2023-38408, CVE-2023-51385, CVE-2019-6109, CVE-2018-15919, CVE-2023-48795, CVE-2020-14145	31/03/2026, 09:48:44	-
222.211.53.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS4134	Chinanet	ChinaNet Sichuan	24/03/2026, 08:25:39	24/03/2026, 15:57:19	-	-	-	-	-	-
101.33.201.•••:443	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	24/03/2026, 08:25:39	24/03/2026, 15:57:19	-	-	-	-	-	-
3.231.221.•••:443	-	🇺🇸 United States	Yes	true	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	24/03/2026, 08:25:39	17/04/2026, 10:07:21	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	30/03/2026, 23:18:58	-
157.245.156.•••:18789	-	🇸🇬 Singapore	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	24/03/2026, 08:25:39	17/04/2026, 02:36:36	No	Yes	APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2007-4559, CVE-2013-0340, CVE-2015-20107, CVE-2016-20012, CVE-2016-3189, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-25032, CVE-2019-12900, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-10735, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-28861, CVE-2021-29921, CVE-2021-30641, CVE-2021-33193, CVE-2021-3426, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-3733, CVE-2021-3737, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-4189, CVE-2021-44224, CVE-2021-44790, CVE-2022-0391, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-26488, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2022-42919, CVE-2022-45061, CVE-2023-24329, CVE-2023-25690, CVE-2023-27043, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-36632, CVE-2023-38408, CVE-2023-38709, CVE-2023-40217, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-0397, CVE-2024-11168, CVE-2024-24795, CVE-2024-27316, CVE-2024-3219, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-4032, CVE-2024-40898, CVE-2024-5642, CVE-2024-6232, CVE-2024-6387, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-12084, CVE-2025-12781, CVE-2025-13836, CVE-2025-13837, CVE-2025-1695, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 00:04:39	-
42.193.198.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	24/03/2026, 08:25:39	12/04/2026, 23:10:38	Yes	No	-	-	01/04/2026, 19:32:03	tencent.com
79.137.78.•••:18789	-	🇫🇷 France	Yes	true	Clean	AS16276	OVH SAS	OVH	24/03/2026, 08:25:39	27/03/2026, 10:11:00	-	-	-	-	-	-
39.98.186.•••:50001	-	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	24/03/2026, 08:25:39	08/04/2026, 22:08:00	Yes	Yes	Packrat	-	03/04/2026, 06:06:10	aliyun.com
39.98.58.•••:50001	-	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	24/03/2026, 08:25:39	17/04/2026, 00:21:03	Yes	Yes	Packrat, Sea Turtle Group	CVE-2000-1210, CVE-2001-0590, CVE-2002-0493, CVE-2005-4838, CVE-2006-7196, CVE-2007-1358, CVE-2007-2449, CVE-2008-0128, CVE-2009-2696, CVE-2013-2185, CVE-2013-4286, CVE-2013-4322, CVE-2013-4444, CVE-2013-4590, CVE-2013-6357, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119, CVE-2016-0762, CVE-2016-3092, CVE-2016-5018, CVE-2016-5388, CVE-2016-6794, CVE-2016-6796, CVE-2016-6797, CVE-2016-6816, CVE-2016-8735, CVE-2016-8745, CVE-2017-12617, CVE-2017-5647, CVE-2017-5648, CVE-2017-5664, CVE-2017-7674, CVE-2018-1304, CVE-2018-1305, CVE-2018-1336, CVE-2018-8014, CVE-2018-8034, CVE-2020-8022, CVE-2025-24813	27/03/2026, 09:31:03	aliyun.com
168.144.42.•••:18789	-	🇸🇬 Singapore	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	24/03/2026, 08:25:38	17/04/2026, 10:06:48	-	-	-	-	-	-
159.89.104.•••:18789	-	🇩🇪 Germany	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	24/03/2026, 08:25:38	24/03/2026, 15:57:19	-	-	-	-	-	-
