🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 816988 Page: 5981 / 8170 (100 per page) Showing: 598001-598100 Last Imported: 15/05/2026, 09:32:33

🇨🇳 425,761

🇺🇸 231,518

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
106.54.243.•••:18789	小智 (🤖)	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	15/02/2026, 19:09:14	10/03/2026, 21:15:51	Yes	-	-	-	22/02/2026, 01:16:36	bj189.cn, tencent.com
34.87.115.•••:18789	Itachi	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	15/02/2026, 19:09:14	06/03/2026, 23:05:40	No	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	19/02/2026, 17:58:28	-
106.12.40.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:09:14	28/02/2026, 17:25:39	Yes	Yes	APT17, APT28, APT37, APT40, APT41, Cobalt Group, DragonFly, Earth Berberoka, El-Machete, Energetic Bear, Equation Group, Gozi, Leafminer, Luckycat APT, Packrat, Sandworm Team	CVE-2010-1899, CVE-2010-2730, CVE-2010-3972	19/02/2026, 03:09:05	bj189.cn, baidu.com
43.136.96.•••:18789	小b仔 ((待定))	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	15/02/2026, 19:09:14	15/04/2026, 13:31:21	Yes	-	-	-	19/02/2026, 06:50:22	tencent.com
43.156.172.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	15/02/2026, 19:09:14	17/04/2026, 18:49:30	Yes	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	18/02/2026, 19:39:33	tencent.com
106.12.19.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:09:14	01/03/2026, 06:03:25	Yes	Yes	APT17, APT28, APT37, APT40, APT41, Cobalt Group, DragonFly, Earth Berberoka, El-Machete, Energetic Bear, Equation Group, Gozi, Leafminer, Luckycat APT, Packrat, Sandworm Team	CVE-2010-1899, CVE-2010-2730, CVE-2010-3972	19/02/2026, 00:05:53	bj189.cn, baidu.com
106.12.35.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:07:02	28/02/2026, 04:48:12	Yes	-	-	-	19/02/2026, 12:44:59	bj189.cn, baidu.com
2a02:4780:2d:ddc7::1:18789	-	🇺🇸 United States	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	15/02/2026, 19:06:58	16/02/2026, 11:18:21	-	-	-	-	-	-
106.12.20.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	28/02/2026, 08:29:34	-	-	-	-	-	-
106.13.168.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	27/02/2026, 23:37:15	-	-	-	-	-	-
106.13.185.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	27/02/2026, 09:52:02	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-36368, CVE-2021-41617, CVE-2021-42340, CVE-2022-23181, CVE-2022-29885, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-23672, CVE-2024-24549, CVE-2024-34750, CVE-2024-38286, CVE-2024-50379, CVE-2024-52316, CVE-2024-54677, CVE-2024-56337, CVE-2024-6387, CVE-2025-24813, CVE-2025-26465, CVE-2025-31650, CVE-2025-31651, CVE-2025-32728, CVE-2025-46701, CVE-2025-48988, CVE-2025-48989, CVE-2025-49124, CVE-2025-49125, CVE-2025-52434, CVE-2025-52520, CVE-2025-53506, CVE-2025-55668, CVE-2025-55752, CVE-2025-55754, CVE-2025-61795, CVE-2025-61984, CVE-2025-61985	19/02/2026, 14:57:26	bj189.cn, baidu.com
106.12.185.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	28/02/2026, 09:57:55	Yes	No	-	-	22/02/2026, 08:40:39	bj189.cn, baidu.com
180.76.225.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	14/03/2026, 01:54:03	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	20/02/2026, 06:36:23	tfn.net.tw, baidu.com
172.67.197.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS13335	Cloudflare, Inc.	Cloudflare	15/02/2026, 19:06:58	14/04/2026, 00:00:11	Yes	Yes	DragonFly	-	13/04/2026, 20:16:24	shedsforsalemagicvalley.com, beacongroup.com, cnlimited.com, fuyuanwj.com, jtsmanagement.com, finessebodywork.com, venancio.com, jxxlxj.com, cplpress.com, atlanticblueberry.com, classicelectricomaha.com, cgmprecast.com, shedsforsaleutah.com, sdkyjt.net, luckyplastic.net, qmscrushing.com, bikeweeksa.com, ics-line.com, carwiserc.ca, noblejet.net, stewartautoserviceinc.com, thedeliveryconnector.com, hzfeidi.com, ultimate-media.net, professionalroofinginc.com, ecwid.com, gusmerenterprises.com, fricksfashion.com, gelirortaklari.com, sz-jl.com, connective9.com, hoyavision.com.ar, sagatrek.com.br, hbbygd88.com, bitdefender.fr, advancedprojectservices.com, globalmattersgroup.com, fuhuake.com, cityfied.net, zuhan.com.br, cityofskyline.com, abpincorp.com, runnerautomobiles.com, rightwaytrading.net, wenchyuan.com, citypantry.com, anlink.net, jxygcy.com, buccosroofing.com, jekotrade.com, hmcxjc.com, jindianglass.net, swaasthya.com, shsinotech.com, vbankph.com, gipnutmeg.com, xjhhcm.com, bopcon.com, virginiatip.com, ytxweb.net, eastcountylawncare.com, alsuyar.net, chinasyh.net, boyu-group.com, lightspeedhq.nl, ekakitchen.com, wisehousetech.com, americasflood.com, panteratex.com, cloudflare.net, sugunapumps.com, frogtowncompanies.com, camyogi.in, hudson-technologies.com, qd-baolian.com, databrick.com, csofam.com, lighthousestudios.ie, elevenzero.com, cgdigitalprint.com.br, kidsbud.net, ews-inc.com, barnesbullets.com, customcolongisland.com, jxlingtong.com, americancanning.com, nardini.com, customoutdoorservices.com, marketwise.com, remingtonoutdoorcompany.com, hiltscustomrifles.com, altosdelchicala.com, baselinewoods.com, omniquip.com, gkmaidservices.com, jiabinnu.com, tamilcrew.com, sergiobelleza.com.br, pacific-cycle.com, eeguy.com, cleanzoneheating.com, alghanitex.com, qzz.io, kfstock.com, boxdayout.com, porcelainchina.net, koworksllc.net, iobconcursos.com, ginachlaw.com, brownsprinting.com, vilros.com, nuorder.com, jonellinc.com, m-printone.com, cloudhq-mkt6.net, valenciamoldremediation.us, bdnsrt.org, champmar-ec.com, femat.com.br, ravenorthopedics.com, forwardwirecloth.net, mendota.il.us, cclvcr.com, timing-tech.com, klmymmyc.com, owlsnesthouse.com, chicagostrings.com, chinasand.net, lakshayasilksarees.com, woodworksrefinish.com, thehomecomfortsolutions.com, aerosupplycargosadecv.com, pp.ua, hnbeixiang.com, chinayinshufood.com, countrytracehoa.com, fandbhomes.com, leisonhk.com, refee.net, xjzljt.net, xjjingyoga.com, dongfanggufen.net, sxgas.net, wakechem.com, mecavi.com, ascsoapworks.com, 1haojiyin.com, sinotransfj.com, durantco.com, webshopapp.com, dzrjx.net, modpackinc.com, skylinecontracting.net, specifiedpower.com, bamberg-legal.com, pmsigns.com, aptenonsjz.com, globalinternation.com, maryelexports.com, goldsmithpdg.com, detongwiremesh.com, jainind.com, sanhoos.com, muevafitness.com, chandlerdataprofessionals.com, gnvurbanart.com, dgclh.com, bamko.net, ausarabbusinesscouncil.com, rdrtr.com, creditop.com, lstcarbon.com, eastsacflorist.com, it.com, ttstest.com, just-eat.es, outbook.com, gaetanasnyc.com, oukay.net, elpasoatv.com, alegra.com, gastrofix.com, irrigationsystems4u.com, gonwg.com, aeromedical.com, yhjgkeji.com, bitdefender.com, arcosmartsensor.com, ociretail.com, oglesby.il.us, innatschofield.com, gregfishmanjazzstudios.com, china-one.net, techmercy.com, getransportation.com, kingdisplay.net, topseal.com, jssd.net, eu.org, scheduleme.org, bierte.com, jadzdjm.com, pprossmx.com, pesasybalanzas.com, shapersimage.com, voicecom.ec, prem-box.com, daniellopezdo.com, ttyt360.com, rgcinversiones.com.ar, paymentrevolution.com, gelais.com, mydhaga.com, ceytech.com, ellessco.com, tychedonca.com, upserve.com, rajnraj.net, herculesind.com, banddwalls.com, basis.org, zgkaite.com, turnoutservices.com, bitdefender.net, zjdddl.com, ranscustombuilders.com, drakeofficial.com, huadewood.com, wpmudev.org, buckleighwilliams.com, leverijllc.com, breadcrumb.com, shappz.com, savona.co.uk, oracle-ag.ch, eyes-armour.com, zjhrbz.com, zhaowoo.net, jiangsufuji.com, chedermenachem.org, lightspeedhq.fr, anmarinternational.com, genesisfl.com, centricltd.com, bestwanhui.com, outdoorkitchensnorthwest.com, shopsettings.com, dino-official.com, ermissolutions.com, superiorpatentgroup.com, chronogolf.com, getcreditcure.com, bain86.com, fxgowin.com, westfieldgolf.com, fnds3000.com, lightspeedpos.com, wpmudev.com, lensmam.com, azretractable.com, workers.dev, advanced-armament.com, kounta.com, genetikistanbul.com, cleverfoxpublishing.com, da3e3.net, newoceanfood.com, cmimoulding.com, memteks.com, dechuangjixie.com, lightspeedhq.com, mercantileins.com, product-audit.com.br, thenewthings.com, getreup.com, bholacpa.com, kreationery.com, tigerexpressfuel.com, bepeatery.com, jinpac.com, incsub.com, chestershd.com, ivpacks.com, 360-xj.com, robinsonfamilyrealty.com, xjwfcj.com, meshsecurity.io, chargingchargers.com, meeshamoultonlaw.com, eurospecservice.com, pollyholding.com, hclperot.com, anhuaabrasives.net, elementbodywork.com, 