🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 816988 Page: 6797 / 8170 (100 per page) Showing: 679601-679700 Last Imported: 15/05/2026, 09:32:33

🇨🇳 425,761

🇺🇸 231,518

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
157.245.77.•••:18789	-	🇳🇱 Netherlands	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:30:01	13/03/2026, 10:28:53	No	Yes	APT15, APT17, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 07:28:21	-
47.253.213.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	09/02/2026, 22:30:01	17/04/2026, 04:01:45	No	No	-	-	04/02/2026, 07:28:22	-
178.128.5.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:30:01	10/02/2026, 22:56:36	-	-	-	-	-	-
144.91.72.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	09/02/2026, 22:30:01	29/03/2026, 18:27:56	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387	10/02/2026, 07:28:24	contaboserver.net, contabo.de, contabo.net
104.197.27.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	09/02/2026, 22:30:01	17/04/2026, 20:54:01	No	Yes	DragonFly, Packrat	-	10/02/2026, 07:28:25	-
5.78.72.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS212317	Hetzner Online GmbH	Hetzner Online	09/02/2026, 22:30:01	03/03/2026, 16:08:37	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 07:28:27	hetzner.com
211.159.155.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 22:30:00	18/04/2026, 00:39:13	Yes	Yes	APT37, El-Machete	-	10/02/2026, 07:28:30	tencent.com, ultrasw.co.kr
101.33.248.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/02/2026, 22:30:00	10/03/2026, 12:53:01	Yes	Yes	APT37, El-Machete	-	10/02/2026, 07:28:31	tencent.com, optage.co.jp
120.48.179.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 22:30:00	05/03/2026, 00:42:13	-	-	-	-	-	-
182.61.28.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 22:30:00	15/03/2026, 13:56:33	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	10/02/2026, 07:28:33	baidu.com
1.15.156.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 22:30:00	28/02/2026, 12:08:58	Yes	Yes	APT14, APT28, APT37, APT40, APT41, Cobalt Group, El-Machete, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE	CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-13950, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813	10/02/2026, 07:28:34	tencent.com, tot.co.th
180.76.102.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 22:30:00	29/03/2026, 19:12:47	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	10/02/2026, 07:28:35	tfn.net.tw, baidu.com
159.203.70.•••:18789	Henry (⚡)	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:30:00	24/03/2026, 03:08:54	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 07:28:38	-
163.7.0.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS150436	Byteplus Pte. Ltd.	Byteplus	09/02/2026, 22:30:00	27/02/2026, 13:50:30	-	-	-	-	-	-
69.5.21.•••:18789	猪猪 (🐷)	🇸🇬 Singapore	Yes	false	Clean	AS150436	Byteplus Pte. Ltd.	Byteplus	09/02/2026, 22:30:00	10/02/2026, 22:56:36	-	-	-	-	-	-
120.48.42.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 22:30:00	02/03/2026, 19:04:48	Yes	Yes	APT14, APT17, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, DragonFly, El-Machete, Gamaredon Group, Gozi, Kimsuky, Lazarus Group, Mustang Panda, Packrat, Sandworm Team, SharpPanda, The Shadow Brokers	CVE-2006-20001, CVE-2016-10708, CVE-2017-15906, CVE-2017-9118, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-21708, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31625, CVE-2022-31626, CVE-2022-31628, CVE-2022-31629, CVE-2022-31630, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2023-0567, CVE-2023-0568, CVE-2023-0662, CVE-2023-25690, CVE-2023-27522	10/02/2026, 07:28:41	chinamobile.com, chinamobile.cn, baidu.com
169.255.58.•••:18789	Assistant	🇿🇦 South Africa	Yes	false	Leaked	AS329184	Host Africa (Pty) Ltd	Web4Africa	09/02/2026, 22:30:00	10/02/2026, 22:56:36	Yes	Yes	APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, WIRTE	CVE-2006-20001, CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-17199, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2020-11985, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-28625	10/02/2026, 07:28:42	hostafrica.co.za
