🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 816988 Page: 2179 / 8170 (100 per page) Showing: 217801-217900 Last Imported: 15/05/2026, 09:32:33

🇨🇳 425,761

🇺🇸 231,518

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
188.225.73.•••:3000	-	🇷🇺 Russia	Yes	false	Leaked	AS9123	JSC "TIMEWEB"	Taiwan Cloud	22/03/2026, 05:11:05	25/03/2026, 11:03:59	Yes	Yes	APT-C-23, APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2006-20001, CVE-2013-4359, CVE-2015-3306, CVE-2016-20012, CVE-2016-3125, CVE-2017-15906, CVE-2017-7418, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-12815, CVE-2019-18217, CVE-2019-19270, CVE-2019-19271, CVE-2019-19272, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-9272, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2021-46854, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:25:36	timeweb.ru
114.115.163.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS23724	IDC, China Telecommunications Corporation / AS4808 China Unicom Beijing Province Network	Huawei Cloud	22/03/2026, 05:11:05	15/04/2026, 01:34:48	Yes	Yes	APT-C-23, APT36, Cobalt Group, Equation Group, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon	CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	22/03/2026, 05:25:38	smartcom.cc, huawei.com, huaweidevice.com
82.156.191.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	22/03/2026, 05:11:05	17/04/2026, 23:57:52	No	Yes	APT37, El-Machete	-	22/03/2026, 05:25:39	-
138.197.173.•••:443	-	🇨🇦 Canada	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 05:11:05	22/03/2026, 07:07:33	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:25:40	-
117.72.28.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS141679	China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch	JD.com	22/03/2026, 05:11:05	31/03/2026, 17:16:37	-	-	-	-	-	-
47.92.209.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:11:05	16/04/2026, 01:22:58	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	22/03/2026, 05:25:43	-
129.212.183.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 05:11:05	22/03/2026, 15:21:02	No	No	-	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:25:44	-
5.78.142.•••:8443	-	🇺🇸 United States	Yes	false	Leaked	AS212317	Hetzner Online GmbH	Hetzner Online	22/03/2026, 05:11:05	15/04/2026, 13:30:54	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:25:47	hetzner.com
44.199.145.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS14618	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 05:11:05	22/03/2026, 07:07:33	Yes	No	-	-	22/03/2026, 05:25:58	tpcvacations.com, tpcwakefieldplantation.com, tpctrevisobay.com, pgatour.com, pgatourhq.com, tpc.com
139.199.65.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 05:11:05	16/04/2026, 01:24:08	No	Yes	APT37, El-Machete	-	22/03/2026, 05:25:59	-
158.220.117.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	22/03/2026, 05:11:05	15/04/2026, 01:35:41	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2014-0128, CVE-2014-3609, CVE-2014-6270, CVE-2014-7141, CVE-2014-7142, CVE-2015-3455, CVE-2015-5400, CVE-2016-10002, CVE-2016-20012, CVE-2016-2390, CVE-2016-2569, CVE-2016-2570, CVE-2016-2571, CVE-2016-3947, CVE-2016-3948, CVE-2016-4051, CVE-2016-4052, CVE-2016-4053, CVE-2016-4054, CVE-2016-4553, CVE-2016-4554, CVE-2016-4555, CVE-2016-4556, CVE-2018-1000024, CVE-2018-1000027, CVE-2018-19131, CVE-2018-19132, CVE-2019-12519, CVE-2019-12520, CVE-2019-12521, CVE-2019-12522, CVE-2019-12523, CVE-2019-12524, CVE-2019-12526, CVE-2019-12528, CVE-2019-12529, CVE-2019-13345, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-18860, CVE-2020-11945, CVE-2020-14058, CVE-2020-14145, CVE-2020-15049, CVE-2020-15778, CVE-2020-15810, CVE-2020-15811, CVE-2020-24606, CVE-2020-25097, CVE-2020-8449, CVE-2020-8450, CVE-2020-8517, CVE-2021-28041, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41318, CVE-2023-28531, CVE-2023-38408, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-6387	22/03/2026, 05:29:02	contabo.de, contabo.net
