🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 816988 Page: 6817 / 8170 (100 per page) Showing: 681601-681700 Last Imported: 15/05/2026, 09:32:33

🇨🇳 425,761

🇺🇸 231,518

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
180.184.27.•••:18789	小小南 (✨)	🇨🇳 China mainland	Yes	false	Leaked	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	09/02/2026, 14:38:03	24/03/2026, 15:56:32	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	11/02/2026, 01:50:50	tfn.net.tw, bytedance.com
46.225.85.•••:80	OpenClaw Bot	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	09/02/2026, 14:38:03	16/02/2026, 06:56:53	-	-	-	-	-	-
120.48.100.•••:18789	玄明 (🌌)	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 14:38:03	04/04/2026, 19:54:38	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, DragonFly, El-Machete, Gamaredon Group, Gaza Cybergang, Gozi, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Packrat, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	11/02/2026, 01:50:53	chinamobile.com, chinamobile.cn, baidu.com
64.23.250.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:03	16/04/2026, 01:22:49	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-61984, CVE-2025-61985	11/02/2026, 02:17:16	-
172.232.108.•••:18789	Lucy (🚀)	🇮🇳 India	Yes	false	Clean	AS63949	Akamai Connected Cloud	Linode	09/02/2026, 14:38:02	09/04/2026, 11:38:06	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	11/02/2026, 02:17:18	-
146.190.161.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:02	16/04/2026, 01:24:10	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-43622, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-24795, CVE-2024-27316, CVE-2024-40725, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-61984, CVE-2025-61985	11/02/2026, 02:17:20	-
54.242.144.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	09/02/2026, 14:38:02	16/02/2026, 22:11:37	No	No	-	-	05/02/2026, 02:17:23	-
155.248.185.•••:443	-	🇺🇸 United States	Yes	false	Leaked	AS31898	Oracle Corporation	Oracle Cloud	09/02/2026, 14:38:02	28/02/2026, 22:36:56	Yes	-	-	-	11/02/2026, 02:17:24	healtheintent.com, purewellness.com, cerner.ae, retek.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oracle.com, hiedirectconnect.org, maxymiser.net, oraclecloudservices.com, rsys2.net, hyperroll.com, nor1.com, oxygen.systems, oraclegovcloud.com, orcale.com, oraclemobile.com, sun.co.in, openair.co, oraclepdemos.com, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, netsuiteforms.com, oracleemaildelivery.com, oraclecloud.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, zenedge.com, skire.com, sun.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, paymyhealthbill.com, dyndns.com, java.net, optika.com, jcp.org, smed.com, cernerenviza-tw.com, datafox.com, recruitmax.com, decisioneering.com, adiinsights.com, stortek.com, seebeyond.com, livelook.com, openjdk.org, virtualbox.org, dyn.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com, oracledatacloud.com
51.255.196.•••:18789	Assistant	🇫🇷 France	Yes	false	Clean	AS16276	OVH SAS	OVH	09/02/2026, 14:38:02	04/03/2026, 12:46:28	-	-	-	-	-	-
104.218.100.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS26548	PureVoltage Hosting Inc.	PureVoltage 21	09/02/2026, 14:38:02	14/02/2026, 02:14:24	Yes	No	-	-	14/02/2026, 00:05:44	purevoltage.com
64.23.172.•••:443	naspro assistant (none)	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:02	24/02/2026, 19:05:27	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-59362	10/02/2026, 20:50:50	-
159.223.13.•••:18789	Assistant	🇳🇱 Netherlands	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:02	11/02/2026, 02:11:19	-	-	-	-	-	-
180.76.182.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 14:38:02	02/03/2026, 19:08:43	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	13/02/2026, 17:29:48	tfn.net.tw, baidu.com
106.55.194.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 14:38:02	26/02/2026, 17:07:37	-	-	-	-	-	-
49.232.207.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 14:38:02	23/02/2026, 01:50:20	Yes	Yes	APT37, El-Machete	CVE-2014-4078, CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/02/2026, 15:59:25	truecorp.co.th, tencent.com