104.21.57.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS13335	Cloudflare, Inc.	Cloudflare	09/02/2026, 22:30:00	22/03/2026, 07:47:08	Yes	No	-	-	10/02/2026, 07:28:44	summitiireit.com, focusedumatics.com, 1-x-stavka1.ru, atlaseyecenter.com, fdfenergy.com, modernpestservices.com, bikeweeksa.com, hzfeidi.com, baxa.com, fricksfashion.com, cityfied.net, arizonaacservice.com, incellart.com, anlink.net, hmcxjc.com, welchallyn.com, shsinotech.com, vbankph.com, mashmanventures.com, alsuyar.net, clubduma.ru, ekakitchen.com, wisehousetech.com, cloudflare.net, baxter.com, grillonthehillokc.com, lyricsintosong.ai, jxlingtong.com, fastchecker.us, opp.com, angelinsulation.com, baselinewoods.com, nimitkraft.com, luminous-productions.com, alghanitex.com, qzz.io, brownsprinting.com, burdick.com, cloudhq-mkt6.net, airbiquity.com, valenciamoldremediation.us, forwardwirecloth.net, clarisinj.com, rockinghampetroleum.com, chinasand.net, njbiomaterials.org, eurotissus.com, retinavue.net, hill-rom.com, gyrotrontech.com, pp.ua, neosec.ai, refee.net, xjzljt.net, sxgas.net, tsxentertainment.com, synovismicro.com, zenturepartners.com, hisgames.org, globaluavtech.com, hillrom.com, sanhoos.com, bamko.net, ausarabbusinesscouncil.com, citydirectory.us, hansecontrol.com, cpp.com, briefy.ai, tinydebit.com, irrigationsystems4u.com, china-one.net, kingdisplay.net, vantive.com, eu.org, themyersbriggs.com, bomara.com, polikom.ru, mncvisionnetworks.com, com.de, finaeo.com, ubproperties.com, guardianeldercare.com, coxmachine.com, frontiermodelforum.org, baxter.cl, nfgsales.com, buffalomanufacturingworks.com, ranscustombuilders.com, themeyersbriggs.com, min-arnavaux.com, parliament-osetia.ru, intbot.ai, oracle-ag.ch, epm.agency, zhaowoo.net, einpl.com, bestwanhui.com, city-usa.net, voalte.com, srivallishipping.in, workers.dev, tigerexpressfuel.com, nameasap.com, 360-xj.com, xjwfcj.com, xinxingchina.com, clipart-library.com, allaboutnails.org, db-city.com, zsnet.net, hil-rom.com, vipstarnetwork.com, hillrom.jp, china114.net, futurefg.ru, hy189.net, mwcapitol.com, belcrilux.com, xjhongshun.com, kantanmtblog.com, lyric-line.ru, geochem.org, hackerx.org, equinaceaprodutosnaturais.com, dmln.net
2a02:4780:c:ea61::1:18789	-	🇱🇹 Lithuania	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	09/02/2026, 22:30:00	15/04/2026, 13:26:09	-	-	-	-	-	-
34.121.214.•••:18789	-	🇺🇸 United States	-	false	Clean	AS396982	Google LLC	Google	09/02/2026, 22:30:00	10/02/2026, 22:56:36	No	No	-	-	04/02/2026, 07:28:46	-
43.160.233.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 22:30:00	10/03/2026, 21:12:12	-	-	-	-	-	-
5.78.119.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS212317	Hetzner Online GmbH	Hetzner Online	09/02/2026, 22:30:00	14/04/2026, 10:29:44	Yes	Yes	APT17, APT29, APT35, APT36, APT37, APT40, APT41, APT45, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Kimsuky, MuddyWater Group, Patchwork, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 07:28:49	hetzner.com
54.172.49.•••:18789	CloudBot (🤖)	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon	09/02/2026, 22:30:00	13/03/2026, 08:15:07	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	10/02/2026, 07:28:51	-
118.25.184.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/02/2026, 22:30:00	16/04/2026, 13:41:04	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347	10/02/2026, 07:28:52	tencent.com
152.42.143.•••:18789	-	🇳🇱 Netherlands	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:30:00	17/04/2026, 04:01:45	No	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MoustachedBouncer, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2007-4559, CVE-2013-0340, CVE-2015-20107, CVE-2016-20012, CVE-2016-3189, CVE-2018-25032, CVE-2019-12900, CVE-2020-10735, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-28861, CVE-2021-36368, CVE-2021-41617, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-26488, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-37454, CVE-2022-42919, CVE-2022-45061, CVE-2023-24329, CVE-2023-25690, CVE-2023-27043, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-36632, CVE-2023-38408, CVE-2023-38709, CVE-2023-40217, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-4030, CVE-2024-6387	10/02/2026, 07:28:53	-