1.14.94.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 05:11:05	22/03/2026, 07:07:33	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-41617	22/03/2026, 05:29:05	tencent.com
106.12.191.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	22/03/2026, 05:11:04	11/04/2026, 10:54:41	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	22/03/2026, 05:29:11	baidu.com
34.60.241.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	22/03/2026, 05:11:04	07/04/2026, 02:49:17	No	No	-	CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:29:19	-
8.219.109.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	22/03/2026, 05:11:04	22/03/2026, 07:07:32	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:29:32	-
43.200.5.•••:443	-	🇰🇷 South Korea	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon	22/03/2026, 05:11:04	15/04/2026, 13:32:12	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	22/03/2026, 05:29:37	-
39.106.79.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:11:04	16/04/2026, 00:38:36	Yes	Yes	APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:29:44	aliyun.com
103.31.76.•••:18789	-	🇩🇪 Germany	Yes	false	Clean	AS26383	Baxet Group Inc.	[name redacted]	22/03/2026, 05:11:04	03/04/2026, 01:31:19	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:29:45	-
154.194.183.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Leaked	AS139880	OWGELS INTERNATIONAL CO., LIMITED	Starbow Ltd	22/03/2026, 05:11:04	17/04/2026, 10:07:11	Yes	-	-	-	22/03/2026, 05:29:48	cgmprecast.com, fuhuake.com, abpincorp.com, jekotrade.com, bopcon.com, boyu-group.com, qd-baolian.com, csofam.com, jiabinnu.com, kfstock.com, klmymmyc.com, hnbeixiang.com, xjjingyoga.com, 1haojiyin.com, detongwiremesh.com, dgclh.com, lstcarbon.com, ttstest.com, gaetanasnyc.com, yhjgkeji.com, bierte.com, ttyt360.com, zgkaite.com, turnoutservices.com, zjdddl.com, zjhrbz.com, bain86.com, impresosmonterrey.com, shworldbest.com, dongguansenzi.com
116.203.83.•••:80	-	🇩🇪 Germany	Yes	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	22/03/2026, 05:11:04	06/04/2026, 05:15:23	Yes	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:29:49	hetzner.de
43.153.221.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	22/03/2026, 05:11:04	17/04/2026, 20:13:48	Yes	Yes	APT-C-23, APT15, APT31, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385	22/03/2026, 05:29:52	tencent.com
152.42.233.•••:443	-	🇸🇬 Singapore	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 05:11:04	22/03/2026, 07:07:32	No	Yes	APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MoustachedBouncer, MuddyWater Group, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2007-4559, CVE-2015-20107, CVE-2016-20012, CVE-2020-10735, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-37454, CVE-2022-42919, CVE-2022-45061, CVE-2023-24329, CVE-2023-27043, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-48795, CVE-2023-51385, CVE-2024-0397, CVE-2024-3219, CVE-2024-39894, CVE-2024-4032, CVE-2024-6232, CVE-2024-6387, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2025-26465, CVE-2025-32728	22/03/2026, 05:29:55	-
44.200.237.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 05:11:04	22/03/2026, 15:19:49	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	22/03/2026, 05:30:03	-
154.201.90.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS8796	FASTNET DATA INC	CognetCloud	22/03/2026, 05:11:04	17/04/2026, 23:58:00	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:30:04	-
39.98.160.•••:50001	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:11:04	17/04/2026, 21:44:50	Yes	-	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	22/03/2026, 05:30:05	aliyun.com
101.34.108.•••:18888	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	22/03/2026, 05:11:04	10/04/2026, 00:59:31	Yes	Yes	APT37, El-Machete	-	22/03/2026, 05:30:10	tencent.com
118.196.147.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS137718	Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)	Beijing Volcano Engine Technology	22/03/2026, 05:11:04	15/04/2026, 13:30:46	Yes	No	-	-	15/04/2026, 12:02:31	bytedance.com
