🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 643649 Page: 6285 / 6437 (100 per page) Showing: 628401-628500 Last Imported: 12/04/2026, 00:31:21

🇨🇳 354,373

🇺🇸 169,554

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
152.53.122.•••:18789	Assistant	🇩🇪 Germany	Yes	true	Leaked	AS197540	netcup GmbH	Netcup	03/02/2026, 23:23:13	03/03/2026, 16:13:39	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 18:34:27	netcup.de, quicksrv.de
4.216.220.•••:443	旺财 (🐶)	🇺🇸 United States	Yes	true	Clean	AS8075	Microsoft Corporation	Microsoft	03/02/2026, 23:23:13	03/03/2026, 14:00:00	-	-	-	-	05/02/2026, 18:34:34	-
69.5.7.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS150436	Byteplus Pte. Ltd.	Byteplus	03/02/2026, 23:23:13	13/03/2026, 06:50:45	-	-	-	-	05/02/2026, 18:34:35	-
89.167.43.•••:18789	Cheezwhiz (🧀)	🇫🇮 Finland	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	03/02/2026, 23:23:13	25/02/2026, 02:37:32	-	-	-	-	05/02/2026, 18:34:39	-
2607:5300:205:200::d1b:18789	-	🇨🇦 Canada	-	true	Clean	AS16276	OVH SAS	OVH Hosting	03/02/2026, 23:23:13	24/02/2026, 16:50:13	-	-	-	-	05/02/2026, 18:34:42	-
211.159.160.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 23:23:13	02/03/2026, 19:09:39	Yes	No	-	-	05/02/2026, 18:34:55	tencent.com, ultrasw.co.kr
43.163.94.•••:80	八嘎 (🤖)	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 23:23:13	02/03/2026, 19:09:59	Yes	Yes	APT14, APT15, APT17, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT	CVE-2006-20001, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 18:34:59	tencent.com
180.184.138.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS137718	Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)	Beijing Volcano Engine Technology	03/02/2026, 23:23:13	11/04/2026, 08:41:10	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	05/02/2026, 18:36:08	tfn.net.tw, bytedance.com
139.199.59.•••:18789	小瑞AI (🌟)	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 23:23:13	10/04/2026, 00:15:50	-	-	-	-	05/02/2026, 18:36:09	-
43.153.43.•••:8082	Assistant	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 23:23:13	02/03/2026, 19:10:03	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 18:36:11	tencent.com
117.161.21.•••:18789	OpenClaw (/avatar/main)	🇨🇳 China mainland	Yes	true	Leaked	AS9808	China Mobile Communications Group Co., Ltd.	China Mobile	03/02/2026, 23:23:13	26/02/2026, 09:44:56	Yes	No	-	CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	05/02/2026, 18:36:12	chinamobile.com, chinamobile.cn
82.158.88.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS401701	cognetcloud INC	Skyvoro	03/02/2026, 23:23:13	25/02/2026, 12:19:32	No	No	-	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 18:36:14	-
120.92.213.•••:80	卜卜 (🐾)	🇨🇳 China mainland	Yes	true	Leaked	AS23724	IDC, China Telecommunications Corporation	Beijing Kingsoft Cloud Internet Technology	03/02/2026, 23:23:13	02/03/2026, 19:09:59	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10002, CVE-2016-10003, CVE-2016-10708, CVE-2017-15906, CVE-2018-1000024, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-12519, CVE-2019-12521, CVE-2019-12523, CVE-2019-12525, CVE-2019-12526, CVE-2019-12529, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11945, CVE-2020-14058, CVE-2020-14145, CVE-2020-15049, CVE-2020-24606, CVE-2020-25097, CVE-2021-28651, CVE-2021-28652, CVE-2021-31807, CVE-2021-41617, CVE-2021-46784	05/02/2026, 18:36:21	chinamobile.com, chinamobile.cn, kingsoft.com
165.22.166.•••:18789	자비스 (Jarvis) (📊)	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 23:23:13	09/04/2026, 14:36:30	No	No	-	-	05/02/2026, 18:36:30	-
211.159.160.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 23:21:05	02/03/2026, 19:07:27	Yes	No	-	-	06/02/2026, 08:10:32	tencent.com, ultrasw.co.kr