122.233.245.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	ChinaNet Hangzhou	09/02/2026, 22:30:00	10/02/2026, 22:56:36	No	No	-	CVE-2007-3107, CVE-2007-3642, CVE-2007-3740, CVE-2007-4567, CVE-2007-5501, CVE-2008-0001, CVE-2008-1514, CVE-2008-1675, CVE-2008-3276, CVE-2008-3833, CVE-2008-3915, CVE-2008-4113, CVE-2008-4210, CVE-2008-4302, CVE-2008-4307, CVE-2008-4445, CVE-2008-4554, CVE-2008-4576, CVE-2008-4618, CVE-2008-4933, CVE-2008-5025, CVE-2008-5029, CVE-2008-5079, CVE-2008-5134, CVE-2008-5182, CVE-2008-5700, CVE-2008-5702, CVE-2008-5713, CVE-2008-6107, CVE-2009-0024, CVE-2009-0028, CVE-2009-0031, CVE-2009-0065, CVE-2009-0269, CVE-2009-0605, CVE-2009-0675, CVE-2009-0676, CVE-2009-0778, CVE-2009-0935, CVE-2009-1184, CVE-2009-1192, CVE-2009-1336, CVE-2009-1337, CVE-2009-1338, CVE-2009-1360, CVE-2009-1385, CVE-2009-1389, CVE-2009-1439, CVE-2009-1914, CVE-2009-2406, CVE-2009-2407, CVE-2009-2695, CVE-2009-2846, CVE-2009-2849, CVE-2009-2909, CVE-2009-3043, CVE-2009-3238, CVE-2009-3613, CVE-2009-3620, CVE-2009-3623, CVE-2009-3624, CVE-2009-3638, CVE-2009-3640, CVE-2009-3722, CVE-2009-3726, CVE-2009-3888, CVE-2009-3889, CVE-2009-3939, CVE-2009-4005, CVE-2009-4021, CVE-2009-4026, CVE-2009-4027, CVE-2009-4131, CVE-2009-4138, CVE-2009-4306, CVE-2009-4307, CVE-2009-4308, CVE-2010-0008, CVE-2010-0437, CVE-2010-1083, CVE-2010-1084, CVE-2010-1088, CVE-2010-1173, CVE-2010-1437, CVE-2010-1643, CVE-2010-3015, CVE-2010-3066, CVE-2010-3086, CVE-2011-0726, CVE-2011-1090, CVE-2011-1170, CVE-2011-1171, CVE-2011-1172, CVE-2011-1494, CVE-2011-1495, CVE-2011-1577, CVE-2011-4325, CVE-2012-1583, CVE-2015-3214, CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	10/02/2026, 07:28:54	-
81.70.100.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/02/2026, 22:30:00	12/03/2026, 20:44:47	No	Yes	APT37, El-Machete	-	10/02/2026, 07:28:55	-
178.18.254.•••:18789	Leo / 小朗 (Xiǎo lǎng) (/avatar/main)	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	09/02/2026, 22:30:00	17/04/2026, 10:01:21	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2019-6470, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-31625, CVE-2022-31626, CVE-2022-31628, CVE-2022-31629, CVE-2022-31630, CVE-2022-37454, CVE-2023-0568, CVE-2023-0662, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-0760, CVE-2024-1737, CVE-2024-1975, CVE-2024-39894, CVE-2024-4076, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 07:28:56	vicp.cc, contaboserver.net, eicp.net, 6655.la, 51vip.biz, wicp.net, gicp.net, iicp.net
138.68.43.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:30:00	16/04/2026, 22:46:02	No	No	-	CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200	10/02/2026, 07:28:58	-
146.190.165.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:30:00	13/04/2026, 23:57:54	No	Yes	APT15, APT17, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	10/02/2026, 07:28:59	-
202.59.200.•••:18789	Assistant	🇮🇩 Indonesia	Yes	false	Clean	AS63859	PT. Eka Mas Republik	IDNIC	09/02/2026, 22:30:00	18/02/2026, 08:26:12	No	No	-	-	04/02/2026, 07:29:00	-
46.225.105.•••:18789	Assistant	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	09/02/2026, 22:30:00	02/03/2026, 12:22:36	-	-	-	-	-	-
20.115.25.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS8075	Microsoft Corporation	Microsoft	09/02/2026, 22:30:00	21/03/2026, 20:46:56	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 07:29:03	-
120.48.91.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 22:30:00	10/03/2026, 21:10:54	-	-	-	-	-	-
138.68.237.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:30:00	13/02/2026, 11:21:57	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	10/02/2026, 06:44:37	-
35.169.124.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon	09/02/2026, 22:30:00	10/02/2026, 22:56:36	-	-	-	-	-	-