180.76.238.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 14:38:02	04/03/2026, 12:47:55	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	12/02/2026, 17:50:20	tfn.net.tw, baidu.com
142.93.216.•••:443	-	🇮🇳 India	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:02	11/02/2026, 02:11:19	-	-	-	-	-	-
74.48.78.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS35916	MULTACOM CORPORATION	Multacom Corporation	09/02/2026, 14:38:02	05/03/2026, 00:07:58	Yes	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	14/02/2026, 22:41:38	multacom.com
47.122.30.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 14:38:02	09/04/2026, 01:07:51	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/02/2026, 17:26:48	-
3.237.180.•••:80	Assistant	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	09/02/2026, 14:38:02	11/02/2026, 02:11:19	-	-	-	-	-	-
163.7.0.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS150436	Byteplus Pte. Ltd.	Byteplus	09/02/2026, 14:38:02	16/04/2026, 10:44:40	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/03/2026, 11:41:56	bytedance.com
143.47.100.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS31898	Oracle Corporation	Oracle	09/02/2026, 14:38:02	13/03/2026, 10:33:06	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/02/2026, 22:36:57	healtheintent.com, purewellness.com, retek.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oraclecloudservices.com, rsys2.net, hyperroll.com, orcale.com, oraclemobile.com, sun.co.in, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, oracleemaildelivery.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, skire.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, paymyhealthbill.com, duckdns.org, dyndns.com, optika.com, jcp.org, smed.com, cernerenviza-tw.com, recruitmax.com, decisioneering.com, stortek.com, seebeyond.com, livelook.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com
120.48.71.•••:18789	u伊 (🎯)	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 14:38:02	21/02/2026, 16:14:19	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	12/02/2026, 23:01:13	chinamobile.com, chinamobile.cn, baidu.com
8.130.175.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	09/02/2026, 14:38:02	11/02/2026, 02:11:19	-	-	-	-	-	-
2a02:4780:5e:5c74::1:18789	-	🇲🇾 Malaysia	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	09/02/2026, 14:38:02	11/02/2026, 02:11:19	-	-	-	-	-	-
209.38.89.•••:18789	Assistant	🇦🇺 Australia	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:02	11/02/2026, 02:11:19	-	-	-	-	-	-
39.106.153.•••:443	-	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 14:38:02	14/03/2026, 01:56:19	Yes	Yes	APT-C-23, APT1 Comment Crew, APT27, APT28, APT29, APT34, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Donot Team, Earth Longzhi, Gamaredon Group, Ghostwriter, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Packrat, Sandworm Team, TA428, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2015-9251, CVE-2016-10708, CVE-2017-15906, CVE-2017-8923, CVE-2017-9118, CVE-2017-9120, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-11358, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2020-7071, CVE-2021-21702, CVE-2021-21703, CVE-2021-21704, CVE-2021-21705, CVE-2021-21706, CVE-2021-21707, CVE-2021-21708, CVE-2021-32626, CVE-2021-32627, CVE-2021-32628, CVE-2021-32672, CVE-2021-32675, CVE-2021-32687, CVE-2021-32762, CVE-2021-3618, CVE-2021-41099, CVE-2021-41617, CVE-2022-24735, CVE-2022-24736, CVE-2022-31625, CVE-2022-31626, CVE-2022-31628, CVE-2022-31629, CVE-2022-31630, CVE-2022-37454, CVE-2022-41741, CVE-2022-41742, CVE-2022-4900, CVE-2023-44487, CVE-2024-4577, CVE-2024-7347, CVE-2025-23419	11/02/2026, 19:51:33	aliyun.com, ptcl.net.pk
43.156.36.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 14:38:02	16/04/2026, 22:05:56	Yes	Yes	APT-C-23, APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Gamaredon Group, Ghostwriter, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2014-4078, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/02/2026, 03:24:58	tencent.com
