🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 816988 Page: 4207 / 8170 (100 per page) Showing: 420601-420700 Last Imported: 03/05/2026, 10:53:53
Build With Vivgrid

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.

Explore Vivgrid
Showing page 4207 of 8170
Previous Next
Endpoint Assistant Name Country auth_requiredis_activehas_leaked_credsasnasn_nameorgfirst_seenlast_seenasi_has_breachasi_has_threat_actorasi_threat_actorsasi_cvesasi_enriched_atasi_domains
213.35.106.•••:18789 - 🇺🇸 United States Yes false Clean AS31898Oracle CorporationOracle Sweden06/03/2026, 13:17:3714/04/2026, 20:13:14 - - ----
13.232.207.•••:18789 - 🇮🇳 India - false Clean AS16509Amazon.com, Inc.Amazon Web Services06/03/2026, 13:17:3718/04/2026, 00:41:16 No No -CVE-2006-20001, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-65082, CVE-2025-6620003/05/2026, 03:52:08-
47.128.153.•••:18789 - 🇸🇬 Singapore - false Clean AS16509Amazon.com, Inc.Amazon Web Services06/03/2026, 13:17:3706/03/2026, 20:03:59 - - ----
209.38.198.•••:18789 - 🇩🇪 Germany - false Clean AS14061DigitalOcean, LLCDigitalOcean06/03/2026, 13:17:3706/03/2026, 20:03:59 - - ----
180.76.137.•••:18789 Assistant 🇨🇳 China mainland Yes false Clean AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3710/03/2026, 18:14:07 - - ----
49.51.196.•••:18789 - 🇨🇳 China mainland - false Leaked AS132203Tencent Building, Kejizhongyi AvenueTencent Cloud06/03/2026, 13:17:3606/04/2026, 15:46:41 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-1322, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198518/03/2026, 05:15:20tencent.com
45.130.18.•••:18789 - 🇪🇸 Spain - false Clean AS56958Raiola Networks S.L.Raiola Networks06/03/2026, 13:17:3616/04/2026, 01:21:08 No No -CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198515/04/2026, 22:01:43-
82.157.250.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing06/03/2026, 13:17:3606/03/2026, 20:03:59 - - ----
107.174.67.•••:18789 - 🇺🇸 United States Yes false Leaked AS36352HostPapaHostPapa06/03/2026, 13:17:3617/04/2026, 20:56:23 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Salt Typhoon, Sandworm Team, The Shadow BrokersCVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/03/2026, 17:06:11hostpapa.com
119.91.64.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3609/04/2026, 12:20:20 - - ----
43.156.123.•••:18789 - 🇸🇬 Singapore Yes false Clean AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd06/03/2026, 13:17:3605/04/2026, 21:44:00 - - ----
82.157.192.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing06/03/2026, 13:17:3606/04/2026, 03:43:08 No Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-638731/03/2026, 04:30:20-
175.178.25.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3617/04/2026, 21:42:04 - - ----
47.106.186.•••:18789 - 🇨🇳 China mainland Yes false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft06/03/2026, 13:17:3618/03/2026, 14:16:47 No Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-3272812/03/2026, 17:47:28-
23.141.172.•••:18789 - 🇭🇰 Hong Kong Yes false Clean AS979NetLab GlobalVortexion DynC 0206/03/2026, 13:17:3606/03/2026, 20:03:58 - - ----
136.111.81.•••:18789 - 🇺🇸 United States Yes false Clean AS396982Google LLCGoogle06/03/2026, 13:17:3606/03/2026, 20:03:58 - - ----
120.48.153.•••:18789 Assistant 🇺🇸 United States Yes false Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3605/04/2026, 08:17:23 Yes Yes APT37, El-Machete, Gozi-21/03/2026, 08:22:04baidu.com
120.48.143.•••:18789 贾维斯 (Jarvis) (🤖) 🇺🇸 United States Yes false Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3605/04/2026, 06:48:10 Yes Yes APT28, APT37, APT41, El-Machete, Equation Group, GoziCVE-2010-4478, CVE-2010-5107, CVE-2011-4327, CVE-2011-5000, CVE-2012-0814, CVE-2016-0777, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198515/03/2026, 21:27:40baidu.com
45.39.210.•••:18789 - 🇳🇱 Netherlands Yes false Clean AS268624Gamers Club LtdaEGI Hosting06/03/2026, 13:17:3627/03/2026, 10:08:45 - - ----
120.48.148.•••:18789 Assistant 🇺🇸 United States Yes false Clean AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3606/03/2026, 20:03:58 - - ----
63.180.176.•••:18789 - 🇩🇪 Germany - false Clean AS16509Amazon.com, Inc.A100 ROW06/03/2026, 13:17:3616/04/2026, 23:33:17 - - ----
