🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 816988 Page: 3914 / 8170 (100 per page) Showing: 391301-391400 Last Imported: 30/04/2026, 13:26:03

🇨🇳 425,761

🇺🇸 231,518

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
1.14.67.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/03/2026, 15:10:30	25/03/2026, 11:10:02	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	09/03/2026, 15:15:25	tencent.com
182.119.94.•••:18789	-	🇨🇳 China mainland	-	false	Leaked	AS4837	CHINA UNICOM China169 Backbone	China Unicom Henan	09/03/2026, 15:10:30	18/03/2026, 14:25:24	Yes	No	-	-	09/03/2026, 15:15:26	chinaunicom.cn
110.42.35.•••:18789	-	🇨🇳 China mainland	-	false	Clean	AS136188	NINGBO, ZHEJIANG Province, P.R.China.	Ningbo Zhuo Zhi Innovation Network Technology	09/03/2026, 15:10:30	18/03/2026, 14:25:24	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:15:27	-
124.222.100.•••:18888	-	🇨🇳 China mainland	-	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/03/2026, 15:10:29	18/03/2026, 14:25:24	Yes	Yes	APT-C-01, APT1 Comment Crew, APT10, APT14, APT15, APT17, APT19, APT27, APT28, APT29, APT3, APT30, APT31, APT32, APT33, APT34, APT35, APT37, APT39, APT4, APT40, APT41, BlackOasis APT, Bluenoroff, Bronze Butler APT, Carbanak, Chimera APT, Clever Kitten, Cobalt Group, DRBControl, Dark Caracal APT, DarkHydrus, El-Machete, Energetic Bear, Equation Group, Evil Eye APT, FIN6, Gamaredon Group, Gaza Cybergang, Goblin Panda, Group 27, Harvester APT, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Leafminer, Mabna Institute, MuddyWater Group, Night Dragon, Patchwork, RomCom Group, SandCat, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, Silence Hacker Group, TA505, TEMP.Hermit, The Shadow Brokers, Triton APT, Tropic Trooper, Turla APT Group, UNC2452, Volatile Kitten, WIRTE	CVE-2002-0369, CVE-2002-0409, CVE-2004-0200, CVE-2005-0509, CVE-2005-2127, CVE-2006-1300, CVE-2006-1510, CVE-2006-1511, CVE-2006-20001, CVE-2006-3436, CVE-2006-7192, CVE-2007-0041, CVE-2007-0042, CVE-2007-0043, CVE-2008-3842, CVE-2008-3843, CVE-2008-5100, CVE-2009-0090, CVE-2009-0091, CVE-2009-1536, CVE-2009-2497, CVE-2009-2500, CVE-2009-2501, CVE-2009-2502, CVE-2009-2503, CVE-2009-2504, CVE-2009-2528, CVE-2009-3126, CVE-2010-1898, CVE-2010-2085, CVE-2010-3228, CVE-2010-3332, CVE-2010-3958, CVE-2011-0664, CVE-2011-1253, CVE-2011-1271, CVE-2011-1977, CVE-2011-1978, CVE-2012-0014, CVE-2012-0015, CVE-2012-0160, CVE-2012-0161, CVE-2012-0162, CVE-2012-0163, CVE-2012-0164, CVE-2012-1855, CVE-2012-1895, CVE-2012-1896, CVE-2012-2519, CVE-2012-4776, CVE-2012-4777, CVE-2013-0001, CVE-2013-0002, CVE-2013-0003, CVE-2013-0004, CVE-2013-0005, CVE-2013-0073, CVE-2013-1336, CVE-2013-1337, CVE-2013-3128, CVE-2013-3129, CVE-2013-3131, CVE-2013-3132, CVE-2013-3133, CVE-2013-3134, CVE-2013-3171, CVE-2013-3860, CVE-2013-3861, CVE-2014-0253, CVE-2014-0257, CVE-2014-0295, CVE-2014-1806, CVE-2014-4062, CVE-2014-4072, CVE-2014-4073, CVE-2014-4121, CVE-2014-4122, CVE-2014-4149, CVE-2014-9709, CVE-2014-9767, CVE-2015-0235, CVE-2015-1352, CVE-2015-1648, CVE-2015-1670, CVE-2015-1671, CVE-2015-1672, CVE-2015-1673, CVE-2015-2301, CVE-2015-2305, CVE-2015-2325, CVE-2015-2326, CVE-2015-2331, CVE-2015-2348, CVE-2015-2435, CVE-2015-2455, CVE-2015-2456, CVE-2015-2460, CVE-2015-2462, CVE-2015-2463, CVE-2015-2464, CVE-2015-2479, CVE-2015-2480, CVE-2015-2481, CVE-2015-2504, CVE-2015-2526, CVE-2015-2783, CVE-2015-2787, CVE-2015-3152, CVE-2015-3307, CVE-2015-3329, CVE-2015-3330, CVE-2015-3411, CVE-2015-3412, CVE-2015-3414, CVE-2015-3415, CVE-2015-3416, CVE-2015-4021, CVE-2015-4022, CVE-2015-4024, CVE-2015-4025, CVE-2015-4026, CVE-2015-4147, CVE-2015-4148, CVE-2015-4598, CVE-2015-4599, CVE-2015-4600, CVE-2015-4602, CVE-2015-4603, CVE-2015-4604, CVE-2015-4605, CVE-2015-4643, CVE-2015-4644, CVE-2015-5589, CVE-2015-5590, CVE-2015-6096, CVE-2015-6099, CVE-2015-6108, CVE-2015-6115, CVE-2015-6831, CVE-2015-6832, CVE-2015-6833, CVE-2015-6834, CVE-2015-6835, CVE-2015-6836, CVE-2015-8835, CVE-2015-8838, CVE-2015-8867, CVE-2015-8873, CVE-2015-8876