🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 643649 Page: 6006 / 6437 (100 per page) Showing: 600501-600600 Last Imported: 12/04/2026, 00:31:21

🇨🇳 354,373

🇺🇸 169,554

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
106.52.205.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	06/02/2026, 17:36:20	14/03/2026, 01:07:35	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385	06/02/2026, 17:37:19	bj189.cn, tencent.com
49.51.197.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Tencent Cloud	06/02/2026, 17:36:20	02/03/2026, 19:03:43	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	06/02/2026, 17:37:25	truecorp.co.th, tencent.com
115.191.4.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	06/02/2026, 17:36:20	28/02/2026, 22:32:13	-	-	-	-	06/02/2026, 17:37:26	-
180.76.166.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	06/02/2026, 17:36:20	05/03/2026, 00:41:56	Yes	Yes	APT17, APT35, APT37, Callisto Group, Cobalt Group, DragonFly, El-Machete, Gozi, MoustachedBouncer, Packrat	CVE-2015-20107, CVE-2016-3189, CVE-2018-25032, CVE-2019-12900, CVE-2020-10735, CVE-2021-28861, CVE-2022-37454, CVE-2022-42919, CVE-2022-45061, CVE-2023-24329	06/02/2026, 17:37:29	tfn.net.tw, baidu.com
165.227.57.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 17:36:20	31/03/2026, 17:11:36	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	06/02/2026, 17:37:32	-
180.76.225.•••:18789	老板 (🤖)	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	06/02/2026, 17:36:20	03/03/2026, 10:56:51	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	06/02/2026, 17:37:33	tfn.net.tw, baidu.com
42.193.199.•••:18789	旺财 (🐕)	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	06/02/2026, 17:36:20	02/03/2026, 15:21:12	-	-	-	-	06/02/2026, 17:37:34	-
180.76.117.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	06/02/2026, 17:36:20	03/03/2026, 15:24:25	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	06/02/2026, 17:37:35	tfn.net.tw, baidu.com
43.128.89.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	06/02/2026, 17:36:20	01/03/2026, 23:46:00	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:37:36	tencent.com
47.116.200.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 17:36:19	24/02/2026, 13:43:17	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	06/02/2026, 17:37:37	-
117.72.220.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS141679	China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch	JD.com	06/02/2026, 17:36:19	28/02/2026, 01:48:19	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:37:39	jdl.cn, vackbot.com, vg.com, jdfinance.com, 51buy.com, blackdragon.com, jddj.com, 7fresh.com, jd.com, 360buy.com, chinabank.com.cn, 360buyimg.com, imdada.cn, jdh.com
180.76.111.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	06/02/2026, 17:36:19	06/03/2026, 16:16:36	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	06/02/2026, 17:37:41	tfn.net.tw, baidu.com
49.233.140.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	06/02/2026, 17:36:19	24/02/2026, 07:38:46	-	-	-	-	06/02/2026, 17:37:43	-
110.41.63.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS55990	Huawei Cloud Service data center	Huawei Cloud	06/02/2026, 17:36:19	24/02/2026, 07:38:48	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:37:47	smartcom.cc, huawei.com, huaweidevice.com
39.97.62.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 17:36:19	27/02/2026, 13:49:54	-	-	-	-	06/02/2026, 17:37:52	-
143.244.182.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 17:36:19	05/03/2026, 00:41:17	No	Yes	APT-C-23, APT14, APT17, APT28, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Equation Group, Gamaredon Group, Ghostwriter, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Turla APT Group, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	06/02/2026, 17:37:53	-
115.190.237.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	06/02/2026, 17:36:19	11/04/2026, 10:50:35	No	No	-	-	06/02/2026, 17:37:59	-
180.76.102.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	06/02/2026, 17:36:19	03/03/2026, 14:39:42	-	-	-	-	06/02/2026, 17:38:00	-
137.184.80.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 17:36:19	06/03/2026, 14:46:29	No	Yes	APT-C-23, APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Turla APT Group, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-3618, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-39894, CVE-2024-6387	06/02/2026, 17:38:06	-