228859.com, parkplaceenergy.com, vendhq.com, impresosmonterrey.com, shworldbest.com, zsnet.net, plantation-ppl.com, dongguansenzi.com, dpmsinc.com, meridianoutboard.com, edublogs.org, carmaxbolivia.com, sdfengze.net, physnum.com, njwlimited.com, caprazsewing.com, china114.net, knkelectric.com, americanpridecrane.com, smartbuildings.com, denaliincorporated.com, wilbraz.com.br, hy189.net, dharacg.com, chinakangtai.net, shoplightspeed.com, apexmechanicalcorp.com, xjhongshun.com, ecomm.events, mellowacademy.com, loginport.com, geochem.org, eurolineinc.com, food-machines.net, lightspeedordering.com, equinaceaprodutosnaturais.com, dmln.net
106.13.164.•••:18789	小贝 (Xiao Bei) (/avatar/main)	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	16/02/2026, 11:18:21	-	-	-	-	-	-
4.198.152.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS8075	Microsoft Corporation	Microsoft	15/02/2026, 19:06:58	16/02/2026, 11:18:21	-	-	-	-	-	-
138.68.160.•••:18789	Assistant	🇬🇧 United Kingdom	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	15/02/2026, 19:06:58	16/04/2026, 21:18:00	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	17/02/2026, 23:34:02	-
106.12.27.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	28/02/2026, 00:21:34	-	-	-	-	-	-
106.12.190.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	01/03/2026, 02:17:48	Yes	Yes	APT-C-23, APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, DragonFly, El-Machete, Equation Group, Gamaredon Group, Gaza Cybergang, Gozi, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA428, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2015-9253, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2017-15945, CVE-2017-7272, CVE-2017-7963, CVE-2017-8923, CVE-2017-9225, CVE-2017-9229, CVE-2018-15473, CVE-2018-15919, CVE-2018-19395, CVE-2018-19396, CVE-2018-20685, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9023, CVE-2019-9024, CVE-2019-9517, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9641, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31628, CVE-2022-31629, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-4900, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-4577	19/02/2026, 14:58:29	bj189.cn, baidu.com
170.106.153.•••:18789	小文 (📋)	🇺🇸 United States	Yes	false	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	15/02/2026, 19:06:58	17/04/2026, 17:28:44	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	21/02/2026, 21:29:15	-
120.48.101.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	03/04/2026, 20:55:33	Yes	Yes	APT37, El-Machete, Gozi	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	22/03/2026, 07:52:56	baidu.com
44.208.151.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	15/02/2026, 19:06:58	16/02/2026, 11:18:21	-	-	-	-	-	-
46.224.231.•••:18789	J (🚀)	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	15/02/2026, 19:06:58	29/03/2026, 19:59:49	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	22/02/2026, 19:06:11	-
120.48.119.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	16/02/2026, 11:18:21	-	-	-	-	-	-
120.48.0.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	13/03/2026, 10:31:10	Yes	Yes	APT17, APT28, APT35, APT37, APT39, APT41, Cobalt Group, DragonFly, Earth Berberoka, El-Machete, Equation Group, Gozi, Inception Framework, Kimsuky, Mustang Panda, Packrat, Sandworm Team	CVE-2008-0455, CVE-2010-0434, CVE-2010-1452, CVE-2010-4478, CVE-2010-5107, CVE-2011-0419, CVE-2011-3192, CVE-2011-3348, CVE-2011-3368, CVE-2011-3607, CVE-2011-3639, CVE-2011-4317, CVE-2011-4327, CVE-2011-4415, CVE-2011-5000, CVE-2012-0031, CVE-2012-0053, CVE-2012-0814, CVE-2012-0883, CVE-2012-2687, CVE-2012-3499, CVE-2012-4557, CVE-2012-4558, CVE-2013-1862, CVE-2013-1896, CVE-2013-2249, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2016-0777, CVE-2016-4975, CVE-2016-5387, CVE-2016-8743, CVE-2017-15906, CVE-2017-3167, CVE-2017-3169, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1312	19/02/2026, 05:16:08	chinamobile.com, chinamobile.cn, baidu.com