23.94.255.•••:18789	Rose (/avatar/main)	🇺🇸 United States	Yes	false	Leaked	AS36352	HostPapa	RackNerd	09/02/2026, 22:30:00	10/02/2026, 22:56:36	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT31, APT35, APT36, APT37, APT39, APT45, Bitter APT, Bluenoroff, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Salt Typhoon, Sandworm Team, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-3618, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 07:29:07	racknerd.com
64.23.129.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:30:00	13/02/2026, 23:13:49	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2024-7347, CVE-2025-23048, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200	10/02/2026, 07:29:08	-
168.110.210.•••:18789	Nazilla (🦎)	🇺🇸 United States	Yes	false	Clean	AS31898	Oracle Corporation	Oracle	09/02/2026, 22:30:00	10/02/2026, 22:56:36	-	-	-	-	-	-
106.12.175.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 22:30:00	03/03/2026, 07:31:29	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	10/02/2026, 07:29:10	bj189.cn, baidu.com
106.12.163.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 22:30:00	13/02/2026, 20:18:05	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	10/02/2026, 07:29:13	bj189.cn, baidu.com
66.33.22.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS400940	Railway	Railway	09/02/2026, 22:27:39	10/02/2026, 23:38:12	Yes	No	-	-	10/02/2026, 00:05:18	edonconnect.tech, datavative.com, laudam.nl, arcol.io, shotsnapp.com, docsai.app, gtzlandscape.com, adminremix.com, usebubbles.com, railway.app, caffey-inc.com, amseastvillage.com, precision-petroleum.com, nscbiomed.com, com2us.net, hometown-industries.com, lfca.earth, gymmonique.net, smartcampusosu.com, baristadelbarrio.com, zainthaver.com, gamevil.com, ceanse.com, wekachecker.com, gethempdash.com, payerset.com, eliteurgentcare.org, crapystaking.com, railway.com, villaencantodallas.com, aplusrestaurantequipmentandsupplies.com, nida.co, oncuetech.com, program-productions.com, abogadosjbe.com, withhive.com, homeandhoundke.com, driv.ly, ordinalkodas.com, lasa.ai, com2us.com
5.78.132.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS212317	Hetzner Online GmbH	Hetzner Online	09/02/2026, 22:27:39	27/02/2026, 09:04:10	Yes	Yes	APT15, APT31, APT37, APT39, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 00:05:19	hetzner.com
38.242.255.•••:18789	-	🇩🇪 Germany	-	false	Leaked	AS51167	Contabo GmbH	Contabo	09/02/2026, 22:27:39	18/04/2026, 00:36:13	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	10/02/2026, 00:05:20	cogentco.com
2a02:4780:41:e0a9::1:18789	-	🇩🇪 Germany	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	09/02/2026, 22:27:39	26/02/2026, 15:32:56	-	-	-	-	-	-
8.215.78.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/02/2026, 22:27:39	17/04/2026, 15:08:48	No	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	10/02/2026, 00:05:22	-
47.108.153.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 22:27:38	10/03/2026, 01:38:39	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	10/02/2026, 00:05:23	-
47.108.61.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 22:27:38	25/02/2026, 18:11:00	No	No	-	-	04/02/2026, 00:05:24	-
167.71.253.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:27:38	10/02/2026, 23:38:11	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-39894, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020	10/02/2026, 00:05:26	cprapid.com
143.244.128.•••:18789	-	🇮🇳 India	-	false	Leaked	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:27:38	15/04/2026, 09:23:24	Yes	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 00:05:27	cprapid.com
117.147.121.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS56041	China Mobile communications corporation	China Mobile	09/02/2026, 22:27:38	10/02/2026, 23:38:11	Yes	No	-	-	10/02/2026, 00:05:28	chinamobile.com, chinamobile.cn
159.65.100.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:27:38	10/02/2026, 23:38:11	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	10/02/2026, 00:05:29	-
8.215.71.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/02/2026, 22:27:38	17/04/2026, 17:24:09	No	No	-	CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	10/02/2026, 00:05:30	-
