🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 816988 Page: 6825 / 8170 (100 per page) Showing: 682401-682500 Last Imported: 15/05/2026, 09:32:33

🇨🇳 425,761

🇺🇸 231,518

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
43.133.60.•••:18789	贾维斯 (J.A.R.V.I.S.) (🤖)	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 13:10:40	11/02/2026, 00:29:06	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2014-4078, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-8616, CVE-2020-8617, CVE-2020-8618, CVE-2020-8619, CVE-2020-8620, CVE-2020-8621, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8625, CVE-2021-25214, CVE-2021-25215, CVE-2021-25216, CVE-2021-25219, CVE-2021-25220, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-2795, CVE-2022-3094, CVE-2022-38177, CVE-2022-38178, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 23:04:20	tencent.com
35.226.8.•••:18789	MAYA (📝)	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	09/02/2026, 13:10:40	13/02/2026, 12:55:17	No	No	-	CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	10/02/2026, 23:04:21	-
43.163.211.•••:18789	Cilly (🌟)	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 13:10:40	21/02/2026, 19:14:08	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 23:04:22	tencent.com
54.37.81.•••:18789	Assistant	🇫🇷 France	Yes	false	Clean	AS16276	OVH SAS	OVH	09/02/2026, 13:10:40	11/02/2026, 00:29:06	No	Yes	APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Earth Berberoka, Equation Group, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE	CVE-2006-20001, CVE-2013-1896, CVE-2013-4352, CVE-2013-5704, CVE-2013-6438, CVE-2014-0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231, CVE-2014-3523, CVE-2014-3581, CVE-2014-8109, CVE-2015-0228, CVE-2015-3183, CVE-2015-3185, CVE-2016-0736, CVE-2016-2161, CVE-2016-4975, CVE-2016-5387, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-3167, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-17199, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2020-11985, CVE-2020-13938, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-28531, CVE-2023-28625, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 23:04:23	-
120.48.127.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:10:40	03/03/2026, 16:13:33	Yes	Yes	APT37, El-Machete, Gozi	-	10/02/2026, 23:04:24	chinamobile.com, chinamobile.cn, baidu.com
43.139.123.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/02/2026, 13:10:40	25/02/2026, 05:36:33	Yes	No	-	-	10/02/2026, 23:04:25	tencent.com
46.101.134.•••:18789	Лео (Leo) (👻)	🇩🇪 Germany	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:08:25	15/04/2026, 21:59:55	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419	10/02/2026, 03:11:40	-
180.76.113.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:08:25	02/03/2026, 07:58:18	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	10/02/2026, 03:11:41	tfn.net.tw, baidu.com
8.129.110.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	09/02/2026, 13:08:25	10/02/2026, 20:02:05	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:11:42	-
178.239.194.•••:18789	-	🇬🇧 United Kingdom	-	false	Leaked	AS201838	Community Fibre Limited	Community Fibre	09/02/2026, 13:08:25	10/02/2026, 16:30:19	Yes	No	-	-	10/02/2026, 03:11:44	communityfibre.co.uk, duckdns.org
101.34.253.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/02/2026, 13:08:25	23/02/2026, 04:46:38	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	10/02/2026, 03:11:47	tencent.com, optage.co.jp
157.245.124.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:08:25	09/04/2026, 12:20:22	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2006-20001, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	10/02/2026, 03:11:48	-
115.236.172.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	Hangzhou Antai Information Technology	09/02/2026, 13:08:25	07/04/2026, 07:16:04	No	No	-	-	04/02/2026, 03:11:49	-
138.197.12.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:08:25	28/02/2026, 07:45:14	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:11:50	infosae.com.br
