🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 816988 Page: 2159 / 8170 (100 per page) Showing: 215801-215900 Last Imported: 15/05/2026, 09:32:33

🇨🇳 425,761

🇺🇸 231,518

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
47.103.27.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 08:30:36	12/04/2026, 16:21:24	No	Yes	APT10, APT28, APT41, Aoqin Dragon, Bohrium APT, Carbanak, Evilnum Group, Gallium APT, Lazarus Group, Lyceum APT, POLONIUM Group, Sandworm Team, Slingshot APT, TA505, Tropic Trooper, Turla APT Group	CVE-2015-9253, CVE-2018-10545, CVE-2018-10546, CVE-2018-10547, CVE-2018-10548, CVE-2018-10549, CVE-2018-14851, CVE-2018-14883, CVE-2018-15132, CVE-2018-17082, CVE-2018-19395, CVE-2018-19396, CVE-2018-19518, CVE-2018-19935, CVE-2018-20783, CVE-2019-11034, CVE-2019-11035, CVE-2019-11036, CVE-2019-11038, CVE-2019-11039, CVE-2019-11040, CVE-2019-11041, CVE-2019-11042, CVE-2019-11043, CVE-2019-13224, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9022, CVE-2019-9023, CVE-2019-9024, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9640, CVE-2019-9641, CVE-2019-9675	22/03/2026, 13:48:40	-
154.215.90.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS139880	OWGELS INTERNATIONAL CO., LIMITED	Starbow Ltd	22/03/2026, 08:30:36	30/03/2026, 11:12:33	No	Yes	Packrat	-	22/03/2026, 13:48:46	-
34.220.17.•••:18789	-	🇺🇸 United States	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	22/03/2026, 08:30:35	25/03/2026, 10:59:44	No	No	-	-	16/03/2026, 13:48:55	-
116.205.231.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS55990	Huawei Cloud Service data center	Huawei Cloud	22/03/2026, 08:30:35	24/03/2026, 22:44:22	Yes	Yes	APT15, APT28, APT29, APT31, APT32, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9193, CVE-2020-14145, CVE-2020-15778, CVE-2021-3393, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	22/03/2026, 13:48:56	smartcom.cc, huawei.com, huaweidevice.com
8.135.17.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	22/03/2026, 08:30:35	17/04/2026, 20:08:38	-	-	-	-	-	-
162.14.114.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	22/03/2026, 08:30:35	24/03/2026, 22:44:24	No	Yes	APT-C-23, APT36, APT37, APT40, APT41, Cobalt Group, Donot Team, El-Machete, Equation Group, Gamaredon Group, Ghostwriter, Lazarus Group, MuddyWater Group, TA428, Turla APT Group, Volt Typhoon	CVE-2018-16845, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2021-21708, CVE-2021-23017, CVE-2021-3618, CVE-2022-31625, CVE-2022-31626, CVE-2022-31628, CVE-2022-31629, CVE-2022-31630, CVE-2022-37454, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-4577, CVE-2024-5458, CVE-2024-7347	22/03/2026, 13:49:01	-
8.222.197.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	22/03/2026, 08:30:35	22/03/2026, 13:46:29	No	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-7069, CVE-2020-7070, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-37454	22/03/2026, 13:49:03	-
85.137.244.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS401701	cognetcloud INC	Vapeliner Technology (HK) Limited	22/03/2026, 08:30:35	12/04/2026, 22:21:06	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 13:49:05	-
119.45.46.•••:18789	-	🇨🇳 China mainland	-	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 08:30:35	11/04/2026, 21:45:03	Yes	Yes	APT37, El-Machete, Packrat	-	22/03/2026, 13:49:09	tencent.com
64.227.163.•••:18789	-	🇮🇳 India	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 08:30:35	16/04/2026, 10:39:37	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 13:49:13	-
154.219.108.•••:18789	-	🇭🇰 Hong Kong	-	false	Clean	AS401701	cognetcloud INC	Cloud Innovation	22/03/2026, 08:30:35	22/03/2026, 13:46:29	No	Yes	Packrat	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 13:49:14	-
49.235.170.•••:18789	-	🇨🇳 China mainland	-	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 08:30:35	15/04/2026, 13:26:08	Yes	Yes	Cobalt Group	CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-43622, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316	22/03/2026, 13:49:18	tencent.com
45.205.26.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS8796	FASTNET DATA INC	Vapeline Technology	22/03/2026, 08:30:35	16/04/2026, 08:08:44	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 13:49:22	-