64.23.159.•••:443	-	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	24/03/2026, 08:25:38	27/03/2026, 10:11:28	-	-	-	-	-	-
101.33.234.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	24/03/2026, 08:25:38	17/04/2026, 20:59:10	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	02/04/2026, 19:29:21	tencent.com
18.117.158.•••:443	-	🇺🇸 United States	Yes	true	Clean	AS16509	Amazon.com, Inc.	Amazon	24/03/2026, 08:25:38	24/03/2026, 15:57:18	-	-	-	-	-	-
2.27.50.•••:18789	-	🇫🇮 Finland	Yes	true	Clean	AS210546	CHSL ONE LTD	Helsinki	24/03/2026, 08:25:38	17/04/2026, 10:06:14	No	No	-	-	30/03/2026, 23:19:16	-
82.157.181.•••:443	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	24/03/2026, 08:25:38	30/03/2026, 21:00:02	-	-	-	-	-	-
101.43.135.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	24/03/2026, 08:25:38	08/04/2026, 10:52:15	Yes	Yes	APT37, El-Machete	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	05/04/2026, 20:19:10	tencent.com
185.169.252.•••:18789	-	🇫🇷 France	Yes	true	Clean	AS51167	Contabo GmbH	Contabo	24/03/2026, 08:25:38	02/04/2026, 17:12:42	-	-	-	-	-	-
51.37.241.•••:18789	Morgan	🇮🇪 Ireland	Yes	true	Clean	AS15502	Vodafone Ireland Limited	Vodafone Ireland	24/03/2026, 08:25:38	24/03/2026, 15:57:18	-	-	-	-	-	-
47.254.24.•••:80	-	🇺🇸 United States	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	24/03/2026, 08:25:38	16/04/2026, 20:35:31	No	-	-	-	24/03/2026, 08:11:29	-
120.48.39.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	24/03/2026, 08:25:37	24/03/2026, 15:57:18	-	-	-	-	-	-
65.109.237.•••:18789	-	🇫🇮 Finland	Yes	true	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	24/03/2026, 08:25:37	15/04/2026, 13:30:16	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MoustachedBouncer, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2007-4559, CVE-2015-20107, CVE-2020-10735, CVE-2021-23017, CVE-2021-28861, CVE-2021-3618, CVE-2022-37454, CVE-2022-41741, CVE-2022-41742, CVE-2022-42919, CVE-2022-45061, CVE-2023-24329, CVE-2023-27043, CVE-2023-28531, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/04/2026, 00:00:17	hetzner.com
178.104.100.•••:18789	-	🇩🇪 Germany	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	24/03/2026, 08:25:37	17/04/2026, 23:14:27	-	-	-	-	-	-
1.14.75.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	24/03/2026, 08:25:37	08/04/2026, 01:05:21	-	-	-	-	-	-
45.131.64.•••:8443	-	🇩🇪 Germany	Yes	true	Clean	AS58087	Florian Kolb	LuxVPS	24/03/2026, 08:25:37	17/04/2026, 00:21:07	No	Yes	APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-10708, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	04/04/2026, 19:11:35	-
3.66.164.•••:443	-	🇩🇪 Germany	Yes	true	Clean	AS16509	Amazon.com, Inc.	A100 ROW	24/03/2026, 08:25:37	17/04/2026, 10:07:17	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	27/03/2026, 05:45:56	-
134.199.225.•••:443	-	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	24/03/2026, 08:25:37	16/04/2026, 01:22:30	-	-	-	-	-	-
122.231.188.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS4134	Chinanet	ChinaNet Hangzhou	24/03/2026, 08:25:37	24/03/2026, 15:57:16	-	-	-	-	-	-
103.181.142.•••:443	-	🇮🇩 Indonesia	Yes	true	Clean	AS136052	PT Cloud Hosting Indonesia	IDCloudHost	24/03/2026, 08:25:37	16/04/2026, 22:51:03	No	Yes	APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Earth Berberoka, Equation Group, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE	CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-10708, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-43622, CVE-2023-45802, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6484, CVE-2024-6485, CVE-2025-14177, CVE-2025-14178, CVE-2025-14180, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-65082, CVE-2025-66200	30/03/2026, 07:48:53	-