, CVE-2015-8994, CVE-2016-0033, CVE-2016-0047, CVE-2016-0132, CVE-2016-0145, CVE-2016-0148, CVE-2016-0149, CVE-2016-0736, CVE-2016-2161, CVE-2016-3185, CVE-2016-3209, CVE-2016-3255, CVE-2016-4975, CVE-2016-5387, CVE-2016-7249, CVE-2016-7250, CVE-2016-7251, CVE-2016-7252, CVE-2016-7270, CVE-2016-7478, CVE-2016-8740, CVE-2016-8743, CVE-2017-0160, CVE-2017-0248, CVE-2017-15710, CVE-2017-15715, CVE-2017-3167, CVE-2017-3169, CVE-2017-7679, CVE-2017-8516, CVE-2017-8585, CVE-2017-8759, CVE-2017-9788, CVE-2017-9798, CVE-2018-0764, CVE-2018-0765, CVE-2018-0786, CVE-2018-1039, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-17189, CVE-2018-17199, CVE-2018-19520, CVE-2018-8202, CVE-2018-8260, CVE-2018-8284, CVE-2018-8356, CVE-2018-8360, CVE-2018-8421, CVE-2018-8517, CVE-2018-8540, CVE-2019-0196, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-0545, CVE-2019-0613, CVE-2019-0657, CVE-2019-0820, CVE-2019-0864, CVE-2019-0980, CVE-2019-0981, CVE-2019-1006, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-1068, CVE-2019-1083, CVE-2019-1113, CVE-2019-11397, CVE-2019-1142, CVE-2019-17567, CVE-2019-9517, CVE-2020-0605, CVE-2020-0606, CVE-2020-0618, CVE-2020-0646, CVE-2020-1046, CVE-2020-1066, CVE-2020-1108, CVE-2020-1147, CVE-2020-11984, CVE-2020-11985, CVE-2020-11993, CVE-2020-13938, CVE-2020-13950, CVE-2020-1476, CVE-2020-16937, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-1636, CVE-2021-24111, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-21911, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-26832, CVE-2022-26929, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29143, CVE-2022-29404, CVE-2022-30130, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41064, CVE-2022-41089, CVE-2023-21528, CVE-2023-21704, CVE-2023-21705, CVE-2023-21713, CVE-2023-21718, CVE-2023-21722, CVE-2023-21808, CVE-2023-23384, CVE-2023-24895, CVE-2023-24897, CVE-2023-24936, CVE-2023-25690, CVE-2023-27522, CVE-2023-29326, CVE-2023-29331, CVE-2023-31122, CVE-2023-32030, CVE-2023-36049, CVE-2023-36560, CVE-2023-36728, CVE-2023-36788, CVE-2023-36792, CVE-2023-36793, CVE-2023-36794, CVE-2023-36796, CVE-2023-36873, CVE-2023-36899, CVE-2023-38709, CVE-2023-45802, CVE-2024-0056, CVE-2024-0057, CVE-2024-21312, CVE-2024-24795, CVE-2024-27316, CVE-2024-29059, CVE-2024-38081, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-49812, CVE-2025-53020	09/03/2026, 15:15:28	tencent.com
121.41.1.•••:80	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/03/2026, 15:10:29	22/03/2026, 09:26:47	Yes	No	-	CVE-2014-4078, CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:15:29	aliyun.com
121.196.145.•••:18789	-	🇨🇳 China mainland	-	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/03/2026, 15:10:29	18/03/2026, 14:25:23	-	-	-	-	-	-
156.225.18.•••:443	-	🇺🇸 United States	-	false	Clean	AS401696	cognetcloud INC	Vapeline Technology	09/03/2026, 15:10:29	19/03/2026, 05:43:47	No	Yes	APT1, APT28, APT32, APT35, APT37, APT38, APT39, Cobalt Group, DragonFly, El-Machete, FIN8, Gamaredon-Group, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers, gozi	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:15:31	-
81.70.71.•••:18888	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/03/2026, 15:10:29	25/03/2026, 11:10:01	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	09/03/2026, 15:15:33	-
114.132.173.•••:443	-	🇨🇳 China mainland	-	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/03/2026, 15:10:28	19/03/2026, 07:14:26	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-7347, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020	09/03/2026, 15:15:34	tencent.com
117.44.203.•••:18789	-	🇨🇳 China mainland	-	false	Clean	AS4134	Chinanet	CHINANET Jiangxi	09/03/2026, 15:10:28	19/03/2026, 07:14:26	No	No	-	-	03/03/2026, 15:15:35	-
154.12.39.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS979	NetLab Global	NetLab Global	09/03/2026, 15:10:28	18/04/2026, 00:04:01	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:15:36	-