54.251.147.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	09/02/2026, 13:08:25	16/02/2026, 03:14:10	No	Yes	APT-C-23, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon	CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487	10/02/2026, 03:11:51	-
135.148.148.•••:18789	pepe (🤖)	🇺🇸 United States	Yes	false	Leaked	AS16276	OVH SAS	VPS US East VA 2	09/02/2026, 13:08:25	02/03/2026, 13:09:16	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:11:52	ovh.us
124.222.38.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 13:08:25	03/03/2026, 13:57:23	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	10/02/2026, 03:11:54	tencent.com, chinaunicom.cn
134.209.106.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:08:25	13/02/2026, 12:08:12	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-23017, CVE-2021-3618, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:11:55	-
46.225.80.•••:18789	Veo (💀)	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	09/02/2026, 13:08:25	10/02/2026, 16:30:19	-	-	-	-	-	-
54.212.165.•••:18789	-	🇺🇸 United States	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	09/02/2026, 13:08:25	18/02/2026, 22:33:17	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:11:57	-
46.225.27.•••:18789	-	🇩🇪 Germany	-	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	09/02/2026, 13:08:25	18/04/2026, 00:41:13	No	No	-	-	04/02/2026, 03:11:58	-
5.189.190.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	09/02/2026, 13:08:25	16/04/2026, 11:27:03	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2001-0832, CVE-2001-0833, CVE-2005-3438, CVE-2014-6483, CVE-2015-2585, CVE-2015-2586, CVE-2015-2655, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	10/02/2026, 03:11:59	contaboserver.net, contabo.de, contabo.net
5.78.123.•••:18789	Calcifer (🔥)	🇺🇸 United States	Yes	false	Leaked	AS212317	Hetzner Online GmbH	Hetzner Online	09/02/2026, 13:08:25	17/04/2026, 17:28:44	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:12:00	hetzner.com
180.159.8.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS4812	China Telecom (Group)	ChinaNet Shanghai	09/02/2026, 13:08:25	26/02/2026, 17:06:34	Yes	No	-	-	10/02/2026, 03:12:02	bj189.cn, opengw.net, rs.ba, tfn.net.tw, ctwing.cn, vpngate.net, dvrdydns.com, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, daqu.com.cn, ctyun.cn
2a02:4780:7:fc44::1:18789	-	🇫🇷 France	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	09/02/2026, 13:08:25	10/02/2026, 16:30:19	-	-	-	-	-	-
142.93.86.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:08:25	19/02/2026, 11:57:23	No	Yes	APT-C-23, APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, DarkHotel Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Turla APT Group, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1247, CVE-2016-1546, CVE-2016-20012, CVE-2016-3115, CVE-2016-4975, CVE-2016-4979, CVE-2016-5387, CVE-2016-6210, CVE-2016-6515, CVE-2016-8612, CVE-2016-8740, CVE-2016-8743, CVE-2016-8858, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-20005, CVE-2017-3167, CVE-2017-3169, CVE-2017-7529, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-11985, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-3618, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-29323, CVE-2023-31122, CVE-2023-35784, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-7347	10/02/2026, 03:12:04	-
147.182.247.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:08:25	17/04/2026, 01:03:31	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-12519, CVE-2019-16905, CVE-2020-11945, CVE-2020-12062, CVE-2020-14058, CVE-2020-14145, CVE-2020-15049, CVE-2020-15778, CVE-2020-15810, CVE-2020-15811, CVE-2020-24606, CVE-2020-25097, CVE-2021-28041, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-28662, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41317, CVE-2022-41318, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-25111, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-45802, CVE-2024-6387, CVE-2024-6531, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:12:05	-
