🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 234899 Page: 2150 / 2349 (100 per page) Showing: 214901-215000 Last Imported: 03/03/2026, 10:47:41

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
156.240.121.••• :18789	Assistant	🇭🇰 Hong Kong	Yes	true	Clean	AS55967	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	13/02/2026, 12:48:37	25/02/2026, 23:14:46	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	13/02/2026, 18:52:23	-
120.48.112.••• :18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 10:43:48	25/02/2026, 23:14:46	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	25/02/2026, 14:28:01	chinamobile.com, chinamobile.cn, baidu.com
180.76.149.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 10:43:48	25/02/2026, 23:14:46	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, DragonFly, El-Machete, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Gozi, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347	25/02/2026, 14:28:04	tfn.net.tw, baidu.com
20.83.236.••• :18789	-	🇺🇸 United States	Yes	true	Clean	AS8075	Microsoft Corporation	Microsoft	03/02/2026, 22:37:04	25/02/2026, 23:14:46	-	-	-	-	06/02/2026, 01:35:33	-
106.12.165.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 10:43:48	25/02/2026, 23:14:46	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	25/02/2026, 14:28:07	bj189.cn, baidu.com
180.76.97.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 10:43:48	25/02/2026, 23:14:46	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	25/02/2026, 14:28:09	tfn.net.tw, baidu.com
89.116.28.••• :18789	Hashtryx	🇩🇪 Germany	Yes	true	Leaked	AS51167	Contabo GmbH	Lithuanian Radio and TV Center	03/02/2026, 22:36:30	25/02/2026, 23:14:46	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	06/02/2026, 02:43:21	telecentras.lt
43.156.225.••• :18789	-	🇸🇬 Singapore	-	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	25/02/2026, 10:43:48	25/02/2026, 23:14:46	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-38177, CVE-2022-38178, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/02/2026, 14:28:12	tencent.com
60.205.94.••• :18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/02/2026, 19:46:43	25/02/2026, 23:14:45	Yes	Yes	APT28, APT41, Equation Group	CVE-2010-4478, CVE-2010-5107, CVE-2011-4327, CVE-2011-5000, CVE-2012-0814, CVE-2016-0777, CVE-2017-15906, CVE-2018-10545, CVE-2018-10546, CVE-2018-10547, CVE-2018-10548, CVE-2018-10549, CVE-2018-14851, CVE-2018-14883, CVE-2018-15132, CVE-2018-17082, CVE-2018-19395, CVE-2018-19396, CVE-2018-19518, CVE-2018-19520, CVE-2018-19935, CVE-2018-20783, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9023, CVE-2019-9024	25/02/2026, 14:28:14	aliyun.com
172.67.130.••• :18789	-	🇺🇸 United States	-	true	Leaked	AS13335	Cloudflare, Inc.	Cloudflare	25/02/2026, 10:43:48	25/02/2026, 23:14:45	Yes	No	-	-	25/02/2026, 14:28:26	digitalssite.com, venancio.com, hoolina.com, abaq-z.com, cgmprecast.com, twf2019.com, ccccnbtx.org, bikeweeksa.com, anthonysoriginalproduce.com, ccwhiting.com, ultimategadgetlabs.com, hzfeidi.com, fricksfashion.com, globalmattersgroup.com, fuhuake.com, socar.com.tr, cityfied.net, abpincorp.com, dor.org, anlink.net, jekotrade.com, hmcxjc.com, shsinotech.com, vbankph.com, bopcon.com, hbcollection-ksa.com, boyu-group.com, ekakitchen.com, wisehousetech.com, cloudflare.net, fletchingschool.org, qd-baolian.com, s-b-c.fr, databrick.com, csofam.com, fsrec.com.au, bellafaris.com, lightupdesenvolvimento.com.br, jxlingtong.com, nardini.com, dairyasia.org, altosdelchicala.com, baselinewoods.com, jiabinnu.com, montgomery-illinois.org, cleanzoneheating.com, qzz.io, kfstock.com, villapines.com, daralgmyelh.com, koworksllc.net, ginachlaw.com, c4group.org, mountairymd.org, cloudhq-mkt6.net, champmar-ec.com, klmymmyc.com, ccbayshore.com, australianmastersyieldfund.com.au, gseschooldallas.org, aerosupplycargosadecv.com, mendotahospital.org, dptelecom.ca, hnbeixiang.com, aaram-sa.com, xjjingyoga.com, sxgas.net, advancentx.org, 