🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 926582 Page: 391 / 9266 (100 per page) Showing: 39001-39100 Last Imported: 07/06/2026, 03:36:56

🇨🇳 458,280

🇺🇸 265,401

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
115.198.249.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	ChinaNet Hangzhou	26/05/2026, 01:29:25	26/05/2026, 08:32:16	-	-	-	-	-	-
95.165.44.•••:18789	-	🇷🇺 Russia	-	false	Clean	AS25513	PJSC Moscow city telephone network	MGTS	26/05/2026, 01:29:25	26/05/2026, 08:32:16	-	-	-	-	-	-
124.243.169.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS136907	HUAWEI CLOUDS	Huawei Cloud SG	26/05/2026, 01:29:25	05/06/2026, 14:38:33	-	-	-	-	-	-
20.97.10.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:29:25	26/05/2026, 08:32:16	-	-	-	-	-	-
178.156.136.•••:18789	-	🇺🇸 United States	-	false	Clean	AS213230	Hetzner Online GmbH	Hetzner Online	26/05/2026, 01:29:25	26/05/2026, 08:32:15	-	-	-	-	-	-
4.151.166.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:29:25	26/05/2026, 08:32:15	-	-	-	-	-	-
2a02:4780:6e:8164::1:18789	-	🇧🇷 Brazil	-	true	Clean	AS47583	Hostinger International Limited	Hostinger	26/05/2026, 01:29:25	06/06/2026, 07:37:29	-	-	-	-	-	-
52.62.130.•••:18789	-	🇦🇺 Australia	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	26/05/2026, 01:29:24	26/05/2026, 16:14:27	-	-	-	-	-	-
40.65.92.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:29:23	26/05/2026, 08:32:14	-	-	-	-	-	-
5.75.144.•••:18789	-	🇩🇪 Germany	Yes	true	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	26/05/2026, 01:29:23	06/06/2026, 04:48:41	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414	26/05/2026, 21:56:19	hetzner.com
134.88.13.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS394003	University of Massachusetts Dartmouth	University of Massachusetts Dartmouth	26/05/2026, 01:27:37	04/06/2026, 13:36:01	-	-	-	-	-	-
13.235.219.•••:18789	-	🇮🇳 India	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	26/05/2026, 01:27:37	31/05/2026, 20:20:10	Yes	No	-	CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	26/05/2026, 03:37:59	juspay.in
43.157.212.•••:18789	-	🇸🇬 Singapore	-	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	26/05/2026, 01:27:37	26/05/2026, 09:54:51	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	26/05/2026, 03:38:02	tencent.com
103.74.192.•••:18789	-	🇭🇰 Hong Kong	-	true	Clean	AS139659	LUCIDACLOUD LIMITED	Bright Way Tower	26/05/2026, 01:27:37	06/06/2026, 20:13:00	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-29323, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419	26/05/2026, 03:38:08	-
114.113.235.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS4808	China Unicom Beijing Province Network / AS4847 China Networks Inter-Exchange / AS63614 A4, 5th Floor, Tower C, Triumph Plaza, Unit A, No 143,	Qishangonline Office	26/05/2026, 01:27:37	05/06/2026, 02:36:08	Yes	No	-	CVE-2011-1376, CVE-2011-4889, CVE-2012-2162, CVE-2012-3305, CVE-2012-4851, CVE-2014-3021, CVE-2016-0359, CVE-2016-0378, CVE-2016-0385, CVE-2016-2960, CVE-2016-5983, CVE-2016-5986, CVE-2016-8919, CVE-2016-9736, CVE-2017-1121, CVE-2017-1137, CVE-2017-1151, CVE-2017-1194, CVE-2017-1380, CVE-2017-1381, CVE-2017-1382, CVE-2017-1503, CVE-2017-1731, CVE-2017-1741, CVE-2017-1743, CVE-2018-1553, CVE-2018-1567, CVE-2018-1614, CVE-2018-1643, CVE-2018-1683, CVE-2018-1767, CVE-2018-1770, CVE-2018-1777, CVE-2018-1793, CVE-2018-1794, CVE-2018-1797, CVE-2018-1798, CVE-2018-1851, CVE-2018-1902, CVE-2018-1904, CVE-2018-1926, CVE-2018-1996, CVE-2019-4046, CVE-2019-4080, CVE-2019-4268, CVE-2019-4270, CVE-2019-4304, CVE-2019-4305, CVE-2019-4441, CVE-2019-4442, CVE-2019-4477, CVE-2019-4670, CVE-2019-4720, CVE-2019-4732, CVE-2020-4163, CVE-2020-4276, CVE-2020-4329, CVE-2020-4362, CVE-2020-4449, CVE-2020-4464, CVE-2020-4534, CVE-2020-4576, CVE-2020-4578, CVE-2020-4589, CVE-2020-4629, CVE-2020-4643, CVE-2020-4782, CVE-2020-4949, CVE-2020-5016, CVE-2021-20353, CVE-2021-20354, CVE-2021-20453, CVE-2021-20454, CVE-2021-20480, CVE-2021-20492, CVE-2021-29736, CVE-2021-29754, CVE-2021-29842, CVE-2021-38951, CVE-2022-22365, CVE-2022-22473, CVE-2022-34165, CVE-2022-34336, CVE-2022-35282, CVE-2022-38712, CVE-2022-39161, CVE-2023-44487, CVE-2024-7347	29/05/2026, 07:52:52	netnic.com.cn
120.48.59.•••:18789	灵儿 (https://docs.openclaw.ai/img/claw-logo.svg)	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	26/05/2026, 01:27:36	26/05/2026, 07:47:56	-	-	-	-	-	-
54.116.94.•••:18789	-	🇰🇷 South Korea	-	true	Leaked	AS16509	Amazon.com, Inc.	Amazon	26/05/2026, 01:27:36	06/06/2026, 20:55:11	Yes	No	-	-	26/05/2026, 16:56:55	bookworm.com, lovefilm.com, amazon.eu, amazaon.com, z-exp.com, shopbop.com, accept.com, amazonn.com, boxofficemojo.com, amazonaws-us-gov.com, amaozn.com, awsamazon.com, amazonmusiclocal.com, a9.com, amzzon.com, mturk.com, com.be, amazonpay.com, rooftopmedia.net, vine.com, amazon.com.au, amazon-rings.com, amazonin.com, amzn.asia, apn-portal.com, evi.com, amazonprime.com, audiblecareers.com, beautybar.com, junglee.com, tenmarks.com, amazonwebservices.net, associates-amazon.com, amazonrobotics.com, endless.com, amazonlocal.com, amazonllc.com, media-imdb.com, amazon.com.tw, amazonaws.com, kivasystems.com, amzn.com, amazon.com, thinkboxsoftware.com
104.21.7.•••:18789	-	🇺🇸 United States	-	false	Clean	AS13335	Cloudflare, Inc.	Cloudflare	26/05/2026, 01:27:36	26/05/2026, 10:36:45	-	-	-	-	-	-
47.113.102.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/05/2026, 01:27:36	07/06/2026, 01:07:56	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	31/05/2026, 21:47:13	-
20.3.97.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:27:36	26/05/2026, 07:47:56	-	-	-	-	-	-
194.163.136.•••:18789	-	🇩🇪 Germany	Yes	false	Clean	AS51167	Contabo GmbH	Contabo	26/05/2026, 01:27:36	29/05/2026, 01:29:12	-	-	-	-	-	-
123.118.12.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4808	China Unicom Beijing Province Network	China Unicom Beijing	26/05/2026, 01:27:35	26/05/2026, 07:47:55	-	-	-	-	-	-
212.103.62.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS40065	CNSERVERS LLC	Host Symbol	26/05/2026, 01:27:34	30/05/2026, 01:34:35	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	28/05/2026, 20:33:58	-
85.17.144.•••:18789	-	🇳🇱 Netherlands	-	false	Clean	AS60781	Netherlands	LeaseWeb	26/05/2026, 01:27:34	26/05/2026, 08:30:24	-	-	-	-	-	-
168.119.231.•••:18789	-	🇩🇪 Germany	-	true	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	26/05/2026, 01:27:34	05/06/2026, 07:32:07	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	29/05/2026, 16:25:38	hetzner.com
154.201.193.•••:18789	-	🇭🇰 Hong Kong	-	true	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology	26/05/2026, 01:27:34	02/06/2026, 09:30:09	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	29/05/2026, 10:00:21	-