141.11.139.•••:18789	Assistant	🇯🇵 Japan	Yes	false	Clean	AS212336	ByteVirt LLC	ByteVirt	09/02/2026, 14:38:02	24/02/2026, 19:50:20	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/02/2026, 12:58:17	-
159.69.205.•••:18789	Assistant	🇩🇪 Germany	Yes	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	09/02/2026, 14:38:02	14/02/2026, 05:54:23	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	14/02/2026, 05:58:43	hetzner.com
120.48.73.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 14:38:02	07/04/2026, 19:04:31	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	13/02/2026, 15:58:40	chinamobile.com, chinamobile.cn, baidu.com
118.196.69.•••:18789	阿尧 (🎯)	🇨🇳 China mainland	Yes	false	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)	Beijing Volcano Engine Technology	09/02/2026, 14:38:02	02/03/2026, 19:09:44	-	-	-	-	-	-
8.140.35.•••:18789	林青雨 (/avatar/main)	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	09/02/2026, 14:38:02	13/02/2026, 07:47:09	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/02/2026, 02:39:33	-
2a02:4780:4:5840::1:443	-	🇺🇸 United States	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	09/02/2026, 14:38:02	14/03/2026, 01:57:14	-	-	-	-	-	-
64.120.92.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS59253	LEASEWEB SINGAPORE PTE. LTD.	Leaseweb Asia Pacific	09/02/2026, 14:38:02	02/03/2026, 19:09:48	No	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/02/2026, 03:23:41	-
122.51.40.•••:18789	小王 (🤖)	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 14:38:02	11/02/2026, 02:11:19	-	-	-	-	-	-
180.76.54.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 14:38:02	02/03/2026, 19:09:37	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	12/02/2026, 23:43:39	tfn.net.tw, baidu.com
164.92.117.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:02	16/04/2026, 19:50:05	No	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE	CVE-2016-20012, CVE-2017-15710, CVE-2017-15715, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11993, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-33193, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	12/02/2026, 03:52:29	-
172.234.90.•••:443	Assistant	🇯🇵 Japan	Yes	false	Leaked	AS63949	Akamai Connected Cloud	Linode	09/02/2026, 14:38:02	07/04/2026, 09:33:37	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 20:51:14	chickenkiller.com, quickconnect.to, fastspeed.dk
156.233.228.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS401701	cognetcloud INC	CognetCloud	09/02/2026, 14:38:02	28/02/2026, 15:56:41	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	12/02/2026, 22:59:45	-
120.39.164.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS4134	Chinanet	ChinaNet Fujian	09/02/2026, 14:38:02	23/02/2026, 21:13:04	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	13/02/2026, 02:40:47	bj189.cn, chinamobile.com, ctwing.cn, chinamobile.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, daqu.com.cn, ctyun.cn
118.196.64.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS137718	Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)	Beijing Volcano Engine Technology	09/02/2026, 14:38:02	02/03/2026, 19:08:56	Yes	No	-	-	12/02/2026, 17:49:22	bytedance.com
161.35.181.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:02	11/02/2026, 02:11:18	-	-	-	-	-	-
107.172.100.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS36352	HostPapa	RackNerd	09/02/2026, 14:38:02	11/02/2026, 02:11:18	-	-	-	-	-	-
43.134.25.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	6 Collyer Quay	09/02/2026, 14:38:02	07/04/2026, 09:32:07	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-6470, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-38177, CVE-2022-38178, CVE-2023-2828, CVE-2023-3341, CVE-2023-38408, CVE-2023-4408, CVE-2023-48795, CVE-2023-50387, CVE-2023-51384, CVE-2023-51385, CVE-2023-5517, CVE-2023-6516, CVE-2024-11187, CVE-2024-1737, CVE-2024-1975, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/02/2026, 04:07:45	tencent.com
47.77.187.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/02/2026, 14:38:02	11/02/2026, 02:11:18	-	-	-	-	-	-