47.253.233.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	09/02/2026, 22:27:38	25/02/2026, 05:29:16	-	-	-	-	-	-
47.77.184.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/02/2026, 22:27:38	17/04/2026, 15:08:47	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/03/2026, 20:21:34	linkpc.net, hichina.com, alibaba-inc.com
77.42.91.•••:18789	-	🇫🇮 Finland	-	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	09/02/2026, 22:27:38	11/02/2026, 18:55:52	-	-	-	-	-	-
72.56.79.•••:18789	-	🇳🇱 Netherlands	Yes	false	Clean	AS210976	Timeweb, LLP	Taiwan Cloud	09/02/2026, 22:27:38	17/04/2026, 07:45:03	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 00:05:35	-
51.222.155.•••:18789	-	🇨🇦 Canada	-	false	Leaked	AS16276	OVH SAS	OVH Hosting	09/02/2026, 22:27:38	11/02/2026, 00:22:14	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MoustachedBouncer, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2013-0340, CVE-2015-20107, CVE-2016-20012, CVE-2016-3189, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2018-25032, CVE-2019-12900, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-10735, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-27619, CVE-2021-23336, CVE-2021-28041, CVE-2021-28861, CVE-2021-3426, CVE-2021-36368, CVE-2021-3733, CVE-2021-3737, CVE-2021-41617, CVE-2021-4189, CVE-2022-0391, CVE-2022-37454, CVE-2022-42919, CVE-2022-45061, CVE-2023-24329, CVE-2023-27043, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-0397, CVE-2024-11168, CVE-2024-3219, CVE-2024-4030, CVE-2024-4032, CVE-2024-5642, CVE-2024-6232, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 00:05:36	ovh.ca, ovh.net
46.101.192.•••:18789	-	🇩🇪 Germany	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:27:38	28/02/2026, 18:47:30	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT36, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	10/02/2026, 00:05:37	-
14.103.53.•••:18789	-	🇨🇳 China mainland	-	false	Leaked	AS137718	Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)	Beijing Volcano Engine Technology	09/02/2026, 22:27:38	27/03/2026, 11:22:04	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	10/02/2026, 00:05:38	bytedance.com
43.133.145.•••:18789	-	🇮🇩 Indonesia	-	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 22:27:38	11/02/2026, 00:22:14	Yes	No	-	-	10/02/2026, 00:05:40	tencent.com
170.64.149.•••:18789	-	🇦🇺 Australia	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:27:38	23/02/2026, 13:35:40	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2021-31294, CVE-2021-32626, CVE-2021-32627, CVE-2021-32628, CVE-2021-32672, CVE-2021-32675, CVE-2021-32687, CVE-2021-32762, CVE-2021-41099, CVE-2022-24735, CVE-2022-24736, CVE-2022-24834, CVE-2022-36021, CVE-2022-3647, CVE-2022-41741, CVE-2022-41742, CVE-2023-25155, CVE-2023-28531, CVE-2023-28856, CVE-2023-38408, CVE-2023-44487, CVE-2023-45145, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-31228, CVE-2024-31449, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 00:49:31	-
159.195.104.•••:18789	-	🇩🇪 Germany	-	false	Clean	AS197540	netcup GmbH	Netcup	09/02/2026, 22:27:38	15/03/2026, 12:24:50	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 00:49:33	-
8.215.93.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/02/2026, 22:27:38	11/02/2026, 00:22:14	No	-	-	-	04/02/2026, 00:49:34	-
93.125.18.•••:18789	-	🇧🇾 Belarus	-	false	Clean	AS56740	DataHata Ltd	CloudPark Network	09/02/2026, 22:27:38	17/02/2026, 01:02:13	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-12519, CVE-2019-12520, CVE-2019-12521, CVE-2019-12522, CVE-2019-12523, CVE-2019-12524, CVE-2019-12525, CVE-2019-12526, CVE-2019-12527, CVE-2019-12528, CVE-2019-12529, CVE-2019-12854, CVE-2019-13345, CVE-2019-16905, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-18860, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11945, CVE-2020-14058, CVE-2020-14145, CVE-2020-15049, CVE-2020-15810, CVE-2020-15811, CVE-2020-24606, CVE-2020-25097, CVE-2020-8449, CVE-2020-8450, CVE-2020-8517, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-28662, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-41617, CVE-2021-46784, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 00:49:36	-