43.163.94.•••:18789	-	🇸🇬 Singapore	-	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 23:21:05	02/03/2026, 17:37:59	Yes	Yes	APT14, APT15, APT17, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT	CVE-2006-20001, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 08:10:36	tencent.com
180.184.138.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS137718	Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)	Beijing Volcano Engine Technology	03/02/2026, 23:21:05	11/04/2026, 07:08:54	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	06/02/2026, 08:10:46	tfn.net.tw, bytedance.com
139.199.59.•••:18789	小瑞AI (🌟)	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 23:21:05	01/03/2026, 19:38:51	-	-	-	-	06/02/2026, 08:10:47	-
117.161.21.•••:18789	OpenClaw (/avatar/main)	🇨🇳 China mainland	Yes	true	Leaked	AS9808	China Mobile Communications Group Co., Ltd.	China Mobile	03/02/2026, 23:21:05	26/02/2026, 08:13:18	Yes	No	-	CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	06/02/2026, 08:10:48	chinamobile.com, chinamobile.cn
82.158.88.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS401701	cognetcloud INC	Skyvoro	03/02/2026, 23:21:05	25/02/2026, 10:03:05	No	No	-	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 08:10:52	-
172.232.62.•••:18789	-	🇫🇷 France	Yes	true	Clean	AS63949	Akamai Connected Cloud	Linode	03/02/2026, 23:21:05	04/03/2026, 09:02:53	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MoustachedBouncer, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2007-4559, CVE-2013-0340, CVE-2015-20107, CVE-2016-3189, CVE-2018-25032, CVE-2019-12900, CVE-2020-10735, CVE-2020-27619, CVE-2021-23017, CVE-2021-23336, CVE-2021-28861, CVE-2021-29921, CVE-2021-3177, CVE-2021-3426, CVE-2021-3618, CVE-2021-3733, CVE-2021-3737, CVE-2021-4189, CVE-2022-0391, CVE-2022-26488, CVE-2022-37454, CVE-2022-41741, CVE-2022-41742, CVE-2022-42919, CVE-2022-45061, CVE-2022-48564, CVE-2022-48565, CVE-2022-48566, CVE-2023-24329, CVE-2023-27043, CVE-2023-28531, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-4030, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 22:48:55	-
180.184.138.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS137718	Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)	Beijing Volcano Engine Technology	03/02/2026, 23:18:57	11/04/2026, 07:06:33	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	05/02/2026, 15:31:24	tfn.net.tw, bytedance.com
139.199.59.•••:18789	小瑞AI (🌟)	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 23:18:57	09/04/2026, 22:46:05	-	-	-	-	05/02/2026, 16:00:13	-
82.158.88.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS401701	cognetcloud INC	Skyvoro	03/02/2026, 23:18:57	25/02/2026, 10:00:45	No	No	-	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 16:00:19	-
137.184.176.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 23:16:49	11/04/2026, 23:56:32	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347	06/02/2026, 10:39:52	-
8.208.117.•••:18789	Clawd (🤖)	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	03/02/2026, 23:15:47	16/03/2026, 05:59:47	No	No	-	-	06/02/2026, 11:19:08	-
64.225.28.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 23:13:46	04/03/2026, 13:25:26	No	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-6387, CVE-2024-7347	06/02/2026, 08:16:00	-
206.189.69.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 23:13:46	15/03/2026, 19:07:03	No	Yes	APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE	CVE-2006-20001, CVE-2017-15710, CVE-2017-15715, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11993, CVE-2020-14145, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690	05/02/2026, 05:37:41	-