39.106.130.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 17:36:19	27/02/2026, 13:50:37	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2020-8022, CVE-2021-36368, CVE-2021-41617, CVE-2022-24834, CVE-2022-35977, CVE-2022-36021, CVE-2022-3647, CVE-2022-41741, CVE-2022-41742, CVE-2023-22458, CVE-2023-25155, CVE-2023-28531, CVE-2023-28856, CVE-2023-38408, CVE-2023-41080, CVE-2023-42794, CVE-2023-42795, CVE-2023-44487, CVE-2023-45145, CVE-2023-45648, CVE-2023-46589, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-23672, CVE-2024-24549, CVE-2024-24989, CVE-2024-24990, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-24813, CVE-2025-26465, CVE-2025-32728, CVE-2025-55752, CVE-2025-55754, CVE-2025-61795	06/02/2026, 17:38:08	aliyun.com, ptcl.net.pk
64.23.195.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 17:36:19	02/03/2026, 14:36:23	No	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	06/02/2026, 17:38:10	-
143.198.129.•••:18789	-	🇺🇸 United States	-	true	Leaked	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 17:36:19	14/03/2026, 01:51:28	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:36:52	authorizeddns.org, dnsrd.com, dns04.com, synergyfolks.com, cprapid.com
192.3.138.•••:18789	-	🇺🇸 United States	-	true	Leaked	AS36352	HostPapa	Hudson Valley Host	06/02/2026, 17:36:19	25/02/2026, 15:13:52	Yes	No	-	-	06/02/2026, 17:38:16	hudsonvalleyhost.com
137.184.188.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 17:36:19	09/04/2026, 18:04:41	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:38:20	wemake.pe
47.81.34.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	06/02/2026, 17:34:04	10/04/2026, 12:20:24	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:38:26	hichina.com, alibaba-inc.com
64.23.221.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 17:34:04	18/03/2026, 23:44:13	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:38:27	-
43.110.36.•••:18789	clawbot (🦀)	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	06/02/2026, 17:34:04	11/04/2026, 23:56:16	-	-	-	-	06/02/2026, 17:38:29	-
8.222.175.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	06/02/2026, 17:34:04	11/04/2026, 23:57:09	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-16905, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:38:31	-
8.218.243.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	06/02/2026, 17:34:04	07/03/2026, 07:23:21	No	-	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:38:32	-
8.215.90.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	06/02/2026, 17:34:04	10/04/2026, 12:20:22	-	-	-	-	06/02/2026, 17:38:35	-
8.148.75.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	06/02/2026, 17:34:04	26/02/2026, 12:35:22	No	No	-	-	06/02/2026, 17:38:37	-
106.52.205.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	06/02/2026, 17:34:04	14/03/2026, 01:49:54	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385	06/02/2026, 17:38:39	bj189.cn, tencent.com
116.62.165.•••:18789	要乐奈 (🎵)	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 17:34:04	07/03/2026, 07:23:25	Yes	Yes	APT28, APT41, Equation Group	CVE-2010-4478, CVE-2010-5107, CVE-2011-4327, CVE-2011-5000, CVE-2012-0814, CVE-2016-0777, CVE-2017-15906	06/02/2026, 17:38:40	aliyun.com
161.35.172.•••:18789	-	🇬🇧 United Kingdom	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 17:34:04	01/03/2026, 19:34:15	No	Yes	APT14, APT28, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE	CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	06/02/2026, 17:38:41	-
47.253.118.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	06/02/2026, 17:34:03	05/03/2026, 00:40:18	No	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	06/02/2026, 17:38:42	-
165.227.57.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 17:34:03	01/04/2026, 12:32:41	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	06/02/2026, 17:38:44	-
47.111.25.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 17:34:03	01/03/2026, 02:13:09	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	06/02/2026, 17:38:45	-
147.139.166.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud ID	06/02/2026, 17:34:03	10/04/2026, 13:51:03	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	06/02/2026, 17:38:46	-
47.99.169.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 17:34:02	10/04/2026, 18:25:44	No	Yes	APT-C-23, APT28, APT35, APT36, APT37, APT39, Carbanak, Cobalt Group, DarkHotel Group, Equation Group, Gamaredon Group, Ghostwriter, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2017-20005, CVE-2017-7529, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487	06/02/2026, 17:38:47	-
