🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 926582 Page: 4144 / 9266 (100 per page) Showing: 414301-414400 Last Imported: 07/06/2026, 03:36:56
Build With Vivgrid

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.

Explore Vivgrid
Showing page 4144 of 9266
Previous Next
Endpoint Assistant Name Country auth_requiredis_activehas_leaked_credsasnasn_nameorgfirst_seenlast_seenasi_has_breachasi_has_threat_actorasi_threat_actorsasi_cvesasi_enriched_atasi_domains
50.19.57.•••:443 - 🇺🇸 United States Yes false Clean AS14618Amazon.com, Inc.Amazon Web Services14/03/2026, 00:26:0414/03/2026, 01:56:09 - - ----
45.8.114.•••:18789 - 🇯🇵 Japan Yes false Clean AS3258xTom Japan Corporation365 Group LLC14/03/2026, 00:26:0406/06/2026, 03:27:09 Yes Yes Salt TyphoonCVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198504/04/2026, 17:43:02xtom.com
47.122.80.•••:18789 - 🇨🇳 China mainland Yes false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft14/03/2026, 00:26:0417/04/2026, 07:52:30 No No -CVE-2025-2341930/03/2026, 19:00:45-
43.133.174.•••:18789 - 🇯🇵 Japan Yes false Clean AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd14/03/2026, 00:26:0425/03/2026, 11:03:39 - - ----
95.111.224.•••:18789 - 🇫🇷 France Yes false Clean AS51167Contabo GmbHContabo14/03/2026, 00:26:0417/04/2026, 08:37:24 No Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-638731/03/2026, 01:32:26-
180.76.239.•••:18789 Assistant 🇨🇳 China mainland Yes false Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu14/03/2026, 00:26:0407/04/2026, 09:33:31 Yes Yes APT15, APT17, APT28, APT31, APT37, Bitter APT, Bluenoroff, Callisto Group, Donot Team, DragonFly, El-Machete, Gamaredon Group, Gaza Cybergang, Gozi, Inception Framework, Kimsuky, MuddyWater Group, Packrat, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APTCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198504/04/2026, 08:47:08baidu.com
39.96.164.•••:18789 - 🇨🇳 China mainland Yes false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft14/03/2026, 00:26:0414/03/2026, 01:56:09 - - ----
156.241.99.•••:18789 - 🇭🇰 Hong Kong Yes false Leaked AS135097LUOGELANG (FRANCE) LIMITEDCloudFly Net Inc14/03/2026, 00:26:0404/06/2026, 23:08:41 Yes No --10/04/2026, 14:46:30cgmprecast.com, fuhuake.com, abpincorp.com, jekotrade.com, bopcon.com, boyu-group.com, qd-baolian.com, csofam.com, jiabinnu.com, kfstock.com, klmymmyc.com, hnbeixiang.com, xjjingyoga.com, 1haojiyin.com, detongwiremesh.com, dgclh.com, lstcarbon.com, ttstest.com, gaetanasnyc.com, yhjgkeji.com, bierte.com, ttyt360.com, fdlmb.com, zgkaite.com, turnoutservices.com, zjdddl.com, zjhrbz.com, bain86.com, impresosmonterrey.com, shworldbest.com, dongguansenzi.com
122.51.219.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0414/03/2026, 01:56:09 - - ----
43.98.157.•••:18789 - 🇸🇬 Singapore Yes false Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud Singapore14/03/2026, 00:26:0414/03/2026, 01:56:09 - - ----
43.160.235.•••:18789 - 🇸🇬 Singapore Yes false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd14/03/2026, 00:26:0406/06/2026, 00:38:45 Yes No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198503/04/2026, 21:00:56tencent.com
115.190.130.•••:8080 - 🇨🇳 China mainland Yes false Clean AS137718Beijing Volcano Engine Technology Co., Ltd.Beijing Volcano Engine Technology14/03/2026, 00:26:0405/06/2026, 05:28:54 No No -CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 08:08:35-
81.70.241.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing14/03/2026, 00:26:0404/06/2026, 21:44:25 No Yes APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-36368, CVE-2021-4161721/03/2026, 00:54:56-