103.193.149.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS55933	Cloudie Limited	Cloudie Limited	09/03/2026, 15:10:28	29/03/2026, 23:51:34	Yes	Yes	Packrat	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:15:37	cloudie.hk
117.72.118.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS141679	China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch	JD.com	09/03/2026, 15:10:28	15/04/2026, 01:40:47	Yes	-	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:15:38	jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com
106.12.151.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/03/2026, 15:10:27	19/03/2026, 07:14:25	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	09/03/2026, 15:15:40	baidu.com
47.79.145.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:27	18/04/2026, 00:03:56	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:15:41	hichina.com, alibaba-inc.com
47.111.10.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/03/2026, 15:10:27	19/03/2026, 07:14:25	No	No	-	-	03/03/2026, 15:15:42	-
8.212.152.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Philippines	09/03/2026, 15:10:27	19/03/2026, 07:14:25	No	Yes	APT15, APT28, APT31, APT35, APT37, APT39, Bitter APT, Bluenoroff, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Salt Typhoon, Sandworm Team, SideWinder APT, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:15:43	-
47.79.95.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:26	18/04/2026, 00:03:54	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:15:44	hichina.com, alibaba-inc.com
8.134.78.•••:18789	聋瞎 (🤷)	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	09/03/2026, 15:10:26	19/03/2026, 07:14:24	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:15:45	-
43.139.48.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/03/2026, 15:10:26	18/04/2026, 00:03:53	Yes	No	-	-	09/03/2026, 15:15:46	tencent.com
43.139.171.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/03/2026, 15:10:26	22/03/2026, 15:26:31	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	09/03/2026, 15:15:49	tencent.com
8.211.141.•••:37777	Susan (⚡)	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/03/2026, 15:10:26	18/04/2026, 00:03:59	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	09/03/2026, 15:18:59	-
118.25.227.•••:18789	-	🇨🇳 China mainland	-	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/03/2026, 15:10:26	19/03/2026, 07:14:24	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MoustachedBouncer, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2007-4559, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-10735, CVE-2020-14145, CVE-2020-15778, CVE-2021-28861, CVE-2021-36368, CVE-2021-41617, CVE-2022-45061, CVE-2023-24329, CVE-2023-27043, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-41105, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-0397, CVE-2024-3219, CVE-2024-4030, CVE-2024-4032, CVE-2024-6923, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:19:00	tencent.com
15.217.10.•••:5552	-	🇪🇸 Spain	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon Data Services Spain	09/03/2026, 15:10:26	19/03/2026, 07:14:24	-	-	-	-	-	-
43.138.190.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/03/2026, 15:10:26	25/03/2026, 11:09:54	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	09/03/2026, 15:19:03	tencent.com
27.42.231.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS17816	China Unicom IP network China169 Guangdong province	China Unicom Guangdong	09/03/2026, 15:10:26	25/03/2026, 11:09:55	-	-	-	-	-	-
106.14.69.•••:6021	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/03/2026, 15:10:25	19/03/2026, 07:14:24	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:19:05	aliyun.com
154.9.253.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Leaked	AS979	NetLab Global	Cogent Communications	09/03/2026, 15:10:25	22/03/2026, 15:26:29	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:19:06	cogentco.com
47.79.144.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:25	18/04/2026, 00:03:59	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:19:07	hichina.com, alibaba-inc.com