104.224.159.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS210110	Kvmcloud Network CO., LIMITED / AS25820 IT7 Networks Inc	IT7 Networks	15/02/2026, 19:06:58	22/02/2026, 01:55:37	No	No	-	CVE-2023-28531, CVE-2023-36457, CVE-2023-36458, CVE-2023-37477, CVE-2023-38408, CVE-2023-39964, CVE-2023-39965, CVE-2023-39966, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-2352, CVE-2024-24768, CVE-2024-27288, CVE-2024-30257, CVE-2024-34352, CVE-2024-39907, CVE-2024-39911, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-34410, CVE-2025-34429, CVE-2025-34430, CVE-2025-54424, CVE-2025-56413, CVE-2025-61984, CVE-2025-61985, CVE-2025-66507, CVE-2025-66508	19/02/2026, 00:05:34	-
106.12.90.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	28/02/2026, 09:57:54	-	-	-	-	-	-
106.12.189.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	28/02/2026, 20:21:10	-	-	-	-	-	-
106.13.164.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	19/02/2026, 14:11:04	-	-	-	-	-	-
106.12.84.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	27/02/2026, 04:53:54	-	-	-	-	-	-
106.12.151.•••:18789	-	🇨🇳 China mainland	-	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	16/02/2026, 11:18:21	-	-	-	-	-	-
159.89.224.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	15/02/2026, 19:06:58	16/04/2026, 19:47:14	No	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1546, CVE-2016-3115, CVE-2016-4975, CVE-2016-4979, CVE-2016-5387, CVE-2016-6210, CVE-2016-6515, CVE-2016-8612, CVE-2016-8740, CVE-2016-8743, CVE-2016-8858, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-3169, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-14145, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-28531, CVE-2023-29323, CVE-2023-35784, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-6387	16/02/2026, 20:13:04	-
68.183.169.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	15/02/2026, 19:06:58	20/02/2026, 05:06:08	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2016-9589, CVE-2017-15906, CVE-2018-1047, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	16/02/2026, 20:13:07	-
43.128.111.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	15/02/2026, 19:06:58	26/02/2026, 17:06:33	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	17/02/2026, 05:37:15	tencent.com
137.184.9.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	15/02/2026, 19:06:58	17/02/2026, 03:20:39	No	Yes	APT-C-23, APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Turla APT Group, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	16/02/2026, 17:14:03	-
106.12.16.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	28/02/2026, 18:52:13	-	-	-	-	-	-
104.131.123.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	15/02/2026, 19:06:58	16/04/2026, 16:45:00	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	16/02/2026, 17:14:08	-
161.97.177.•••:18789	The Oracle (🔮)	🇫🇷 France	Yes	false	Clean	AS51167	Contabo GmbH	Contabo	15/02/2026, 19:06:58	16/02/2026, 11:18:21	-	-	-	-	-	-
106.12.45.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	28/02/2026, 15:09:33	-	-	-	-	-	-
106.12.185.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	27/02/2026, 09:52:00	Yes	No	-	-	24/02/2026, 14:31:55	bj189.cn, baidu.com
152.42.217.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	15/02/2026, 19:06:58	18/04/2026, 00:41:18	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	16/02/2026, 20:13:12	-
106.12.187.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	28/02/2026, 01:50:37	-	-	-	-	-	-
106.13.174.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	17/04/2026, 10:03:42	-	-	-	-	-	-
106.13.176.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	27/02/2026, 09:52:47	-	-	-	-	-	-
106.13.178.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	27/02/2026, 09:52:24	-	-	-	-	-	-
167.172.235.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	15/02/2026, 19:06:58	17/04/2026, 18:07:40	No	Yes	APT15, APT28, APT29, APT31, APT34, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	16/02/2026, 15:46:26	-
106.12.190.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	28/02/2026, 07:45:17	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	19/02/2026, 14:14:56	bj189.cn, baidu.com