77.237.245.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	22/03/2026, 08:30:35	17/04/2026, 19:23:25	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MoustachedBouncer, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2007-4559, CVE-2013-0340, CVE-2017-18207, CVE-2018-1000117, CVE-2018-1060, CVE-2018-1061, CVE-2018-14647, CVE-2018-20406, CVE-2018-20852, CVE-2019-10160, CVE-2019-15903, CVE-2019-16056, CVE-2019-16935, CVE-2019-18348, CVE-2019-20907, CVE-2019-5010, CVE-2019-9636, CVE-2019-9674, CVE-2019-9740, CVE-2019-9947, CVE-2019-9948, CVE-2020-14422, CVE-2020-15523, CVE-2020-26116, CVE-2020-27619, CVE-2020-8315, CVE-2020-8492, CVE-2021-23336, CVE-2021-28861, CVE-2021-3177, CVE-2021-3426, CVE-2021-3733, CVE-2021-3737, CVE-2021-4189, CVE-2022-0391, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-26488, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2022-45061, CVE-2022-48560, CVE-2022-48564, CVE-2022-48565, CVE-2022-48566, CVE-2023-24329, CVE-2023-25690, CVE-2023-27043, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-36632, CVE-2023-38408, CVE-2023-38709, CVE-2023-40217, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-4030, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	22/03/2026, 13:49:23	contabo.de, contabo.net
81.71.49.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	22/03/2026, 08:30:35	15/04/2026, 21:57:19	No	Yes	APT28, APT35, APT37, APT39, APT41, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2010-4478, CVE-2010-5107, CVE-2011-4327, CVE-2011-5000, CVE-2012-0814, CVE-2016-0777, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	22/03/2026, 13:49:26	-
18.119.102.•••:18789	-	🇺🇸 United States	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	22/03/2026, 08:30:35	16/04/2026, 10:00:26	No	No	-	-	16/03/2026, 13:49:28	-
129.121.86.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS31898	Oracle Corporation	OGTIPS1	22/03/2026, 08:30:35	22/03/2026, 13:46:28	Yes	Yes	FIN8	-	22/03/2026, 13:49:33	athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com
162.211.180.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS154321	CORENET CLOUD SDN. BHD.	G Network LLC	22/03/2026, 08:30:34	17/04/2026, 21:39:42	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	22/03/2026, 13:49:35	-
92.112.48.•••:18789	-	🇦🇹 Austria	Yes	false	Clean	AS208024	Ronald Agorsah trading as Alpenhost e.U.	Alpenhost	22/03/2026, 08:30:34	15/04/2026, 11:17:17	-	-	-	-	-	-
154.8.197.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	22/03/2026, 08:30:34	15/04/2026, 13:25:40	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	22/03/2026, 13:49:40	-
34.175.168.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	22/03/2026, 08:30:34	22/03/2026, 14:31:53	No	No	-	-	16/03/2026, 13:49:42	-
111.228.44.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS141679	China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch	Jingdong Headquarters	22/03/2026, 08:30:34	16/04/2026, 01:18:54	-	-	-	-	-	-
47.95.172.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 08:30:34	17/04/2026, 07:01:58	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	22/03/2026, 13:49:49	-
44.220.44.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 08:30:34	08/04/2026, 15:26:38	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	22/03/2026, 13:49:53	-
137.184.42.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 08:30:34	17/04/2026, 21:39:43	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2021-44224, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 13:49:54	authorizeddns.org, iownyour.org, dnsrd.com, dns04.com
62.171.142.•••:18789	-	🇫🇷 France	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	22/03/2026, 08:30:34	18/04/2026, 00:38:25	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2018-20685, CVE-2018-5743, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6470, CVE-2019-6471, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-38178, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	22/03/2026, 13:49:55	contaboserver.net, contabo.de, contabo.net
155.212.225.•••:18789	-	🇱🇻 Latvia	-	false	Clean	AS9002	RETN Limited	Unknown	22/03/2026, 08:30:34	17/04/2026, 23:09:26	No	No	-	CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	22/03/2026, 13:49:59	-
107.172.168.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS36352	HostPapa	HostPapa	22/03/2026, 08:30:34	17/04/2026, 07:47:26	Yes	No	-	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 02:11:17	racknerd.com
89.167.94.•••:18789	-	🇫🇮 Finland	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	22/03/2026, 08:30:34	22/03/2026, 14:31:53	-	-	-	-	-	-
81.70.166.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	22/03/2026, 08:30:34	22/03/2026, 14:31:53	No	No	-	-	16/03/2026, 13:50:10	-
157.15.98.•••:18789	-	🇷🇴 Romania	Yes	false	Clean	AS147224	WSNL BROADBAND PRIVATE LIMITED	Khushi Cable and Teleinfra	22/03/2026, 08:30:34	22/03/2026, 14:31:53	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 13:50:11	-
89.117.74.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS40021	Contabo Inc.	Internet Number Rent	22/03/2026, 08:28:15	22/03/2026, 15:13:14	-	-	-	-	-	-
3.112.217.•••:18789	-	🇯🇵 Japan	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Japan	22/03/2026, 08:28:15	22/03/2026, 15:13:14	-	-	-	-	-	-
13.201.29.•••:18789	-	🇮🇳 India	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 08:28:14	22/03/2026, 15:13:14	-	-	-	-	-	-
186.107.64.•••:18789	-	🇨🇱 Chile	-	false	Clean	AS7418	TELEFÓNICA CHILE S.A.	Telefonica Chile	22/03/2026, 08:28:14	22/03/2026, 15:13:14	-	-	-	-	-	-
77.90.17.•••:18789	-	🇩🇪 Germany	-	false	Clean	AS44592	SkyLink Data Center BV	Fegert IT	22/03/2026, 08:28:14	22/03/2026, 15:13:14	-	-	-	-	-	-
152.42.160.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 08:28:14	01/04/2026, 07:16:24	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 09:26:12	-
13.233.216.•••:18789	-	🇮🇳 India	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 08:28:14	01/04/2026, 08:01:25	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	25/03/2026, 03:42:08	-
15.229.56.•••:18789	-	🇧🇷 Brazil	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Brazil	22/03/2026, 08:28:14	22/03/2026, 15:13:14	-	-	-	-	-	-
103.166.182.•••:18789	-	🇻🇳 Vietnam	-	false	Clean	AS135905	VIETNAM POSTS AND TELECOMMUNICATIONS GROUP	Zozo Software	22/03/2026, 08:28:14	22/03/2026, 15:13:14	-	-	-	-	-	-
154.89.149.•••:18789	-	🇭🇰 Hong Kong	-	false	Clean	AS55933	Cloudie Limited	Fastmos Co Limited	22/03/2026, 08:28:14	22/03/2026, 15:13:13	-	-	-	-	-	-
157.230.115.•••:18789	-	🇩🇪 Germany	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 08:28:14	16/04/2026, 12:08:06	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 19:49:29	-
98.86.211.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 08:28:14	24/03/2026, 12:04:46	Yes	No	-	-	22/03/2026, 21:35:43	clearimpact.com
167.235.71.•••:18789	-	🇩🇪 Germany	-	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	22/03/2026, 08:28:14	17/04/2026, 04:44:31	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	25/03/2026, 09:27:50	hetzner.com
114.32.6.•••:18789	-	🇹🇼 Taiwan	-	false	Leaked	AS3462	Data Communication Business Group	Chunghwa Telecom	22/03/2026, 08:28:14	05/04/2026, 20:54:43	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 08:10:03	twgate.net, hinet.net, xuite.net, cht.com.tw, chttl.com.tw
207.246.91.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS20473	The Constant Company, LLC	Vultr Holdings	22/03/2026, 08:28:14	22/03/2026, 15:13:13	-	-	-	-	-	-
54.64.99.•••:18789	-	🇯🇵 Japan	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	22/03/2026, 08:28:14	22/03/2026, 15:13:13	-	-	-	-	-	-
140.83.83.•••:18789	-	🇺🇸 United States	-	false	Clean	AS31898	Oracle Corporation	Oracle	22/03/2026, 08:28:14	22/03/2026, 15:13:13	-	-	-	-	-	-
117.72.197.•••:18789	-	🇨🇳 China mainland	-	false	Leaked	AS141679	China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch	JD.com	22/03/2026, 08:28:14	16/04/2026, 07:32:40	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	31/03/2026, 17:57:59	jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com
3.110.182.•••:18789	-	🇮🇳 India	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 08:28:14	22/03/2026, 15:13:13	-	-	-	-	-	-
104.248.138.•••:18789	-	🇩🇪 Germany	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 08:28:13	22/03/2026, 15:13:13	-	-	-	-	-	-
172.67.183.•••:18789	-	🇺🇸 United States	-	false	Clean	AS13335	Cloudflare, Inc.	Cloudflare	22/03/2026, 08:28:13	22/03/2026, 15:13:13	-	-	-	-	-	-
13.250.120.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 08:28:13	16/04/2026, 22:43:43	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 21:18:02	-
165.232.156.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 08:28:13	22/03/2026, 15:13:13	-	-	-	-	-	-