47.251.254.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	09/02/2026, 13:08:25	10/02/2026, 19:18:06	No	No	-	-	04/02/2026, 03:12:06	-
120.48.32.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:08:25	05/04/2026, 04:33:28	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	10/02/2026, 03:12:07	chinamobile.com, chinamobile.cn, baidu.com
155.212.163.•••:18789	Assistant	🇳🇱 Netherlands	Yes	false	Leaked	AS29182	JSC IOT	Joint Stock Company Internet of Things	09/02/2026, 13:08:25	06/04/2026, 02:13:18	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:12:08	fvds.ru
1.15.21.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 13:08:25	16/04/2026, 09:23:52	Yes	Yes	APT37, El-Machete	CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	10/02/2026, 03:12:10	tencent.com, tot.co.th
112.126.27.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 13:08:25	12/04/2026, 23:53:09	Yes	No	-	CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	10/02/2026, 03:12:11	kornet.net, bizmeka.com, kt.com, aliyun.com, homeap.co.kr, hhnsfarm.co.kr, ktds.com, ktlogis.com, ktestate.com, kt-idc.com, kt.co.kr, ktmediahub.com, ktcloud.com, ktfreetel.co.kr
35.201.140.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	09/02/2026, 13:08:25	10/02/2026, 16:47:48	No	Yes	DragonFly, Packrat	-	10/02/2026, 03:12:12	-
194.233.80.•••:18789	-	🇸🇬 Singapore	-	false	Leaked	AS141995	Contabo Asia Private Limited	Contabo Asia Private Limited	09/02/2026, 13:08:25	14/04/2026, 10:32:08	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:11:45	contaboserver.net
46.224.14.•••:18789	Assistant (🤵)	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	09/02/2026, 13:08:25	16/04/2026, 01:20:29	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:12:13	-
89.169.5.•••:18789	Assistant	🇳🇱 Netherlands	Yes	false	Clean	AS43581	ZTV CORP LLC	Vulpecula RU 20060224	09/02/2026, 13:08:25	18/04/2026, 00:40:18	No	Yes	Salt Typhoon	CVE-2016-20012, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:12:14	-
124.221.98.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 13:08:25	15/04/2026, 10:01:57	Yes	Yes	APT37, El-Machete	-	10/02/2026, 03:12:15	tencent.com, chinaunicom.cn
38.165.45.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS400619	AROSSCLOUD INC.	PEG Technology	09/02/2026, 13:08:25	24/03/2026, 09:54:38	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:12:17	cogentco.com
120.48.179.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:08:25	28/02/2026, 06:16:46	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	10/02/2026, 03:12:18	chinamobile.com, chinamobile.cn, baidu.com
45.192.103.•••:18789	Assistant	🇭🇰 Hong Kong	Yes	false	Clean	AS401701	cognetcloud INC	Vapeline Technology	09/02/2026, 13:08:25	19/02/2026, 01:32:07	No	Yes	APT28, APT40, APT41, Cobalt Group, Earth Berberoka, Energetic Bear, Equation Group, Leafminer, Luckycat APT, Salt Typhoon, Sandworm Team	CVE-2010-1899, CVE-2010-2730, CVE-2010-3972, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:12:19	-
120.48.139.•••:18789	Assistant	🇭🇰 Hong Kong	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:08:24	06/03/2026, 16:18:59	-	-	-	-	-	-
182.141.142.•••:18789	紫韵 (💜)	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	ChinaNet Sichuan	09/02/2026, 13:08:24	13/02/2026, 11:24:11	No	No	-	-	04/02/2026, 03:12:21	-
118.196.64.•••:18789	OpenClaw (data:image/svg+xml,%3Csvg xmlns=)	🇨🇳 China mainland	Yes	false	Leaked	AS137718	Beijing Volcano Engine Technology Co., Ltd. / AS4811 China Telecom (Group)	Beijing Volcano Engine Technology	09/02/2026, 13:08:24	16/04/2026, 01:20:02	Yes	No	-	-	10/02/2026, 03:12:22	bytedance.com
161.118.187.•••:18789	Antigravity (🚀)	🇺🇸 United States	Yes	false	Clean	AS31898	Oracle Corporation	Oracle	09/02/2026, 13:08:24	16/04/2026, 13:43:21	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:12:23	-
106.53.186.•••:18789	小乐 (🤖)	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 13:08:24	12/03/2026, 06:36:49	Yes	-	-	-	10/02/2026, 03:12:25	bj189.cn, tencent.com