8.222.158.•••:443	-	🇸🇬 Singapore	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	24/03/2026, 08:25:37	17/04/2026, 23:58:54	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	30/03/2026, 07:45:28	es.io
46.224.65.•••:18789	-	🇩🇪 Germany	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	24/03/2026, 08:25:37	16/04/2026, 01:23:54	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 02:14:51	duckdns.org
3.24.24.•••:18789	-	🇦🇺 Australia	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon Corporate Services	24/03/2026, 08:23:30	18/04/2026, 00:40:45	No	No	-	-	21/03/2026, 04:58:15	-
154.199.35.•••:18789	-	🇭🇰 Hong Kong	Yes	true	Clean	AS139880	OWGELS INTERNATIONAL CO., LIMITED	Ares IDC Limited	24/03/2026, 08:23:30	17/04/2026, 09:19:30	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	07/04/2026, 17:36:44	-
34.50.100.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS396982	Google LLC	Google	24/03/2026, 08:23:30	24/03/2026, 13:39:29	-	-	-	-	-	-
42.194.241.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	24/03/2026, 08:23:30	12/04/2026, 17:53:31	-	-	-	-	-	-
62.234.59.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	24/03/2026, 08:23:30	17/04/2026, 01:03:31	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	03/04/2026, 09:43:58	-
159.75.112.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	24/03/2026, 08:23:30	16/04/2026, 22:03:09	-	-	-	-	-	-
39.98.75.•••:18789	-	🇨🇳 China mainland	-	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	24/03/2026, 08:23:30	15/04/2026, 01:31:59	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	08/04/2026, 23:37:28	aliyun.com
136.248.75.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS31898	Oracle Corporation	Oracle	24/03/2026, 08:23:30	29/03/2026, 23:44:00	-	-	-	-	-	-
18.207.181.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14618	Amazon.com, Inc.	Amazon	24/03/2026, 08:23:30	31/03/2026, 05:58:20	-	-	-	-	-	-
39.98.71.•••:18789	-	🇨🇳 China mainland	-	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	24/03/2026, 08:23:30	15/04/2026, 00:47:33	Yes	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	27/03/2026, 05:40:28	aliyun.com
35.232.249.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS396982	Google LLC	Google	24/03/2026, 08:23:29	15/04/2026, 01:32:45	No	Yes	APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, DragonFly, Kimsuky, MuddyWater Group, Packrat, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	08/04/2026, 22:50:44	-
47.92.225.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	24/03/2026, 08:23:29	08/04/2026, 02:33:08	No	Yes	APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	29/03/2026, 19:14:19	-
47.96.188.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	24/03/2026, 08:23:29	14/04/2026, 09:47:48	No	No	-	-	30/03/2026, 18:45:00	-
119.29.59.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	24/03/2026, 08:23:29	24/03/2026, 14:24:31	-	-	-	-	-	-
47.119.19.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	24/03/2026, 08:23:29	24/03/2026, 14:24:31	-	-	-	-	-	-
104.21.60.•••:18789	-	🇺🇸 United States	-	true	Clean	AS13335	Cloudflare, Inc.	Cloudflare	24/03/2026, 08:23:29	24/03/2026, 14:24:31	-	-	-	-	-	-
104.236.43.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	24/03/2026, 08:23:29	18/04/2026, 00:41:41	No	No	-	-	24/03/2026, 11:15:45	-