1haojiyin.com, sama-lan.com, ark-car.com, lamaison-corse.fr, piracicabaeletrodiesel.com.br, incrementstore.com, detongwiremesh.com, laan-sa.com, sanhoos.com, delight-sa.com, dgclh.com, bamko.net, ausarabbusinesscouncil.com, zinc.io, ccsummitridge.com, creditop.com, pixelsksa.com, lstcarbon.com, it.com, ttstest.com, outbook.com, nature-mixes.com, gaetanasnyc.com, irrigationsystems4u.com, yhjgkeji.com, china-one.net, eu.org, scheduleme.org, bierte.com, pprossmx.com, emergingmarketsmastersfund.com.au, prem-box.com, areen-alkaif.com, mtgr-altmyez.com, ttyt360.com, batalatsa.com, newsandmedia.sk, mycatty23online.com, galaxy-of-luxury.com, ccatcourthouse.com, seemine.net, zgkaite.com, turnoutservices.com, xcom-mc.fr, zjdddl.com, villageofpittsford.org, ranscustombuilders.com, smartzonesa.com, lavandeparfums.com, usa-fabric.com, dptelecom.quebec, leverijllc.com, hevvypumps.com, lifelinechiropractic.org, oracle-ag.ch, zjhrbz.com, zhaowoo.net, chedermenachem.org, your-plus1.com, themobilefactory.org, evansdixon.com.au, bestwanhui.com, outdoorkitchensnorthwest.com, ermissolutions.com, domainedelagarenne-morestel.fr, usmastersresidential.com.au, fermeurop.fr, bain86.com, stratos-asesores.com, nobleprofit.com, workers.dev, accuristech.com, cmimoulding.com, tigerexpressfuel.com, proveedor211.com, wshahalamira.com, 360-xj.com, xjwfcj.com, meeshamoultonlaw.com, centrum.sk, isolation-maisons-provencales.fr, aldman1.com, impresosmonterrey.com, shworldbest.com, ccatgreenacres.com, zsnet.net, dongguansenzi.com, caez-wv.org, meridianoutboard.com, lafender.com, denis-carrelage.fr, physnum.com, empreintes-coiffure.fr, china114.net, smartbuildings.com, udacity.com, shmagbalanyeq.com, completecaremgmt.com, xjhongshun.com, eazizlildhabayihs.com, converse.dk, geochem.org, lincolnwaymusic.org, equinaceaprodutosnaturais.com, cccsrochester.org
156.240.123.••• :18789	Assistant	🇭🇰 Hong Kong	Yes	true	Clean	AS55967	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	13/02/2026, 08:24:41	25/02/2026, 23:14:45	No	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	16/02/2026, 20:08:35	-
103.142.24.••• :18789	-	🇻🇳 Vietnam	-	true	Clean	AS135951	Webico Company Limited	Tino Group	25/02/2026, 10:43:48	25/02/2026, 23:14:45	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2001-1556, CVE-2002-0061, CVE-2002-0392, CVE-2003-0020, CVE-2003-0083, CVE-2003-0132, CVE-2004-0174, CVE-2004-0942, CVE-2004-2343, CVE-2005-3352, CVE-2006-20001, CVE-2006-5752, CVE-2007-3304, CVE-2007-4465, CVE-2007-6750, CVE-2008-2939, CVE-2009-3555, CVE-2011-0419, CVE-2012-0031, CVE-2012-0053, CVE-2013-1862, CVE-2015-0228, CVE-2016-20012, CVE-2016-8612, CVE-2017-9788, CVE-2017-9798, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-37436, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51385, CVE-2024-40898, CVE-2025-26465, CVE-2025-26794, CVE-2025-30232, CVE-2025-32728, CVE-2025-49812, CVE-2025-61984, CVE-2025-61985	25/02/2026, 14:28:28	datadock.ne.jp
62.171.135.••• :18789	-	🇫🇷 France	-	true	Leaked	AS51167	Contabo GmbH	Contabo	25/02/2026, 10:43:48	25/02/2026, 23:14:45	Yes	Yes	APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/02/2026, 14:28:29	contabo.de, contabo.net
165.232.108.••• :18789	-	🇬🇧 United Kingdom	-	true	Leaked	AS14061	DigitalOcean, LLC	DigitalOcean	25/02/2026, 10:43:48	25/02/2026, 23:14:45	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-17199, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2020-11985, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	25/02/2026, 14:28:30	lucidlink.com
120.48.142.••• :18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 10:43:48	25/02/2026, 23:14:45	Yes	Yes	APT37, El-Machete, Gozi	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	25/02/2026, 14:28:33	chinamobile.com, chinamobile.cn, baidu.com
2a02:4780:4:56b3::1:18789	-	🇺🇸 United States	-	true	Clean	AS47583	Hostinger International Limited	Hostinger	03/02/2026, 22:36:10	25/02/2026, 23:14:45	-	-	-	-	06/02/2026, 03:16:37	-
120.48.142.••• :18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 10:43:48	25/02/2026, 23:14:45	-	-	-	-	-	-
106.12.34.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	13/02/2026, 21:44:36	25/02/2026, 23:14:45	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	14/02/2026, 13:55:17	bj189.cn, baidu.com
60.205.146.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/02/2026, 10:43:48	25/02/2026, 23:14:45	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/02/2026, 14:28:43	aliyun.com
8.138.217.••• :18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	10/02/2026, 14:00:42	25/02/2026, 23:14:45	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/02/2026, 19:34:01	-