2a02:4780:28:1074::1:18789	-	🇫🇷 France	-	true	Clean	AS47583	Hostinger International Limited	Hostinger	03/02/2026, 23:13:46	10/04/2026, 15:22:19	-	-	-	-	06/02/2026, 11:19:01	-
47.79.239.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	03/02/2026, 23:13:46	03/03/2026, 14:37:26	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	06/02/2026, 11:19:06	hichina.com, alibaba-inc.com
165.227.237.•••:18789	-	🇬🇧 United Kingdom	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 23:12:34	26/02/2026, 00:42:08	No	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Equation Group, Gamaredon Group, Gamaredon-Group, Gaza Cybergang, Gozi, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE, gozi	CVE-2016-20012, CVE-2017-15710, CVE-2017-15715, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11993, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	06/02/2026, 10:47:41	-
211.159.160.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 23:10:32	02/03/2026, 19:05:07	Yes	No	-	-	05/02/2026, 15:31:06	tencent.com, ultrasw.co.kr
43.163.94.•••:18789	-	🇸🇬 Singapore	-	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 23:10:32	02/03/2026, 17:35:36	Yes	Yes	APT14, APT15, APT17, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT	CVE-2006-20001, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 15:31:10	tencent.com
172.82.67.•••:18789	小可 ((待定))	🇺🇸 United States	Yes	true	Clean	AS49683	MASSIVEGRID LTD	Massive Grid Inc	03/02/2026, 23:08:26	11/04/2026, 23:56:36	No	No	-	-	06/02/2026, 11:18:43	-
178.156.140.•••:18789	-	🇺🇸 United States	-	true	Leaked	AS213230	Hetzner Online GmbH	Hetzner Online	03/02/2026, 23:08:26	26/02/2026, 14:48:29	Yes	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 11:18:45	hetzner.com
47.252.69.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 23:08:26	11/04/2026, 23:56:57	No	-	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 11:18:48	-
39.96.214.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 23:08:26	11/04/2026, 23:57:30	-	-	-	-	06/02/2026, 11:18:50	-
134.209.242.•••:18789	-	🇩🇪 Germany	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 23:08:26	28/03/2026, 09:17:50	-	-	-	-	06/02/2026, 04:57:39	-
47.251.178.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 23:08:26	11/04/2026, 23:57:20	-	-	-	-	06/02/2026, 11:18:52	-
47.253.224.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 23:08:26	04/03/2026, 13:57:53	No	No	-	-	06/02/2026, 11:18:54	-
106.53.107.•••:18789	-	🇨🇳 China mainland	-	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 23:07:39	02/03/2026, 19:06:59	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	05/02/2026, 23:16:15	bj189.cn, tencent.com
43.162.126.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 23:07:05	01/03/2026, 06:00:44	Yes	No	-	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 18:23:29	tencent.com
42.193.178.•••:18789	-	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 23:06:54	04/03/2026, 06:04:57	Yes	Yes	APT-C-23, APT1 Comment Crew, APT15, APT27, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Earth Longzhi, El-Machete, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2015-9251, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-11358, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2020-15778, CVE-2020-9484, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-36368, CVE-2021-41079, CVE-2021-41617, CVE-2021-42340, CVE-2021-43980, CVE-2022-23181, CVE-2022-25762, CVE-2022-29885, CVE-2022-34305, CVE-2022-41741, CVE-2022-41742, CVE-2022-42252, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	06/02/2026, 00:26:41	tencent.com, mobifone.vn