159.75.179.•••:18789	贾维斯 (Jarvis) (🤖)	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/02/2026, 14:38:02	10/03/2026, 21:15:44	No	-	-	-	07/02/2026, 13:40:16	-
137.184.229.•••:443	Jeeves (🎩)	🇺🇸 United States	Yes	false	Leaked	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:02	14/02/2026, 01:30:14	Yes	Yes	APT-C-23, APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Turla APT Group, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/02/2026, 04:08:29	cprapid.com
120.48.113.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 14:38:02	05/03/2026, 00:08:33	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	12/02/2026, 17:47:30	chinamobile.com, chinamobile.cn, baidu.com
138.197.24.•••:443	Assistant	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:01	01/03/2026, 06:02:22	No	-	-	CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	14/02/2026, 03:00:50	-
101.34.77.•••:443	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/02/2026, 14:38:01	11/02/2026, 02:11:18	-	-	-	-	-	-
217.154.201.•••:18789	Frayja (/avatar/main)	🇩🇪 Germany	Yes	false	Clean	AS8560	This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE.	Ionos Cloud	09/02/2026, 14:38:01	11/02/2026, 02:11:18	-	-	-	-	-	-
124.222.67.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 14:38:01	25/03/2026, 11:04:11	Yes	Yes	APT37, El-Machete	-	16/03/2026, 14:02:53	tencent.com
2a02:4780:59:7b3a::1:18789	-	🇮🇩 Indonesia	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	09/02/2026, 14:38:01	19/02/2026, 06:47:27	-	-	-	-	-	-
43.142.41.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/02/2026, 14:38:01	25/03/2026, 11:03:54	Yes	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	13/02/2026, 17:26:36	tencent.com
43.153.201.•••:18789	布布 (🐾)	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 14:38:01	14/04/2026, 21:47:39	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	13/02/2026, 23:20:13	tencent.com
64.23.253.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:01	17/04/2026, 10:06:03	No	No	-	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	13/02/2026, 21:56:16	-
89.167.38.•••:18789	Assistant	🇫🇮 Finland	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	09/02/2026, 14:38:01	11/02/2026, 02:11:17	-	-	-	-	-	-
5.78.190.•••:443	Claw (🦀)	🇺🇸 United States	Yes	false	Clean	AS212317	Hetzner Online GmbH	Hetzner Online	09/02/2026, 14:38:01	13/02/2026, 17:26:27	-	-	-	-	-	-
151.115.50.•••:443	Clawy (📈)	🇵🇱 Poland	Yes	false	Clean	AS12876	SCALEWAY S.A.S.	Scaleway Warsaw	09/02/2026, 14:38:01	20/02/2026, 09:36:25	-	-	-	-	-	-
139.59.0.•••:80	Test OpenClaw Bot (🤖)	🇮🇳 India	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:01	11/02/2026, 02:11:17	-	-	-	-	-	-
38.76.195.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS401701	cognetcloud INC	FOJ IP Technology	09/02/2026, 14:38:01	27/02/2026, 09:54:01	Yes	No	-	-	12/02/2026, 18:33:26	cogentco.com
2a02:4780:4:8f1a::1:18789	-	🇺🇸 United States	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	09/02/2026, 14:38:01	11/02/2026, 02:11:17	-	-	-	-	-	-
180.76.237.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 14:38:01	11/02/2026, 02:11:17	-	-	-	-	-	-
43.134.55.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	6 Collyer Quay	09/02/2026, 14:38:01	18/03/2026, 14:18:39	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-38177, CVE-2022-38178, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	15/02/2026, 21:23:30	tencent.com
198.13.60.•••:18789	Assistant	🇯🇵 Japan	Yes	false	Leaked	AS20473	The Constant Company, LLC	Vultr Holdings	09/02/2026, 14:38:01	11/02/2026, 02:55:25	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, DragonFly, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	11/02/2026, 02:58:21	vultr.com
43.163.230.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 14:38:01	14/03/2026, 01:55:55	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	11/02/2026, 02:58:23	tencent.com
207.180.243.•••:443	-	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	09/02/2026, 14:38:01	11/02/2026, 02:55:25	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2021-35054, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-33245, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-46848, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-23638, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	11/02/2026, 02:58:24	contabo.de, contabo.net