111.230.250.•••:18888	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/03/2026, 15:10:25	22/03/2026, 15:26:28	Yes	No	-	-	09/03/2026, 15:19:08	tencent.com
36.151.144.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS56046	China Mobile communications corporation	China Mobile	09/03/2026, 15:10:25	22/03/2026, 15:26:26	-	-	-	-	-	-
47.79.87.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:25	18/04/2026, 00:03:50	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:19:11	anlink.net, bot.nu, wisehousetech.com, cloudflare.net, baselinewoods.com, alghanitex.com, qzz.io, brownsprinting.com, pp.ua, dentsu.com.do, eu.org, duckdns.org, hichina.com, alibaba-inc.com, rostawheels.com.tw, geochem.org
114.55.137.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/03/2026, 15:10:25	09/04/2026, 14:42:45	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6484, CVE-2024-6485, CVE-2025-26465, CVE-2025-32728	09/03/2026, 15:19:12	aliyun.com
106.4.229.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	ChinaNet Jiangxi	09/03/2026, 15:10:25	22/03/2026, 15:26:30	No	Yes	APT-C-23, APT36, Cobalt Group, Equation Group, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon	CVE-2018-19052, CVE-2019-11072, CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-3708	09/03/2026, 15:19:13	-
116.204.135.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS401701	cognetcloud INC	I Layer Limited	09/03/2026, 15:10:25	19/03/2026, 07:14:23	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:19:14	-
47.79.94.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:25	18/04/2026, 00:03:54	Yes	No	-	CVE-2016-10002, CVE-2016-10003, CVE-2016-2390, CVE-2016-3947, CVE-2016-3948, CVE-2016-4051, CVE-2016-4052, CVE-2016-4053, CVE-2016-4054, CVE-2016-4553, CVE-2016-4554, CVE-2016-4555, CVE-2016-4556, CVE-2018-1000024, CVE-2019-12519, CVE-2019-12521, CVE-2019-12523, CVE-2019-12525, CVE-2019-12526, CVE-2019-12529, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2020-11945, CVE-2020-14058, CVE-2020-15049, CVE-2020-24606, CVE-2020-25097, CVE-2021-28651, CVE-2021-28652, CVE-2021-31807, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:19:15	hichina.com, alibaba-inc.com
47.79.92.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:25	18/04/2026, 00:04:03	Yes	No	-	CVE-2016-10002, CVE-2016-10003, CVE-2016-2390, CVE-2016-3947, CVE-2016-3948, CVE-2016-4051, CVE-2016-4052, CVE-2016-4053, CVE-2016-4054, CVE-2016-4553, CVE-2016-4554, CVE-2016-4555, CVE-2016-4556, CVE-2018-1000024, CVE-2019-12519, CVE-2019-12521, CVE-2019-12523, CVE-2019-12525, CVE-2019-12526, CVE-2019-12529, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2020-11945, CVE-2020-14058, CVE-2020-15049, CVE-2020-24606, CVE-2020-25097, CVE-2021-28651, CVE-2021-28652, CVE-2021-31807	09/03/2026, 15:19:17	hichina.com, alibaba-inc.com
43.161.214.•••:80	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/03/2026, 15:10:25	03/04/2026, 01:36:04	Yes	No	-	CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:19:18	tencent.com
47.79.145.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:25	18/04/2026, 00:03:59	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:19:19	hichina.com, alibaba-inc.com
2400:8d60:6::9b1d:6917:80	-	🇭🇰 Hong Kong	-	false	Clean	AS149440	Evoxt Sdn. Bhd.	Evoxt	09/03/2026, 15:10:25	22/03/2026, 15:26:27	-	-	-	-	-	-
47.79.145.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:24	18/04/2026, 00:03:51	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:19:21	hichina.com, alibaba-inc.com
47.79.94.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:24	18/04/2026, 00:03:46	Yes	No	-	CVE-2016-10002, CVE-2016-10003, CVE-2016-2390, CVE-2016-3947, CVE-2016-3948, CVE-2016-4051, CVE-2016-4052, CVE-2016-4053, CVE-2016-4054, CVE-2016-4553, CVE-2016-4554, CVE-2016-4555, CVE-2016-4556, CVE-2018-1000024, CVE-2019-12519, CVE-2019-12521, CVE-2019-12523, CVE-2019-12525, CVE-2019-12526, CVE-2019-12529, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2020-11945, CVE-2020-14058, CVE-2020-15049, CVE-2020-24606, CVE-2020-25097, CVE-2021-28651, CVE-2021-28652, CVE-2021-31807, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:19:22	hichina.com, alibaba-inc.com