36.103.199.•••:18789 - 🇨🇳 China mainland Yes false Clean AS134761CHINANET NINGXIA province ZHONGWEI IDC networkChinaNet Ningxia14/03/2026, 00:26:0413/04/2026, 16:29:58 No No -CVE-2022-24735, CVE-2022-24736, CVE-2022-24834, CVE-2022-35977, CVE-2022-36021, CVE-2022-3647, CVE-2023-22458, CVE-2023-25155, CVE-2023-28531, CVE-2023-28856, CVE-2023-38408, CVE-2023-45145, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-31228, CVE-2024-31449, CVE-2024-46981, CVE-2024-6387, CVE-2025-21605, CVE-2025-26465, CVE-2025-32023, CVE-2025-32728, CVE-2025-46686, CVE-2025-46817, CVE-2025-46818, CVE-2025-46819, CVE-2025-48367, CVE-2025-49844, CVE-2025-61984, CVE-2025-6198531/03/2026, 17:18:40-
49.232.58.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0406/06/2026, 09:46:22 Yes No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198516/03/2026, 18:11:55tencent.com
213.35.97.•••:18789 - 🇺🇸 United States Yes false Clean AS31898Oracle CorporationOracle Sweden14/03/2026, 00:26:0416/03/2026, 18:08:19 - - ----
158.180.66.•••:18789 - 🇺🇸 United States Yes false Clean AS31898Oracle CorporationOracle14/03/2026, 00:26:0414/03/2026, 01:56:09 - - ----
118.89.16.•••:443 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0416/03/2026, 18:08:10 - - ----
193.112.62.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing14/03/2026, 00:26:0414/03/2026, 01:56:09 - - ----
106.53.170.•••:443 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0406/06/2026, 08:21:43 Yes No -CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-2341918/03/2026, 08:16:50tencent.com
49.234.46.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0406/06/2026, 16:46:37 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161705/04/2026, 03:24:34tencent.com
117.72.50.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS141679China Telecom Beijing Tianjin Hebei Big Data Industry Park BranchJD.com14/03/2026, 00:26:0412/04/2026, 23:54:59 Yes No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/04/2026, 23:23:44jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com
122.51.140.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0414/03/2026, 01:56:09 - - ----
139.59.99.•••:18789 - 🇸🇬 Singapore Yes false Clean AS14061DigitalOcean, LLCDigitalOcean14/03/2026, 00:26:0414/03/2026, 01:56:09 - - ----
103.67.244.•••:18789 - 🇮🇳 India Yes false Leaked AS138115PT DenevaWowway Labs14/03/2026, 00:26:0412/04/2026, 23:53:56 Yes No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198503/04/2026, 06:00:57ipxo.com
118.25.150.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing14/03/2026, 00:26:0404/06/2026, 03:01:25 Yes - --01/04/2026, 13:27:59tencent.com
161.97.123.•••:18789 - 🇫🇷 France Yes false Leaked AS51167Contabo GmbHContabo14/03/2026, 00:26:0412/04/2026, 23:54:18 Yes Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 16:27:46contabo.de, contabo.net
103.52.153.•••:18789 - 🇭🇰 Hong Kong Yes false Clean AS401701cognetcloud INCVapeliner Technology (HK) Limited14/03/2026, 00:26:0414/03/2026, 01:56:09 - - ----
111.229.31.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0414/03/2026, 01:56:09 - - ----
43.160.229.•••:18789 - 🇸🇬 Singapore Yes false Clean AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd14/03/2026, 00:26:0414/03/2026, 01:56:09 - - ----
157.180.108.•••:18789 - 🇫🇮 Finland Yes false Clean AS24940Hetzner Online GmbHHetzner14/03/2026, 00:26:0301/04/2026, 13:25:25 - - ----
3.17.166.•••:443 - 🇺🇸 United States Yes false Clean AS16509Amazon.com, Inc.Amazon14/03/2026, 00:26:0317/04/2026, 23:59:16 No No --08/03/2026, 01:12:15-