34.241.211.•••:18789	-	🇮🇪 Ireland	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon Data Services Ireland	26/05/2026, 01:27:34	06/06/2026, 23:02:06	No	No	-	-	29/05/2026, 01:32:45	-
20.69.37.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:27:34	26/05/2026, 08:30:24	-	-	-	-	-	-
172.104.142.•••:18789	-	🇩🇪 Germany	Yes	true	Clean	AS63949	Akamai Connected Cloud	Linode	26/05/2026, 01:27:34	04/06/2026, 19:22:57	No	Yes	APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, Volt Typhoon	CVE-2006-20001, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2021-44224, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414	01/06/2026, 13:59:10	-
38.76.169.•••:18789	-	🇭🇰 Hong Kong	-	false	Clean	AS401696	cognetcloud INC	Hong Kong Cloud Network Technology Co Ltd	26/05/2026, 01:27:34	26/05/2026, 08:30:23	-	-	-	-	-	-
107.189.4.•••:18789	-	🇱🇺 Luxembourg	-	false	Clean	AS53667	FranTech Solutions	BuyVM	26/05/2026, 01:27:33	26/05/2026, 08:30:23	-	-	-	-	-	-
91.219.236.•••:18789	-	🇭🇺 Hungary	Yes	true	Clean	AS56322	ServerAstra Kft.	ServerAstra Data Processing Complex 1	26/05/2026, 01:27:33	05/06/2026, 00:28:58	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-38177, CVE-2022-38178, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	02/06/2026, 06:45:11	-
110.231.38.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4837	CHINA UNICOM China169 Backbone	China Unicom Hebei	26/05/2026, 01:27:33	29/05/2026, 17:06:58	No	No	-	-	23/05/2026, 17:08:24	-
142.93.61.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	26/05/2026, 01:27:33	04/06/2026, 09:22:03	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	29/05/2026, 00:50:07	-
8.148.228.•••:18789	-	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	26/05/2026, 01:27:32	04/06/2026, 14:18:35	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	28/05/2026, 19:08:11	-
115.198.249.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	ChinaNet Hangzhou	26/05/2026, 01:27:32	26/05/2026, 08:30:22	-	-	-	-	-	-
95.165.44.•••:18789	-	🇷🇺 Russia	-	false	Clean	AS25513	PJSC Moscow city telephone network	MGTS	26/05/2026, 01:27:32	26/05/2026, 08:30:22	-	-	-	-	-	-
124.243.169.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS136907	HUAWEI CLOUDS	Huawei Cloud SG	26/05/2026, 01:27:32	05/06/2026, 14:36:43	-	-	-	-	-	-
20.97.10.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:27:31	26/05/2026, 08:30:21	-	-	-	-	-	-
4.151.166.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:27:31	26/05/2026, 08:30:21	-	-	-	-	-	-
178.156.136.•••:18789	-	🇺🇸 United States	-	false	Clean	AS213230	Hetzner Online GmbH	Hetzner Online	26/05/2026, 01:27:31	26/05/2026, 08:30:21	-	-	-	-	-	-
2a02:4780:6e:8164::1:18789	-	🇧🇷 Brazil	-	true	Clean	AS47583	Hostinger International Limited	Hostinger	26/05/2026, 01:27:31	06/06/2026, 07:35:39	-	-	-	-	-	-
52.62.130.•••:18789	-	🇦🇺 Australia	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	26/05/2026, 01:27:31	26/05/2026, 16:12:37	-	-	-	-	-	-
40.65.92.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:27:30	26/05/2026, 08:30:21	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414	26/05/2026, 07:05:51	-
5.75.144.•••:18789	-	🇩🇪 Germany	Yes	true	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	26/05/2026, 01:27:30	06/06/2026, 04:46:53	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414	26/05/2026, 07:05:54	hetzner.com
103.183.75.•••:18789	-	🇮🇩 Indonesia	Yes	false	Clean	AS136052	PT Cloud Hosting Indonesia	IDCloudHost	26/05/2026, 01:25:38	27/05/2026, 13:15:34	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	26/05/2026, 02:50:17	-
