🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 643649 Page: 6084 / 6437 (100 per page) Showing: 608301-608400 Last Imported: 12/04/2026, 00:31:21

🇨🇳 354,373

🇺🇸 169,554

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
185.213.27.•••:18789	-	🇫🇷 France	Yes	true	Leaked	AS51167	Contabo GmbH	Contabo	05/02/2026, 09:21:37	18/03/2026, 11:15:51	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2017-15906, CVE-2017-15945, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347	06/02/2026, 00:29:07	contabo.de, contabo.net
43.139.136.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	05/02/2026, 09:21:37	20/03/2026, 18:03:01	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	06/02/2026, 00:29:08	tencent.com
165.22.113.•••:18789	-	🇬🇧 United Kingdom	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	05/02/2026, 09:21:37	12/03/2026, 20:47:17	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-6484, CVE-2024-6485, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	06/02/2026, 00:29:10	-
106.54.212.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	05/02/2026, 09:21:37	22/03/2026, 15:18:51	Yes	-	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 00:29:11	bj189.cn, tencent.com
89.167.20.•••:18789	Assistant	🇫🇮 Finland	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	05/02/2026, 09:21:37	09/04/2026, 14:33:50	-	-	-	-	06/02/2026, 00:29:12	-
43.134.241.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	05/02/2026, 09:21:37	10/04/2026, 00:58:01	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 00:29:36	tencent.com
43.153.145.•••:18789	芊芊 (Qianqian) ((待定))	🇯🇵 Japan	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	05/02/2026, 09:21:37	02/03/2026, 05:00:28	Yes	Yes	APT17, APT36, APT37, APT45, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, SideWinder APT, The Shadow Brokers	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 00:29:43	tencent.com
81.70.208.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	05/02/2026, 09:21:37	02/03/2026, 18:22:05	No	-	-	-	06/02/2026, 00:29:46	-
165.22.155.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	05/02/2026, 09:21:37	02/03/2026, 16:53:07	-	-	-	-	06/02/2026, 00:29:57	-
115.190.126.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	05/02/2026, 09:21:37	03/03/2026, 16:09:59	No	No	-	-	06/02/2026, 00:29:59	-
49.234.205.•••:18789	德洛瑞丝 (Dolores) (📊)	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	05/02/2026, 09:21:37	05/03/2026, 00:06:07	Yes	No	-	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 00:30:00	truecorp.co.th, tencent.com
118.196.54.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS137718	Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)	Beijing Volcano Engine Technology	05/02/2026, 09:21:37	02/03/2026, 19:06:13	Yes	No	-	-	06/02/2026, 00:30:05	bytedance.com
47.82.1.•••:18789	铜锣湾陈浩南	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	05/02/2026, 09:19:27	28/02/2026, 06:14:26	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	06/02/2026, 02:07:24	hichina.com, alibaba-inc.com
69.5.7.•••:18789	-	🇸🇬 Singapore	Yes	true	Clean	AS150436	Byteplus Pte. Ltd.	Byteplus	05/02/2026, 09:19:27	02/03/2026, 16:50:46	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 02:07:30	-
96.30.204.•••:18789	ClawDBot (🐾)	🇺🇸 United States	Yes	true	Clean	AS20473	The Constant Company, LLC	Constant	05/02/2026, 09:19:27	04/03/2026, 12:42:52	-	-	-	-	06/02/2026, 02:07:37	-
35.212.130.•••:18789	송백 (Songbaek) (🌲)	🇺🇸 United States	Yes	true	Clean	AS15169	Google LLC / AS19527 Google LLC	Google	05/02/2026, 09:19:26	05/04/2026, 16:27:53	No	-	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	06/02/2026, 02:07:46	-
172.204.134.•••:18789	Assistant	🇳🇿 New Zealand	Yes	true	Clean	AS8075	Microsoft Corporation	Cloud	05/02/2026, 09:19:26	02/03/2026, 19:03:55	No	No	-	-	06/02/2026, 02:07:54	-
2a02:4780:28:c994::1:18789	-	🇫🇷 France	-	true	Clean	AS47583	Hostinger International Limited	Hostinger	05/02/2026, 09:19:26	11/04/2026, 23:59:35	-	-	-	-	06/02/2026, 02:07:57	-
43.163.127.•••:18789	-	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	05/02/2026, 09:19:26	11/04/2026, 10:50:01	Yes	Yes	APT15, APT31, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 02:08:01	tencent.com