15.204.210.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS16276	OVH SAS	VPS US East VA 2	09/02/2026, 22:27:38	06/04/2026, 10:49:54	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 00:49:37	ovh.us, ovhcloud.com
115.159.44.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 22:27:38	23/02/2026, 10:37:14	-	-	-	-	-	-
3.208.125.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	09/02/2026, 22:27:38	13/04/2026, 00:33:24	No	No	-	-	04/02/2026, 01:33:31	-
165.22.155.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:27:36	11/02/2026, 00:22:14	-	-	-	-	-	-
8.162.22.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	09/02/2026, 22:27:36	18/04/2026, 00:36:41	No	No	-	-	25/02/2026, 06:17:57	-
47.102.186.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 22:27:36	10/03/2026, 02:11:18	No	No	-	-	04/02/2026, 01:33:34	-
111.231.50.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 22:27:36	11/02/2026, 00:22:13	Yes	-	-	-	10/02/2026, 01:33:37	tencent.com, chinamobile.com, chinamobile.cn
139.196.44.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 22:27:36	10/03/2026, 03:49:44	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-23672, CVE-2024-24549, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 01:33:38	-
47.93.149.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 22:27:36	07/03/2026, 07:22:54	No	No	-	-	04/02/2026, 01:33:39	-
152.42.219.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:27:36	11/02/2026, 00:22:13	No	Yes	APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 01:33:40	-
157.245.77.•••:18789	-	🇳🇱 Netherlands	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 22:27:36	14/03/2026, 01:49:46	No	Yes	APT15, APT17, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 01:33:41	-
47.236.156.•••:18789	卓尔 (东八区)	🇺🇸 United States	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/02/2026, 22:27:36	07/03/2026, 07:23:54	Yes	No	-	-	10/02/2026, 01:33:42	hichina.com, alibaba-inc.com
39.105.130.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 22:27:36	19/02/2026, 08:09:23	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 01:33:44	aliyun.com, ptcl.net.pk
47.80.73.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/02/2026, 22:27:36	18/04/2026, 00:36:06	Yes	No	-	-	10/02/2026, 01:31:36	hichina.com, alibaba-inc.com
13.60.219.•••:18789	-	🇺🇸 United States	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon Data Services Sweden	09/02/2026, 22:27:36	11/02/2026, 00:22:13	No	No	-	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	10/02/2026, 01:31:37	-
172.67.161.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS13335	Cloudflare, Inc.	Cloudflare	09/02/2026, 22:27:36	11/02/2026, 00:22:13	Yes	No	-	-	10/02/2026, 01:31:39	summitiireit.com, focusedumatics.com, 1-x-stavka1.ru, atlaseyecenter.com, fdfenergy.com, modernpestservices.com, bikeweeksa.com, hzfeidi.com, baxa.com, fricksfashion.com, cityfied.net, arizonaacservice.com, incellart.com, anlink.net, hmcxjc.com, welchallyn.com, shsinotech.com, vbankph.com, mashmanventures.com, alsuyar.net, clubduma.ru, ekakitchen.com, wisehousetech.com, cloudflare.net, baxter.com, grillonthehillokc.com, lyricsintosong.ai, jxlingtong.com, fastchecker.us, opp.com, angelinsulation.com, baselinewoods.com, nimitkraft.com, luminous-productions.com, alghanitex.com, qzz.io, brownsprinting.com, burdick.com, cloudhq-mkt6.net, airbiquity.com, valenciamoldremediation.us, forwardwirecloth.net, clarisinj.com, rockinghampetroleum.com, chinasand.net, njbiomaterials.org, eurotissus.com, retinavue.net, hill-rom.com, gyrotrontech.com, pp.ua, neosec.ai, refee.net, xjzljt.net, sxgas.net, tsxentertainment.com, synovismicro.com, zenturepartners.com, hisgames.org, globaluavtech.com, hillrom.com, sanhoos.com, bamko.net, ausarabbusinesscouncil.com, citydirectory.us, hansecontrol.com, cpp.com, briefy.ai, tinydebit.com, irrigationsystems4u.com, china-one.net, kingdisplay.net, vantive.com, eu.org, themyersbriggs.com, bomara.com, polikom.ru, mncvisionnetworks.com, com.de, finaeo.com, ubproperties.com, guardianeldercare.com, coxmachine.com, frontiermodelforum.org, baxter.cl, nfgsales.com, buffalomanufacturingworks.com, ranscustombuilders.com, themeyersbriggs.com, min-arnavaux.com, parliament-osetia.ru, intbot.ai, duckdns.org, oracle-ag.ch, epm.agency, zhaowoo.net, einpl.com, bestwanhui.com, city-usa.net, voalte.com, srivallishipping.in, workers.dev, tigerexpressfuel.com, nameasap.com, 