43.153.177.••• :18789	-	🇯🇵 Japan	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	25/02/2026, 10:43:48	25/02/2026, 23:14:45	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/02/2026, 14:28:57	tencent.com
120.48.23.••• :18789	小智 (🤖)	🇺🇸 United States	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 10:43:48	25/02/2026, 23:14:45	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	25/02/2026, 14:28:58	chinamobile.com, chinamobile.cn, baidu.com
43.143.113.••• :18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	25/02/2026, 11:28:36	25/02/2026, 23:14:45	Yes	No	-	-	25/02/2026, 14:29:00	tencent.com
43.162.113.••• :18789	-	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	25/02/2026, 11:28:36	25/02/2026, 23:14:45	Yes	No	-	CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/02/2026, 14:29:03	tencent.com
119.29.137.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:36:42	25/02/2026, 23:14:45	Yes	Yes	APT37, El-Machete	CVE-2018-16845, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	06/02/2026, 02:31:53	tencent.com
34.59.205.••• :18789	-	🇺🇸 United States	Yes	true	Clean	AS396982	Google LLC	Google	24/02/2026, 06:07:31	25/02/2026, 23:14:42	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	24/02/2026, 09:53:15	-
167.71.26.••• :18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	19/02/2026, 00:41:14	25/02/2026, 23:12:28	No	No	-	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617	19/02/2026, 03:42:51	-
43.136.117.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	04/02/2026, 20:39:34	25/02/2026, 23:12:28	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 08:22:23	tencent.com
138.197.127.••• :18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	13/02/2026, 09:50:08	25/02/2026, 23:12:28	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/02/2026, 12:46:44	-
47.77.199.••• :18789	小美 (👩🏻)	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	04/02/2026, 23:43:16	25/02/2026, 23:12:28	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-34750, CVE-2024-38286, CVE-2024-50379, CVE-2024-52316, CVE-2024-54677, CVE-2024-56337, CVE-2024-6387, CVE-2025-24813, CVE-2025-26465, CVE-2025-31650, CVE-2025-31651, CVE-2025-32728, CVE-2025-46701, CVE-2025-48988, CVE-2025-48989, CVE-2025-49124, CVE-2025-49125, CVE-2025-52434, CVE-2025-52520, CVE-2025-53506, CVE-2025-55668, CVE-2025-61984, CVE-2025-61985	05/02/2026, 16:50:03	hichina.com, alibaba-inc.com
134.209.239.••• :18789	-	🇩🇪 Germany	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 22:46:40	25/02/2026, 23:12:28	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347	06/02/2026, 07:34:48	-
8.130.47.••• :18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	24/02/2026, 15:11:06	25/02/2026, 23:12:28	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	24/02/2026, 22:46:57	-
18.170.52.••• :18789	-	🇬🇧 United Kingdom	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	21/02/2026, 20:34:52	25/02/2026, 23:12:28	No	Yes	APT14, APT40, APT41, Cobalt Group, Gamaredon Group, Kimsuky, Lazarus Group, SharpPanda	CVE-2006-20001, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573	22/02/2026, 03:20:03	-
47.251.74.••• :18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	24/02/2026, 15:11:05	25/02/2026, 23:12:28	No	Yes	APT15, APT28, APT31, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	24/02/2026, 22:46:58	-
8.138.119.••• :18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	24/02/2026, 15:11:05	25/02/2026, 23:12:28	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/02/2026, 05:28:27	-
8.215.92.••• :18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	06/02/2026, 00:02:41	25/02/2026, 23:12:28	No	No	-	CVE-2006-20001, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3523, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2025-26465, CVE-2025-32728	06/02/2026, 07:21:11	-
47.251.33.••• :18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 20:24:17	25/02/2026, 23:12:28	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	06/02/2026, 07:00:21	-
47.90.254.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	04/02/2026, 20:23:21	25/02/2026, 23:12:28	No	No	-	-	06/02/2026, 08:35:54	-
165.245.128.••• :18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:47:31	25/02/2026, 23:12:27	-	-	-	-	-	-
47.253.57.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:46:28	25/02/2026, 23:12:27	No	No	-	-	06/02/2026, 12:13:27	-