175.178.63.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	05/02/2026, 09:19:26	14/03/2026, 01:52:05	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	06/02/2026, 02:08:16	tencent.com, ub.ac.id
43.162.106.•••:18789	-	🇸🇬 Singapore	-	true	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	05/02/2026, 09:19:26	02/03/2026, 05:42:34	-	-	-	-	06/02/2026, 02:08:21	-
94.130.57.•••:18789	-	🇩🇪 Germany	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner Online GmbH	05/02/2026, 09:19:26	04/04/2026, 05:24:25	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 02:08:29	-
103.102.153.•••:18789	Tatsuya	🇮🇩 Indonesia	Yes	true	Leaked	AS58404	PT Qwords Company International	Konsep Digital Indonesia	05/02/2026, 09:19:26	24/02/2026, 12:08:22	Yes	Yes	APT14, APT40, APT41, Cobalt Group, Gamaredon Group, Kimsuky, Lazarus Group, SharpPanda	CVE-2006-20001, CVE-2016-20012, CVE-2017-12172, CVE-2017-15098, CVE-2017-8923, CVE-2017-9118, CVE-2017-9120, CVE-2018-1058, CVE-2018-10915, CVE-2018-10925, CVE-2018-1115, CVE-2018-16850, CVE-2019-10127, CVE-2019-10128, CVE-2019-10130, CVE-2019-10164, CVE-2019-10208, CVE-2019-10210, CVE-2019-10211, CVE-2019-11044, CVE-2019-11045, CVE-2019-11046, CVE-2019-11047, CVE-2019-11048, CVE-2019-11049, CVE-2019-11050, CVE-2019-9193, CVE-2020-10733, CVE-2020-12062, CVE-2020-14145, CVE-2020-14349, CVE-2020-14350, CVE-2020-15778, CVE-2020-1720, CVE-2020-25694, CVE-2020-25695, CVE-2020-25696, CVE-2020-7059, CVE-2020-7060, CVE-2020-7061, CVE-2020-7062, CVE-2020-7063, CVE-2020-7064, CVE-2020-7065, CVE-2020-7066, CVE-2020-7067, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2020-7071, CVE-2021-21702, CVE-2021-21703, CVE-2021-21704, CVE-2021-21705, CVE-2021-21706, CVE-2021-21707, CVE-2021-21708, CVE-2021-23017, CVE-2021-23214, CVE-2021-23222, CVE-2021-28041, CVE-2021-32027, CVE-2021-32028, CVE-2021-3393, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2021-43767, CVE-2021-44224, CVE-2022-1552, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-2625, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31625, CVE-2022-31626, CVE-2022-31628, CVE-2022-31629, CVE-2022-31630, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2022-41741, CVE-2022-41742, CVE-2022-4900, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-3823, CVE-2023-3824, CVE-2023-38709, CVE-2023-43622, CVE-2023-44487, CVE-2023-45802, CVE-2024-11233, CVE-2024-11234, CVE-2024-11236, CVE-2024-1874, CVE-2024-2408, CVE-2024-24795, CVE-2024-27316, CVE-2024-2756, CVE-2024-3096, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-4577, CVE-2024-47252, CVE-2024-5458, CVE-2024-5585, CVE-2024-7347, CVE-2024-8925, CVE-2024-8926, CVE-2024-8927, CVE-2024-8929, CVE-2024-8932, CVE-2024-9026, CVE-2025-1217, CVE-2025-1219, CVE-2025-1220, CVE-2025-14177, CVE-2025-14178, CVE-2025-14180, CVE-2025-1734, CVE-2025-1735, CVE-2025-1736, CVE-2025-1861, CVE-2025-23048, CVE-2025-23419, CVE-2025-4207, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-6491, CVE-2025-65082, CVE-2025-66200, CVE-2025-8713, CVE-2025-8714	06/02/2026, 02:08:33	harapmaklum.com, tasikmalayakota.go.id, pandeglangkab.go.id, mastercomputersys.com, datadock.ne.jp, demakkab.go.id
47.109.96.•••:18789	傻妞 (😜)	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:19:26	02/03/2026, 07:11:36	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	06/02/2026, 02:08:37	-
178.156.213.•••:18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS213230	Hetzner Online GmbH	Hetzner	05/02/2026, 09:19:26	03/03/2026, 14:39:42	Yes	No	-	-	06/02/2026, 02:09:52	hetzner.com
193.122.96.•••:18789	-	🇺🇸 United States	Yes	true	Leaked	AS31898	Oracle Corporation	Oracle Cloud	05/02/2026, 09:19:26	21/03/2026, 22:16:15	Yes	Yes	DragonFly, Packrat, gozi	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 02:09:53	healtheintent.com, purewellness.com, retek.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oraclecloudservices.com, rsys2.net, hyperroll.com, orcale.com, oraclemobile.com, sun.co.in, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, oracleemaildelivery.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, skire.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, paymyhealthbill.com, dyndns.com, optika.com, jcp.org, smed.com, cernerenviza-tw.com, recruitmax.com, decisioneering.com, stortek.com, seebeyond.com, livelook.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com