1.14.179.•••:443	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 05:11:03	22/03/2026, 07:07:32	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	22/03/2026, 05:30:16	tencent.com
98.126.102.•••:10038	-	🇺🇸 United States	Yes	false	Clean	AS4213	Krypt Technologies	Krypt Technologies	22/03/2026, 05:11:03	15/04/2026, 13:30:38	Yes	No	-	-	22/03/2026, 05:30:17	vpls.net, vpls.com
47.107.35.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:11:03	17/04/2026, 23:59:00	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	22/03/2026, 05:30:20	-
43.106.63.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	22/03/2026, 05:11:03	17/04/2026, 10:05:45	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:30:23	alibabacloud.com, hichina.com, alibaba-inc.com
43.130.36.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	6 Collyer Quay	22/03/2026, 05:11:03	15/04/2026, 13:31:16	Yes	Yes	APT15, APT28, APT31, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:30:26	tencent.com
100.53.57.•••:443	-	🇺🇸 United States	-	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 05:11:03	22/03/2026, 07:07:30	-	-	-	-	-	-
54.46.51.•••:443	-	🇨🇳 China mainland	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Hong Kong	22/03/2026, 05:11:03	02/04/2026, 05:57:53	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	22/03/2026, 05:30:32	-
47.92.218.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:11:03	17/04/2026, 04:06:42	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:33:24	-
3.231.154.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 05:11:03	01/04/2026, 19:29:43	No	No	-	-	16/03/2026, 05:33:31	-
47.92.140.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:11:03	09/04/2026, 02:39:37	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	22/03/2026, 05:33:35	-
3.89.81.•••:443	-	🇺🇸 United States	-	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 05:11:03	22/03/2026, 07:07:30	No	Yes	APT14, APT40, APT41, Kimsuky, Lazarus Group, SharpPanda	CVE-2021-23017, CVE-2021-3618, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	22/03/2026, 05:33:39	-
13.114.184.•••:18789	-	🇯🇵 Japan	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Japan	22/03/2026, 05:11:03	14/04/2026, 08:20:16	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:33:42	-
16.145.242.•••:443	-	🇺🇸 United States	Yes	false	Leaked	AS16509	Amazon.com, Inc.	Amazon	22/03/2026, 05:11:02	17/04/2026, 23:57:57	Yes	No	-	CVE-2023-38709, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200	03/04/2026, 18:50:07	amazon.fr, bookworm.com, amazon.com.br, audible.com, lovefilm.com, amazon.eu, amzaon.com, amazaon.com, audible.in, z-exp.com, amozon.com, aws-amazon.com, shopbop.com, accept.com, amazonn.com, boxofficemojo.com, amazonaws-us-gov.com, amaozn.com, awsamazon.com, amazonmusiclocal.com, a9.com, amzzon.com, mturk.com, amazonaws.cm, com.be, amazonpay.com, rooftopmedia.net, vine.com, imdb.com, ssl-images-amazon.com, amazon.com.au, amazon-rings.com, assoc-amazon.com, amazonin.com, amzn.asia, annapurnalabs.com, apn-portal.com, evi.com, amazonprime.com, audiblecareers.com, beautybar.com, junglee.com, amazon.ae, tenmarks.com, amazonwebservices.net, associates-amazon.com, amazonrobotics.com, amazon-aws.com, endless.com, amazonlocal.com, amazonm.com, amazonllc.com, media-imdb.com, amazon.com.tw, createspace.com, amazonaws.com, amzn.com, amazon.com, images-amazon.com, amazon.com.co
8.219.191.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	22/03/2026, 05:11:02	22/03/2026, 07:07:30	No	Yes	APT15, APT28, APT31, APT35, APT36, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-27043, CVE-2023-36632, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-0397, CVE-2024-3219, CVE-2024-4032, CVE-2024-5642, CVE-2024-6232, CVE-2024-6923, CVE-2024-7347, CVE-2024-7592, CVE-2024-8088	22/03/2026, 05:33:47	-
110.244.137.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4837	CHINA UNICOM China169 Backbone	China Unicom Hebei	22/03/2026, 05:11:02	22/03/2026, 07:07:30	No	No	-	-	16/03/2026, 05:33:48	-