82.156.28.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	03/02/2026, 23:06:36	02/03/2026, 19:07:15	No	Yes	APT37, El-Machete	-	06/02/2026, 09:26:09	-
185.218.126.•••:18789	小龙虾 (🦞)	🇫🇷 France	Yes	true	Leaked	AS51167	Contabo GmbH	Contabo	03/02/2026, 23:06:28	28/02/2026, 12:11:15	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 18:21:05	contabo.de, contabo.net
43.139.193.•••:18789	风行 (🎭)	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	03/02/2026, 23:06:20	12/03/2026, 20:48:02	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	06/02/2026, 08:19:38	tencent.com
43.136.15.•••:18789	兴晟pro (🤖💼)	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	03/02/2026, 23:06:11	28/02/2026, 19:36:39	Yes	-	-	-	06/02/2026, 08:12:57	tencent.com
43.162.99.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 23:06:11	02/03/2026, 19:06:32	-	-	-	-	06/02/2026, 08:12:58	-
95.179.254.•••:18789	-	🇩🇪 Germany	-	true	Leaked	AS20473	The Constant Company, LLC	Hanauer Landstraße 302	03/02/2026, 23:06:11	13/03/2026, 10:31:24	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, DragonFly, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347	05/02/2026, 13:42:54	vultr.com
43.143.97.•••:18789	-	🇨🇳 China mainland	-	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	03/02/2026, 23:06:11	03/03/2026, 09:29:56	Yes	Yes	DragonFly, El-Machete, APT37	-	06/02/2026, 08:09:52	tencent.com
157.254.18.•••:18789	-	🇺🇸 United States	-	true	Clean	AS26042	FiberState, LLC	Softshell Hosting	03/02/2026, 23:06:11	02/03/2026, 19:06:55	No	-	-	-	05/02/2026, 08:40:52	-
51.38.42.•••:18789	Assistant	🇫🇷 France	Yes	true	Leaked	AS16276	OVH SAS	OVH	03/02/2026, 23:06:11	25/02/2026, 07:48:15	Yes	No	-	CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 08:09:59	ovh.net
152.53.122.•••:18789	Assistant	🇩🇪 Germany	Yes	true	Leaked	AS197540	netcup GmbH	Netcup	03/02/2026, 23:06:11	18/03/2026, 04:28:06	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 08:10:02	netcup.de, quicksrv.de
69.5.7.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS150436	Byteplus Pte. Ltd.	Byteplus	03/02/2026, 23:06:11	13/03/2026, 05:24:01	-	-	-	-	06/02/2026, 08:10:11	-
89.167.43.•••:18789	Cheezwhiz (🧀)	🇫🇮 Finland	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	03/02/2026, 23:06:11	24/02/2026, 23:35:55	-	-	-	-	06/02/2026, 08:10:16	-
2607:5300:205:200::d1b:18789	-	🇨🇦 Canada	-	true	Clean	AS16276	OVH SAS	OVH Hosting	03/02/2026, 23:06:11	24/02/2026, 14:32:10	-	-	-	-	06/02/2026, 08:10:19	-
43.134.26.•••:18789	-	🇸🇬 Singapore	-	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	6 Collyer Quay	03/02/2026, 23:06:11	04/03/2026, 12:44:14	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 08:10:23	tencent.com
121.40.142.•••:18789	-	🇨🇳 China mainland	-	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 23:05:20	02/03/2026, 19:05:01	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	05/02/2026, 03:19:26	datacamp.co.uk, aliyun.com
13.37.190.•••:18789	-	🇫🇷 France	-	true	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	03/02/2026, 23:05:20	26/02/2026, 07:26:35	No	No	-	-	05/02/2026, 03:37:19	-
45.77.141.•••:18789	Assistant	🇩🇪 Germany	Yes	true	Leaked	AS20473	The Constant Company, LLC	Vultr Holdings	03/02/2026, 23:05:12	02/03/2026, 19:04:46	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, DragonFly, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	06/02/2026, 01:55:56	vultr.com
217.154.231.•••:18789	-	🇩🇪 Germany	Yes	true	Leaked	AS8560	This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE.	Ionos Cloud	03/02/2026, 23:04:58	09/04/2026, 14:32:55	Yes	No	-	CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	04/02/2026, 21:35:57	ionos.com