42.194.141.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	05/02/2026, 09:19:26	04/03/2026, 12:42:10	Yes	Yes	APT37, El-Machete	CVE-2024-11187, CVE-2024-1737, CVE-2024-1975, CVE-2024-4076	06/02/2026, 02:10:05	tencent.com, mobifone.vn
146.190.119.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	05/02/2026, 09:19:26	24/02/2026, 06:08:58	No	Yes	APT15, APT28, APT31, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	06/02/2026, 02:10:06	-
137.131.44.•••:18789	-	🇺🇸 United States	-	true	Leaked	AS31898	Oracle Corporation	Oracle	05/02/2026, 09:19:26	24/02/2026, 00:55:13	Yes	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-11235, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-1217, CVE-2025-1219, CVE-2025-1220, CVE-2025-14177, CVE-2025-14178, CVE-2025-14180, CVE-2025-1734, CVE-2025-1735, CVE-2025-1736, CVE-2025-1861, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-61984, CVE-2025-61985, CVE-2025-6491	06/02/2026, 02:10:12	healtheintent.com, purewellness.com, cerner.ae, retek.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuiteforms.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
185.213.27.•••:18789	-	🇫🇷 France	Yes	true	Leaked	AS51167	Contabo GmbH	Contabo	05/02/2026, 09:19:26	18/03/2026, 10:28:35	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2017-15906, CVE-2017-15945, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2024-7347	06/02/2026, 02:10:13	contabo.de, contabo.net
43.139.136.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	05/02/2026, 09:19:26	20/03/2026, 18:00:43	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	06/02/2026, 02:10:14	tencent.com
165.22.113.•••:18789	-	🇬🇧 United Kingdom	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	05/02/2026, 09:19:26	16/03/2026, 06:01:02	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-6484, CVE-2024-6485, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	06/02/2026, 02:10:16	-
106.54.212.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	05/02/2026, 09:19:26	22/03/2026, 15:16:33	Yes	-	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 02:10:17	bj189.cn, tencent.com
89.167.20.•••:18789	Assistant	🇫🇮 Finland	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	05/02/2026, 09:19:26	09/04/2026, 18:04:11	-	-	-	-	06/02/2026, 02:10:18	-
43.134.241.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	05/02/2026, 09:19:25	10/04/2026, 00:55:43	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 02:10:39	tencent.com
43.153.145.•••:18789	芊芊 (Qianqian) ((待定))	🇯🇵 Japan	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	05/02/2026, 09:19:25	02/03/2026, 04:58:09	Yes	Yes	APT17, APT36, APT37, APT45, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, SideWinder APT, The Shadow Brokers	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 02:10:46	tencent.com
81.70.208.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	05/02/2026, 09:19:25	02/03/2026, 19:04:36	No	-	-	-	06/02/2026, 02:10:50	-
165.22.155.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	05/02/2026, 09:19:25	02/03/2026, 16:50:46	-	-	-	-	06/02/2026, 02:11:00	-
115.190.126.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	05/02/2026, 09:19:25	03/03/2026, 16:07:46	No	No	-	-	06/02/2026, 02:11:01	-
8.222.70.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:19	11/04/2026, 23:56:43	-	-	-	-	06/02/2026, 04:58:22	-
8.216.23.•••:18789	小爱 (✨)	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:19	11/04/2026, 06:19:06	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:58:23	-
47.111.18.•••:18789	037 (🤖)	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:19	10/04/2026, 16:54:46	No	No	-	-	06/02/2026, 04:58:26	-
8.219.167.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:19	27/02/2026, 04:49:22	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	06/02/2026, 04:58:32	-
8.222.188.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:19	28/02/2026, 05:27:57	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:58:34	-
47.252.77.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:19	10/03/2026, 01:38:38	No	Yes	APT15, APT28, APT31, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:58:35	-
8.215.28.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:19	11/04/2026, 23:56:24	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:58:38	-