47.98.151.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 17:34:02	07/03/2026, 07:23:24	No	Yes	APT-C-23, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon	CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:38:49	-
157.245.0.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 17:34:02	11/04/2026, 00:36:29	Yes	Yes	APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:38:53	alright.network
47.85.1.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	06/02/2026, 17:34:02	28/02/2026, 20:16:32	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	06/02/2026, 17:38:54	hichina.com, alibaba-inc.com
47.77.177.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	06/02/2026, 17:34:02	10/04/2026, 23:57:51	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:38:57	hichina.com, alibaba-inc.com
47.122.118.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 17:34:02	28/02/2026, 14:19:31	No	No	-	-	06/02/2026, 17:39:00	-
118.178.196.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 17:34:02	11/04/2026, 03:19:14	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team	CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2018-15919, CVE-2020-14145, CVE-2021-41617	06/02/2026, 17:39:03	aliyun.com
47.92.92.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 17:34:02	18/03/2026, 14:58:16	No	Yes	APT-C-23, APT10, APT14, APT28, APT36, APT40, APT41, Carbanak, Cobalt Group, DarkHotel Group, Equation Group, Gamaredon Group, Ghostwriter, IronHusky, Kimsuky, Lazarus Group, SharpPanda, Slingshot APT, TA505, The Shadow Brokers, Tropic Trooper, Turla APT Group, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2017-20005, CVE-2017-7529, CVE-2017-8923, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2019-11043, CVE-2019-11044, CVE-2019-11045, CVE-2019-11046, CVE-2019-11047, CVE-2019-11048, CVE-2019-11049, CVE-2019-11050, CVE-2019-17567, CVE-2019-19246, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-13950, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-7059, CVE-2020-7060, CVE-2020-7061, CVE-2020-7062, CVE-2020-7063, CVE-2020-7064, CVE-2020-7065, CVE-2020-7066, CVE-2020-7067, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2020-7071, CVE-2020-9490, CVE-2021-21702, CVE-2021-21703, CVE-2021-21704, CVE-2021-21705, CVE-2021-21706, CVE-2021-21707, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-3618, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31628, CVE-2022-31629, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2022-41741, CVE-2022-41742, CVE-2022-4900, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-7347, CVE-2025-23419	06/02/2026, 17:39:04	-
47.77.238.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	06/02/2026, 17:34:02	28/03/2026, 09:18:25	Yes	No	-	-	06/02/2026, 17:39:06	hichina.com, alibaba-inc.com
47.100.235.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 17:34:02	02/03/2026, 18:18:06	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:39:14	-
8.215.92.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	06/02/2026, 17:34:02	10/04/2026, 09:25:14	-	-	-	-	06/02/2026, 17:39:18	-
47.88.91.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	06/02/2026, 16:59:26	12/04/2026, 00:07:16	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2010-4478, CVE-2010-4755, CVE-2010-5107, CVE-2011-4327, CVE-2011-4963, CVE-2011-5000, CVE-2012-0814, CVE-2013-0337, CVE-2013-4547, CVE-2014-1692, CVE-2014-2532, CVE-2014-2653, CVE-2014-3616, CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-0742, CVE-2016-0746, CVE-2016-0747, CVE-2016-0777, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1247, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2017-20005, CVE-2017-7529, CVE-2018-15473, CVE-2018-15919, CVE-2018-16845, CVE-2018-20685, CVE-2019-16905, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347	06/02/2026, 17:00:51	-
47.245.104.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	06/02/2026, 16:59:26	22/03/2026, 08:39:41	Yes	Yes	APT15, APT28, APT31, APT35, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:00:53	hichina.com, alibaba-inc.com
47.81.34.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	06/02/2026, 16:59:26	12/04/2026, 00:06:57	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:00:56	hichina.com, alibaba-inc.com