36.133.3.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS9808	China Mobile Communications Group Co., Ltd.	China Mobile	04/02/2026, 10:36:14	25/02/2026, 23:12:27	Yes	-	-	-	06/02/2026, 10:25:07	chinamobile.com, chinamobile.cn, xuite.net, cht.com.tw, chttl.com.tw
40.160.250.••• :18789	-	🇫🇷 France	-	true	Clean	AS16276	OVH SAS	OVH	24/02/2026, 15:56:15	25/02/2026, 23:12:27	-	-	-	-	-	-
43.134.108.••• :18789	-	🇸🇬 Singapore	-	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	6 Collyer Quay	24/02/2026, 01:35:57	25/02/2026, 23:12:27	Yes	Yes	APT15, APT28, APT31, APT35, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	24/02/2026, 07:37:20	tencent.com
157.245.179.••• :18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	24/02/2026, 15:56:15	25/02/2026, 23:12:27	No	No	-	-	19/02/2026, 05:28:45	-
146.190.167.••• :18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	15/02/2026, 09:32:35	25/02/2026, 23:12:26	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387	15/02/2026, 16:51:52	-
47.253.155.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	12/02/2026, 13:58:23	25/02/2026, 23:12:26	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	12/02/2026, 15:27:12	-
47.89.164.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:46:54	25/02/2026, 23:12:26	No	Yes	APT28, APT40, Energetic Bear, Equation Group, Leafminer, Luckycat APT	CVE-2010-1899, CVE-2010-2730, CVE-2010-3972, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:45:39	-
8.130.9.••• :18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	24/02/2026, 15:56:15	25/02/2026, 23:12:26	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/02/2026, 05:28:48	-
165.22.59.••• :443	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 23:26:38	25/02/2026, 22:40:00	No	Yes	APT15, APT17, APT28, APT29, APT31, APT32, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2005-0004, CVE-2012-0540, CVE-2012-0572, CVE-2012-0574, CVE-2012-0578, CVE-2012-1688, CVE-2012-1689, CVE-2012-1690, CVE-2012-1697, CVE-2012-1702, CVE-2012-1703, CVE-2012-1705, CVE-2012-1734, CVE-2012-1735, CVE-2012-1756, CVE-2012-1757, CVE-2012-2750, CVE-2012-3150, CVE-2012-3158, CVE-2012-3160, CVE-2012-3163, CVE-2012-3166, CVE-2012-3167, CVE-2012-3173, CVE-2012-3177, CVE-2012-3180, CVE-2012-3197, CVE-2012-5060, CVE-2012-5096, CVE-2012-5612, CVE-2012-5614, CVE-2012-5627, CVE-2013-0367, CVE-2013-0368, CVE-2013-0371, CVE-2013-0383, CVE-2013-0384, CVE-2013-0385, CVE-2013-0386, CVE-2013-0389, CVE-2013-1502, CVE-2013-1506, CVE-2013-1511, CVE-2013-1512, CVE-2013-1521, CVE-2013-1523, CVE-2013-1526, CVE-2013-1531, CVE-2013-1532, CVE-2013-1544, CVE-2013-1548, CVE-2013-1552, CVE-2013-1555, CVE-2013-1861, CVE-2013-2375, CVE-2013-2376, CVE-2013-2378, CVE-2013-2389, CVE-2013-2391, CVE-2013-2392, CVE-2013-3783, CVE-2013-3793, CVE-2013-3794, CVE-2013-3801, CVE-2013-3802, CVE-2013-3804, CVE-2013-3805, CVE-2013-3808, CVE-2013-3809, CVE-2013-3812, CVE-2013-3839, CVE-2013-5807, CVE-2013-5891, CVE-2013-5908, CVE-2014-0001, CVE-2014-0384, CVE-2014-0386, CVE-2014-0393, CVE-2014-0401, CVE-2014-0402, CVE-2014-0412, CVE-2014-0420, CVE-2014-0437, CVE-2014-2419, CVE-2014-2430, CVE-2014-2431, CVE-2014-2432, CVE-2014-2436, CVE-2014-2438, CVE-2014-2440, CVE-2014-2494, CVE-2014-4207, CVE-2014-4243, CVE-2014-4258, CVE-2014-4260, CVE-2014-4274, CVE-2014-4287, CVE-2014-6463, CVE-2014-6464, CVE-2014-6469, CVE-2014-6478, CVE-2014-6484, CVE-2014-6491, CVE-2014-6494, CVE-2014-6495, CVE-2014-6496, CVE-2014-6500, CVE-2014-6505, CVE-2014-6507, CVE-2014-6520, CVE-2014-6530, CVE-2014-6551, CVE-2014-6555, CVE-2014-6559, CVE-2014-6568, CVE-2015-0374, CVE-2015-0381, CVE-2015-0382, CVE-2015-0391, CVE-2015-0411, CVE-2015-0432, CVE-2015-0433, CVE-2015-0441, CVE-2015-0499, CVE-2015-0501, CVE-2015-0505, CVE-2015-2325, CVE-2015-2568, CVE-2015-2571, CVE-2015-2573, CVE-2015-2582, CVE-2015-2620, CVE-2015-2643, CVE-2015-2648, CVE-2015-3152, CVE-2015-4752, CVE-2015-4757, CVE-2015-4792, CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4816, CVE-2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4864, CVE-2015-4870, CVE-2015-4879, CVE-2015-4913, CVE-2015-7744, CVE-2016-0502, CVE-2016-0610, CVE-2016-0616, CVE-2016-0642, CVE-2016-0651, CVE-2016-20012, CVE-2016-3471, CVE-2016-3492, CVE-2016-5584, CVE-2016-5612, CVE-2016-5624, CVE-2016-5626, CVE-2016-5629, CVE-2016-6664, CVE-2016-7440, CVE-2016-9843, CVE-2017-10268, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384, CVE-2017-12172, CVE-2017-15098, CVE-2017-15099, CVE-2017-15365, CVE-2017-15945, CVE-2017-3238, CVE-2017-3243, CVE-2017-3244, CVE-2017-3258, CVE-2017-3265, CVE-2017-3291, CVE-2017-3302, CVE-2017-3308, CVE-2017-3309, CVE-2017-3312, CVE-2017-3313, CVE-2017-3317, CVE-2017-3318, CVE-2017-3453, CVE-2017-3456, CVE-2017-3464, CVE-2017-3600, CVE-2017-3636, CVE-2017-3641, CVE-2017-3651, CVE-2017-3653, CVE-2018-1052, CVE-2018-1053, CVE-2018-1058, CVE-2018-10915, CVE-2018-10925, CVE-2018-1115, CVE-2018-16850, CVE-2018-20685, CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668, CVE-2018-2755, CVE-2018-2761, CVE-2018-2767, CVE-2018-2771, CVE-2018-2781, CVE-2018-2813, CVE-2018-2817, CVE-2018-2819, CVE-2018-3058, CVE-2018-3063, CVE-2018-3066, CVE-2018-3081, CVE-2018-3133, CVE-2018-3174, CVE-2018-3282, CVE-2019-10130, CVE-2019-10164, CVE-2019-10208, CVE-2019-16905, CVE-2019-2455, CVE-2019-2481, CVE-2019-2503, CVE-2019-2529, CVE-2019-2614, CVE-2019-2627, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2805, CVE-2019-2974, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9193, CVE-2020-10733, CVE-2020-12062, CVE-2020-14145, CVE-2020-14349, CVE-2020-14350, CVE-2020-14550, CVE-2020-15778, CVE-2020-1720, CVE-2020-25694, CVE-2020-25695, CVE-2020-25696, CVE-2020-2574, CVE-2020-2752, CVE-2020-2780, CVE-2020-2812, CVE-2020-28912, CVE-2020-2922, CVE-2021-2007, CVE-2021-2011, CVE-2021-2144, CVE-2021-23017, CVE-2021-23214, CVE-2021-23222, CVE-2021-28041, CVE-2021-32027, CVE-2021-32028, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2021-43766, CVE-2021-43767, CVE-2021-46659, CVE-2021-46666, CVE-2021-46667, CVE-2021-46669, CVE-2022-1552, CVE-2022-2625, CVE-2022-27385, CVE-2022-27449, CVE-2022-31621, CVE-2022-31622, CVE-2022-31623, CVE-2022-31624, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-5157, CVE-2024-39894, CVE-2024-5458, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	05/02/2026, 04:51:06	-
18.166.18.••• :18789	-	🇨🇳 China mainland	Yes	true	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Hong Kong	19/02/2026, 09:04:59	25/02/2026, 22:40:00	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	19/02/2026, 09:09:33	-
101.133.133.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 23:26:41	25/02/2026, 22:40:00	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 04:43:38	aliyun.com, optage.co.jp
39.104.117.••• :18789	小蒙 (🌱)	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	23/02/2026, 07:03:10	25/02/2026, 22:37:39	Yes	Yes	Packrat	-	23/02/2026, 07:04:36	aliyun.com, ptcl.net.pk
47.98.171.••• :18789	小石头 (🪨)	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	04/02/2026, 17:12:15	25/02/2026, 22:37:39	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 11:42:14	-
47.90.219.••• :18789	Jack (🌞)	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 23:25:01	25/02/2026, 22:37:39	No	-	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 13:34:18	-
8.222.142.••• :18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	04/02/2026, 22:36:43	25/02/2026, 22:37:39	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10002, CVE-2016-10003, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-1000024, CVE-2018-1000027, CVE-2018-15473, CVE-2018-15919, CVE-2018-19131, CVE-2018-19132, CVE-2018-20685, CVE-2019-12519, CVE-2019-12520, CVE-2019-12521, CVE-2019-12522, CVE-2019-12523, CVE-2019-12524, CVE-2019-12525, CVE-2019-12526, CVE-2019-12528, CVE-2019-12529, CVE-2019-13345, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-18860, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11945, CVE-2020-12062, CVE-2020-14058, CVE-2020-14145, CVE-2020-15049, CVE-2020-15778, CVE-2020-15810, CVE-2020-15811, CVE-2020-24606, CVE-2020-25097, CVE-2020-8449, CVE-2020-8450, CVE-2020-8517, CVE-2021-28041, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41318, CVE-2023-38408, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-45802, CVE-2025-26465, CVE-2025-32728, CVE-2025-54574, CVE-2025-59362, CVE-2025-61984, CVE-2025-61985, CVE-2025-62168	05/02/2026, 12:28:14	-
89.167.8.••• :18789	Assistant	🇫🇮 Finland	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	03/02/2026, 23:25:17	25/02/2026, 22:37:38	-	-	-	-	05/02/2026, 13:49:46	-