23.80.90.•••:18789	coro (🐞)	🇺🇸 United States	Yes	true	Leaked	AS395954	Leaseweb USA, Inc.	LeaseWeb USA	03/02/2026, 23:04:55	23/02/2026, 19:37:49	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 00:08:05	leaseweb.com, ubiquityhosting.com
43.134.26.•••:18789	-	🇸🇬 Singapore	-	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	6 Collyer Quay	03/02/2026, 23:04:02	04/03/2026, 12:41:57	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 15:30:54	tencent.com
8.215.76.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	03/02/2026, 23:01:54	25/02/2026, 10:43:03	No	No	-	CVE-2014-4078, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 11:18:40	-
152.53.122.•••:18789	Assistant	🇩🇪 Germany	Yes	true	Leaked	AS197540	netcup GmbH	Netcup	03/02/2026, 23:01:13	18/03/2026, 04:25:47	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 15:30:29	netcup.de, quicksrv.de
69.5.7.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS150436	Byteplus Pte. Ltd.	Byteplus	03/02/2026, 23:01:13	13/03/2026, 05:21:39	-	-	-	-	05/02/2026, 15:30:40	-
89.167.43.•••:18789	Cheezwhiz (🧀)	🇫🇮 Finland	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	03/02/2026, 23:01:13	24/02/2026, 23:33:34	-	-	-	-	05/02/2026, 15:30:44	-
2607:5300:205:200::d1b:18789	-	🇨🇦 Canada	-	true	Clean	AS16276	OVH SAS	OVH Hosting	03/02/2026, 23:01:13	24/02/2026, 14:29:29	-	-	-	-	05/02/2026, 15:30:47	-
47.253.200.•••:18789	clawd (🦾)	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:55:36	10/04/2026, 06:36:56	No	-	-	-	06/02/2026, 11:18:21	-
8.129.129.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	03/02/2026, 22:55:36	05/03/2026, 00:39:39	-	-	-	-	06/02/2026, 11:18:22	-
8.219.70.•••:18789	jarvis (🌟)	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	03/02/2026, 22:55:36	04/03/2026, 23:22:47	No	Yes	APT-C-23, APT36, Carbanak, Cobalt Group, DarkHotel Group, Equation Group, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon	CVE-2017-20005, CVE-2017-7529, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	06/02/2026, 11:18:28	-
59.110.112.•••:18789	机机 (Jījī) (👻)	🇨🇳 China mainland	Yes	true	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 22:55:36	05/03/2026, 00:39:39	Yes	No	-	-	06/02/2026, 11:18:29	amazon.fr, bookworm.com, amazon.com.br, audible.com, amazon.eu, amazon.ca, amzaon.com, amazaon.com, audible.in, z-exp.com, amozon.com, aws-amazon.com, shopbop.com, accept.com, amazonn.com, amazon-adsystem.com, boxofficemojo.com, amazonaws-us-gov.com, amaozn.com, awsamazon.com, amazonmusiclocal.com, aliyun.com, a9.com, amzzon.com, mturk.com, amazonaws.cm, com.be, amazonpay.com, rooftopmedia.net, vine.com, imdb.com, ssl-images-amazon.com, amazon.com.au, amazon-rings.com, assoc-amazon.com, amazonin.com, amzn.asia, annapurnalabs.com, evi.com, amazonprime.com, beautybar.com, junglee.com, amazon.ae, tenmarks.com, look.com, amazonwebservices.net, associates-amazon.com, amazonrobotics.com, amazon-aws.com, endless.com, amazonlocal.com, amazonm.com, amazonllc.com, media-imdb.com, amazon.com.tw, createspace.com, amazonaws.com, bookdepository.com, amzn.com, amazon.com, goodreads.com, images-amazon.com, amazon.com.co
47.253.179.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:48:53	03/03/2026, 13:08:23	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 11:18:25	-
157.254.18.•••:18789	-	🇺🇸 United States	-	true	Clean	AS26042	FiberState, LLC	Softshell Hosting	03/02/2026, 22:48:08	02/03/2026, 19:04:34	No	-	-	-	05/02/2026, 03:06:13	-
51.38.42.•••:18789	Assistant	🇫🇷 France	Yes	true	Leaked	AS16276	OVH SAS	OVH	03/02/2026, 22:48:08	25/02/2026, 07:45:50	Yes	No	-	CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 15:30:26	ovh.net
47.108.151.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 22:47:23	11/04/2026, 23:56:26	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 05:31:15	-