43.110.36.•••:18789	clawbot (🦀)	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	06/02/2026, 16:59:26	12/04/2026, 00:07:05	-	-	-	-	06/02/2026, 17:00:57	-
8.222.175.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	06/02/2026, 16:59:26	12/04/2026, 00:07:21	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-16905, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:00:58	-
8.218.243.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	06/02/2026, 16:59:26	09/03/2026, 23:58:32	No	-	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:00	-
47.116.200.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 16:57:12	04/03/2026, 12:47:35	No	-	-	-	06/02/2026, 17:01:05	-
120.48.107.•••:18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	06/02/2026, 16:57:12	03/03/2026, 16:12:38	Yes	Yes	APT-C-23, APT17, APT36, APT37, Cobalt Group, DragonFly, El-Machete, Equation Group, Gamaredon Group, Ghostwriter, Gozi, Lazarus Group, Packrat, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-16845, CVE-2019-16905, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347	06/02/2026, 17:01:12	chinamobile.com, chinamobile.cn, baidu.com
47.109.37.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 16:57:12	05/03/2026, 00:07:23	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:15	-
119.28.129.•••:443	Assistant	🇭🇰 Hong Kong	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Tencent Cloud	06/02/2026, 16:57:12	25/02/2026, 10:05:44	Yes	Yes	APT37, El-Machete, Packrat	-	06/02/2026, 17:01:16	tencent.com
64.69.37.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS35916	MULTACOM CORPORATION	CoreExpress Blk 1	06/02/2026, 16:57:12	03/03/2026, 16:13:34	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-6484, CVE-2024-6485, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:18	multacom.com
143.110.200.•••:443	Rosey (🌹)	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 16:57:12	28/02/2026, 12:57:55	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347	06/02/2026, 17:01:19	-
43.160.237.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	06/02/2026, 16:57:12	03/03/2026, 16:13:42	Yes	No	-	CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:22	tencent.com
49.235.34.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	06/02/2026, 16:57:12	06/03/2026, 18:36:39	Yes	No	-	-	06/02/2026, 17:01:23	truecorp.co.th, tencent.com
146.56.202.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	06/02/2026, 16:57:12	02/03/2026, 17:40:41	No	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:25	-
143.110.251.•••:443	Assistant	🇮🇳 India	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 16:57:12	05/04/2026, 23:16:24	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:26	konverse.ai
47.236.207.•••:18789	Zach小跟班	🇺🇸 United States	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	06/02/2026, 16:57:12	27/02/2026, 09:54:24	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	06/02/2026, 17:01:28	hichina.com, alibaba-inc.com
82.157.25.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	06/02/2026, 16:57:12	04/03/2026, 05:23:14	No	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	06/02/2026, 17:01:29	-
47.116.206.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 16:57:12	02/03/2026, 19:08:26	-	-	-	-	06/02/2026, 17:01:30	-
47.253.12.•••:18789	潮汐的小龙虾 (Tides (🦞)	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	06/02/2026, 16:57:12	25/02/2026, 12:19:33	-	-	-	-	06/02/2026, 17:01:32	-
120.48.127.•••:18789	-	🇺🇸 United States	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	06/02/2026, 16:57:12	04/03/2026, 12:47:13	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Gozi, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2014-1820, CVE-2015-1761, CVE-2015-1762, CVE-2015-1763, CVE-2016-20012, CVE-2016-7250, CVE-2016-7253, CVE-2017-8516, CVE-2017-8923, CVE-2017-9118, CVE-2017-9120, CVE-2019-1068, CVE-2019-16905, CVE-2020-0618, CVE-2020-14145, CVE-2020-15778, CVE-2021-1636, CVE-2021-21703, CVE-2021-21704, CVE-2021-21705, CVE-2021-21706, CVE-2021-21707, CVE-2021-21708, CVE-2021-36368, CVE-2021-41617, CVE-2022-29143, CVE-2022-31625, CVE-2022-31626, CVE-2022-31628, CVE-2022-31629, CVE-2022-31630, CVE-2022-37454, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	06/02/2026, 17:01:33	chinamobile.com, chinamobile.cn, baidu.com
101.32.189.•••:18789	Assistant	🇭🇰 Hong Kong	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	06/02/2026, 16:57:12	01/03/2026, 04:34:06	Yes	-	-	-	06/02/2026, 17:01:35	tencent.com, optage.co.jp