180.76.144.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	01/03/2026, 00:03:45	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	19/02/2026, 06:01:54	tfn.net.tw, baidu.com
106.12.183.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	27/02/2026, 09:07:26	-	-	-	-	-	-
89.167.51.•••:18789	-	🇫🇮 Finland	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	15/02/2026, 19:06:58	18/04/2026, 00:40:18	-	-	-	-	-	-
106.13.229.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	15/04/2026, 23:56:27	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-7347	21/02/2026, 05:40:32	bj189.cn, baidu.com
157.245.197.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	15/02/2026, 19:06:58	16/02/2026, 11:18:20	-	-	-	-	-	-
106.12.190.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	28/02/2026, 01:05:56	-	-	-	-	-	-
106.12.9.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	27/02/2026, 09:51:58	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	21/02/2026, 19:14:40	bj189.cn, baidu.com
180.76.138.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	16/02/2026, 11:18:20	-	-	-	-	-	-
120.48.107.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	13/03/2026, 08:17:28	-	-	-	-	-	-
163.7.1.•••:18789	干干 (🚀)	🇸🇬 Singapore	Yes	false	Clean	AS150436	Byteplus Pte. Ltd.	Byteplus	15/02/2026, 19:06:58	16/02/2026, 11:18:20	-	-	-	-	-	-
106.12.185.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	01/03/2026, 01:33:07	Yes	No	-	-	19/02/2026, 05:16:27	bj189.cn, baidu.com
43.167.169.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	15/02/2026, 19:06:58	19/02/2026, 01:32:08	-	-	-	-	-	-
106.12.185.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:58	28/02/2026, 09:57:52	-	-	-	-	-	-
106.12.187.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	28/02/2026, 04:03:44	-	-	-	-	-	-
106.13.226.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	03/03/2026, 16:11:01	-	-	-	-	-	-
106.13.175.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	28/02/2026, 07:45:18	-	-	-	-	-	-
106.12.52.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	28/02/2026, 08:29:35	-	-	-	-	-	-
106.12.42.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	27/02/2026, 22:20:17	-	-	-	-	-	-
152.53.89.•••:18789	-	🇺🇸 United States	-	false	Clean	AS214996	netcup GmbH	AT ANX Holding 2	15/02/2026, 19:06:57	16/02/2026, 11:18:20	-	-	-	-	-	-
13.204.156.•••:18789	Assistant	🇮🇳 India	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon	15/02/2026, 19:06:57	16/02/2026, 11:18:20	-	-	-	-	-	-
106.13.166.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	27/02/2026, 09:51:42	-	-	-	-	-	-
106.12.190.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	27/02/2026, 09:52:12	-	-	-	-	-	-
106.12.180.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	13/03/2026, 08:17:25	Yes	No	-	-	19/02/2026, 12:45:13	bj189.cn, baidu.com
154.8.152.•••:18789	史娇奇 (🐾)	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	15/02/2026, 19:06:57	18/03/2026, 11:15:50	No	No	-	-	13/02/2026, 14:58:51	-
92.113.146.•••:18789	-	🇺🇦 Ukraine	-	false	Leaked	AS44803	Webdock.io ApS	Ukrtelecom	15/02/2026, 19:06:57	18/04/2026, 00:40:45	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	21/02/2026, 13:13:33	ukrtelecom.ua
120.48.21.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	16/02/2026, 11:18:20	-	-	-	-	-	-
106.12.3.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	27/02/2026, 09:52:33	-	-	-	-	-	-
106.12.83.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	28/02/2026, 01:05:57	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	19/02/2026, 20:57:36	bj189.cn, baidu.com
172.104.91.•••:18789	-	🇯🇵 Japan	-	false	Clean	AS63949	Akamai Connected Cloud	Linode	15/02/2026, 19:06:57	30/03/2026, 22:27:42	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-23017, CVE-2021-3618, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	19/02/2026, 12:44:02	-
120.48.216.•••:18789	陈玲的小助理 (🤝)	🇺🇸 United States	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	15/03/2026, 19:11:30	-	-	-	-	-	-
180.76.236.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	04/03/2026, 12:44:41	-	-	-	-	-	-
106.12.6.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	28/02/2026, 11:26:17	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	19/02/2026, 16:25:41	bj189.cn, baidu.com