103.74.192.•••:18789	-	🇭🇰 Hong Kong	-	true	Clean	AS139659	LUCIDACLOUD LIMITED	Bright Way Tower	26/05/2026, 01:25:38	07/06/2026, 01:06:13	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-29323, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419	26/05/2026, 02:50:19	-
20.3.97.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:25:38	27/05/2026, 13:58:26	-	-	-	-	-	-
34.182.184.•••:18789	-	🇺🇸 United States	-	false	Clean	AS396982	Google LLC	Google	26/05/2026, 01:25:38	27/05/2026, 13:58:26	-	-	-	-	-	-
85.17.144.•••:18789	-	🇳🇱 Netherlands	-	false	Clean	AS60781	Netherlands	LeaseWeb	26/05/2026, 01:25:38	27/05/2026, 13:58:26	-	-	-	-	-	-
52.195.232.•••:18789	-	🇯🇵 Japan	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Japan	26/05/2026, 01:25:38	07/06/2026, 01:06:00	No	Yes	APT17, APT29, APT35, APT36, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Patchwork, SideWinder APT, Volt Typhoon	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414	26/05/2026, 02:50:28	-
20.97.50.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:25:38	27/05/2026, 13:58:26	No	No	-	-	20/05/2026, 02:50:29	-
20.69.37.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:25:38	27/05/2026, 13:58:26	No	No	-	-	20/05/2026, 02:50:31	-
100.52.120.•••:18789	-	🇺🇸 United States	-	true	Leaked	AS14618	Amazon.com, Inc.	Amazon Web Services	26/05/2026, 01:25:38	05/06/2026, 21:42:24	Yes	No	-	-	26/05/2026, 02:50:32	bookworm.com, lovefilm.com, amazon.eu, amazaon.com, z-exp.com, shopbop.com, accept.com, amazonn.com, boxofficemojo.com, amazonaws-us-gov.com, amaozn.com, awsamazon.com, amazonmusiclocal.com, a9.com, amzzon.com, mturk.com, com.be, amazonpay.com, rooftopmedia.net, vine.com, amazon.com.au, amazon-rings.com, amazonin.com, amzn.asia, apn-portal.com, evi.com, amazonprime.com, audiblecareers.com, beautybar.com, junglee.com, tenmarks.com, amazonwebservices.net, associates-amazon.com, amazonrobotics.com, endless.com, amazonlocal.com, amazonllc.com, media-imdb.com, amazon.com.tw, amazonaws.com, kivasystems.com, amzn.com, amazon.com, thinkboxsoftware.com
38.76.169.•••:18789	-	🇭🇰 Hong Kong	-	false	Clean	AS401696	cognetcloud INC	Hong Kong Cloud Network Technology Co Ltd	26/05/2026, 01:25:37	27/05/2026, 13:58:26	-	-	-	-	-	-
107.189.4.•••:18789	-	🇱🇺 Luxembourg	-	false	Clean	AS53667	FranTech Solutions	BuyVM	26/05/2026, 01:25:37	27/05/2026, 13:58:26	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-16845, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-43622, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-7347, CVE-2025-26465, CVE-2025-26618, CVE-2025-32433, CVE-2025-32728, CVE-2025-46712, CVE-2025-61984, CVE-2025-61985	26/05/2026, 02:50:35	-
95.165.44.•••:18789	-	🇷🇺 Russia	-	false	Clean	AS25513	PJSC Moscow city telephone network	MGTS	26/05/2026, 01:25:37	27/05/2026, 13:58:26	Yes	No	-	CVE-2025-23419	26/05/2026, 02:50:39	mos.ru
155.133.27.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	26/05/2026, 01:25:37	27/05/2026, 13:58:26	Yes	No	-	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	26/05/2026, 02:50:40	terratransit.de, contabo.de, contabo.net
20.97.10.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:25:37	27/05/2026, 13:58:26	-	-	-	-	-	-
4.151.166.•••:18789	-	🇺🇸 United States	-	false	Clean	AS8075	Microsoft Corporation	Microsoft	26/05/2026, 01:25:37	27/05/2026, 13:58:26	No	-	-	-	20/05/2026, 02:50:44	-