180.76.111.•••:18789 咕咕嘎嘎 (Gugugaga) (🐧) 🇨🇳 China mainland Yes false Clean AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu14/03/2026, 00:26:0329/03/2026, 20:47:17 - - ----
138.197.117.•••:18789 Claw (📈) 🇺🇸 United States Yes false Clean AS14061DigitalOcean, LLCDigitalOcean14/03/2026, 00:26:0305/06/2026, 11:50:22 No Yes APT15, APT28, APT31, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow BrokersCVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198507/04/2026, 17:14:58-
45.55.82.•••:443 - 🇺🇸 United States Yes false Clean AS14061DigitalOcean, LLCDigitalOcean14/03/2026, 00:26:0317/04/2026, 10:07:15 No No --12/03/2026, 09:48:53-
46.202.208.•••:443 - 🇺🇸 United States Yes false Clean AS7488CNServer LLCETClouds Limited14/03/2026, 00:26:0316/04/2026, 16:02:14 No No -CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/04/2026, 14:26:35-
129.159.32.•••:18789 - 🇺🇸 United States Yes false Leaked AS31898Oracle CorporationOracle14/03/2026, 00:26:0317/04/2026, 23:59:16 Yes Yes Salt TyphoonCVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198516/03/2026, 17:23:45healtheintent.com, purewellness.com, cerner.ae, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
139.59.227.•••:443 - 🇸🇬 Singapore Yes false Clean AS14061DigitalOcean, LLCDigitalOcean14/03/2026, 00:26:0315/04/2026, 13:31:55 No Yes APT-C-23, APT1 Comment Crew, APT15, APT27, APT28, APT29, APT31, APT34, APT35, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Earth Longzhi, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon, WildCard APTCVE-2015-9251, CVE-2016-20012, CVE-2019-11358, CVE-2020-11022, CVE-2020-11023, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-23064, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-40468, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-40533, CVE-2023-44487, CVE-2023-48795, CVE-2023-49606, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/04/2026, 17:14:08-
62.171.159.•••:18789 - 🇫🇷 France Yes false Leaked AS51167Contabo GmbHContabo14/03/2026, 00:26:0311/04/2026, 22:35:18 Yes Yes APT-C-23, APT10, APT14, APT15, APT19, APT27, APT28, APT29, APT30, APT31, APT33, APT34, APT35, APT37, APT39, APT40, APT41, APT5, AQUATIC PANDA, Antlion APT, BRONZE ATLAS, Bitter APT, Bluenoroff, Bronze Butler APT, Buhtrap Group, Callisto Group, Carbanak, Cobalt Group, CopyKittens, DarkHydrus, Donot Team, DragonOK APT, Earth Berberoka, Energetic Bear, Equation Group, Gamaredon Group, Gaza Cybergang, Greenbug Group, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Konni Group, Lazarus Group, Moses Staff APT, MuddyWater Group, Mustang Panda, Orangeworm, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, Silence Hacker Group, TA428, TA505, The Shadow Brokers, Thrip APT, Triton APT, Tropic Trooper, UNC2452, Volatile Kitten, Volt Typhoon, WIRTECVE-2006-20001, CVE-2013-0179, CVE-2013-7239, CVE-2013-7290, CVE-2013-7291, CVE-2014-3562, CVE-2014-4650, CVE-2015-3456, CVE-2015-5741, CVE-2015-6815, CVE-2016-10708, CVE-2016-20012, CVE-2016-2124, CVE-2016-2183, CVE-2016-6662, CVE-2016-8704, CVE-2016-8705, CVE-2016-8706, CVE-2017-1000376, CVE-2017-15906, CVE-2017-5645, CVE-2017-8923, CVE-2017-9951, CVE-2017-9953, CVE-2018-1000127, CVE-2018-1059, CVE-2018-10869, CVE-2018-10892, CVE-2018-10926, CVE-2018-1111, CVE-2018-1128, CVE-2018-1129, CVE-2018-14462, CVE-2018-14463, CVE-2018-14465, CVE-2018-14469, CVE-2018-14622, CVE-2018-14645, CVE-2018-14879, CVE-2018-14882, CVE-2018-15473, CVE-2018-15919, CVE-2018-16229, CVE-2018-16540, CVE-2018-16871, CVE-2018-17456, CVE-2018-18311, CVE-2018-20615, CVE-2018-20685, CVE-2018-3665, CVE-2018-3760, CVE-2018-5741, CVE-2018-5743, CVE-2018-5744, CVE-2019-10196, CVE-2019-11038, CVE-2019-11048