3.111.186.•••:443	Assistant	🇮🇳 India	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	09/03/2026, 15:10:24	19/03/2026, 07:14:22	No	Yes	APT14, APT28, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE	CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813	09/03/2026, 15:15:03	-
15.152.31.•••:20004	-	🇯🇵 Japan	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Osaka	09/03/2026, 15:10:24	19/03/2026, 07:14:22	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:19:24	-
38.22.95.•••:443	-	🇭🇰 Hong Kong	Yes	false	Leaked	AS979	NetLab Global	Cogent Communications	09/03/2026, 15:10:24	19/03/2026, 07:14:22	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:19:25	cogentco.com
82.156.112.•••:18888	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/03/2026, 15:10:24	18/04/2026, 00:04:03	-	-	-	-	-	-
43.139.183.•••:443	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/03/2026, 15:10:24	18/04/2026, 00:03:51	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2014-4078, CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	09/03/2026, 15:19:28	tencent.com
47.113.194.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/03/2026, 15:10:24	19/03/2026, 07:14:22	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:19:30	-
114.55.137.•••:80	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/03/2026, 15:10:23	11/04/2026, 23:24:48	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6484, CVE-2024-6485, CVE-2025-26465, CVE-2025-32728	09/03/2026, 15:19:31	aliyun.com
119.91.213.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/03/2026, 15:10:23	19/03/2026, 07:14:21	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347	09/03/2026, 15:19:32	tencent.com
8.216.19.•••:37777	Susan (⚡)	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/03/2026, 15:10:23	18/04/2026, 00:03:53	No	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:19:33	-
14.103.222.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS137718	Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)	Beijing Volcano Engine Technology	09/03/2026, 15:10:23	18/04/2026, 00:03:51	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/04/2026, 19:13:14	bytedance.com
8.216.24.•••:37777	Susan (⚡)	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/03/2026, 15:10:23	18/04/2026, 00:03:53	No	No	-	-	03/03/2026, 15:19:35	-
47.79.146.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:23	18/04/2026, 00:03:58	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:19:36	hichina.com, alibaba-inc.com
123.60.57.•••:443	-	🇨🇳 China mainland	Yes	false	Leaked	AS55990	Huawei Cloud Service data center	Huawei Cloud	09/03/2026, 15:10:23	02/04/2026, 19:32:17	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-31008, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-46118, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:19:38	smartcom.cc, huawei.com, huaweidevice.com
49.234.48.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/03/2026, 15:10:23	18/04/2026, 00:03:51	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	09/03/2026, 15:19:39	tencent.com
106.52.179.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/03/2026, 15:10:23	19/03/2026, 07:14:21	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	09/03/2026, 15:19:40	tencent.com
132.232.235.•••:18888	ck	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/03/2026, 15:10:23	18/04/2026, 00:03:47	-	-	-	-	-	-
8.211.141.•••:37777	Susan (⚡)	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/03/2026, 15:10:23	18/04/2026, 00:03:48	No	Yes	Salt Typhoon	CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	09/03/2026, 15:19:42	-