104.21.42.•••:18789	-	🇺🇸 United States	-	false	Clean	AS13335	Cloudflare, Inc.	Cloudflare	22/03/2026, 08:28:13	22/03/2026, 15:13:13	-	-	-	-	-	-
20.222.96.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	22/03/2026, 08:28:13	22/03/2026, 15:13:13	-	-	-	-	-	-
104.131.3.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 08:28:13	22/03/2026, 15:13:12	No	No	-	-	16/03/2026, 09:13:15	-
143.198.228.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 08:28:13	22/03/2026, 15:13:12	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	22/03/2026, 09:13:18	-
34.220.17.•••:18789	-	🇺🇸 United States	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	22/03/2026, 08:28:12	25/03/2026, 10:56:17	No	No	-	-	16/03/2026, 09:13:23	-
18.119.102.•••:18789	-	🇺🇸 United States	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	22/03/2026, 08:28:12	16/04/2026, 23:28:36	No	No	-	-	16/03/2026, 09:13:27	-
162.211.180.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS154321	CORENET CLOUD SDN. BHD.	G Network LLC	22/03/2026, 08:28:12	22/03/2026, 15:13:12	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	22/03/2026, 09:13:28	-
15.152.166.•••:18789	-	🇯🇵 Japan	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Osaka	22/03/2026, 07:53:02	25/03/2026, 11:07:17	No	No	-	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 08:38:23	-
2a02:c207:2313:9327::1:18789	-	🇫🇷 France	-	false	Clean	AS51167	Contabo GmbH	Contabo	22/03/2026, 07:50:35	22/03/2026, 14:36:51	-	-	-	-	-	-
47.236.104.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	22/03/2026, 07:50:31	22/03/2026, 14:36:45	-	-	-	-	-	-
100.48.69.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 07:50:31	22/03/2026, 14:36:45	-	-	-	-	-	-
167.71.25.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 07:50:30	22/03/2026, 14:36:45	-	-	-	-	-	-
114.55.165.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 07:50:30	15/04/2026, 13:30:34	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	03/04/2026, 20:15:19	aliyun.com
2a02:4780:7:a3c7::1:80	-	🇫🇷 France	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	22/03/2026, 07:50:30	22/03/2026, 14:36:45	-	-	-	-	-	-
38.76.218.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS401701	cognetcloud INC	FOJ IP Technology	22/03/2026, 07:50:30	16/04/2026, 17:33:16	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/04/2026, 08:50:54	cogentco.com
212.192.220.•••:80	-	🇰🇿 Kazakhstan	Yes	false	Clean	AS9123	JSC "TIMEWEB"	Taiwan Cloud	22/03/2026, 07:50:30	15/04/2026, 13:30:41	No	Yes	APT17, APT36, APT37, APT45, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, SideWinder APT, The Shadow Brokers	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/04/2026, 14:44:08	-
89.22.225.•••:18789	-	🇸🇪 Sweden	Yes	false	Clean	AS210644	AEZA GROUP LLC	Aeza Group	22/03/2026, 07:50:30	17/04/2026, 10:07:09	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	03/04/2026, 14:58:17	-
175.178.118.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 07:50:30	06/04/2026, 12:49:51	Yes	Yes	APT37, El-Machete	-	31/03/2026, 06:48:21	tencent.com
47.92.156.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 07:50:30	17/04/2026, 07:07:03	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 17:16:38	-
1.14.177.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 07:50:30	09/04/2026, 14:37:57	Yes	Yes	APT37, El-Machete	-	02/04/2026, 23:21:45	tencent.com
178.104.84.•••:18789	-	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	22/03/2026, 07:50:30	22/03/2026, 14:36:45	-	-	-	-	-	-
8.162.6.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	22/03/2026, 07:50:30	17/04/2026, 23:58:12	No	No	-	-	25/03/2026, 00:46:34	-
47.92.27.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 07:50:30	17/04/2026, 23:59:17	No	Yes	APT28, APT35, APT36, APT37, APT39, Cobalt Group, Equation Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-29885, CVE-2022-34305, CVE-2022-42252, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	25/03/2026, 09:37:17	-
209.126.87.•••:443	-	🇺🇸 United States	Yes	false	Leaked	AS40021	Contabo Inc.	Contabo	22/03/2026, 07:50:30	16/04/2026, 01:23:54	Yes	Yes	APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE	CVE-2017-15710, CVE-2017-15715, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11993, CVE-2020-14145, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/04/2026, 06:26:08	contabo.com, contabo.net