, CVE-2019-11477, CVE-2019-11478, CVE-2019-14813, CVE-2019-14816, CVE-2019-14907, CVE-2019-19906, CVE-2019-3459, CVE-2019-3880, CVE-2019-5798, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6470, CVE-2019-6471, CVE-2019-6974, CVE-2019-7221, CVE-2019-7317, CVE-2020-10696, CVE-2020-10711, CVE-2020-10749, CVE-2020-10756, CVE-2020-10763, CVE-2020-14145, CVE-2020-14318, CVE-2020-14355, CVE-2020-14364, CVE-2020-14370, CVE-2020-14394, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707, CVE-2020-15778, CVE-2020-1711, CVE-2020-25639, CVE-2020-25657, CVE-2020-25710, CVE-2020-25717, CVE-2020-25743, CVE-2020-27777, CVE-2020-27786, CVE-2020-27827, CVE-2020-35518, CVE-2020-35524, CVE-2020-7067, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2020-8616, CVE-2020-8617, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-20179, CVE-2021-20188, CVE-2021-20229, CVE-2021-20236, CVE-2021-20270, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-32027, CVE-2021-33193, CVE-2021-34798, CVE-2021-3516, CVE-2021-3532, CVE-2021-3533, CVE-2021-3537, CVE-2021-36160, CVE-2021-3621, CVE-2021-36368, CVE-2021-3669, CVE-2021-3737, CVE-2021-3752, CVE-2021-39275, CVE-2021-40438, CVE-2021-4104, CVE-2021-41617, CVE-2021-41817, CVE-2021-44142, CVE-2021-44224, CVE-2021-44790, CVE-2021-45417, CVE-2022-0711, CVE-2022-1011, CVE-2022-1227, CVE-2022-1708, CVE-2022-2132, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-2393, CVE-2022-23943, CVE-2022-26377, CVE-2022-2795, CVE-2022-28330, CVE-2022-2850, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-2989, CVE-2022-2990, CVE-2022-30556, CVE-2022-31628, CVE-2022-31629, CVE-2022-31813, CVE-2022-32545, CVE-2022-32546, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2022-38177, CVE-2022-38178, CVE-2023-25690, CVE-2023-27522, CVE-2023-2828, CVE-2023-31122, CVE-2023-3341, CVE-2023-38408, CVE-2023-38709, CVE-2023-4408, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2023-5680, CVE-2024-1737, CVE-2024-1975, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-4577, CVE-2024-6387, CVE-2024-7347, CVE-2025-2646631/03/2026, 06:04:29contabo.de, contabo.net
101.32.116.•••:18789 - 🇸🇬 Singapore Yes false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd14/03/2026, 00:26:0307/04/2026, 04:19:20 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2014-4078, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198503/04/2026, 23:18:08tencent.com
180.76.144.•••:18789 - 🇨🇳 China mainland Yes false Clean AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu14/03/2026, 00:26:0314/03/2026, 01:56:08 - - ----
118.89.136.•••:443 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0316/03/2026, 18:07:25 - - ----
175.178.206.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0314/03/2026, 01:56:08 - - ----
106.15.109.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft14/03/2026, 00:26:0306/06/2026, 20:59:11 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198503/04/2026, 13:32:45aliyun.com
101.37.158.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft14/03/2026, 00:26:0316/04/2026, 16:02:29 Yes No --04/04/2026, 12:31:18aliyun.com
106.53.119.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0305/06/2026, 06:11:17 Yes Yes APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt TyphoonCVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-734701/04/2026, 01:25:06tencent.com
3.210.203.•••:443 - 🇺🇸 United States Yes false Clean AS14618Amazon.com, Inc.Amazon Web Services14/03/2026, 00:26:0314/03/2026, 01:56:08 - - ----
161.118.239.•••:8080 - 🇺🇸 United States Yes false Clean AS31898Oracle CorporationOracle14/03/2026, 00:26:0331/03/2026, 09:45:45 - - ----