59.173.123.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS4134	Chinanet	ChinaNet Hubei	09/03/2026, 15:10:23	19/03/2026, 07:14:21	Yes	No	-	-	09/03/2026, 15:19:43	amazon.fr, bj189.cn, bookworm.com, amazon.com.br, audible.com, amazon.eu, amazon.ca, amzaon.com, opengw.net, amazaon.com, rs.ba, 118114.cn, audible.in, z-exp.com, amozon.com, aws-amazon.com, shopbop.com, accept.com, vicp.cc, amazonn.com, amazon-adsystem.com, boxofficemojo.com, amazonaws-us-gov.com, amaozn.com, awsamazon.com, amazonmusiclocal.com, ctwing.cn, vpngate.net, a9.com, amzzon.com, mturk.com, amazonaws.cm, dvrdydns.com, eicp.net, com.be, 6655.la, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, amazonpay.com, rooftopmedia.net, vine.com, imdb.com, ssl-images-amazon.com, amazon.com.au, amazon-rings.com, assoc-amazon.com, amazonin.com, amzn.asia, annapurnalabs.com, apn-portal.com, evi.com, 51vip.biz, amazonprime.com, audiblecareers.com, beautybar.com, wicp.net, 189free.cn, junglee.com, amazon.ae, tenmarks.com, look.com, amazonwebservices.net, associates-amazon.com, amazonrobotics.com, amazon-aws.com, endless.com, amazonlocal.com, amazonm.com, amazonllc.com, media-imdb.com, amazon.com.tw, createspace.com, daqu.com.cn, amazonaws.com, bookdepository.com, amzn.com, amazon.com, goodreads.com, images-amazon.com, amazon.com.co, gicp.net, ctyun.cn, iicp.net
60.18.6.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS4837	CHINA UNICOM China169 Backbone	China Unicom Liaoning	09/03/2026, 15:10:22	18/04/2026, 00:03:49	No	No	-	-	03/03/2026, 15:19:44	-
47.79.37.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:22	18/04/2026, 00:03:52	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Salt Typhoon, Sandworm Team, The Shadow Brokers	CVE-2015-8325, CVE-2016-10002, CVE-2016-10003, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-2390, CVE-2016-3115, CVE-2016-3947, CVE-2016-3948, CVE-2016-4051, CVE-2016-4052, CVE-2016-4053, CVE-2016-4054, CVE-2016-4553, CVE-2016-4554, CVE-2016-4555, CVE-2016-4556, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-1000024, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-12519, CVE-2019-12521, CVE-2019-12523, CVE-2019-12525, CVE-2019-12526, CVE-2019-12529, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11945, CVE-2020-14058, CVE-2020-14145, CVE-2020-15049, CVE-2020-24606, CVE-2020-25097, CVE-2021-28651, CVE-2021-28652, CVE-2021-31807, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	09/03/2026, 15:19:46	chickenkiller.com, quickconnect.to, fastspeed.dk, anlink.net, bot.nu, wisehousetech.com, cloudflare.net, baselinewoods.com, alghanitex.com, qzz.io, brownsprinting.com, pp.ua, dentsu.com.do, eu.org, hichina.com, alibaba-inc.com, rostawheels.com.tw, geochem.org
107.172.92.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS36352	HostPapa	RackNerd	09/03/2026, 15:10:22	30/03/2026, 09:08:22	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-6387	09/03/2026, 15:19:47	opengw.net, rs.ba, vpngate.net, dvrdydns.com, racknerd.com
112.14.51.•••:18789	-	🇨🇳 China mainland	-	false	Leaked	AS56041	China Mobile communications corporation	China Mobile	09/03/2026, 15:10:22	19/03/2026, 07:14:20	Yes	Yes	APT29, Packrat	CVE-2014-0160, CVE-2014-0224, CVE-2015-10003, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	09/03/2026, 15:19:48	chinamobile.com, chinamobile.cn
115.190.211.•••:8443	-	🇨🇳 China mainland	Yes	false	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	09/03/2026, 15:10:22	18/04/2026, 00:03:51	No	No	-	-	03/03/2026, 15:19:49	-
47.107.238.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/03/2026, 15:10:22	12/04/2026, 18:01:03	No	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	09/03/2026, 15:19:50	-
206.190.237.•••:18789	Assistant	🇯🇵 Japan	Yes	false	Leaked	AS25820	IT7 Networks Inc	IT7 Networks	09/03/2026, 15:10:22	18/04/2026, 00:03:51	Yes	No	-	-	09/03/2026, 15:19:51	16clouds.com
154.219.113.•••:18789	-	🇭🇰 Hong Kong	-	false	Clean	AS401701	cognetcloud INC	Vapeline Technology	09/03/2026, 15:10:22	19/03/2026, 07:14:20	No	Yes	Packrat	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:19:52	-
43.142.63.•••:18888	Lulu	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/03/2026, 15:10:22	18/04/2026, 00:03:57	Yes	Yes	APT37, El-Machete	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:19:54	tencent.com