180.76.57.•••:18789 Assistant 🇨🇳 China mainland Yes false Clean AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3606/03/2026, 20:03:58 - - ----
43.153.202.•••:18789 - 🇸🇬 Singapore - false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd06/03/2026, 13:17:3614/04/2026, 10:32:56 Yes Yes APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2006-20001, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198514/04/2026, 06:01:49tencent.com
120.48.152.•••:18789 Assistant 🇺🇸 United States Yes false Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3603/04/2026, 18:40:50 Yes No --01/04/2026, 01:26:40baidu.com
43.133.10.•••:18789 - 🇯🇵 Japan Yes false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd06/03/2026, 13:17:3617/04/2026, 19:25:54 Yes Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198514/04/2026, 03:04:12tencent.com
18.222.251.•••:18789 - 🇺🇸 United States Yes false Clean AS16509Amazon.com, Inc.Amazon06/03/2026, 13:17:3606/03/2026, 20:03:58 - - ----
43.156.125.•••:18789 - 🇸🇬 Singapore Yes false Clean AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd06/03/2026, 13:17:3621/03/2026, 10:33:32 - - ----
106.54.23.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3621/03/2026, 06:49:02 - - ----
5.223.69.•••:18789 - 🇸🇬 Singapore Yes false Leaked AS215859Hetzner Online GmbHHetzner Online06/03/2026, 13:17:3617/04/2026, 01:48:44 Yes No -CVE-2022-26691, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198502/04/2026, 20:56:06hetzner.com
13.135.139.•••:18789 - 🇬🇧 United Kingdom - false Clean AS16509Amazon.com, Inc.Amazon Web Services06/03/2026, 13:17:3613/03/2026, 05:23:57 - - ----
188.166.160.•••:18789 - 🇩🇪 Germany - false Clean AS14061DigitalOcean, LLCDigitalOcean06/03/2026, 13:17:3609/03/2026, 23:53:06 - - ----
159.75.238.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing06/03/2026, 13:17:3615/04/2026, 22:38:40 No Yes APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-4161710/04/2026, 04:04:45-
5.78.185.•••:18789 - 🇺🇸 United States Yes false Clean AS212317Hetzner Online GmbHHetzner Online06/03/2026, 13:17:3606/03/2026, 20:03:58 - - ----
80.225.231.•••:18789 - 🇺🇸 United States - false Clean AS31898Oracle CorporationOracle Sweden06/03/2026, 13:17:3611/04/2026, 10:51:31 - - ----
49.232.185.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3617/04/2026, 10:04:07 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-38177, CVE-2022-38178, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138507/04/2026, 17:38:52tencent.com
18.213.106.•••:18789 - 🇺🇸 United States - false Clean AS14618Amazon.com, Inc.Amazon06/03/2026, 13:17:3618/04/2026, 00:41:02 No No -CVE-2006-20001, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-6620014/04/2026, 10:33:35-
106.54.25.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3618/04/2026, 00:40:38 Yes No --15/03/2026, 11:47:53tencent.com
122.51.4.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3621/03/2026, 22:17:50 - - ----
120.48.77.•••:18789 Assistant 🇺🇸 United States Yes false Clean AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3606/03/2026, 20:03:58 - - ----
115.190.255.•••:18789 - 🇨🇳 China mainland Yes false Clean AS137718Beijing Volcano Engine Technology Co., Ltd.Beijing Volcano Engine Technology06/03/2026, 13:17:3617/04/2026, 01:48:43 - - ----
18.222.166.•••:18789 - 🇺🇸 United States - false Clean AS16509Amazon.com, Inc.Amazon06/03/2026, 13:17:3624/03/2026, 15:53:34 No Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-3272822/03/2026, 07:51:49-
16.176.10.•••:18789 - 🇦🇺 Australia - false Clean AS16509Amazon.com, Inc.Amazon Corporate Services06/03/2026, 13:17:3516/03/2026, 00:23:13 - - ----
43.163.206.•••:18789 - 🇸🇬 Singapore Yes false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd06/03/2026, 13:17:3515/04/2026, 22:38:44 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198510/04/2026, 04:14:08tencent.com
120.48.180.•••:18789 Assistant 🇺🇸 United States Yes false Clean AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3506/03/2026, 20:03:58 - - ----
104.224.155.•••:18789 - 🇺🇸 United States Yes false Clean AS210110Kvmcloud Network CO., LIMITED / AS25820 IT7 Networks IncIT7 Networks06/03/2026, 13:17:3521/03/2026, 10:33:53 No No --06/03/2026, 16:21:51-