118.89.71.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 07:50:30	17/04/2026, 23:58:23	Yes	No	-	-	06/04/2026, 01:33:18	tencent.com
129.226.151.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Raffles	22/03/2026, 07:50:30	17/04/2026, 07:52:22	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	11/04/2026, 00:36:52	-
46.224.224.•••:443	-	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	22/03/2026, 07:50:30	17/04/2026, 10:07:11	No	No	-	-	30/03/2026, 10:35:14	-
47.92.82.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 07:50:30	12/04/2026, 18:41:23	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-13943, CVE-2020-14145, CVE-2020-15778, CVE-2020-17527, CVE-2020-9484, CVE-2021-23017, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-3618, CVE-2021-36368, CVE-2021-41079, CVE-2021-41617, CVE-2021-43980, CVE-2022-23181, CVE-2022-29885, CVE-2022-34305, CVE-2022-41741, CVE-2022-41742, CVE-2022-42252, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	09/04/2026, 02:40:04	-
144.91.112.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	22/03/2026, 07:50:30	17/04/2026, 10:05:56	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	30/03/2026, 19:29:24	contabo.de, contabo.net
5.75.178.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	22/03/2026, 07:50:30	17/04/2026, 03:21:51	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Earth Berberoka, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-10708, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-14145, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-28531, CVE-2023-28625, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	17/04/2026, 02:41:42	matn.ai, hetzner.com
46.224.82.•••:443	-	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	22/03/2026, 07:50:30	25/03/2026, 11:05:12	-	-	-	-	-	-
129.121.86.•••:80	-	🇺🇸 United States	Yes	false	Clean	AS31898	Oracle Corporation	OGTIPS1	22/03/2026, 07:50:29	25/03/2026, 11:04:30	-	-	-	-	-	-
8.222.163.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	22/03/2026, 07:50:29	12/04/2026, 18:41:23	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	31/03/2026, 06:49:18	-
129.226.183.•••:10007	-	🇭🇰 Hong Kong	Yes	false	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	22/03/2026, 07:50:29	15/04/2026, 01:35:41	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	12/04/2026, 00:06:42	-
115.190.194.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	22/03/2026, 07:50:29	15/04/2026, 13:31:09	No	No	-	-	26/03/2026, 00:11:23	-
175.27.234.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 07:50:29	12/04/2026, 20:56:01	Yes	Yes	APT37, El-Machete	CVE-2025-23419	31/03/2026, 08:59:13	tencent.com
111.229.195.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 07:50:29	16/04/2026, 01:22:42	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	06/04/2026, 23:56:17	tencent.com
180.97.218.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS4134	Chinanet	Chinanet Jiangsu Province Network	22/03/2026, 07:50:29	15/04/2026, 13:31:25	Yes	No	-	CVE-2014-4078	31/03/2026, 00:47:20	bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, daqu.com.cn, ctyun.cn
43.136.45.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	22/03/2026, 07:50:29	15/04/2026, 01:34:11	Yes	-	-	-	25/03/2026, 11:04:26	tencent.com
43.160.222.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	22/03/2026, 07:50:29	15/04/2026, 01:34:53	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/04/2026, 14:39:48	tencent.com
3.89.50.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 07:50:29	14/04/2026, 19:29:44	No	No	-	-	05/04/2026, 17:45:39	-
118.25.99.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	22/03/2026, 07:50:29	17/04/2026, 20:13:43	Yes	-	-	-	05/04/2026, 21:45:55	tencent.com
47.108.115.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 07:50:29	25/03/2026, 11:03:04	-	-	-	-	-	-
8.219.172.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	22/03/2026, 07:50:29	22/03/2026, 14:36:43	-	-	-	-	-	-
140.143.87.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 07:50:29	25/03/2026, 11:03:10	-	-	-	-	-	-
124.70.69.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS55990	Huawei Cloud Service data center	Huawei Cloud	22/03/2026, 07:50:28	15/04/2026, 12:01:32	Yes	-	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 14:15:03	smartcom.cc, huawei.com, huaweidevice.com

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.