47.79.144.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:22	18/04/2026, 00:03:55	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:19:55	hichina.com, alibaba-inc.com
47.79.95.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:22	18/04/2026, 00:03:54	Yes	No	-	CVE-2016-10002, CVE-2016-10003, CVE-2016-20012, CVE-2016-2390, CVE-2016-3947, CVE-2016-3948, CVE-2016-4051, CVE-2016-4052, CVE-2016-4053, CVE-2016-4054, CVE-2016-4553, CVE-2016-4554, CVE-2016-4555, CVE-2016-4556, CVE-2018-1000024, CVE-2019-12519, CVE-2019-12521, CVE-2019-12523, CVE-2019-12525, CVE-2019-12526, CVE-2019-12529, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2020-11945, CVE-2020-14058, CVE-2020-15049, CVE-2020-24606, CVE-2020-25097, CVE-2021-28041, CVE-2021-28651, CVE-2021-28652, CVE-2021-31807, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	09/03/2026, 15:19:56	hichina.com, alibaba-inc.com
8.136.110.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	09/03/2026, 15:10:22	19/03/2026, 07:14:20	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:19:57	-
150.158.109.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/03/2026, 15:10:22	12/04/2026, 00:54:47	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2016-3125, CVE-2017-7418, CVE-2019-12815, CVE-2019-16905, CVE-2019-18217, CVE-2019-19269, CVE-2019-19270, CVE-2019-19271, CVE-2019-19272, CVE-2020-14145, CVE-2020-15778, CVE-2020-9272, CVE-2021-36368, CVE-2021-41617, CVE-2021-46854, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51713, CVE-2024-6387	09/03/2026, 15:19:58	tencent.com
47.79.145.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:22	18/04/2026, 00:03:49	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:19:59	hichina.com, alibaba-inc.com
47.79.145.•••:37777	Susan (⚡)	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:22	18/04/2026, 00:03:48	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:20:01	hichina.com, alibaba-inc.com
18.182.8.•••:1433	-	🇯🇵 Japan	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Japan	09/03/2026, 15:10:22	19/03/2026, 07:14:20	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:20:02	-
18.182.8.•••:5433	-	🇯🇵 Japan	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services Japan	09/03/2026, 15:10:22	19/03/2026, 07:14:20	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/03/2026, 15:20:03	-
165.245.181.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/03/2026, 15:10:21	18/04/2026, 00:03:57	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/04/2026, 19:14:46	-
149.88.68.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Leaked	AS137899	I LAYER LIMITED	Hong Kong Cloud Network Technology Co Ltd	09/03/2026, 15:10:21	27/03/2026, 10:17:26	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lyceum APT, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, TEMP.Hermit, The Shadow Brokers, Volt Typhoon	CVE-2010-4478, CVE-2010-4755, CVE-2010-5107, CVE-2011-4327, CVE-2011-5000, CVE-2012-0814, CVE-2014-1692, CVE-2014-2532, CVE-2014-2653, CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-0777, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:20:05	cogentco.com
89.167.11.•••:18789	Khan (🤝)	🇫🇮 Finland	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	09/03/2026, 15:10:21	18/04/2026, 00:03:54	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/04/2026, 19:14:48	-
123.207.63.•••:18888	-	🇨🇳 China mainland	-	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/03/2026, 15:10:21	19/03/2026, 07:14:19	Yes	-	-	-	09/03/2026, 15:20:07	tencent.com
58.35.110.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS4812	China Telecom (Group)	ChinaNet Shanghai	09/03/2026, 15:10:21	08/04/2026, 22:57:32	Yes	No	-	-	09/03/2026, 15:20:09	bj189.cn, 118114.cn, ctwing.cn, online.sh.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, daqu.com.cn, ctyun.cn
8.137.121.•••:8089	-	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	09/03/2026, 15:10:21	18/04/2026, 00:03:32	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	09/03/2026, 15:20:10	-