18.139.82.•••:18789	-	🇸🇬 Singapore	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	24/03/2026, 08:23:28	04/04/2026, 13:55:21	No	No	-	CVE-2023-37470, CVE-2023-38646, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419, CVE-2025-30371	04/04/2026, 08:43:23	-
152.53.163.•••:18789	-	🇩🇪 Germany	Yes	true	Clean	AS197540	netcup GmbH	Netcup	24/03/2026, 08:23:28	24/03/2026, 14:24:31	-	-	-	-	-	-
31.57.77.•••:18789	-	🇹🇷 Türkiye	Yes	true	Leaked	AS210538	KEYUBU Internet ve Bilisim Tic. Ltd. Sti.	Vibes Host	24/03/2026, 08:23:28	17/04/2026, 10:03:46	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/04/2026, 14:09:39	cprapid.com
121.89.93.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	24/03/2026, 08:23:28	24/03/2026, 14:24:29	-	-	-	-	-	-
118.195.158.•••:18789	-	🇨🇳 China mainland	-	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	24/03/2026, 08:23:28	13/04/2026, 19:28:08	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/04/2026, 07:24:59	tencent.com
163.176.168.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS31898	Oracle Corporation	Oracle	24/03/2026, 08:23:28	17/04/2026, 20:11:00	-	-	-	-	-	-
154.213.108.•••:18789	-	🇭🇰 Hong Kong	Yes	true	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology Co. Limited	24/03/2026, 08:23:28	14/04/2026, 10:31:38	No	Yes	APT-C-23, APT1, APT28, APT32, APT35, APT37, APT38, APT39, Cobalt Group, DragonFly, El-Machete, FIN8, Gamaredon Group, Gamaredon-Group, Ghostwriter, Kimsuky, Lazarus Group, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers, Turla APT Group, Volt Typhoon, gozi	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-3618, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487	02/04/2026, 06:43:05	-
154.213.118.•••:18789	-	🇭🇰 Hong Kong	Yes	true	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology Co. Limited	24/03/2026, 08:23:28	14/04/2026, 23:17:02	-	-	-	-	-	-
49.233.237.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	24/03/2026, 08:23:28	24/03/2026, 14:24:29	-	-	-	-	-	-
38.165.47.•••:18789	-	🇺🇸 United States	Yes	true	Leaked	AS400619	AROSSCLOUD INC.	PEG Technology	24/03/2026, 08:23:28	08/04/2026, 04:48:29	Yes	No	-	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/04/2026, 20:12:43	cogentco.com
101.43.40.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	24/03/2026, 08:23:28	17/04/2026, 22:26:56	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	05/04/2026, 04:35:39	tencent.com
122.51.180.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	24/03/2026, 08:23:28	27/03/2026, 04:11:16	-	-	-	-	-	-
171.80.1.•••:18789	-	🇨🇳 China mainland	-	true	Leaked	AS151185	China Telecom	ChinaNet Hubei	24/03/2026, 08:23:27	07/04/2026, 21:17:06	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/04/2026, 21:20:28	bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, ideal.sh.cn, daqu.com.cn, ctyun.cn
82.158.90.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS401701	cognetcloud INC	Skyvoro	24/03/2026, 08:23:27	24/03/2026, 14:24:29	-	-	-	-	-	-
116.204.132.•••:18789	-	🇭🇰 Hong Kong	Yes	true	Clean	AS401701	cognetcloud INC	I Layer Limited	24/03/2026, 08:23:27	24/03/2026, 14:24:29	-	-	-	-	-	-
3.14.142.•••:18789	-	🇺🇸 United States	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon	24/03/2026, 08:23:27	25/03/2026, 11:01:20	-	-	-	-	-	-
52.156.25.•••:18789	-	🇺🇸 United States	-	true	Clean	AS8075	Microsoft Corporation	Microsoft	24/03/2026, 08:23:27	17/04/2026, 20:11:00	-	-	-	-	-	-
115.190.205.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	24/03/2026, 08:23:27	18/04/2026, 00:40:18	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	15/04/2026, 13:34:13	gwbn.net.cn