8.153.111.•••:18789 - 🇸🇬 Singapore Yes false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alibaba Cloud06/03/2026, 13:17:3506/03/2026, 20:03:58 - - ----
120.48.52.•••:18789 Oclaw (😊) 🇺🇸 United States Yes false Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3517/04/2026, 00:18:21 Yes Yes APT17, APT37, DragonFly, El-Machete, Gozi, PackratCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198505/04/2026, 20:13:09baidu.com
18.218.37.•••:18789 - 🇺🇸 United States - false Clean AS16509Amazon.com, Inc.Amazon06/03/2026, 13:17:3509/03/2026, 23:52:54 No No -CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198509/03/2026, 20:08:38-
43.130.36.•••:18789 - 🇸🇬 Singapore Yes false Leaked AS132203Tencent Building, Kejizhongyi Avenue6 Collyer Quay06/03/2026, 13:17:3520/03/2026, 20:18:18 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm TeamCVE-2013-4352, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/03/2026, 07:23:59tencent.com
120.48.10.•••:18789 Assistant 🇺🇸 United States Yes false Clean AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3506/03/2026, 20:03:58 - - ----
111.228.1.•••:18789 - 🇨🇳 China mainland Yes false Clean AS141679China Telecom Beijing Tianjin Hebei Big Data Industry Park BranchJingdong Headquarters06/03/2026, 13:17:3506/03/2026, 23:02:21 - - ----
193.112.251.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing06/03/2026, 13:17:3512/03/2026, 20:47:39 - - ----
129.204.56.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing06/03/2026, 13:17:3505/04/2026, 13:31:05 - - ----
42.192.210.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3512/04/2026, 23:52:11 Yes No --06/03/2026, 18:37:06tencent.com
120.48.145.•••:18789 Assistant 🇺🇸 United States Yes false Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3503/04/2026, 16:26:11 Yes Yes APT37, El-Machete, GoziCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-4161721/03/2026, 08:22:06baidu.com
111.229.191.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3513/03/2026, 06:47:58 - - ----
61.164.212.•••:18789 - 🇨🇳 China mainland Yes false Clean AS58461No.288,Fu-chun RoadJiaxing Xinda Electronics06/03/2026, 13:17:3506/03/2026, 20:03:57 - - ----
139.180.135.•••:18789 - 🇸🇬 Singapore Yes false Clean AS20473The Constant Company, LLCThe Constant Company06/03/2026, 13:17:3516/04/2026, 16:45:02 No Yes APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, DragonFly, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Volt Typhoon, WIRTECVE-2006-20001, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198512/03/2026, 11:50:12-
47.90.132.•••:18789 - 🇨🇳 China mainland - false Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud US06/03/2026, 13:17:3507/04/2026, 04:16:37 - - ----
115.224.154.•••:18789 - 🇨🇳 China mainland Yes false Clean AS4134ChinanetChinaNet Shaoxing06/03/2026, 13:17:3509/03/2026, 15:04:20 - - ----
120.48.151.•••:18789 Assistant 🇺🇸 United States Yes false Clean AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3406/03/2026, 20:03:57 - - ----
180.76.184.•••:18789 Assistant 🇨🇳 China mainland Yes false Clean AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3406/03/2026, 20:03:57 - - ----
117.204.205.•••:18789 Jarvis (🦾) 🇮🇳 India Yes false Clean AS9829National Internet BackboneBSNL Broadband Multiplay Project06/03/2026, 13:17:3406/03/2026, 20:03:57 - - ----
111.229.191.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3417/04/2026, 06:19:18 Yes - --12/03/2026, 09:37:53tencent.com
46.225.225.•••:18789 - 🇩🇪 Germany Yes false Clean AS24940Hetzner Online GmbHHetzner06/03/2026, 13:17:3418/04/2026, 00:40:13 No No --06/03/2026, 05:54:03-
156.67.31.•••:18789 - 🇩🇪 Germany Yes false Leaked AS51167Contabo GmbHContabo06/03/2026, 13:17:3418/04/2026, 00:40:40 Yes Yes APT-C-23, APT36, Cobalt Group, Equation Group, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt TyphoonCVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198524/03/2026, 15:11:12contabo.de, contabo.net
123.56.203.•••:18789 - 🇨🇳 China mainland Yes false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft06/03/2026, 13:17:3406/03/2026, 20:03:57 - - ----
150.109.32.•••:18789 - 🇭🇰 Hong Kong Yes false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd06/03/2026, 13:17:3418/04/2026, 00:40:15 Yes Yes APT37, El-MacheteCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/03/2026, 16:21:50tencent.com