360-xj.com, xjwfcj.com, xinxingchina.com, clipart-library.com, allaboutnails.org, db-city.com, zsnet.net, hil-rom.com, vipstarnetwork.com, hillrom.jp, china114.net, futurefg.ru, hy189.net, mwcapitol.com, belcrilux.com, xjhongshun.com, kantanmtblog.com, lyric-line.ru, geochem.org, hackerx.org, equinaceaprodutosnaturais.com, dmln.net
8.162.11.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	09/02/2026, 22:27:36	18/04/2026, 00:35:53	No	No	-	-	24/02/2026, 18:17:46	-
47.251.183.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	09/02/2026, 22:27:36	16/04/2026, 17:26:03	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 01:31:41	-
107.173.111.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS36352	HostPapa	RackNerd	09/02/2026, 22:27:36	11/02/2026, 00:22:13	Yes	No	-	-	10/02/2026, 01:31:42	racknerd.com
120.48.178.•••:80	Assistant	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 21:55:18	12/03/2026, 11:12:29	Yes	Yes	APT37, El-Machete, Gozi	-	09/02/2026, 22:00:05	chinamobile.com, chinamobile.cn, baidu.com
139.196.58.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 21:53:01	04/03/2026, 12:50:18	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/02/2026, 21:57:29	-
47.253.203.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	09/02/2026, 21:53:01	11/02/2026, 22:46:21	-	-	-	-	-	-
121.43.123.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 21:53:01	11/02/2026, 22:46:21	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-34305, CVE-2022-42252, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-48989, CVE-2025-55668	09/02/2026, 21:57:31	datacamp.co.uk, aliyun.com
47.253.208.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	09/02/2026, 21:53:01	18/04/2026, 00:01:18	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/03/2026, 16:25:11	-
8.219.135.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/02/2026, 21:53:01	11/02/2026, 22:46:21	No	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	09/02/2026, 21:57:34	-
47.85.7.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/02/2026, 21:53:01	18/04/2026, 00:00:49	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/03/2026, 16:21:18	hichina.com, alibaba-inc.com
8.215.95.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/02/2026, 21:53:01	17/02/2026, 19:16:21	No	No	-	-	03/02/2026, 21:57:36	-
8.215.95.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/02/2026, 21:53:01	11/02/2026, 22:46:21	-	-	-	-	-	-
47.253.212.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	09/02/2026, 21:53:01	15/02/2026, 17:01:35	No	Yes	APT15, APT17, APT28, APT31, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	09/02/2026, 21:57:38	-
8.215.28.•••:18789	管家 (🫖)	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/02/2026, 21:53:01	11/02/2026, 22:46:21	No	No	-	-	03/02/2026, 21:57:40	-
47.108.153.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 21:53:01	12/03/2026, 14:53:49	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	09/02/2026, 21:57:41	-
47.108.61.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 21:53:01	26/02/2026, 17:11:35	No	No	-	-	03/02/2026, 21:57:42	-
8.215.78.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/02/2026, 21:53:01	18/04/2026, 00:00:42	No	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	09/02/2026, 21:57:43	-
117.147.121.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS56041	China Mobile communications corporation	China Mobile	09/02/2026, 21:53:01	11/02/2026, 23:30:27	Yes	No	-	-	09/02/2026, 21:57:44	chinamobile.com, chinamobile.cn
8.215.71.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/02/2026, 21:53:01	18/04/2026, 00:01:44	No	No	-	CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	09/02/2026, 21:57:45	-

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.