178.156.136.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS213230	Hetzner Online GmbH	Hetzner Online	26/05/2026, 01:25:37	27/05/2026, 13:58:26	Yes	Yes	APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-6484, CVE-2024-6485, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414	26/05/2026, 02:50:45	hetzner.com
138.201.168.•••:18789	-	🇩🇪 Germany	-	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Server Block	26/05/2026, 01:25:37	27/05/2026, 13:58:26	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2026-1519	26/05/2026, 02:50:46	hetzner.com
52.62.130.•••:18789	-	🇦🇺 Australia	-	false	Leaked	AS16509	Amazon.com, Inc.	Amazon	26/05/2026, 01:25:37	27/05/2026, 13:58:26	Yes	No	-	-	26/05/2026, 02:50:47	contentcal.com, adobe.io, adobeereg.com, adobecqms.net, tumri.com, day.com, creativecloud.com, adobess.com, adobeoobe.com, adbecrsl.com, sitestat.com, sitecatalyst.com, allegorithmic.com, commsec.com.au, adobeconnect.com, offermatica.com, bizable.com, ftcdn.net, fotolia.com, 207.net, adobesc.com, yawah.com, adobephotoshoprus.ru, adobeprojectm.com, everestads.net, adobeprimetime.com, ss-omtrdc.net, adobe.net, marketo.net, adobeindd.com, adobe-campaign.com, magento.cloud, mixamo.com, rjmetrics.com, magento.com, workfrontfusion.com, frame.io, efrontier.com, workfront.com, adobemsbasic.com, substance3d.io, substance3d.com, 2o7.net, mktoapps.com, adobe.com, flash.com, jit4edu.com, adobe.in, myportfolio.com, truespectra.com, everesttech.net, omniture.com, marketo.com, qlinktech.com, assetsadobe2.com, dcintegrations.com, edgefonts.net, acrobatusers.com, adobe4edu.com, adobedc.net, echocdn.com, prov4auto.com, comsec.com.au, createjs.com, adsymptotic.com, adobecc.com, adobesystems.com, omtrdc.net, atomz.com, mktoweb.com
39.99.149.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/05/2026, 00:49:14	06/06/2026, 22:23:50	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-43622, CVE-2023-45802, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	26/05/2026, 07:57:37	aliyun.com
36.27.84.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	ChinaNet Hangzhou	26/05/2026, 00:49:14	26/05/2026, 08:34:31	No	No	-	-	20/05/2026, 07:57:38	-
161.97.138.•••:18789	-	🇫🇷 France	Yes	true	Leaked	AS51167	Contabo GmbH	Contabo	26/05/2026, 00:49:13	04/06/2026, 20:19:05	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	26/05/2026, 07:57:52	contaboserver.net, contabo.de, contabo.net
178.105.82.•••:18789	-	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	26/05/2026, 00:49:13	26/05/2026, 09:16:58	-	-	-	-	-	-
13.54.255.•••:443	-	🇦🇺 Australia	Yes	true	Clean	AS16509	Amazon.com, Inc.	Amazon Corporate Services	26/05/2026, 00:49:13	07/06/2026, 01:11:50	No	No	-	-	20/05/2026, 07:57:56	-
191.252.209.•••:18789	-	🇧🇷 Brazil	Yes	true	Leaked	AS27715	Locaweb Serviços de Internet S/A	Locaweb	26/05/2026, 00:49:12	06/06/2026, 06:57:46	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414	03/06/2026, 09:54:10	locaweb.com.br
3.38.105.•••:443	-	🇰🇷 South Korea	Yes	false	Clean	AS16509	Amazon.com, Inc.	AWS Seoul Region	26/05/2026, 00:49:12	27/05/2026, 00:44:50	No	No	-	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	26/05/2026, 08:34:30	-
18.207.121.•••:80	-	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon	26/05/2026, 00:49:12	26/05/2026, 09:16:57	No	-	-	CVE-2016-20012, CVE-2016-9589, CVE-2018-1047, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	26/05/2026, 08:34:32	-