68.183.174.•••:443	Clawbot (🤖)	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:01	12/03/2026, 20:50:57	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 20:49:59	-
179.144.188.•••:18789	Assistant	🇧🇷 Brazil	Yes	false	Clean	AS26599	TELEFÔNICA BRASIL S.A	Telefonica Brasil	09/02/2026, 14:38:01	11/02/2026, 02:55:25	-	-	-	-	-	-
167.71.201.•••:443	Taro (🍠)	🇸🇬 Singapore	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:01	16/02/2026, 17:15:21	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 07:34:29	-
159.65.139.•••:443	-	🇸🇬 Singapore	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:01	04/03/2026, 12:47:11	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-29323, CVE-2023-35784, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 06:49:16	-
27.152.8.•••:18789	小子 (System Supervisor & Orchestrator)	🇨🇳 China mainland	Yes	false	Leaked	AS4134	Chinanet	Quanzhou Broadband MAN	09/02/2026, 14:38:01	16/02/2026, 20:13:11	Yes	No	-	-	11/02/2026, 02:58:26	chinaunicom.cn
143.198.79.•••:443	Assistant	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:01	13/02/2026, 17:26:26	No	Yes	APT14, APT15, APT28, APT29, APT31, APT34, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13938, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	11/02/2026, 02:58:27	-
40.233.14.•••:18789	-	🇺🇸 United States	-	false	Clean	AS31898	Oracle Corporation	Oracle	09/02/2026, 14:38:01	11/02/2026, 02:55:25	-	-	-	-	-	-
43.167.164.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 14:38:01	16/04/2026, 21:20:45	Yes	Yes	APT15, APT31, APT37, APT39, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	11/02/2026, 02:58:29	tencent.com
106.53.186.•••:443	小乐 (🤖)	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 14:38:01	12/03/2026, 08:53:31	Yes	-	-	-	11/02/2026, 02:58:31	bj189.cn, tencent.com
143.198.30.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:01	11/02/2026, 08:45:51	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	10/02/2026, 20:51:06	-
154.193.243.•••:18789	Assistant	🇭🇰 Hong Kong	Yes	false	Clean	AS139923	ABCCLOUD SDN.BHD.	Fastmos Co Limited	09/02/2026, 14:38:01	11/02/2026, 02:55:25	No	No	-	-	05/02/2026, 02:58:34	-
34.142.152.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	09/02/2026, 14:38:01	11/02/2026, 02:55:25	No	No	-	CVE-2025-26466, CVE-2025-32728	11/02/2026, 02:58:35	-
180.184.176.•••:18789	小小 (🤖)	🇨🇳 China mainland	Yes	false	Leaked	AS137718	Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)	Beijing Volcano Engine Technology	09/02/2026, 14:38:01	21/02/2026, 19:58:56	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, Lyceum APT, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, TA505, TEMP.Hermit, The Shadow Brokers, Volt Typhoon	CVE-2010-4478, CVE-2010-4755, CVE-2010-5107, CVE-2011-4327, CVE-2011-5000, CVE-2012-0814, CVE-2014-1692, CVE-2014-2532, CVE-2014-2653, CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2015-9253, CVE-2016-0777, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2017-7272, CVE-2017-7963, CVE-2017-8923, CVE-2017-9225, CVE-2017-9229, CVE-2018-15473, CVE-2018-19395, CVE-2018-19396, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9641, CVE-2020-15778, CVE-2021-36368, CVE-2022-31628, CVE-2022-31629, CVE-2022-4900, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	11/02/2026, 02:58:37	tfn.net.tw, bytedance.com
45.89.127.•••:18789	Assistant	🇩🇪 Germany	Yes	false	Clean	AS213250	Dominic Scholz trading as ITP-Solutions GmbH & Co. KG	Dein Server Host	09/02/2026, 14:38:01	03/03/2026, 16:12:56	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	11/02/2026, 02:58:38	-
180.76.180.•••:18789	小虾 (🦐)	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 14:38:01	05/03/2026, 00:07:38	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	11/02/2026, 02:58:39	tfn.net.tw, baidu.com