110.40.212.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3416/04/2026, 01:20:29 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2014-4078, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138506/03/2026, 20:49:45tencent.com
81.69.178.•••:18789 - 🇨🇳 China mainland - false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing06/03/2026, 13:17:3412/03/2026, 18:34:20 - - ----
43.156.226.•••:18789 - 🇸🇬 Singapore Yes false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd06/03/2026, 13:17:3424/03/2026, 10:39:23 Yes Yes APT-C-23, APT15, APT28, APT29, APT31, APT32, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Careto APT, Cobalt Group, Donot Team, El-Machete, Emennet Pasargad, Emennet Pasargard, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon, WildCard APTCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-11784, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-0199, CVE-2019-0221, CVE-2019-0232, CVE-2019-10072, CVE-2019-12418, CVE-2019-16905, CVE-2019-17563, CVE-2019-2684, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11996, CVE-2020-12062, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-14145, CVE-2020-15778, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-8022, CVE-2020-9484, CVE-2021-23017, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-28041, CVE-2021-30640, CVE-2021-33037, CVE-2021-3618, CVE-2021-36368, CVE-2021-41079, CVE-2021-41617, CVE-2021-43980, CVE-2022-25762, CVE-2022-41741, CVE-2022-41742, CVE-2022-42252, CVE-2023-28708, CVE-2023-38408, CVE-2023-41080, CVE-2023-42795, CVE-2023-44487, CVE-2023-45648, CVE-2023-46589, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-21733, CVE-2024-23672, CVE-2024-24549, CVE-2024-34750, CVE-2024-52316, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/03/2026, 20:49:50tencent.com
135.181.198.•••:18789 - 🇫🇮 Finland - false Leaked AS24940Hetzner Online GmbHHetzner Online06/03/2026, 13:17:3406/03/2026, 20:49:00 Yes No -CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/03/2026, 20:49:51hetzner.com, cprapid.com
129.204.86.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing06/03/2026, 13:17:3409/03/2026, 23:52:13 No Yes APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-6620006/03/2026, 20:49:54-
115.190.9.•••:18789 - 🇨🇳 China mainland - false Clean AS137718Beijing Volcano Engine Technology Co., Ltd.Beijing Volcano Engine Technology06/03/2026, 13:17:3429/03/2026, 23:43:07 No No --28/02/2026, 20:49:56-
106.75.239.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS17621China Unicom Shanghai network / AS4811 China Telecom (Group)UCloud06/03/2026, 13:17:3406/03/2026, 20:49:00 Yes No -CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/03/2026, 20:49:57ucloud.cn
217.177.72.•••:18789 - 🇩🇪 Germany - false Clean AS44051Fornex Hosting S.L.Fornex06/03/2026, 13:17:3416/04/2026, 09:23:48 No No --28/02/2026, 20:49:58-
49.232.149.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3409/03/2026, 22:23:38 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-5138506/03/2026, 20:49:59tencent.com
43.136.115.•••:18789 - 🇨🇳 China mainland - false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing06/03/2026, 13:17:3418/03/2026, 14:16:40 Yes Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138506/03/2026, 20:50:00tencent.com
103.144.246.•••:18789 - 🇭🇰 Hong Kong Yes false Clean AS138152YISU CLOUD LTDXinkai Technology06/03/2026, 13:17:3406/03/2026, 23:02:59 No Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/03/2026, 20:50:03-
49.234.199.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3418/04/2026, 00:40:30 Yes No --06/03/2026, 20:50:05tencent.com
43.98.248.•••:18789 - 🇸🇬 Singapore Yes false Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud Singapore06/03/2026, 13:17:3418/03/2026, 12:02:06 - - ----
43.130.40.•••:18789 - 🇸🇬 Singapore Yes false Leaked AS132203Tencent Building, Kejizhongyi Avenue6 Collyer Quay06/03/2026, 13:17:3406/03/2026, 20:49:00 Yes - -CVE-2014-4078, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/03/2026, 20:50:07tencent.com
2605:a140:2294:2755::1:18789 - 🇺🇸 United States - false Clean AS40021Contabo Inc.Contabo06/03/2026, 13:17:3415/04/2026, 01:31:51 - - ----