8.138.111.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	05/02/2026, 09:17:19	03/03/2026, 02:55:04	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347	06/02/2026, 04:58:39	-
8.215.81.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:19	11/04/2026, 23:57:03	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2014-4078, CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	06/02/2026, 04:58:42	-
8.215.88.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:19	11/04/2026, 23:56:21	-	-	-	-	06/02/2026, 04:58:44	-
39.97.49.•••:18789	AI (😊)	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:19	03/03/2026, 23:58:39	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:58:45	aliyun.com, ptcl.net.pk
47.80.11.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	05/02/2026, 09:17:19	28/02/2026, 03:59:15	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:58:48	hichina.com, alibaba-inc.com
106.15.227.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:19	02/03/2026, 16:03:36	Yes	Yes	APT-C-23, APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA428, TA505, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2018-17189, CVE-2018-17199, CVE-2019-0190, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-16905, CVE-2019-17567, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-4900, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-4577, CVE-2024-47252, CVE-2024-5458, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:58:49	bj189.cn, aliyun.com
47.253.2.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:19	11/04/2026, 04:04:09	No	Yes	APT-C-23, APT28, APT35, APT36, APT37, APT39, Carbanak, Cobalt Group, DarkHotel Group, Equation Group, Gamaredon Group, Ghostwriter, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2017-20005, CVE-2017-7529, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2021-23017, CVE-2021-3618, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347	06/02/2026, 04:58:50	-
47.108.90.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:19	25/03/2026, 10:56:05	No	-	-	CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	06/02/2026, 04:58:51	-
147.139.212.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud ID	05/02/2026, 09:17:19	10/04/2026, 18:25:43	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:58:52	-
8.130.110.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	05/02/2026, 09:17:19	11/04/2026, 23:56:56	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	06/02/2026, 04:58:54	-
147.139.172.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud ID	05/02/2026, 09:17:19	11/04/2026, 23:57:14	No	-	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:58:56	-
123.57.191.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:19	11/04/2026, 23:57:37	-	-	-	-	06/02/2026, 04:58:57	-
8.222.216.•••:18789	草莓 (🍓)	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:19	28/02/2026, 20:16:32	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:59:01	-
47.253.151.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:18	27/02/2026, 08:19:56	No	Yes	Salt Typhoon	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	06/02/2026, 04:59:13	-
47.80.17.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	05/02/2026, 09:17:18	20/03/2026, 20:13:39	-	-	-	-	06/02/2026, 04:59:14	-
47.85.56.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	05/02/2026, 09:17:18	11/04/2026, 23:56:35	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:59:15	hichina.com, alibaba-inc.com
47.90.177.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:18	10/04/2026, 09:25:13	No	No	-	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:59:16	-
115.190.152.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	05/02/2026, 09:17:18	11/04/2026, 09:18:41	No	No	-	-	06/02/2026, 04:59:18	-
47.105.107.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:18	27/02/2026, 18:48:46	No	Yes	APT28, APT40, Energetic Bear, Equation Group, Leafminer, Luckycat APT	CVE-2010-1899, CVE-2010-2730, CVE-2010-3972, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:59:19	-
47.254.3.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:18	11/04/2026, 23:56:37	No	Yes	APT14, APT15, APT17, APT28, APT31, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-16905, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11993, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	06/02/2026, 04:59:21	-