47.253.254.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:47:23	11/04/2026, 23:57:46	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	05/02/2026, 12:12:00	-
8.222.255.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	03/02/2026, 22:47:23	26/02/2026, 18:18:55	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2008-7265, CVE-2009-0543, CVE-2009-3639, CVE-2010-3867, CVE-2010-4652, CVE-2011-1137, CVE-2011-4130, CVE-2012-6095, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2016-3125, CVE-2017-15906, CVE-2017-7418, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-12815, CVE-2019-18217, CVE-2019-19270, CVE-2019-19271, CVE-2019-19272, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-9272, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2021-46854, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	06/02/2026, 06:37:24	-
45.76.192.•••:18789	-	🇯🇵 Japan	Yes	true	Leaked	AS20473	The Constant Company, LLC	Vultr Holdings	03/02/2026, 22:47:23	06/04/2026, 18:40:36	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, DragonFly, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	06/02/2026, 05:23:27	vultr.com
47.77.185.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	03/02/2026, 22:47:23	11/04/2026, 17:04:01	Yes	No	-	-	06/02/2026, 03:47:10	hichina.com, alibaba-inc.com
47.253.190.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:47:23	01/03/2026, 07:13:18	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 06:20:36	-
47.253.235.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:47:23	05/03/2026, 00:40:19	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 19:31:45	-
47.85.38.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	03/02/2026, 22:47:23	28/02/2026, 00:17:02	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 06:34:51	hichina.com, alibaba-inc.com
47.105.74.•••:18789	Nexus (🤖)	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 22:47:23	08/03/2026, 06:09:58	No	Yes	APT37, El-Machete	-	06/02/2026, 06:20:15	-
47.80.17.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	03/02/2026, 22:47:23	10/03/2026, 03:16:47	Yes	-	-	-	06/02/2026, 05:06:43	hichina.com, alibaba-inc.com
47.252.26.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:47:23	11/04/2026, 23:56:46	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	06/02/2026, 08:51:19	-
8.215.85.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	03/02/2026, 22:47:23	03/03/2026, 06:16:27	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 06:31:10	-
47.251.76.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:47:23	10/04/2026, 17:40:05	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	06/02/2026, 03:31:05	-
8.222.246.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	03/02/2026, 22:47:23	27/02/2026, 14:56:29	No	-	-	-	05/02/2026, 15:57:50	-
47.253.255.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:47:23	24/02/2026, 01:37:37	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 05:09:24	-
47.253.136.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:47:23	03/03/2026, 04:01:52	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	05/02/2026, 19:47:58	-
47.89.152.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:47:23	11/04/2026, 01:54:23	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-16845, CVE-2019-16905, CVE-2019-20372, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 09:01:00	-