43.156.62.•••:18789	-	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	24/03/2026, 08:23:27	18/04/2026, 00:41:40	Yes	Yes	APT15, APT17, APT28, APT31, APT35, APT36, APT37, APT39, APT45, Bitter APT, Bluenoroff, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-27043, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-0397, CVE-2024-3219, CVE-2024-4032, CVE-2024-6232, CVE-2024-6387, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-12084, CVE-2025-12781, CVE-2025-13836, CVE-2025-13837, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/04/2026, 21:42:45	tencent.com
43.159.36.•••:18789	-	🇸🇬 Singapore	-	true	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	24/03/2026, 08:23:27	24/03/2026, 14:24:31	-	-	-	-	-	-
54.179.158.•••:18789	-	🇸🇬 Singapore	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon	24/03/2026, 08:23:27	18/04/2026, 00:41:16	-	-	-	-	-	-
5.39.57.•••:18789	-	🇫🇷 France	Yes	true	Clean	AS16276	OVH SAS	Failover IP	24/03/2026, 08:23:27	16/04/2026, 15:14:03	Yes	No	-	-	29/03/2026, 17:46:59	runonflux.io, runonflux.com
103.241.42.•••:18789	-	🇻🇳 Vietnam	-	true	Clean	AS135983	Tino Group Joint Stock Company	MMO Viet Nam Software Company Limited	24/03/2026, 08:23:27	27/03/2026, 10:09:40	-	-	-	-	-	-
143.198.53.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	24/03/2026, 08:23:27	15/04/2026, 13:29:09	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28370, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-52804, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 06:41:07	-
111.164.251.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS4837	CHINA UNICOM China169 Backbone	China Unicom Tianjin	24/03/2026, 08:23:27	17/04/2026, 23:56:29	No	No	-	-	27/03/2026, 13:27:32	-
49.233.197.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	24/03/2026, 08:23:27	24/03/2026, 14:24:28	-	-	-	-	-	-
39.98.69.•••:18789	-	🇨🇳 China mainland	-	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	24/03/2026, 08:23:27	17/04/2026, 08:34:35	Yes	-	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	30/03/2026, 10:31:00	aliyun.com
116.203.248.•••:18789	-	🇩🇪 Germany	-	true	Clean	AS24940	Hetzner Online GmbH	Hetzner Online	24/03/2026, 08:23:27	24/03/2026, 14:24:28	-	-	-	-	-	-
82.157.17.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	24/03/2026, 08:23:26	17/04/2026, 05:34:07	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	31/03/2026, 07:29:49	-
46.225.228.•••:18789	-	🇩🇪 Germany	-	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	24/03/2026, 08:23:26	24/03/2026, 14:24:28	-	-	-	-	-	-
34.170.56.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS396982	Google LLC	Google	24/03/2026, 08:23:26	14/04/2026, 18:47:35	No	No	-	CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	08/04/2026, 22:51:45	-
114.246.96.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS4808	China Unicom Beijing Province Network	China Unicom Beijing	24/03/2026, 08:23:26	24/03/2026, 14:24:28	-	-	-	-	-	-
154.194.178.•••:18789	-	🇭🇰 Hong Kong	Yes	true	Clean	AS139880	OWGELS INTERNATIONAL CO., LIMITED	Starbow Ltd	24/03/2026, 08:23:26	16/04/2026, 14:28:34	No	No	-	-	29/03/2026, 11:43:21	-
52.14.31.•••:18789	-	🇺🇸 United States	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon	24/03/2026, 08:23:26	30/03/2026, 11:14:23	-	-	-	-	-	-
8.135.51.•••:18789	-	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	24/03/2026, 08:23:26	15/04/2026, 13:28:39	-	-	-	-	-	-
67.205.179.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	24/03/2026, 08:23:26	27/03/2026, 02:41:15	-	-	-	-	-	-

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.