47.243.108.•••:18789	Assistant	🇭🇰 Hong Kong	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud HK	05/02/2026, 09:17:18	27/02/2026, 09:48:30	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	06/02/2026, 04:59:22	-
47.250.41.•••:18789	Assistant	🇲🇾 Malaysia	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Malaysia	05/02/2026, 09:17:18	27/02/2026, 02:01:04	No	No	-	-	06/02/2026, 04:59:25	-
116.62.172.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:18	07/03/2026, 07:22:55	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	06/02/2026, 04:59:26	aliyun.com
59.110.29.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:18	28/02/2026, 03:59:15	Yes	No	-	-	06/02/2026, 04:59:29	amazon.fr, bookworm.com, amazon.com.br, audible.com, amazon.eu, amazon.ca, amzaon.com, amazaon.com, audible.in, z-exp.com, amozon.com, aws-amazon.com, shopbop.com, accept.com, amazonn.com, amazon-adsystem.com, boxofficemojo.com, amazonaws-us-gov.com, amaozn.com, awsamazon.com, amazonmusiclocal.com, aliyun.com, a9.com, amzzon.com, mturk.com, amazonaws.cm, mmuu.com, com.be, amazonpay.com, rooftopmedia.net, vine.com, imdb.com, ssl-images-amazon.com, amazon.com.au, amazon-rings.com, assoc-amazon.com, amazonin.com, amzn.asia, annapurnalabs.com, evi.com, amazonprime.com, beautybar.com, junglee.com, amazon.ae, tenmarks.com, look.com, amazonwebservices.net, associates-amazon.com, amazonrobotics.com, amazon-aws.com, endless.com, amazonlocal.com, amazonm.com, amazonllc.com, media-imdb.com, amazon.com.tw, createspace.com, amazonaws.com, bookdepository.com, amzn.com, amazon.com, goodreads.com, images-amazon.com, amazon.com.co
47.252.44.•••:18789	铁牛	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:18	11/04/2026, 05:34:25	No	Yes	Salt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:59:32	-
47.253.159.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:18	11/04/2026, 17:37:49	No	-	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	06/02/2026, 04:59:33	-
47.88.34.•••:18789	飞天 (🤖)	🇺🇸 United States	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:18	11/04/2026, 03:19:14	No	Yes	APT28, APT40, APT41, Cobalt Group, Earth Berberoka, Energetic Bear, Equation Group, Leafminer, Luckycat APT, Sandworm Team	CVE-2010-1899, CVE-2010-2730, CVE-2010-3972	06/02/2026, 04:59:34	-
8.215.90.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:18	10/04/2026, 17:40:04	-	-	-	-	06/02/2026, 04:59:35	-
2402:1f00:8000:800::3384:18789	-	🇸🇬 Singapore	-	true	Clean	AS16276	OVH SAS	OVH Singapore Data Center	05/02/2026, 09:17:18	07/03/2026, 07:23:06	-	-	-	-	06/02/2026, 04:59:38	-
47.90.177.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:18	13/03/2026, 03:32:18	No	-	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:59:41	-
8.213.227.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:18	10/04/2026, 09:25:14	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:59:43	-
147.139.141.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud ID	05/02/2026, 09:17:18	28/02/2026, 04:43:37	No	Yes	Salt Typhoon	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	06/02/2026, 04:59:44	-
47.99.90.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:18	11/04/2026, 21:42:52	No	No	-	-	06/02/2026, 04:59:48	-
43.160.236.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	05/02/2026, 09:17:18	25/02/2026, 07:43:34	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:59:53	tencent.com
8.219.161.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:18	01/03/2026, 01:28:27	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24989, CVE-2024-24990, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-7347	06/02/2026, 04:59:56	-
47.90.253.•••:18789	二蛋 (🥚)	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:18	11/04/2026, 16:30:19	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MoustachedBouncer, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2007-4559, CVE-2015-5652, CVE-2016-20012, CVE-2017-15906, CVE-2017-17522, CVE-2017-18207, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9674, CVE-2020-14145, CVE-2020-15778, CVE-2021-23336, CVE-2021-28041, CVE-2021-36368, CVE-2021-3733, CVE-2021-41617, CVE-2022-0391, CVE-2022-26488, CVE-2022-45061, CVE-2022-48560, CVE-2022-48564, CVE-2022-48565, CVE-2022-48566, CVE-2023-24329, CVE-2023-27043, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-0397, CVE-2024-11168, CVE-2024-3219, CVE-2024-4032, CVE-2024-5642, CVE-2024-6232, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:59:57	-