111.228.25.•••:18789 - 🇨🇳 China mainland Yes false Clean AS141679China Telecom Beijing Tianjin Hebei Big Data Industry Park BranchJingdong Headquarters14/03/2026, 00:26:0322/03/2026, 15:20:01 - - ----
113.44.165.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS55990Huawei Cloud Service data centerHuawei Cloud14/03/2026, 00:26:0309/04/2026, 10:08:27 Yes - --16/03/2026, 18:08:51smartcom.cc, huawei.com, huaweidevice.com
60.204.187.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS55990Huawei Cloud Service data centerHuawei Cloud14/03/2026, 00:26:0312/04/2026, 16:26:23 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/04/2026, 23:34:57smartcom.cc, huawei.com, huaweidevice.com
211.159.173.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0305/06/2026, 19:40:29 Yes - --31/03/2026, 16:35:21tencent.com
223.109.143.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS56046China Mobile communications corporationChina Mobile14/03/2026, 00:26:0304/06/2026, 12:15:35 Yes No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198503/04/2026, 20:18:31chinamobile.com, chinamobile.cn
122.51.75.•••:443 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0306/06/2026, 16:04:25 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161701/04/2026, 00:59:55tencent.com
44.211.185.•••:443 - 🇺🇸 United States Yes false Clean AS14618Amazon.com, Inc.Amazon Web Services14/03/2026, 00:26:0306/06/2026, 20:16:59 No No --02/04/2026, 21:07:55-
120.48.5.•••:18789 - 🇺🇸 United States Yes false Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu14/03/2026, 00:26:0331/03/2026, 10:30:38 Yes Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, DragonFly, El-Machete, Gamaredon Group, Gaza Cybergang, Gozi, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138531/03/2026, 10:36:16baidu.com
111.229.164.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0306/06/2026, 05:33:10 Yes Yes APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt TyphoonCVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138513/04/2026, 15:45:07tencent.com
34.172.33.•••:18789 - 🇺🇸 United States Yes false Clean AS396982Google LLCGoogle14/03/2026, 00:26:0317/04/2026, 10:07:00 No No -CVE-2016-20012, CVE-2019-16905, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198505/04/2026, 14:20:49-
47.110.71.•••:18789 - 🇨🇳 China mainland Yes false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft14/03/2026, 00:26:0301/04/2026, 02:10:47 - - ----
123.207.13.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0305/06/2026, 08:18:09 Yes No --07/04/2026, 02:52:37tencent.com
69.165.72.•••:18789 - 🇻🇳 Vietnam Yes false Clean AS62468VpsQuan L.L.C.HK Cloud X-114/03/2026, 00:26:0311/04/2026, 02:41:10 No Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198505/04/2026, 09:50:20-
1.54.219.•••:443 - 🇻🇳 Vietnam Yes false Clean AS18403FPT Telecom CompanyFPT Telecom14/03/2026, 00:26:0314/03/2026, 01:56:08 - - ----
95.217.11.•••:443 - 🇫🇮 Finland Yes false Clean AS24940Hetzner Online GmbHHetzner Online14/03/2026, 00:26:0214/03/2026, 01:56:08 - - ----
42.193.113.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0213/04/2026, 18:45:23 - - ----
13.56.182.•••:18789 - 🇺🇸 United States Yes false Clean AS16509Amazon.com, Inc.Amazon14/03/2026, 00:26:0214/03/2026, 01:56:08 - - ----
120.48.45.•••:18789 - 🇺🇸 United States Yes false Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu14/03/2026, 00:26:0206/04/2026, 05:14:26 Yes Yes APT17, APT37, DragonFly, El-Machete, Gozi, Packrat-02/04/2026, 04:28:02baidu.com