120.26.43.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 23:25:03	25/02/2026, 22:37:38	Yes	Yes	APT-C-01, APT1 Comment Crew, APT10, APT15, APT17, APT19, APT27, APT28, APT29, APT3, APT30, APT31, APT32, APT33, APT34, APT35, APT37, APT39, APT4, APT40, APT41, BlackOasis APT, Bluenoroff, Bronze Butler APT, Carbanak, Clever Kitten, Cobalt Group, Dark Caracal APT, DarkHydrus, Energetic Bear, Equation Group, FIN6, Gaza Cybergang, Goblin Panda, Group 27, Harvester APT, Inception Framework, Kimsuky, Lazarus Group, Leafminer, Mabna Institute, MuddyWater Group, Patchwork, SandCat, Sandworm Team, Sea Turtle Group, Silence Hacker Group, TA505, TEMP.Hermit, The Shadow Brokers, Triton APT, Turla APT Group, Volatile Kitten	CVE-2002-0369, CVE-2002-0409, CVE-2004-0200, CVE-2005-0509, CVE-2005-2127, CVE-2006-1300, CVE-2006-1510, CVE-2006-1511, CVE-2006-3436, CVE-2006-7192, CVE-2007-0041, CVE-2007-0042, CVE-2007-0043, CVE-2008-3842, CVE-2008-3843, CVE-2008-5100, CVE-2009-0090, CVE-2009-0091, CVE-2009-1536, CVE-2009-2497, CVE-2009-2500, CVE-2009-2501, CVE-2009-2502, CVE-2009-2503, CVE-2009-2504, CVE-2009-2528, CVE-2009-3126, CVE-2010-1898, CVE-2010-2085, CVE-2010-3228, CVE-2010-3332, CVE-2010-3958, CVE-2011-0664, CVE-2011-1253, CVE-2011-1271, CVE-2011-1977, CVE-2011-1978, CVE-2012-0014, CVE-2012-0015, CVE-2012-0160, CVE-2012-0161, CVE-2012-0162, CVE-2012-0163, CVE-2012-0164, CVE-2012-1855, CVE-2012-1895, CVE-2012-1896, CVE-2012-2519, CVE-2012-4776, CVE-2012-4777, CVE-2013-0001, CVE-2013-0002, CVE-2013-0003, CVE-2013-0004, CVE-2013-0005, CVE-2013-0073, CVE-2013-1336, CVE-2013-1337, CVE-2013-3128, CVE-2013-3129, CVE-2013-3131, CVE-2013-3132, CVE-2013-3133, CVE-2013-3134, CVE-2013-3171, CVE-2013-3860, CVE-2013-3861, CVE-2014-0253, CVE-2014-0257, CVE-2014-0295, CVE-2014-1806, CVE-2014-4062, CVE-2014-4072, CVE-2014-4073, CVE-2014-4121, CVE-2014-4122, CVE-2014-4149, CVE-2015-1648, CVE-2015-1670, CVE-2015-1671, CVE-2015-1672, CVE-2015-1673, CVE-2015-2435, CVE-2015-2455, CVE-2015-2456, CVE-2015-2460, CVE-2015-2462, CVE-2015-2463, CVE-2015-2464, CVE-2015-2479, CVE-2015-2480, CVE-2015-2481, CVE-2015-2504, CVE-2015-2526, CVE-2015-6096, CVE-2015-6099, CVE-2015-6108, CVE-2015-6115, CVE-2016-0033, CVE-2016-0047, CVE-2016-0132, CVE-2016-0145, CVE-2016-0148, CVE-2016-0149, CVE-2016-3209, CVE-2016-3255, CVE-2016-7270, CVE-2017-0160, CVE-2017-0248, CVE-2017-8585, CVE-2017-8759, CVE-2018-0764, CVE-2018-0765, CVE-2018-0786, CVE-2018-1039, CVE-2018-8202, CVE-2018-8260, CVE-2018-8284, CVE-2018-8356, CVE-2018-8360, CVE-2018-8421, CVE-2018-8517, CVE-2018-8540, CVE-2019-0545, CVE-2019-0613, CVE-2019-0657, CVE-2019-0820, CVE-2019-0864, CVE-2019-0980, CVE-2019-0981, CVE-2019-1006, CVE-2019-1083, CVE-2019-1113, CVE-2019-11397, CVE-2019-1142, CVE-2020-0605, CVE-2020-0606, CVE-2020-0646, CVE-2020-1046, CVE-2020-1066, CVE-2020-1108, CVE-2020-1147, CVE-2020-1476, CVE-2020-16937, CVE-2021-24111, CVE-2022-21911, CVE-2022-26832, CVE-2022-26929, CVE-2022-30130, CVE-2022-41064, CVE-2022-41089, CVE-2023-21722, CVE-2023-21808, CVE-2023-24895, CVE-2023-24897, CVE-2023-24936, CVE-2023-29326, CVE-2023-29331, CVE-2023-32030, CVE-2023-36049, CVE-2023-36560, CVE-2023-36788, CVE-2023-36792, CVE-2023-36793, CVE-2023-36794, CVE-2023-36796, CVE-2023-36873, CVE-2023-36899, CVE-2024-0056, CVE-2024-0057, CVE-2024-21312, CVE-2024-29059	05/02/2026, 14:22:54	chinamobile.com, aliyun.com, chinamobile.cn
8.219.108.••• :18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	03/02/2026, 23:24:51	25/02/2026, 22:37:38	No	No	-	CVE-2022-31008, CVE-2023-46118, CVE-2024-39894, CVE-2024-6387	05/02/2026, 14:34:10	-
8.215.74.••• :18789	richbot818181 (💰)	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	03/02/2026, 23:25:25	25/02/2026, 22:37:38	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	05/02/2026, 11:21:23	-
47.252.44.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 23:24:42	25/02/2026, 22:37:38	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 13:09:25	-
47.80.19.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	03/02/2026, 23:25:12	25/02/2026, 22:37:38	-	-	-	-	05/02/2026, 12:38:14	-
115.196.43.••• :18789	-	🇨🇳 China mainland	Yes	true	Clean	AS4134	Chinanet	ChinaNet Hangzhou	25/02/2026, 07:49:07	25/02/2026, 22:35:04	No	No	-	-	19/02/2026, 22:35:53	-