180.105.227.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	Chinanet Jiangsu Province Network	22/03/2026, 05:11:01	22/03/2026, 07:07:30	No	No	-	-	16/03/2026, 05:33:50	-
140.245.101.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS31898	Oracle Corporation	Oracle	22/03/2026, 05:11:01	31/03/2026, 00:46:03	No	Yes	APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	22/03/2026, 05:33:51	-
115.191.43.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	22/03/2026, 05:11:01	13/04/2026, 14:59:47	-	-	-	-	-	-
115.191.76.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	22/03/2026, 05:11:01	09/04/2026, 00:22:37	-	-	-	-	-	-
3.250.215.•••:443	Assistant	🇮🇪 Ireland	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Data Services Ireland	22/03/2026, 05:11:01	22/03/2026, 07:07:29	-	-	-	-	-	-
95.217.181.•••:18789	-	🇫🇮 Finland	-	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	22/03/2026, 05:11:01	22/03/2026, 07:07:29	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:34:13	hetzner.com
43.135.31.•••:18888	-	🇭🇰 Hong Kong	Yes	false	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	6 Collyer Quay	22/03/2026, 05:11:01	15/04/2026, 23:59:28	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	22/03/2026, 05:34:18	-
128.140.41.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	22/03/2026, 05:11:01	16/04/2026, 01:23:04	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:34:21	hetzner.com
106.12.160.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	22/03/2026, 05:11:01	03/04/2026, 17:13:56	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 17:17:13	baidu.com
139.155.129.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 05:11:01	22/03/2026, 07:07:29	No	No	-	-	16/03/2026, 05:34:25	-
106.14.255.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:11:01	22/03/2026, 07:07:29	Yes	Yes	APT-C-23, APT10, APT15, APT27, APT28, APT29, APT31, APT32, APT34, APT35, APT36, APT39, APT40, APT41, APT45, AQUATIC PANDA, Antlion APT, Bahamut, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, CostaRicto, Donot Team, Earth Berberoka, Energetic Bear, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Gold Lowell, Grim Spider, Hafnium Group, Inception Framework, Kimsuky, Konni Group, Lazarus Group, Moses Staff APT, MuddyWater Group, Patchwork, Pioneer Kitten, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Silence Hacker Group, TA456, TA505, The Shadow Brokers, The White Company, Tropic Trooper, Turla APT Group, Urpage, Volt Typhoon	CVE-2016-20012, CVE-2016-2124, CVE-2017-11103, CVE-2017-12150, CVE-2017-12151, CVE-2017-12163, CVE-2017-14746, CVE-2017-15275, CVE-2017-7494, CVE-2018-1050, CVE-2018-1057, CVE-2018-10858, CVE-2018-10919, CVE-2018-14628, CVE-2018-14629, CVE-2018-16841, CVE-2018-16851, CVE-2019-10218, CVE-2019-14833, CVE-2019-14847, CVE-2019-14861, CVE-2019-14870, CVE-2019-14902, CVE-2019-3824, CVE-2019-3880, CVE-2020-10704, CVE-2020-10730, CVE-2020-10745, CVE-2020-10760, CVE-2020-12062, CVE-2020-14145, CVE-2020-14318, CVE-2020-14323, CVE-2020-14383, CVE-2020-1472, CVE-2020-15778, CVE-2020-17049, CVE-2020-25717, CVE-2020-25718, CVE-2020-25719, CVE-2020-25722, CVE-2020-27840, CVE-2021-20251, CVE-2021-20254, CVE-2021-20277, CVE-2021-20316, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-3670, CVE-2021-3671, CVE-2021-3738, CVE-2021-41617, CVE-2021-43566, CVE-2021-44141, CVE-2021-44142, CVE-2022-0336, CVE-2022-1615, CVE-2022-2031, CVE-2022-32742, CVE-2022-32743, CVE-2022-32744, CVE-2022-32746, CVE-2022-3437, CVE-2022-41741, CVE-2022-41742, CVE-2022-42898, CVE-2022-45141, CVE-2023-0614, CVE-2023-0922, CVE-2023-34966, CVE-2023-34967, CVE-2023-34968, CVE-2023-38408, CVE-2023-3961, CVE-2023-4091, CVE-2023-4154, CVE-2023-42669, CVE-2023-42670, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-5568, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	22/03/2026, 05:34:31	aliyun.com
39.100.76.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:11:01	17/04/2026, 07:07:01	Yes	Yes	Packrat	-	22/03/2026, 05:34:33	aliyun.com