43.134.22.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	6 Collyer Quay	09/03/2026, 15:10:21	18/04/2026, 00:04:00	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, CloudSorcerer, Cobalt Group, Daggerfly APT, DarkHotel Group, Donot Team, El-Machete, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-1247, CVE-2016-20012, CVE-2016-4450, CVE-2017-15906, CVE-2017-20005, CVE-2017-7529, CVE-2018-15473, CVE-2018-15919, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:20:11	tencent.com
121.10.2.•••:18789	小辉 (Xiao Hui) ((暂无))	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	CHINANET Guangdong	09/03/2026, 15:10:21	19/03/2026, 07:14:19	-	-	-	-	-	-
120.53.245.•••:18888	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Shandong Servsd Technology	09/03/2026, 15:10:21	16/04/2026, 01:28:51	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	09/03/2026, 15:20:13	cnnic.cn
43.156.236.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/03/2026, 15:10:21	05/04/2026, 21:06:34	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:20:14	tencent.com
119.123.76.•••:18789	-	🇨🇳 China mainland	-	false	Leaked	AS4134	Chinanet	CHINANET Guangdong	09/03/2026, 15:10:20	19/03/2026, 07:14:18	Yes	No	-	-	09/03/2026, 15:20:16	bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, daqu.com.cn, ctyun.cn
114.242.2.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS4808	China Unicom Beijing Province Network	China Unicom Beijing	09/03/2026, 15:10:20	19/03/2026, 07:14:18	Yes	Yes	APT35, Chimera APT	CVE-2019-14834, CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687, CVE-2021-3448, CVE-2022-0934, CVE-2023-28450, CVE-2023-44487, CVE-2023-50387, CVE-2024-7347, CVE-2025-23419	09/03/2026, 15:20:17	chinaunicom.cn
124.223.30.•••:18789	-	🇨🇳 China mainland	-	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/03/2026, 15:10:20	19/03/2026, 07:14:18	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	09/03/2026, 15:20:18	tencent.com
82.156.218.•••:18888	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/03/2026, 15:10:20	15/04/2026, 01:40:46	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	09/03/2026, 15:20:19	-
103.106.190.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS401696	cognetcloud INC	I Layer Limited	09/03/2026, 15:10:20	19/03/2026, 07:14:18	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:20:20	-
106.53.73.•••:18888	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/03/2026, 15:10:20	18/04/2026, 00:03:49	-	-	-	-	-	-
121.4.64.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/03/2026, 15:10:20	19/03/2026, 07:14:18	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-23017, CVE-2021-3618, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	09/03/2026, 15:20:22	tencent.com
47.79.145.•••:443	-	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/03/2026, 15:10:20	18/04/2026, 00:04:00	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/03/2026, 15:15:48	hichina.com, alibaba-inc.com
1.14.139.•••:443	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/03/2026, 15:10:19	25/03/2026, 11:09:57	Yes	Yes	APT37, El-Machete	-	09/03/2026, 15:14:45	tencent.com
52.224.86.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS8075	Microsoft Corporation	Microsoft	09/03/2026, 15:10:19	22/03/2026, 15:26:21	No	Yes	APT-C-23, APT36, Cobalt Group, Equation Group, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon	CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487	09/03/2026, 15:20:24	-
39.103.183.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/03/2026, 15:10:19	22/03/2026, 15:26:22	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419	09/03/2026, 15:20:25	aliyun.com
47.110.126.•••:18789	-	🇨🇳 China mainland	-	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/03/2026, 15:10:19	19/03/2026, 07:14:17	-	-	-	-	-	-
159.75.130.•••:80	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/03/2026, 15:10:18	12/04/2026, 20:15:36	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419	09/03/2026, 15:20:27	-

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.