38.55.165.••• :18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS400619	AROSSCLOUD INC.	PEG Technology	07/02/2026, 02:42:39	25/02/2026, 22:35:04	Yes	No	-	-	07/02/2026, 02:44:19	cogentco.com
159.65.56.••• :443	-	🇬🇧 United Kingdom	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	24/02/2026, 23:36:44	25/02/2026, 22:35:04	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/02/2026, 07:07:38	-
178.156.188.••• :18789	-	🇺🇸 United States	Yes	true	Leaked	AS213230	Hetzner Online GmbH	Hetzner	07/02/2026, 06:36:50	25/02/2026, 22:35:04	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 06:49:40	hetzner.com
52.66.21.••• :80	-	🇮🇳 India	Yes	true	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	22/02/2026, 19:51:22	25/02/2026, 22:35:04	No	No	-	-	16/02/2026, 20:39:06	-
168.188.96.••• :8082	-	🇰🇷 South Korea	Yes	true	Leaked	AS18298	Chungnam National University	Chungnam National University	25/02/2026, 07:49:07	25/02/2026, 22:35:04	Yes	No	-	-	25/02/2026, 22:36:00	krnic.or.kr
43.167.209.••• :18789	-	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	06/02/2026, 18:19:57	25/02/2026, 22:35:04	Yes	No	-	-	06/02/2026, 18:24:21	tencent.com
103.236.77.••• :18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS134768	CHINANET SHAANXI province Cloud Base network	Sichuan Xiaoteyun Technology	25/02/2026, 07:49:07	25/02/2026, 22:35:04	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/02/2026, 22:36:06	xinnet.com, qzz.io, eu.org, datadock.ne.jp
154.85.55.••• :18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS55967	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	13/02/2026, 08:29:12	25/02/2026, 22:35:03	No	Yes	APT-C-23, APT17, APT37, DragonFly, El-Machete, Gamaredon Group, Ghostwriter, Gozi, Lazarus Group, Packrat, Turla APT Group, Volt Typhoon	CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347	14/02/2026, 07:23:54	-
47.238.244.••• :18789	Assistant	🇭🇰 Hong Kong	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud HK	25/02/2026, 07:49:07	25/02/2026, 22:35:03	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/02/2026, 22:36:12	-
47.96.21.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/02/2026, 08:34:10	25/02/2026, 22:35:03	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	25/02/2026, 22:36:14	-
34.27.97.••• :18789	-	🇺🇸 United States	Yes	true	Clean	AS396982	Google LLC	Google	19/02/2026, 04:31:53	25/02/2026, 22:35:03	No	No	-	CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	19/02/2026, 22:30:17	-
106.13.168.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 13:18:23	25/02/2026, 22:35:03	-	-	-	-	-	-
180.76.225.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 08:34:10	25/02/2026, 22:35:03	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	25/02/2026, 22:36:20	tfn.net.tw, baidu.com
159.75.72.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	07/02/2026, 19:02:26	25/02/2026, 22:35:03	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2020-25694, CVE-2020-25695, CVE-2020-25696, CVE-2021-20229, CVE-2021-23214, CVE-2021-23222, CVE-2021-32027, CVE-2021-32028, CVE-2021-32029, CVE-2021-3393, CVE-2021-36368, CVE-2021-3677, CVE-2021-41617, CVE-2021-43767, CVE-2022-1552, CVE-2022-2625, CVE-2022-41862, CVE-2023-2454, CVE-2023-2455, CVE-2023-38408, CVE-2023-39417, CVE-2023-48795, CVE-2023-51385	07/02/2026, 19:04:23	-
106.12.21.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	14/02/2026, 02:56:51	25/02/2026, 22:35:03	-	-	-	-	-	-
154.85.51.••• :18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS55967	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	13/02/2026, 10:41:03	25/02/2026, 22:35:03	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Gozi, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	13/02/2026, 18:11:29	-
8.133.17.••• :18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	13/02/2026, 07:45:23	25/02/2026, 22:35:03	No	No	-	-	08/02/2026, 06:42:51	-
120.24.79.••• :80	-	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/02/2026, 08:34:10	25/02/2026, 22:35:03	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	25/02/2026, 22:36:33	chinamobile.com, aliyun.com, chinamobile.cn
218.244.143.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/02/2026, 08:34:10	25/02/2026, 22:35:03	Yes	No	-	-	25/02/2026, 22:36:35	kornet.net, bizmeka.com, kt.com, aliyun.com, homeap.co.kr, hhnsfarm.co.kr, ktds.com, ktlogis.com, ktestate.com, simplo.com.cn, kt-idc.com, kt.co.kr, ktmediahub.com, ktcloud.com, ktfreetel.co.kr