47.252.13.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:47:23	07/03/2026, 07:23:26	No	Yes	APT-C-23, APT10, APT15, APT19, APT27, APT28, APT29, APT30, APT31, APT33, APT34, APT35, APT37, APT39, APT40, APT41, APT5, AQUATIC PANDA, Antlion APT, BRONZE ATLAS, Bitter APT, Bluenoroff, Bronze Butler APT, Buhtrap Group, Callisto Group, Carbanak, Cobalt Group, CopyKittens, DarkHydrus, Donot Team, DragonOK APT, Earth Berberoka, Energetic Bear, Equation Group, Gamaredon Group, Gaza Cybergang, Greenbug Group, Hafnium Group, Inception Framework, Kimsuky, Konni Group, Lazarus Group, Moses Staff APT, MuddyWater Group, Mustang Panda, Orangeworm, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Silence Hacker Group, TA505, The Shadow Brokers, Thrip APT, Triton APT, Tropic Trooper, Volatile Kitten, Volt Typhoon	CVE-2014-3562, CVE-2014-4650, CVE-2015-3456, CVE-2015-5741, CVE-2015-6815, CVE-2016-20012, CVE-2016-2124, CVE-2016-2183, CVE-2016-6662, CVE-2017-1000376, CVE-2017-15906, CVE-2017-5645, CVE-2017-9953, CVE-2018-1059, CVE-2018-10869, CVE-2018-10892, CVE-2018-10926, CVE-2018-1111, CVE-2018-1128, CVE-2018-1129, CVE-2018-14462, CVE-2018-14463, CVE-2018-14465, CVE-2018-14469, CVE-2018-14622, CVE-2018-14645, CVE-2018-14879, CVE-2018-14882, CVE-2018-15473, CVE-2018-15919, CVE-2018-16229, CVE-2018-16540, CVE-2018-16871, CVE-2018-17456, CVE-2018-18311, CVE-2018-20615, CVE-2018-20685, CVE-2018-3665, CVE-2018-3760, CVE-2019-10196, CVE-2019-11038, CVE-2019-11477, CVE-2019-11478, CVE-2019-14813, CVE-2019-14816, CVE-2019-14907, CVE-2019-16905, CVE-2019-19906, CVE-2019-3459, CVE-2019-3880, CVE-2019-5798, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6974, CVE-2019-7221, CVE-2019-7317, CVE-2020-10696, CVE-2020-10711, CVE-2020-10749, CVE-2020-10756, CVE-2020-10763, CVE-2020-14145, CVE-2020-14318, CVE-2020-14355, CVE-2020-14364, CVE-2020-14370, CVE-2020-14394, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707, CVE-2020-15778, CVE-2020-1711, CVE-2020-25639, CVE-2020-25657, CVE-2020-25710, CVE-2020-25717, CVE-2020-25743, CVE-2020-27777, CVE-2020-27786, CVE-2020-27827, CVE-2020-35518, CVE-2020-35524, CVE-2021-20179, CVE-2021-20188, CVE-2021-20229, CVE-2021-20236, CVE-2021-20270, CVE-2021-32027, CVE-2021-3516, CVE-2021-3532, CVE-2021-3533, CVE-2021-3537, CVE-2021-3621, CVE-2021-36368, CVE-2021-3669, CVE-2021-3737, CVE-2021-3752, CVE-2021-4104, CVE-2021-41617, CVE-2021-41817, CVE-2021-44142, CVE-2021-45417, CVE-2022-0711, CVE-2022-1011, CVE-2022-1227, CVE-2022-1708, CVE-2022-2132, CVE-2022-2393, CVE-2022-2850, CVE-2022-2989, CVE-2022-2990, CVE-2022-32545, CVE-2022-32546, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	06/02/2026, 05:30:49	-
47.236.105.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	03/02/2026, 22:47:23	27/02/2026, 00:20:50	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 04:01:02	hichina.com, alibaba-inc.com
47.253.237.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:47:23	27/02/2026, 21:03:34	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 17:14:37	-
47.87.67.•••:18789	小也米 (🌾)	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	03/02/2026, 22:47:23	27/02/2026, 14:23:33	-	-	-	-	06/02/2026, 03:40:10	-
47.77.238.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	03/02/2026, 22:47:23	01/03/2026, 07:13:18	-	-	-	-	06/02/2026, 04:05:50	-
47.90.136.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	03/02/2026, 22:47:23	28/02/2026, 07:40:45	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 03:36:18	-
185.40.234.•••:18789	-	🇩🇪 Germany	-	true	Leaked	AS36236	NetActuate, Inc	NetActuate	03/02/2026, 22:47:23	11/04/2026, 23:57:48	Yes	No	-	-	04/02/2026, 21:11:37	tailscale.com, chickenkiller.com, crabdance.com, familyfarmsllc.com, greyleywellness.com, stranghall.com, tailscale.io, gvcs.com, ddns.net
8.130.65.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	03/02/2026, 22:47:23	11/04/2026, 23:57:05	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 21:11:55	-

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.