106.12.33.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	22/03/2026, 05:11:01	14/04/2026, 10:35:27	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	22/03/2026, 05:34:34	baidu.com
2a02:c204:2314:3649::1:443	-	🇬🇧 United Kingdom	-	false	Clean	AS51167	Contabo GmbH	Contabo	22/03/2026, 05:11:00	22/03/2026, 07:07:29	-	-	-	-	-	-
204.168.142.•••:18789	-	🇫🇮 Finland	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	22/03/2026, 05:11:00	25/03/2026, 11:03:32	-	-	-	-	-	-
47.92.154.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:11:00	17/04/2026, 23:58:38	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:38:33	-
5.78.183.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS212317	Hetzner Online GmbH	Hetzner Online	22/03/2026, 05:11:00	07/04/2026, 02:04:17	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/04/2026, 23:18:49	hetzner.com
38.76.221.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS401701	cognetcloud INC	FOJ IP Technology	22/03/2026, 05:11:00	22/03/2026, 07:07:28	-	-	-	-	-	-
82.156.69.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	22/03/2026, 05:11:00	25/03/2026, 11:04:09	No	Yes	APT37, El-Machete	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	22/03/2026, 05:38:45	-
62.171.175.•••:32776	-	🇫🇷 France	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	22/03/2026, 05:11:00	25/03/2026, 11:03:19	Yes	Yes	APT-C-23, APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA428, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2006-20001, CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31625, CVE-2022-31626, CVE-2022-31628, CVE-2022-31629, CVE-2022-31630, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-3247, CVE-2023-3823, CVE-2023-3824, CVE-2023-38408, CVE-2023-38709, CVE-2023-43622, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-4577, CVE-2024-5458, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:38:46	contaboserver.net, contabo.de, contabo.net
222.80.27.•••:7090	-	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	ChinaNet Xinjiang	22/03/2026, 05:11:00	22/03/2026, 07:07:28	-	-	-	-	-	-
43.165.175.•••:18789	-	🇯🇵 Japan	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	22/03/2026, 05:11:00	17/04/2026, 10:06:51	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	11/04/2026, 01:22:12	tencent.com
188.34.194.•••:443	-	🇩🇪 Germany	Yes	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	22/03/2026, 05:11:00	16/04/2026, 12:15:36	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:38:54	hetzner.com
49.235.185.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 05:11:00	25/03/2026, 11:03:11	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	22/03/2026, 05:38:55	tencent.com
101.42.26.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	22/03/2026, 05:11:00	17/04/2026, 23:59:13	Yes	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-44487, CVE-2024-7347	22/03/2026, 05:39:04	tencent.com
129.121.86.•••:80	-	🇺🇸 United States	Yes	false	Leaked	AS31898	Oracle Corporation	OGTIPS1	22/03/2026, 05:11:00	17/04/2026, 23:59:00	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/04/2026, 16:32:32	athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, mybluehost.me, dotster.com, bluehost.com
36.5.94.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	ChinaNet Anhui	22/03/2026, 05:11:00	22/03/2026, 07:07:28	No	No	-	-	16/03/2026, 05:39:12	-
43.128.99.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	22/03/2026, 05:11:00	10/04/2026, 17:46:32	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2019-6470, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-38178, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	22/03/2026, 05:39:15	tencent.com
1.14.171.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 05:11:00	22/03/2026, 07:07:28	Yes	Yes	APT37, El-Machete	-	22/03/2026, 05:39:19	tencent.com
213.199.46.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	22/03/2026, 05:10:59	15/04/2026, 13:32:07	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:39:29	contabo.de, contabo.net