182.254.182.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3416/04/2026, 22:48:23 - - ----
195.201.30.•••:18789 - 🇩🇪 Germany Yes false Leaked AS24940Hetzner Online GmbHHetzner Online06/03/2026, 13:17:3417/04/2026, 10:03:18 Yes Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/03/2026, 20:50:19hetzner.com
124.222.92.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3420/03/2026, 19:33:16 Yes Yes APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt TyphoonCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24990, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-638706/03/2026, 20:50:21tencent.com
46.225.72.•••:18789 - 🇩🇪 Germany Yes false Clean AS24940Hetzner Online GmbHHetzner06/03/2026, 13:17:3316/04/2026, 01:20:02 - - ----
221.238.217.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS17638ASN for TIANJIN Provincial Net of CTChinaNet Tianjin06/03/2026, 13:17:3318/04/2026, 00:41:11 Yes Yes APT-C-23, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt TyphoonCVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/03/2026, 20:50:31bj189.cn, 118114.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, daqu.com.cn, ctyun.cn
3.72.2.•••:18789 - 🇩🇪 Germany - false Clean AS16509Amazon.com, Inc.A100 ROW06/03/2026, 13:17:3306/03/2026, 20:49:00 No Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-4161706/03/2026, 20:50:33-
47.92.219.•••:18789 - 🇨🇳 China mainland - false Clean AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft06/03/2026, 13:17:3306/03/2026, 20:49:00 No No --28/02/2026, 20:50:35-
43.156.163.•••:18789 - 🇸🇬 Singapore Yes false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd06/03/2026, 13:17:3325/03/2026, 11:00:58 Yes Yes APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-20012, CVE-2019-6470, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-3341, CVE-2023-38408, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-638706/03/2026, 20:50:36tencent.com
152.136.99.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud Computing06/03/2026, 13:17:3317/04/2026, 10:04:23 No Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-5138506/03/2026, 20:50:37-
45.39.210.•••:18789 - 🇳🇱 Netherlands Yes false Leaked AS268624Gamers Club LtdaEGI Hosting06/03/2026, 13:17:3306/03/2026, 20:49:00 Yes Yes APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow BrokersCVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/03/2026, 20:50:39egihosting.com
139.155.145.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45090Shenzhen Tencent Computer Systems Company LimitedTencent Cloud06/03/2026, 13:17:3316/03/2026, 00:23:50 No Yes APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt TyphoonCVE-2014-4078, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-5138506/03/2026, 20:50:41-
46.225.54.•••:18789 - 🇩🇪 Germany Yes false Clean AS24940Hetzner Online GmbHHetzner06/03/2026, 13:17:3321/03/2026, 22:17:57 No No -CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/03/2026, 20:50:45-
120.48.147.•••:18789 Assistant 🇺🇸 United States Yes false Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3305/04/2026, 18:44:17 Yes Yes El-MacheteCVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-4161706/03/2026, 20:50:51baidu.com
39.105.192.•••:18789 - 🇨🇳 China mainland Yes false Leaked AS37963Hangzhou Alibaba Advertising Co.,Ltd.Alisoft06/03/2026, 13:17:3306/03/2026, 20:48:59 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-14177, CVE-2025-14178, CVE-2025-14180, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-6620006/03/2026, 20:50:53aliyun.com
47.82.221.•••:18789 - 🇨🇳 China mainland Yes false Clean AS45102Alibaba (US) Technology Co., Ltd.Alibaba Cloud06/03/2026, 13:17:3324/03/2026, 15:53:39 - - ----
43.155.184.•••:18789 - 🇸🇬 Singapore Yes false Leaked AS132203Tencent Building, Kejizhongyi AvenueAceville Pte Ltd06/03/2026, 13:17:3314/04/2026, 19:26:58 Yes Yes APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt TyphoonCVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-6198506/03/2026, 20:50:56tencent.com
106.13.229.•••:18789 Assistant 🇨🇳 China mainland Yes false Leaked AS38365Beijing Baidu Netcom Science and Technology Co., Ltd.Baidu06/03/2026, 13:17:3305/04/2026, 12:46:28 Yes Yes APT17, APT37, DragonFly, El-Machete, Gozi, Packrat-06/03/2026, 20:50:57baidu.com