47.236.156.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/02/2026, 14:38:01	17/04/2026, 10:07:02	Yes	Yes	APT17, APT29, APT34, APT35, APT36, APT40, APT41, APT45, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Gaza Cybergang, Hafnium Group, Kimsuky, MuddyWater Group, Patchwork, Sandworm Team, SideWinder APT, Volt Typhoon	CVE-2023-28531, CVE-2024-6387, CVE-2023-48795, CVE-2023-38408, CVE-2023-51384, CVE-2023-51385	11/02/2026, 02:58:40	hichina.com, alibaba-inc.com
120.48.102.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 14:38:01	03/03/2026, 16:13:30	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	11/02/2026, 02:58:41	chinamobile.com, chinamobile.cn, baidu.com
43.167.160.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 14:38:01	03/03/2026, 08:53:44	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	11/02/2026, 02:58:42	tencent.com
154.58.233.•••:443	Assistant	🇯🇵 Japan	Yes	false	Leaked	AS152644	QINIU Limited	Qiniu Limited	09/02/2026, 14:38:01	11/02/2026, 08:02:10	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	10/02/2026, 20:50:23	cogentco.com
43.167.156.•••:18789	Jarvis (🤖)	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 14:38:01	11/02/2026, 02:55:25	Yes	Yes	APT17, APT36, APT37, APT45, Kimsuky, MuddyWater Group, SideWinder APT	CVE-2024-39894, CVE-2024-6387	11/02/2026, 02:58:44	tencent.com
101.32.101.•••:18789	Assistant	🇯🇵 Japan	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 14:38:01	29/03/2026, 23:46:55	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	11/02/2026, 02:58:45	tencent.com, optage.co.jp
193.242.106.•••:8080	-	🇱🇻 Latvia	Yes	false	Clean	AS9002	RETN Limited	Beget LLC	09/02/2026, 14:38:01	17/04/2026, 23:59:25	-	-	-	-	-	-
2407:c080:17ef:ffff::7b3c:dd2b:65535	-	🇨🇳 China mainland	-	false	Clean	AS55990	Huawei Cloud Service data center	Huawei Software Technologies	09/02/2026, 14:38:01	08/04/2026, 13:06:48	-	-	-	-	-	-
164.92.171.•••:443	Assistant	🇩🇪 Germany	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 14:38:01	16/02/2026, 14:17:46	No	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-20012, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-31079, CVE-2024-32760, CVE-2024-34161, CVE-2024-35200, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	11/02/2026, 02:58:48	-
47.100.27.•••:443	AIE (🤖)	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 14:38:01	26/02/2026, 09:44:57	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347	10/02/2026, 06:49:37	-
180.76.192.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 14:38:01	02/03/2026, 14:41:20	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	11/02/2026, 02:58:49	tfn.net.tw, baidu.com
120.24.40.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 14:38:01	15/04/2026, 13:30:12	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-36457, CVE-2023-36458, CVE-2023-37477, CVE-2023-38408, CVE-2023-39964, CVE-2023-39965, CVE-2023-39966, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-2352, CVE-2024-24768, CVE-2024-27288, CVE-2024-30257, CVE-2024-34352, CVE-2024-39907, CVE-2024-39911, CVE-2025-26465, CVE-2025-32728, CVE-2025-34410, CVE-2025-34429, CVE-2025-34430, CVE-2025-54424, CVE-2025-56413, CVE-2025-61984, CVE-2025-61985, CVE-2025-66507, CVE-2025-66508	11/02/2026, 02:58:50	chinamobile.com, aliyun.com, chinamobile.cn
34.69.151.•••:18789	小黑 (Xiao Hei) (🐾)	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	09/02/2026, 14:38:01	15/02/2026, 16:15:23	No	-	-	-	04/02/2026, 10:27:15	-
106.12.156.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 14:35:48	28/02/2026, 02:35:03	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	10/02/2026, 04:39:51	bj189.cn, baidu.com
43.166.175.•••:18789	-	🇺🇸 United States	-	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 14:35:48	10/02/2026, 22:58:52	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 04:39:52	tencent.com
2409:8a30:6936:a580:110b:2ce6:4eae:2ca5:18789	-	🇨🇳 China mainland	-	false	Clean	AS9808	China Mobile Communications Group Co., Ltd.	China Mobile	09/02/2026, 14:35:46	10/02/2026, 17:34:22	-	-	-	-	-	-
1.12.238.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 14:35:46	25/02/2026, 14:31:27	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	10/02/2026, 09:43:26	tencent.com, tot.co.th

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.