175.27.128.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	26/05/2026, 00:49:12	29/05/2026, 07:54:54	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	26/05/2026, 08:34:34	tencent.com
111.229.155.•••:443	-	🇨🇳 China mainland	-	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	26/05/2026, 00:49:11	04/06/2026, 18:42:07	Yes	Yes	APT37, El-Machete	-	26/05/2026, 08:34:41	tencent.com
117.72.101.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS141679	China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch	JD.com	26/05/2026, 00:49:11	26/05/2026, 09:16:56	Yes	Yes	APT15, APT28, APT31, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-51988, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	26/05/2026, 08:34:42	jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com
154.201.193.•••:18789	-	🇭🇰 Hong Kong	-	false	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology	26/05/2026, 00:49:11	05/06/2026, 18:15:08	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	26/05/2026, 08:34:43	-
124.220.66.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	26/05/2026, 00:49:11	01/06/2026, 10:30:39	Yes	-	-	-	26/05/2026, 08:34:45	tencent.com
156.250.214.•••:18789	-	🇭🇰 Hong Kong	-	false	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology Co. Limited	26/05/2026, 00:49:11	29/05/2026, 03:40:06	No	Yes	APT28, APT40, APT41, Cobalt Group, Earth Berberoka, Energetic Bear, Equation Group, Leafminer, Luckycat APT, Sandworm Team	CVE-2010-1899, CVE-2010-2730, CVE-2010-3972	26/05/2026, 08:34:49	-
54.216.165.•••:443	-	🇮🇪 Ireland	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon	26/05/2026, 00:49:10	26/05/2026, 16:59:13	No	-	-	-	20/05/2026, 08:34:51	-
188.166.193.•••:80	-	🇩🇪 Germany	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	26/05/2026, 00:49:10	07/06/2026, 01:11:26	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-29323, CVE-2023-35784	26/05/2026, 09:20:08	-
116.203.245.•••:80	-	🇩🇪 Germany	Yes	true	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	26/05/2026, 00:49:10	06/06/2026, 20:59:17	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	26/05/2026, 09:20:09	hetzner.de, your-server.de
156.250.146.•••:18789	-	🇭🇰 Hong Kong	-	true	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology Co. Limited	26/05/2026, 00:49:10	02/06/2026, 10:16:40	No	No	-	-	20/05/2026, 08:34:56	-
82.156.211.•••:443	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	26/05/2026, 00:49:10	05/06/2026, 03:22:23	No	Yes	APT37, El-Machete	-	26/05/2026, 08:34:57	-
45.33.91.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS63949	Akamai Connected Cloud	Linode	26/05/2026, 00:49:10	26/05/2026, 09:16:55	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414	26/05/2026, 08:35:00	-
154.201.193.•••:18789	-	🇭🇰 Hong Kong	-	false	Clean	AS132839	POWER LINE DATACENTER	Digital Core Technology	26/05/2026, 00:49:10	29/05/2026, 18:36:45	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	26/05/2026, 08:35:06	-
46.225.128.•••:80	-	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	26/05/2026, 00:49:10	29/05/2026, 16:28:10	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	26/05/2026, 08:35:07	-
161.153.108.•••:18789	-	🇺🇸 United States	Yes	true	Leaked	AS31898	Oracle Corporation	Oracle	26/05/2026, 00:49:09	04/06/2026, 01:35:42	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985, CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414	26/05/2026, 08:35:11	healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, healtheatcerner.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