5.78.156.•••:18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS212317	Hetzner Online GmbH	Hetzner Online	06/02/2026, 16:57:12	05/03/2026, 00:08:16	Yes	No	-	-	06/02/2026, 17:01:37	hetzner.com
180.76.115.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	06/02/2026, 16:57:12	04/03/2026, 12:46:42	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2010-0866, CVE-2010-0867, CVE-2010-0901, CVE-2010-0902, CVE-2010-0911, CVE-2010-2389, CVE-2010-2411, CVE-2010-2415, CVE-2010-2419, CVE-2010-3590, CVE-2010-3600, CVE-2010-4413, CVE-2010-4420, CVE-2010-4421, CVE-2011-0785, CVE-2011-0793, CVE-2011-0799, CVE-2011-0804, CVE-2011-0805, CVE-2011-0816, CVE-2011-0831, CVE-2011-0832, CVE-2011-0835, CVE-2011-0838, CVE-2011-0848, CVE-2011-0870, CVE-2011-0876, CVE-2011-0879, CVE-2011-0880, CVE-2011-2230, CVE-2011-2231, CVE-2011-2232, CVE-2011-2238, CVE-2011-2239, CVE-2011-2242, CVE-2011-2243, CVE-2011-2244, CVE-2011-2248, CVE-2011-2253, CVE-2011-2257, CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	06/02/2026, 17:01:41	tfn.net.tw, baidu.com
69.5.20.•••:18789	-	🇸🇬 Singapore	Yes	true	Clean	AS150436	Byteplus Pte. Ltd.	Byteplus	06/02/2026, 16:57:12	22/03/2026, 15:20:55	No	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:42	-
188.245.85.•••:18789	CanddaoJr	🇩🇪 Germany	Yes	true	Leaked	AS24940	Hetzner Online GmbH	Hetzner	06/02/2026, 16:57:12	10/04/2026, 09:32:42	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:45	hetzner.com
43.163.244.•••:443	-	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	06/02/2026, 16:57:12	01/03/2026, 22:22:00	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:48	tencent.com
120.76.141.•••:8088	-	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 16:57:12	02/03/2026, 13:56:35	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2014-0160, CVE-2014-0224, CVE-2015-10003, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-22116, CVE-2021-23017, CVE-2021-32718, CVE-2021-32719, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-31008, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-46118, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347	06/02/2026, 17:01:52	chinamobile.com, aliyun.com, chinamobile.cn
43.134.229.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	06/02/2026, 16:57:12	06/03/2026, 23:04:36	Yes	Yes	APT17, APT36, APT37, APT45, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:53	tencent.com
51.222.143.•••:443	-	🇨🇦 Canada	Yes	true	Clean	AS16276	OVH SAS	OVH Hosting	06/02/2026, 16:57:12	23/02/2026, 21:58:41	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MoustachedBouncer, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2015-20107, CVE-2016-20012, CVE-2016-3189, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-25032, CVE-2019-12900, CVE-2019-20907, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-10735, CVE-2020-14145, CVE-2020-14422, CVE-2020-15778, CVE-2020-26116, CVE-2020-27619, CVE-2021-23336, CVE-2021-28041, CVE-2021-28861, CVE-2021-3177, CVE-2021-3426, CVE-2021-36368, CVE-2021-3737, CVE-2021-41617, CVE-2022-0391, CVE-2022-37454, CVE-2022-42919, CVE-2022-45061, CVE-2023-24329, CVE-2023-27043, CVE-2023-36632, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-0397, CVE-2024-3219, CVE-2024-4030, CVE-2024-4032, CVE-2024-5642, CVE-2024-6232, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:54	-
101.35.122.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	06/02/2026, 16:57:12	01/03/2026, 06:01:53	Yes	Yes	APT37, El-Machete	-	06/02/2026, 17:01:55	tencent.com, optage.co.jp
82.29.67.•••:18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS142036	Hosteons Pte. Ltd.	Hosteons	06/02/2026, 16:57:12	27/02/2026, 09:53:53	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2017-8923, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-11044, CVE-2019-11045, CVE-2019-11046, CVE-2019-11047, CVE-2019-11048, CVE-2019-11050, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2020-7059, CVE-2020-7060, CVE-2020-7061, CVE-2020-7062, CVE-2020-7063, CVE-2020-7064, CVE-2020-7066, CVE-2020-7067, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2021-36368, CVE-2021-41617, CVE-2022-31628, CVE-2022-31629, CVE-2022-37454, CVE-2022-4900, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:56	virginm.net
40.233.73.•••:18789	-	🇺🇸 United States	Yes	true	Leaked	AS31898	Oracle Corporation	Oracle	06/02/2026, 16:57:12	12/03/2026, 09:38:19	Yes	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:01:57	healtheintent.com, purewellness.com, cerner.ae, retek.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