47.237.7.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	09/02/2026, 13:08:24	14/02/2026, 06:35:34	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	10/02/2026, 03:12:26	hichina.com, alibaba-inc.com
3.107.159.•••:18789	小free (🕊️)	🇦🇺 Australia	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Corporate Services	09/02/2026, 13:08:24	02/03/2026, 12:24:51	No	No	-	-	04/02/2026, 03:12:27	-
173.249.46.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	09/02/2026, 13:08:24	17/04/2026, 07:04:23	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	10/02/2026, 03:12:28	contabo.de, contabo.net
82.158.91.•••:18789	-	🇺🇸 United States	-	false	Clean	AS401701	cognetcloud INC	Skyvoro	09/02/2026, 13:08:24	11/02/2026, 05:48:39	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:12:29	-
47.96.71.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 13:08:24	17/02/2026, 10:01:26	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10002, CVE-2016-10003, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-1000024, CVE-2018-1000027, CVE-2018-15473, CVE-2018-15919, CVE-2018-19131, CVE-2018-19132, CVE-2018-20685, CVE-2019-12519, CVE-2019-12520, CVE-2019-12521, CVE-2019-12522, CVE-2019-12523, CVE-2019-12524, CVE-2019-12525, CVE-2019-12526, CVE-2019-12528, CVE-2019-12529, CVE-2019-13345, CVE-2019-16905, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-18860, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11945, CVE-2020-14058, CVE-2020-14145, CVE-2020-15049, CVE-2020-15778, CVE-2020-15810, CVE-2020-15811, CVE-2020-24606, CVE-2020-25097, CVE-2020-8449, CVE-2020-8450, CVE-2020-8517, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41318, CVE-2023-38408, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51385, CVE-2023-5824, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-45802, CVE-2025-54574, CVE-2025-59362	10/02/2026, 03:55:50	-
180.76.180.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:08:24	06/03/2026, 23:03:02	Yes	No	-	-	10/02/2026, 03:55:52	tfn.net.tw, baidu.com
158.178.129.•••:18789	Friday (🤖)	🇺🇸 United States	Yes	false	Leaked	AS31898	Oracle Corporation	Oracle Corporation	09/02/2026, 13:08:24	14/02/2026, 02:11:51	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	10/02/2026, 03:55:53	healtheintent.com, purewellness.com, retek.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oraclecloudservices.com, rsys2.net, hyperroll.com, orcale.com, oraclemobile.com, sun.co.in, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, oracleemaildelivery.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, skire.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, paymyhealthbill.com, dyndns.com, optika.com, jcp.org, smed.com, cernerenviza-tw.com, recruitmax.com, decisioneering.com, stortek.com, seebeyond.com, livelook.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com
52.15.230.•••:18789	-	🇺🇸 United States	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	09/02/2026, 13:08:24	13/02/2026, 11:24:12	No	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:55:54	-
143.110.237.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:08:24	17/04/2026, 10:03:29	No	Yes	APT14, APT17, APT28, APT36, APT37, APT40, APT41, APT45, Cobalt Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, SharpPanda, SideWinder APT, TA505, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2019-17567, CVE-2020-11984, CVE-2020-11993, CVE-2020-12062, CVE-2020-13950, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-30641, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387	10/02/2026, 03:55:55	-
180.76.135.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:08:24	02/03/2026, 19:06:25	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	10/02/2026, 03:55:56	tfn.net.tw, baidu.com
165.22.218.•••:18789	-	🇮🇳 India	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:08:24	18/04/2026, 00:40:16	No	Yes	APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2017-15710, CVE-2017-15715, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11993, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-39894, CVE-2024-6387	10/02/2026, 03:55:57	-