103.59.103.•••:18789 - 🇭🇰 Hong Kong Yes false Clean AS55933Cloudie LimitedYisu Hutong Network Technology14/03/2026, 00:26:0205/06/2026, 16:49:34 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198504/04/2026, 08:03:43foxmail.com
120.48.61.•••:18789 卡卡 (Kaka) (🐧) 🇺🇸 United States Yes false Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu14/03/2026, 00:26:0207/04/2026, 02:49:23 Yes Yes APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28651, CVE-2021-28652, CVE-2021-28662, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41317, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198504/04/2026, 06:13:29baidu.com
8.166.141.•••:18789 - 🇸🇬 Singapore Yes false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alibaba Cloud14/03/2026, 00:26:0214/03/2026, 01:56:07 - - ----
120.48.56.•••:18789 Assistant 🇺🇸 United States Yes false Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu14/03/2026, 00:26:0205/04/2026, 09:49:51 Yes Yes APT17, APT37, DragonFly, El-Machete, Gozi, Packrat-30/03/2026, 08:43:04baidu.com
1.14.47.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0206/06/2026, 00:38:44 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161701/04/2026, 09:40:24tencent.com
57.180.68.•••:80 - 🇯🇵 Japan Yes false Clean AS16509Amazon.com, Inc.Amazon Web Services Japan14/03/2026, 00:26:0214/03/2026, 01:56:07 - - ----
103.137.248.•••:18789 - 🇳🇱 Netherlands Yes false Leaked AS216154CLODO CLOUD SERVICE CO. L.L.CClodo Cloud Service14/03/2026, 00:26:0222/05/2026, 13:14:15 Yes Yes APT17, APT36, APT37, APT45, Kimsuky, MuddyWater Group, SideWinder APTCVE-2023-31122, CVE-2023-3823, CVE-2023-3824, CVE-2023-38709, CVE-2023-43622, CVE-2023-45802, CVE-2024-11233, CVE-2024-11234, CVE-2024-11236, CVE-2024-1874, CVE-2024-2408, CVE-2024-24795, CVE-2024-27316, CVE-2024-2756, CVE-2024-3096, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-4577, CVE-2024-47252, CVE-2024-5458, CVE-2024-5585, CVE-2024-6387, CVE-2024-8925, CVE-2024-8926, CVE-2024-8927, CVE-2024-8929, CVE-2024-8932, CVE-2024-9026, CVE-2025-1217, CVE-2025-1219, CVE-2025-1220, CVE-2025-1734, CVE-2025-1735, CVE-2025-1736, CVE-2025-1861, CVE-2025-23048, CVE-2025-24529, CVE-2025-24530, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-61984, CVE-2025-61985, CVE-2025-649113/04/2026, 18:52:07fvds.ru
27.150.168.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS133774FuzhouChinaNet Fujian14/03/2026, 00:26:0215/04/2026, 13:30:44 Yes No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198501/04/2026, 01:09:12bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, chinaunicom.cn, 189free.cn, daqu.com.cn, ctyun.cn
122.51.170.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0205/06/2026, 10:25:35 Yes Yes APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, Volt Typhoon, WIRTECVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-4089822/03/2026, 12:20:47tencent.com
82.156.186.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing14/03/2026, 00:26:0205/06/2026, 01:15:30 No Yes APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161703/04/2026, 21:45:10-
38.60.162.•••:18789 - 🇺🇸 United States Yes false Clean AS138915Kaopu Cloud HK LimitedKaopu Cloud US14/03/2026, 00:26:0206/06/2026, 11:51:59 No Yes APT15, APT28, APT31, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APTCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198530/03/2026, 07:48:23-
43.156.21.•••:18789 - 🇸🇬 Singapore Yes false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd14/03/2026, 00:26:0204/06/2026, 15:48:09 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138501/04/2026, 01:25:56tencent.com
35.224.221.•••:80 - 🇺🇸 United States Yes false Clean AS396982Google LLCGoogle14/03/2026, 00:26:0207/06/2026, 01:11:39 No No -CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198510/04/2026, 09:47:33-