134.199.213.••• :18789	-	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	25/02/2026, 08:34:10	25/02/2026, 22:35:03	No	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	25/02/2026, 22:36:36	-
2a02:4780:12:e8f::1:18789	-	🇮🇳 India	-	true	Clean	AS47583	Hostinger International Limited	Hostinger	10/02/2026, 11:10:24	25/02/2026, 22:35:03	-	-	-	-	-	-
120.26.100.••• :18789	-	🇨🇳 China mainland	-	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	25/02/2026, 08:34:10	25/02/2026, 22:35:03	-	-	-	-	-	-
49.234.57.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	11/02/2026, 08:44:14	25/02/2026, 22:35:03	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-20330, CVE-2021-20333, CVE-2021-32036, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	12/02/2026, 00:56:09	truecorp.co.th, tencent.com
154.85.63.••• :18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS55967	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	13/02/2026, 00:24:51	25/02/2026, 22:35:03	-	-	-	-	-	-
165.232.109.••• :443	-	🇬🇧 United Kingdom	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	18/02/2026, 21:49:11	25/02/2026, 22:35:03	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	18/02/2026, 23:19:34	-
180.76.245.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 08:34:10	25/02/2026, 22:35:03	-	-	-	-	-	-
119.28.162.••• :80	-	🇰🇷 South Korea	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Tencent Cloud	25/02/2026, 08:34:09	25/02/2026, 22:35:03	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/02/2026, 22:36:51	tencent.com
180.76.144.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 08:34:09	25/02/2026, 22:35:03	-	-	-	-	-	-
143.198.224.••• :443	-	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 17:27:11	25/02/2026, 22:35:02	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 10:30:35	-
167.86.112.••• :18789	Assistant	🇫🇷 France	Yes	true	Clean	AS51167	Contabo GmbH	Contabo	25/02/2026, 08:34:09	25/02/2026, 22:35:02	No	Yes	APT-C-23, APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2016-20012, CVE-2019-11358, CVE-2019-17567, CVE-2020-11022, CVE-2020-11023, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-23064, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-0567, CVE-2023-0568, CVE-2023-0662, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-3247, CVE-2023-3823, CVE-2023-3824, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-4577, CVE-2024-47252, CVE-2024-5458, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020	25/02/2026, 22:37:03	-
120.48.3.••• :18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 08:34:08	25/02/2026, 22:35:02	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	25/02/2026, 22:37:10	chinamobile.com, chinamobile.cn, baidu.com
54.251.150.••• :80	-	🇸🇬 Singapore	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon	25/02/2026, 08:34:08	25/02/2026, 22:35:02	No	No	-	-	19/02/2026, 22:37:11	-
154.85.62.••• :18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS55967	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	12/02/2026, 22:56:40	25/02/2026, 22:35:02	No	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	13/02/2026, 23:20:19	-
180.76.190.••• :18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 08:34:08	25/02/2026, 22:35:01	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	25/02/2026, 22:37:14	tfn.net.tw, baidu.com
52.14.36.••• :18789	-	🇺🇸 United States	Yes	true	Leaked	AS16509	Amazon.com, Inc.	Amazon	25/02/2026, 08:34:08	25/02/2026, 22:35:01	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	25/02/2026, 22:37:15	work.gd
118.145.119.••• :18789	-	🇨🇳 China mainland	-	true	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	25/02/2026, 08:34:08	25/02/2026, 22:35:01	-	-	-	-	-	-
120.48.164.••• :18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	25/02/2026, 08:34:08	25/02/2026, 22:35:01	Yes	Yes	APT37, El-Machete, Gozi	-	25/02/2026, 22:37:18	chinamobile.com, chinamobile.cn, baidu.com
157.180.28.••• :443	-	🇫🇮 Finland	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	21/02/2026, 23:41:50	25/02/2026, 22:35:01	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/02/2026, 15:26:36	-

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.