43.133.74.•••:18789	-	🇰🇷 South Korea	-	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 13:08:24	21/02/2026, 09:25:54	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	10/02/2026, 03:55:59	tencent.com
100.53.94.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	09/02/2026, 13:08:24	10/02/2026, 16:47:48	-	-	-	-	-	-
39.106.96.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 13:08:24	10/03/2026, 21:13:56	Yes	Yes	APT28, APT36, Carbanak, Cobalt Group, Equation Group, Lazarus Group, Packrat	CVE-2020-8022, CVE-2021-1636, CVE-2022-23276, CVE-2022-29143, CVE-2022-34305, CVE-2022-42252, CVE-2022-45143, CVE-2023-21528, CVE-2023-21704, CVE-2023-21705, CVE-2023-21713, CVE-2023-21718, CVE-2023-23384, CVE-2023-28708, CVE-2023-29349, CVE-2023-29356, CVE-2023-32025, CVE-2023-32026, CVE-2023-32027, CVE-2023-32028, CVE-2023-36417, CVE-2023-36420, CVE-2023-36728, CVE-2023-36730, CVE-2023-36785, CVE-2023-38169, CVE-2024-23672, CVE-2024-24549, CVE-2025-24813, CVE-2025-55752, CVE-2025-55754, CVE-2025-61795	10/02/2026, 03:56:01	aliyun.com, ptcl.net.pk
8.213.207.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Singapore	09/02/2026, 13:08:24	10/02/2026, 20:46:01	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:56:02	-
120.48.7.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:08:24	15/04/2026, 23:17:40	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	10/02/2026, 03:56:03	chinamobile.com, chinamobile.cn, baidu.com
115.239.214.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS58461	No.288,Fu-chun Road	ChinaNet Hangzhou	09/02/2026, 13:08:24	16/03/2026, 14:26:35	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:56:05	-
43.167.254.•••:18789	小助手 (🎯)	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	09/02/2026, 13:08:24	13/02/2026, 10:40:17	Yes	Yes	APT15, APT31, APT37, APT39, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:56:06	tencent.com
154.217.241.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS400619	AROSSCLOUD INC.	Fastmos Co Limited	09/02/2026, 13:08:24	02/03/2026, 00:32:56	No	Yes	Salt Typhoon	CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:56:07	-
43.139.52.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/02/2026, 13:08:24	06/03/2026, 20:04:00	Yes	No	-	-	10/02/2026, 03:56:08	tencent.com
164.92.82.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:08:24	25/02/2026, 03:19:29	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-39894, CVE-2024-6387	10/02/2026, 03:56:09	-
47.251.105.•••:18789	-	🇺🇸 United States	-	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	09/02/2026, 13:08:24	13/02/2026, 21:04:28	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	10/02/2026, 03:56:10	-
180.76.115.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:08:24	19/02/2026, 04:31:08	-	-	-	-	-	-
2a02:4780:12:d206::1:18789	-	🇮🇳 India	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	09/02/2026, 13:08:24	22/02/2026, 05:38:51	-	-	-	-	-	-
34.55.9.•••:18789	완두콩 (😌)	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	09/02/2026, 13:08:24	16/04/2026, 10:02:40	No	Yes	APT28, APT35, APT37, APT39, APT41, Cobalt Group, DragonFly, Equation Group, Kimsuky, Mustang Panda, Packrat, Sandworm Team	CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2016-0777, CVE-2016-0778, CVE-2016-20012, CVE-2017-15906, CVE-2018-15919, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617	10/02/2026, 03:56:14	-
180.76.103.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:08:24	02/03/2026, 14:38:47	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	10/02/2026, 03:56:15	tfn.net.tw, baidu.com
157.245.236.•••:18789	Tej (⚡)	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:08:24	10/02/2026, 16:58:38	-	-	-	-	-	-