62.210.193.•••:18789	Assistant	🇫🇷 France	Yes	true	Leaked	AS12876	SCALEWAY S.A.S.	Scaleway Dedibox	06/02/2026, 16:57:12	02/03/2026, 19:09:18	Yes	No	-	CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 17:02:00	online.fr, poneytelecom.eu, iliad-datacenter.fr, scaleway.com, online.net
118.196.103.•••:18789	Hive (🐝)	🇨🇳 China mainland	Yes	true	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)	Beijing Volcano Engine Technology	06/02/2026, 16:57:12	06/03/2026, 13:21:28	-	-	-	-	06/02/2026, 17:02:03	-
43.135.147.•••:18789	OpenClaw (/avatar/main)	🇺🇸 United States	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	06/02/2026, 16:57:12	02/03/2026, 12:27:26	Yes	-	-	-	06/02/2026, 17:02:06	tencent.com
46.224.184.•••:18789	Assistant	🇩🇪 Germany	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	06/02/2026, 16:55:00	23/02/2026, 22:41:12	No	No	-	-	06/02/2026, 16:56:24	-
119.28.24.•••:18789	狗腿子 (🦵)	🇭🇰 Hong Kong	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Tencent Cloud	06/02/2026, 16:55:00	02/03/2026, 19:07:10	Yes	Yes	APT-C-23, APT28, APT35, APT36, APT37, APT39, Cobalt Group, El-Machete, Equation Group, Gamaredon Group, Ghostwriter, Kimsuky, Lazarus Group, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-23017, CVE-2021-3618, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487	06/02/2026, 16:56:26	tencent.com
45.197.147.•••:18789	Assistant	🇭🇰 Hong Kong	Yes	true	Clean	AS134365	Ansheng Network Technology Co., Limited	OneFiveEight Cloud Computing	06/02/2026, 16:55:00	26/02/2026, 08:13:20	No	Yes	APT28, APT37, APT41, El-Machete, Equation Group	CVE-2010-4478, CVE-2010-5107, CVE-2011-4327, CVE-2011-5000, CVE-2012-0814, CVE-2016-0777, CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	06/02/2026, 16:56:30	-
143.198.58.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 16:55:00	15/03/2026, 18:26:51	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-16845, CVE-2019-16905, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 16:56:33	-
47.116.200.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 16:55:00	04/03/2026, 12:45:14	No	-	-	-	06/02/2026, 16:56:35	-
120.48.107.•••:18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	06/02/2026, 16:55:00	03/03/2026, 16:10:22	Yes	Yes	APT-C-23, APT17, APT36, APT37, Cobalt Group, DragonFly, El-Machete, Equation Group, Gamaredon Group, Ghostwriter, Gozi, Lazarus Group, Packrat, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-16845, CVE-2019-16905, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347	06/02/2026, 16:56:41	chinamobile.com, chinamobile.cn, baidu.com
47.109.37.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	06/02/2026, 16:55:00	05/03/2026, 00:43:57	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 16:56:43	-
64.69.37.•••:18789	-	🇺🇸 United States	Yes	true	Clean	AS35916	MULTACOM CORPORATION	CoreExpress Blk 1	06/02/2026, 16:54:59	03/03/2026, 14:42:00	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-6484, CVE-2024-6485, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 16:56:47	multacom.com
143.110.200.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 16:54:59	28/02/2026, 11:26:16	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347	06/02/2026, 16:56:48	-
49.235.34.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	06/02/2026, 16:54:59	06/03/2026, 17:04:12	Yes	No	-	-	06/02/2026, 16:56:50	truecorp.co.th, tencent.com
43.160.237.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	06/02/2026, 16:54:59	03/03/2026, 13:57:26	Yes	No	-	CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 16:56:51	tencent.com
146.56.202.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	06/02/2026, 16:54:59	02/03/2026, 14:38:42	No	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 16:56:56	-
47.236.207.•••:18789	Zach小跟班	🇺🇸 United States	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	06/02/2026, 16:54:59	27/02/2026, 09:52:06	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	06/02/2026, 16:56:57	hichina.com, alibaba-inc.com
143.110.251.•••:18789	-	🇮🇳 India	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	06/02/2026, 16:54:59	05/04/2026, 21:44:08	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 16:57:01	konverse.ai
47.253.12.•••:18789	潮汐的小龙虾 (Tides (🦞)	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	06/02/2026, 16:54:59	25/02/2026, 10:03:06	-	-	-	-	06/02/2026, 16:57:02	-

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.