106.12.38.•••:18789	沐容 (（待定）)	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	25/02/2026, 09:18:13	-	-	-	-	-	-
106.12.54.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	28/02/2026, 11:26:18	-	-	-	-	-	-
188.245.39.•••:18789	-	🇩🇪 Germany	-	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner	15/02/2026, 19:06:57	15/04/2026, 13:28:13	Yes	Yes	APT17, APT36, APT37, APT45, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, SideWinder APT, The Shadow Brokers	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	19/02/2026, 14:59:36	hetzner.com
106.12.190.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	27/02/2026, 22:58:45	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	22/02/2026, 05:42:00	bj189.cn, baidu.com
106.12.42.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	01/03/2026, 03:02:23	-	-	-	-	-	-
43.135.182.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	15/02/2026, 19:06:57	16/04/2026, 11:27:04	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	19/02/2026, 00:03:39	tencent.com
111.229.65.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	15/02/2026, 19:06:57	23/02/2026, 06:59:53	Yes	No	-	-	19/02/2026, 20:57:02	tencent.com, chinamobile.com, chinamobile.cn
106.12.17.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	28/02/2026, 04:03:48	-	-	-	-	-	-
80.80.98.•••:18789	-	🇷🇺 Russia	-	false	Clean	AS8359	MTS PJSC	Rostov-on-Don Regional Data Exchange Network IP Address Space	15/02/2026, 19:06:57	26/03/2026, 21:26:46	No	No	-	CVE-2024-11233, CVE-2024-11234, CVE-2024-11235, CVE-2024-11236, CVE-2024-2408, CVE-2024-4577, CVE-2024-5458, CVE-2024-5585, CVE-2024-8925, CVE-2024-8926, CVE-2024-8927, CVE-2024-8929, CVE-2024-8932, CVE-2024-9026, CVE-2025-1217, CVE-2025-1219, CVE-2025-1220, CVE-2025-1734, CVE-2025-1735, CVE-2025-1736, CVE-2025-1861, CVE-2025-6491	26/03/2026, 21:27:54	-
106.12.8.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	27/02/2026, 09:52:52	-	-	-	-	-	-
106.13.169.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	28/02/2026, 06:16:44	-	-	-	-	-	-
106.12.47.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	01/03/2026, 05:59:33	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	19/02/2026, 06:00:08	bj189.cn, baidu.com
157.90.67.•••:18789	-	🇩🇪 Germany	-	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	15/02/2026, 19:06:57	26/03/2026, 20:41:36	-	-	-	-	-	-
170.106.80.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	15/02/2026, 19:06:57	09/04/2026, 14:35:21	No	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	19/02/2026, 14:57:47	-
106.12.185.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	26/02/2026, 17:05:12	Yes	No	-	-	21/02/2026, 19:15:15	bj189.cn, baidu.com
106.12.89.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	28/02/2026, 15:09:31	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	19/02/2026, 08:59:58	bj189.cn, baidu.com
106.12.187.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	28/02/2026, 05:32:27	-	-	-	-	-	-
120.48.145.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	30/03/2026, 22:27:39	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41317, CVE-2022-41318, CVE-2023-38408, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-25111, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894	15/02/2026, 19:06:57	chinamobile.com, chinamobile.cn, baidu.com
212.227.79.•••:18789	-	🇫🇷 France	-	false	Clean	AS8560	This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE.	IONOS Cloud NBZ	15/02/2026, 19:06:57	15/04/2026, 01:32:04	No	Yes	APT17, APT36, APT37, APT45, Kimsuky, MuddyWater Group, SideWinder APT	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	15/02/2026, 19:06:58	-
209.38.227.•••:18789	-	🇩🇪 Germany	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	15/02/2026, 19:06:57	16/02/2026, 12:02:31	No	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	15/02/2026, 19:06:59	-
106.12.184.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	15/02/2026, 19:06:57	27/02/2026, 21:41:52	Yes	No	-	-	15/02/2026, 19:07:00	bj189.cn, baidu.com

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.