120.48.15.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:08:24	04/03/2026, 23:27:23	Yes	Yes	APT10, APT14, APT17, APT28, APT35, APT37, APT39, APT40, APT41, Aoqin Dragon, Bohrium APT, Carbanak, Cobalt Group, DragonFly, El-Machete, Equation Group, Evilnum Group, Gallium APT, Gamaredon Group, Gozi, IronHusky, Kimsuky, Lazarus Group, Lyceum APT, Mustang Panda, POLONIUM Group, Packrat, Sandworm Team, SharpPanda, Slingshot APT, TA505, The Shadow Brokers, Tropic Trooper, Turla APT Group, UNC2452, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2018-17189, CVE-2018-17199, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-11043, CVE-2019-11044, CVE-2019-11045, CVE-2019-11046, CVE-2019-11047, CVE-2019-11048, CVE-2019-11050, CVE-2019-16905, CVE-2019-17567, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-7059, CVE-2020-7060, CVE-2020-7062, CVE-2020-7063, CVE-2020-7064, CVE-2020-7066, CVE-2020-7067, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522	10/02/2026, 03:56:17	chinamobile.com, chinamobile.cn, baidu.com
43.134.17.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	6 Collyer Quay	09/02/2026, 13:06:07	10/03/2026, 21:11:45	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6484, CVE-2024-6485, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/02/2026, 15:44:43	tencent.com
46.101.134.•••:18789	Лео (Leo) (👻)	🇩🇪 Germany	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:06:07	15/04/2026, 21:57:30	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419	09/02/2026, 15:44:46	-
180.76.113.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:06:07	02/03/2026, 07:56:00	Yes	Yes	APT17, APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, El-Machete, Gozi, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	09/02/2026, 15:44:48	tfn.net.tw, baidu.com
8.129.110.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	09/02/2026, 13:06:07	10/02/2026, 19:59:48	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/02/2026, 15:44:50	-
178.239.194.•••:18789	-	🇬🇧 United Kingdom	-	false	Leaked	AS201838	Community Fibre Limited	Community Fibre	09/02/2026, 13:06:07	10/02/2026, 16:27:56	Yes	No	-	-	09/02/2026, 15:44:51	communityfibre.co.uk, duckdns.org
101.34.253.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	09/02/2026, 13:06:07	23/02/2026, 04:44:17	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	09/02/2026, 15:44:54	tencent.com, optage.co.jp
157.245.124.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:06:07	09/04/2026, 12:18:02	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2006-20001, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	09/02/2026, 15:44:55	-
115.236.172.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS4134	Chinanet	Hangzhou Antai Information Technology	09/02/2026, 13:06:07	07/04/2026, 07:13:44	No	No	-	-	03/02/2026, 15:44:57	-
138.197.12.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:06:07	28/02/2026, 08:27:21	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/02/2026, 15:44:58	infosae.com.br
54.251.147.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	09/02/2026, 13:06:07	16/02/2026, 03:11:55	No	Yes	APT-C-23, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon	CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487	09/02/2026, 15:44:59	-
135.148.148.•••:18789	pepe (🤖)	🇺🇸 United States	Yes	false	Leaked	AS16276	OVH SAS	VPS US East VA 2	09/02/2026, 13:06:07	02/03/2026, 13:51:40	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/02/2026, 15:45:01	ovh.us
124.222.38.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 13:06:07	03/03/2026, 13:55:08	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	09/02/2026, 15:45:02	tencent.com, chinaunicom.cn
134.209.106.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:06:07	13/02/2026, 12:05:53	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-23017, CVE-2021-3618, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/02/2026, 15:45:04	-
46.225.80.•••:18789	Veo (💀)	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	09/02/2026, 13:06:07	10/02/2026, 16:27:56	-	-	-	-	-	-
54.212.165.•••:18789	-	🇺🇸 United States	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	09/02/2026, 13:06:07	18/02/2026, 22:30:58	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/02/2026, 15:45:06	-
46.225.27.•••:18789	-	🇩🇪 Germany	-	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	09/02/2026, 13:06:07	18/04/2026, 00:38:52	No	No	-	-	03/02/2026, 15:45:07	-