146.56.152.•••:2084 - 🇯🇵 Japan Yes false Clean AS31898Oracle CorporationOracle Corporation14/03/2026, 00:26:0214/03/2026, 01:56:07 - - ----
118.25.21.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing14/03/2026, 00:26:0205/06/2026, 01:15:27 Yes Yes APT37, El-Machete-04/04/2026, 11:49:43tencent.com
124.223.204.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud14/03/2026, 00:26:0208/04/2026, 11:37:25 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161727/03/2026, 08:01:28tencent.com
172.237.74.•••:8000 - 🇸🇬 Singapore Yes false Clean AS63949Akamai Connected CloudLinode14/03/2026, 00:26:0214/03/2026, 01:56:07 - - ----
212.64.16.•••:443 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing14/03/2026, 00:26:0207/06/2026, 01:11:42 No - --15/03/2026, 00:51:38-
154.40.58.•••:18789 - 🇺🇸 United States Yes false Clean AS979NetLab GlobalNetLab Global14/03/2026, 00:26:0210/04/2026, 13:58:45 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198510/04/2026, 14:02:41-
165.227.85.•••:443 - 🇺🇸 United States Yes false Clean AS14061DigitalOcean, LLCDigitalOcean14/03/2026, 00:26:0214/03/2026, 01:56:07 - - ----
43.138.2.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing14/03/2026, 00:26:0214/03/2026, 01:56:07 - - ----
188.166.28.•••:443 - 🇳🇱 Netherlands Yes false Clean AS14061DigitalOcean, LLCDigitalOcean14/03/2026, 00:26:0214/03/2026, 01:56:07 - - ----
94.74.110.•••:18789 - 🇸🇬 Singapore Yes false Clean AS136907HUAWEI CLOUDSHuawei Cloud Hong Kong14/03/2026, 00:26:0229/03/2026, 21:32:26 - - ----
43.156.229.•••:18789 - 🇸🇬 Singapore Yes false Clean AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd14/03/2026, 00:26:0221/03/2026, 00:07:17 - - ----
60.25.108.•••:18789 - 🇨🇳 China mainland Yes false Clean AS4837CHINA UNICOM China169 BackboneChina Unicom Tianjin14/03/2026, 00:26:0214/03/2026, 01:56:07 - - ----
118.196.69.•••:18789 - 🇨🇳 China mainland Yes false Clean AS137718Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)Beijing Volcano Engine Technology14/03/2026, 00:26:0214/03/2026, 01:56:07 - - ----
54.250.148.•••:443 - 🇯🇵 Japan Yes false Clean AS16509Amazon.com, Inc.Amazon14/03/2026, 00:26:0216/03/2026, 18:08:05 - - ----
43.160.215.•••:18789 - 🇸🇬 Singapore Yes false Clean AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd14/03/2026, 00:26:0214/03/2026, 01:56:07 - - ----
43.132.212.•••:18789 - 🇸🇬 Singapore Yes false Clean AS132203Tencent Building, Kejizhongyi Avenue6 Collyer Quay14/03/2026, 00:26:0208/04/2026, 07:51:12 - - ----
157.66.219.•••:443 - 🇻🇳 Vietnam Yes false Clean AS135918VIET DIGITAL TECHNOLOGY LIABILITY COMPANYEraCloud14/03/2026, 00:26:0204/06/2026, 14:22:52 No - -CVE-2016-20012, CVE-2019-6470, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-3272824/03/2026, 03:15:13-
147.93.6.•••:18789 - 🇩🇪 Germany Yes false Leaked AS40021Contabo Inc.Contabo14/03/2026, 00:26:0210/04/2026, 01:00:37 Yes No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198509/04/2026, 21:34:35contaboserver.net, contabo.de, contabo.net
43.106.70.•••:18789 - 🇸🇬 Singapore Yes false Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud Singapore14/03/2026, 00:26:0214/03/2026, 01:56:07 - - ----
46.225.115.•••:18789 - 🇩🇪 Germany Yes false Clean AS24940Hetzner Online GmbHHetzner14/03/2026, 00:26:0206/06/2026, 05:33:13 No No --26/03/2026, 15:44:10-
43.129.251.•••:18789 - 🇭🇰 Hong Kong Yes false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd14/03/2026, 00:26:0120/03/2026, 21:52:11 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161720/03/2026, 21:54:37tencent.com