8.215.45.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:18	11/04/2026, 01:54:22	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	06/02/2026, 05:00:05	-
47.77.217.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	05/02/2026, 09:17:18	22/03/2026, 01:43:28	Yes	No	-	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 05:00:08	hichina.com, alibaba-inc.com
8.215.79.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:18	11/04/2026, 03:19:14	No	No	-	CVE-2016-20012, CVE-2018-16845, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 05:00:09	-
39.97.249.•••:18789	-	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:18	07/03/2026, 07:22:40	-	-	-	-	06/02/2026, 05:00:11	-
8.212.158.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Philippines	05/02/2026, 09:17:18	11/04/2026, 23:57:42	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 05:00:13	-
121.40.58.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:18	02/03/2026, 04:55:55	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, Lyceum APT, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, TA505, TEMP.Hermit, The Shadow Brokers, Volt Typhoon	CVE-2010-4478, CVE-2010-4755, CVE-2010-5107, CVE-2011-4327, CVE-2011-5000, CVE-2012-0814, CVE-2014-1692, CVE-2014-2532, CVE-2014-2653, CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-0777, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2018-15473, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-15778, CVE-2021-36368, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 05:00:16	datacamp.co.uk, aliyun.com
60.205.93.•••:18789	J.A.R.V.I.S. (🤖)	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:18	28/02/2026, 04:43:39	No	No	-	-	06/02/2026, 05:00:19	-
47.253.174.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:18	26/02/2026, 17:02:03	No	Yes	APT15, APT28, APT31, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	06/02/2026, 05:00:21	-
47.108.165.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	05/02/2026, 09:17:18	05/03/2026, 00:39:18	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	06/02/2026, 05:00:24	-
47.252.69.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:18	28/02/2026, 21:01:11	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 05:00:25	-
8.134.135.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	05/02/2026, 09:17:18	10/04/2026, 20:36:57	No	Yes	APT-C-23, APT36, Cobalt Group, Equation Group, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 05:00:28	-
47.252.36.•••:18789	小圆满（一一 / 1） (/avatar/main)	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	05/02/2026, 09:17:18	28/02/2026, 10:37:36	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	06/02/2026, 05:00:32	-
47.80.19.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	05/02/2026, 09:17:18	11/04/2026, 23:57:20	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	06/02/2026, 05:00:33	hichina.com, alibaba-inc.com
8.215.89.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:18	11/04/2026, 04:49:18	-	-	-	-	06/02/2026, 05:00:34	-
47.245.99.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	05/02/2026, 09:17:18	01/03/2026, 05:11:35	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 05:00:38	hichina.com, alibaba-inc.com
66.228.37.•••:18789	Clawd	🇺🇸 United States	Yes	true	Clean	AS63949	Akamai Connected Cloud	Linode	05/02/2026, 09:17:18	11/04/2026, 23:57:44	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, Lyceum APT, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, TA505, TEMP.Hermit, The Shadow Brokers, Volt Typhoon	CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	06/02/2026, 05:00:42	-
8.137.113.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	05/02/2026, 09:17:18	11/04/2026, 23:56:19	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	06/02/2026, 05:00:43	-
8.215.60.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	05/02/2026, 09:17:18	11/04/2026, 23:56:38	No	No	-	-	06/02/2026, 05:00:50	-

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.