5.189.190.•••:18789	-	🇩🇪 Germany	Yes	false	Leaked	AS51167	Contabo GmbH	Contabo	09/02/2026, 13:06:07	16/04/2026, 11:24:44	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2001-0832, CVE-2001-0833, CVE-2005-3438, CVE-2014-6483, CVE-2015-2585, CVE-2015-2586, CVE-2015-2655, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	09/02/2026, 15:45:09	contaboserver.net, contabo.de, contabo.net
5.78.123.•••:18789	Calcifer (🔥)	🇺🇸 United States	Yes	false	Leaked	AS212317	Hetzner Online GmbH	Hetzner Online	09/02/2026, 13:06:07	17/04/2026, 18:05:25	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/02/2026, 15:45:10	hetzner.com
180.159.8.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS4812	China Telecom (Group)	ChinaNet Shanghai	09/02/2026, 13:06:07	26/02/2026, 17:04:16	Yes	No	-	-	09/02/2026, 15:45:12	bj189.cn, opengw.net, rs.ba, tfn.net.tw, ctwing.cn, vpngate.net, dvrdydns.com, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, daqu.com.cn, ctyun.cn
2a02:4780:7:fc44::1:18789	-	🇫🇷 France	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	09/02/2026, 13:06:07	10/02/2026, 16:27:56	-	-	-	-	-	-
142.93.86.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:06:07	19/02/2026, 11:55:06	No	Yes	APT-C-23, APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, DarkHotel Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Turla APT Group, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1247, CVE-2016-1546, CVE-2016-20012, CVE-2016-3115, CVE-2016-4975, CVE-2016-4979, CVE-2016-5387, CVE-2016-6210, CVE-2016-6515, CVE-2016-8612, CVE-2016-8740, CVE-2016-8743, CVE-2016-8858, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-20005, CVE-2017-3167, CVE-2017-3169, CVE-2017-7529, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-11985, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2021-23017, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-3618, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2022-41741, CVE-2022-41742, CVE-2023-25690, CVE-2023-29323, CVE-2023-31122, CVE-2023-35784, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-7347	09/02/2026, 15:45:14	-
147.182.247.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	09/02/2026, 13:06:07	17/04/2026, 01:01:11	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-12519, CVE-2019-16905, CVE-2020-11945, CVE-2020-12062, CVE-2020-14058, CVE-2020-14145, CVE-2020-15049, CVE-2020-15778, CVE-2020-15810, CVE-2020-15811, CVE-2020-24606, CVE-2020-25097, CVE-2021-28041, CVE-2021-28116, CVE-2021-28651, CVE-2021-28652, CVE-2021-28662, CVE-2021-31806, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41317, CVE-2022-41318, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-25111, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-45802, CVE-2024-6387, CVE-2024-6531, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	09/02/2026, 15:45:15	-
47.251.254.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	09/02/2026, 13:06:07	10/02/2026, 19:15:45	No	No	-	-	03/02/2026, 15:45:17	-
120.48.32.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	09/02/2026, 13:06:07	05/04/2026, 04:31:11	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	09/02/2026, 15:45:18	chinamobile.com, chinamobile.cn, baidu.com
1.15.21.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	09/02/2026, 13:06:06	16/04/2026, 09:21:31	Yes	Yes	APT37, El-Machete	CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	09/02/2026, 15:45:22	tencent.com, tot.co.th
112.126.27.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	09/02/2026, 13:06:06	15/04/2026, 21:57:37	Yes	No	-	CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	09/02/2026, 15:45:24	kornet.net, bizmeka.com, kt.com, aliyun.com, homeap.co.kr, hhnsfarm.co.kr, ktds.com, ktlogis.com, ktestate.com, kt-idc.com, kt.co.kr, ktmediahub.com, ktcloud.com, ktfreetel.co.kr
35.201.140.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	09/02/2026, 13:06:06	10/02/2026, 16:45:30	No	Yes	DragonFly, Packrat	-	09/02/2026, 15:45:25	-

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.