45.10.154.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	22/03/2026, 05:10:59	16/04/2026, 16:47:55	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:43:14	contaboserver.net, contabo.de, contabo.net
38.12.32.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS400619	AROSSCLOUD INC.	PEG Technology	22/03/2026, 05:10:59	25/03/2026, 07:19:58	Yes	-	-	-	22/03/2026, 05:43:18	cogentco.com
188.225.32.•••:8081	-	🇷🇺 Russia	Yes	false	Leaked	AS9123	JSC "TIMEWEB"	Taiwan Cloud	22/03/2026, 05:10:59	22/03/2026, 07:07:27	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2013-4359, CVE-2015-3306, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-3125, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2017-7418, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-18217, CVE-2019-19270, CVE-2019-19271, CVE-2019-19272, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6470, CVE-2020-14145, CVE-2020-9272, CVE-2021-23017, CVE-2021-3618, CVE-2021-41617, CVE-2021-46854, CVE-2022-1183, CVE-2022-2795, CVE-2022-2881, CVE-2022-2906, CVE-2022-3080, CVE-2022-3094, CVE-2022-3736, CVE-2022-3924, CVE-2022-41741, CVE-2022-41742, CVE-2023-2828, CVE-2023-2829, CVE-2023-28531, CVE-2023-2911, CVE-2023-3341, CVE-2023-38408, CVE-2023-4408, CVE-2023-44487, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2023-5517, CVE-2023-5679, CVE-2023-5680, CVE-2024-6387, CVE-2024-7347	22/03/2026, 05:43:22	timeweb.ru
1.181.141.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS4134	Chinanet	ChinaNet NeiMengGu	22/03/2026, 05:10:59	22/03/2026, 07:07:27	Yes	-	-	CVE-2024-7347, CVE-2025-23419	22/03/2026, 05:43:23	bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, h3c.com, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, daqu.com.cn, ctyun.cn
101.47.16.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS150436	Byteplus Pte. Ltd.	Byteplus	22/03/2026, 05:10:59	12/04/2026, 21:41:15	Yes	Yes	APT17, APT36, APT37, APT45, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, SideWinder APT, The Shadow Brokers	CVE-2019-12519, CVE-2019-12523, CVE-2019-12526, CVE-2019-12528, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-18860, CVE-2020-11945, CVE-2020-14058, CVE-2020-15049, CVE-2020-15810, CVE-2020-15811, CVE-2020-24606, CVE-2020-25097, CVE-2020-8449, CVE-2020-8450, CVE-2020-8517, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-28662, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-46784, CVE-2022-41318, CVE-2023-28531, CVE-2023-38408, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-25111, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-39894, CVE-2024-45802, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-54574, CVE-2025-59362, CVE-2025-61984, CVE-2025-61985, CVE-2025-62168	22/03/2026, 05:43:25	bytedance.com
117.72.187.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS141679	China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch	JD.com	22/03/2026, 05:10:59	31/03/2026, 03:01:24	-	-	-	-	-	-
8.216.130.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	22/03/2026, 05:10:59	22/03/2026, 07:07:27	No	-	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:43:30	-
154.194.190.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS139880	OWGELS INTERNATIONAL CO., LIMITED	Starbow Ltd	22/03/2026, 05:10:59	17/04/2026, 23:58:40	No	-	-	-	16/03/2026, 05:43:32	-
112.74.48.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:10:59	15/04/2026, 13:31:23	Yes	No	-	-	22/03/2026, 05:43:34	aliyun.com
47.101.10.•••:20007	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:10:59	25/03/2026, 10:19:46	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Salt Typhoon, Sandworm Team, The Shadow Brokers	CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	22/03/2026, 05:43:35	-
185.97.114.•••:443	-	🇰🇿 Kazakhstan	Yes	false	Leaked	AS200590	NLS Kazakhstan LLC	NLS Networks	22/03/2026, 05:10:59	22/03/2026, 07:07:27	Yes	No	-	-	22/03/2026, 05:43:36	nls.kz