35.76.103.•••:443	-	🇯🇵 Japan	Yes	true	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Japan	26/05/2026, 00:49:09	07/06/2026, 01:11:25	No	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	26/05/2026, 08:35:16	-
129.211.24.•••:443	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	26/05/2026, 00:49:09	04/06/2026, 15:05:41	No	-	-	-	20/05/2026, 08:35:20	-
52.195.185.•••:443	-	🇯🇵 Japan	Yes	true	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Japan	26/05/2026, 00:49:09	07/06/2026, 00:30:10	No	No	-	-	20/05/2026, 08:35:24	-
115.237.136.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	ChinaNet Shaoxing	26/05/2026, 00:49:09	29/05/2026, 02:15:26	No	No	-	-	20/05/2026, 08:35:27	-
51.38.245.•••:443	-	🇮🇹 Italy	Yes	false	Clean	AS16276	OVH SAS	OVH Dedicated Failover IPs	26/05/2026, 00:49:09	26/05/2026, 09:16:54	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12783, CVE-2020-14145, CVE-2020-28007, CVE-2020-28008, CVE-2020-28009, CVE-2020-28010, CVE-2020-28011, CVE-2020-28012, CVE-2020-28013, CVE-2020-28014, CVE-2020-28015, CVE-2020-28016, CVE-2020-28018, CVE-2020-28019, CVE-2020-28021, CVE-2020-28022, CVE-2020-28023, CVE-2020-28024, CVE-2020-28025, CVE-2020-28026, CVE-2021-3618, CVE-2021-41617, CVE-2022-37451, CVE-2022-37452, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	26/05/2026, 08:35:28	-
163.192.120.•••:18789	-	🇺🇸 United States	Yes	true	Leaked	AS31898	Oracle Corporation	Oracle	26/05/2026, 00:49:09	05/06/2026, 01:58:09	Yes	No	-	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	26/05/2026, 08:35:30	healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, healtheatcerner.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuitesuiteprojectspro.com, elementfusion.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, ateam-oracle.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
134.88.13.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS394003	University of Massachusetts Dartmouth	University of Massachusetts Dartmouth	26/05/2026, 00:49:08	04/06/2026, 17:55:22	Yes	No	-	-	04/06/2026, 15:09:49	umassd.edu
179.165.148.•••:18789	-	🇧🇷 Brazil	Yes	true	Clean	AS26599	TELEFÔNICA BRASIL S.A	Telefonica Brasil	26/05/2026, 00:47:20	04/06/2026, 19:25:18	No	No	-	-	20/05/2026, 07:11:05	-
39.99.149.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	26/05/2026, 00:47:20	06/06/2026, 19:32:49	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-43622, CVE-2023-45802, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	26/05/2026, 07:11:10	aliyun.com
36.27.84.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	ChinaNet Hangzhou	26/05/2026, 00:47:20	26/05/2026, 07:07:29	No	No	-	-	20/05/2026, 07:11:11	-
178.105.82.•••:18789	-	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	26/05/2026, 00:47:19	26/05/2026, 07:07:28	-	-	-	-	-	-
13.54.255.•••:18789	-	🇦🇺 Australia	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon Corporate Services	26/05/2026, 00:47:19	07/06/2026, 01:10:04	No	No	-	-	24/05/2026, 03:46:23	-
3.38.105.•••:18789	-	🇰🇷 South Korea	-	false	Clean	AS16509	Amazon.com, Inc.	AWS Seoul Region	26/05/2026, 00:47:18	26/05/2026, 22:36:47	-	-	-	-	-	-
18.207.121.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14618	Amazon.com, Inc.	Amazon	26/05/2026, 00:47:18	26/05/2026, 07:07:27	-	-	-	-	-	-

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.