13.232.53.•••:80	-	🇮🇳 India	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	22/03/2026, 05:10:59	22/03/2026, 07:07:27	No	No	-	-	16/03/2026, 05:43:40	-
154.206.184.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS139880	OWGELS INTERNATIONAL CO., LIMITED	Starbow Ltd	22/03/2026, 05:10:59	08/04/2026, 22:52:40	No	-	-	-	16/03/2026, 05:43:44	-
2a02:c207:2314:6527::1:18789	-	🇫🇷 France	-	false	Clean	AS51167	Contabo GmbH	Contabo	22/03/2026, 05:10:59	17/04/2026, 23:58:21	-	-	-	-	-	-
209.38.159.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 05:10:59	24/03/2026, 15:55:51	No	No	-	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387	22/03/2026, 05:43:48	-
104.236.59.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 05:10:59	16/04/2026, 12:15:36	No	Yes	APT14, APT15, APT31, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2018-17189, CVE-2018-17199, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-17567, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2025-26465, CVE-2025-32728	22/03/2026, 05:43:50	-
47.92.237.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:10:59	16/04/2026, 01:22:42	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:56:26	-
39.109.197.•••:443	-	🇸🇬 Singapore	Yes	false	Leaked	AS55430	Starhub Ltd	StarHub Internet	22/03/2026, 05:10:59	17/04/2026, 23:57:48	Yes	Yes	Packrat	CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	22/03/2026, 05:16:50	starhubgee.com.sg, starhub.net.sg, lifehub.sg, giga.com.sg, cyberway.com.sg, starhub.com, starhub.com.sg
213.35.97.•••:443	-	🇺🇸 United States	Yes	false	Leaked	AS31898	Oracle Corporation	Oracle Sweden	22/03/2026, 05:10:59	06/04/2026, 05:15:35	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-16845, CVE-2019-16905, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:56:27	healtheintent.com, purewellness.com, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oraclecloudservices.com, rsys2.net, hyperroll.com, orcale.com, oraclemobile.com, sun.co.in, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, oracleemaildelivery.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, skire.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, paymyhealthbill.com, dyndns.com, optika.com, jcp.org, smed.com, cernerenviza-tw.com, recruitmax.com, decisioneering.com, stortek.com, seebeyond.com, livelook.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com
167.172.243.•••:8443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	22/03/2026, 05:10:59	15/04/2026, 01:35:46	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 05:56:30	-
106.75.5.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS9808	China Mobile Communications Group Co., Ltd.	UCloud	22/03/2026, 05:10:59	25/03/2026, 11:04:14	Yes	Yes	Packrat	-	22/03/2026, 05:56:32	ucloud.cn
103.38.236.•••:18789	-	🇻🇳 Vietnam	Yes	false	Leaked	AS149148	Phu Hai Computer Co., Ltd	Phu Hai Computer Co., Ltd	22/03/2026, 05:10:59	15/04/2026, 13:30:23	Yes	No	-	-	22/03/2026, 05:56:37	vnnic.vn
175.178.127.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	22/03/2026, 05:10:58	15/04/2026, 01:35:18	Yes	No	-	-	22/03/2026, 05:56:41	tencent.com
39.108.171.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:10:58	14/04/2026, 23:19:53	Yes	Yes	Packrat	-	22/03/2026, 05:56:47	aliyun.com
129.226.220.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	22/03/2026, 05:10:58	25/03/2026, 11:03:03	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	22/03/2026, 05:56:49	-
47.92.131.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:10:58	22/03/2026, 07:07:26	No	No	-	-	16/03/2026, 05:56:53	-
47.92.235.•••:50001	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	22/03/2026, 05:10:58	12/04/2026, 18:41:24	No	No	-	-	16/03/2026, 06:00:45	-
47.245.116.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	22/03/2026, 05:10:58	25/03/2026, 07:19:58	Yes	Yes	APT15, APT17, APT28, APT31, APT35, APT36, APT37, APT39, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/03/2026, 06:00:47	hichina.com, alibaba-inc.com

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.