🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 816988 Page: 7684 / 8170 (100 per page) Showing: 768301-768400 Last Imported: 30/04/2026, 13:26:03

🇨🇳 425,761

🇺🇸 231,518

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
144.24.174.•••:18789	OhMyClaw (🦞)	🇬🇧 United Kingdom	Yes	false	Leaked	AS31898	Oracle Corporation	Oracle UK	03/02/2026, 22:41:00	18/03/2026, 06:00:43	Yes	Yes	DragonFly, Packrat, gozi	CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 15:44:16	healtheintent.com, purewellness.com, retek.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oraclecloudservices.com, rsys2.net, hyperroll.com, orcale.com, oraclemobile.com, sun.co.in, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, oracleemaildelivery.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, skire.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, paymyhealthbill.com, dyndns.com, optika.com, jcp.org, smed.com, cernerenviza-tw.com, recruitmax.com, decisioneering.com, stortek.com, seebeyond.com, livelook.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com
184.73.235.•••:443	Poly (📊)	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon Web Services	03/02/2026, 22:41:00	25/03/2026, 11:03:09	No	Yes	APT14, APT28, APT35, APT37, APT39, APT40, APT41, Cobalt Group, Equation Group, Gamaredon Group, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Sandworm Team, SharpPanda, TA505, The Shadow Brokers, UNC2452, WIRTE	CVE-2006-20001, CVE-2019-0196, CVE-2019-0197, CVE-2019-0211, CVE-2019-0215, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10097, CVE-2019-10098, CVE-2019-17567, CVE-2019-9517, CVE-2020-11984, CVE-2020-11993, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36160, CVE-2021-39275, CVE-2021-40438, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522	05/02/2026, 19:57:23	-
104.131.171.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 22:41:00	04/02/2026, 21:19:10	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 12:02:09	-
175.24.206.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:41:00	31/03/2026, 17:15:57	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-23017, CVE-2021-3618, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	05/02/2026, 06:07:28	tencent.com, ub.ac.id
95.165.64.•••:18789	Assistant	🇷🇺 Russia	Yes	false	Clean	AS25513	PJSC Moscow city telephone network	MGTS	03/02/2026, 22:41:00	16/03/2026, 00:26:46	No	Yes	APT10, APT15, APT17, APT27, APT28, APT29, APT31, APT32, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, AQUATIC PANDA, Antlion APT, Bahamut, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, CostaRicto, Daggerfly APT, Donot Team, Earth Berberoka, Energetic Bear, Equation Group, Gamaredon Group, Gaza Cybergang, Gold Lowell, Grim Spider, Hafnium Group, Inception Framework, Kimsuky, Konni Group, Lazarus Group, Moses Staff APT, MoustachedBouncer, MuddyWater Group, Patchwork, Pioneer Kitten, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Silence Hacker Group, TA456, TA505, The Shadow Brokers, The White Company, Tropic Trooper, Urpage, Volt Typhoon	CVE-2007-4559, CVE-2016-2124, CVE-2017-11103, CVE-2017-12150, CVE-2017-12151, CVE-2017-12163, CVE-2017-14746, CVE-2017-15275, CVE-2017-7494, CVE-2018-1050, CVE-2018-1057, CVE-2018-10858, CVE-2018-10919, CVE-2018-14628, CVE-2018-14629, CVE-2018-16841, CVE-2018-16851, CVE-2019-10218, CVE-2019-14833, CVE-2019-14847, CVE-2019-14861, CVE-2019-14870, CVE-2019-14902, CVE-2019-3824, CVE-2019-3880, CVE-2020-10704, CVE-2020-10730, CVE-2020-10745, CVE-2020-10760, CVE-2020-14318, CVE-2020-14323, CVE-2020-14383, CVE-2020-1472, CVE-2020-17049, CVE-2020-25717, CVE-2020-25718, CVE-2020-25719, CVE-2020-25722, CVE-2020-27840, CVE-2021-20251, CVE-2021-20254, CVE-2021-20277, CVE-2021-20316, CVE-2021-3670, CVE-2021-3671, CVE-2021-3738, CVE-2021-43566, CVE-2021-44141, CVE-2021-44142, CVE-2022-0336, CVE-2022-1615, CVE-2022-2031, CVE-2022-32742, CVE-2022-32743, CVE-2022-32744, CVE-2022-32746, CVE-2022-3437, CVE-2022-37966, CVE-2022-37967, CVE-2022-38023, CVE-2022-42898, CVE-2022-45141, CVE-2023-0614, CVE-2023-0922, CVE-2023-24329, CVE-2023-27043, CVE-2023-28531, CVE-2023-34966, CVE-2023-34967, CVE-2023-34968, CVE-2023-36632, CVE-2023-38408, CVE-2023-3961, CVE-2023-40217, CVE-2023-4091, CVE-2023-41105, CVE-2023-4154, CVE-2023-42669, CVE-2023-42670, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-5568, CVE-2024-0397, CVE-2024-11168, CVE-2024-3219, CVE-2024-39894, CVE-2024-4032, CVE-2024-6232, CVE-2024-6387, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:15:57	-
50.28.87.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS32244	Liquid Web, L.L.C	SDN	03/02/2026, 22:41:00	15/02/2026, 00:53:29	Yes	-	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:10:13	liquidweb.com
178.156.205.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS213230	Hetzner Online GmbH	Hetzner	03/02/2026, 22:41:00	16/04/2026, 16:02:30	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 06:44:00	hetzner.com
85.239.244.•••:18789	-	🇩🇪 Germany	-	false	Leaked	AS40021	Contabo Inc.	Contabo	03/02/2026, 22:41:00	04/02/2026, 21:19:10	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-1322, CVE-2025-26465, CVE-2025-32728, CVE-2025-54352, CVE-2025-61984, CVE-2025-61985	06/02/2026, 12:02:10	terratransit.de, contaboserver.net, contabo.de, contabo.net
15.204.243.•••:18789	-	🇺🇸 United States	-	false	Clean	AS16276	OVH SAS	VPS US East VA 2	03/02/2026, 22:41:00	04/02/2026, 21:19:10	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 12:02:11	-
2a02:4780:10:1d05::1:18789	-	🇺🇸 United States	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	03/02/2026, 22:41:00	07/02/2026, 10:19:01	-	-	-	-	05/02/2026, 20:58:42	-
223.109.141.•••:18789	89757 (🦞)	🇨🇳 China mainland	Yes	false	Clean	AS56046	China Mobile communications corporation	China Mobile	03/02/2026, 22:41:00	15/02/2026, 17:43:07	-	-	-	-	05/02/2026, 19:59:30	-
103.117.137.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Clean	AS401696	cognetcloud INC	Fojip Technology	03/02/2026, 22:41:00	16/03/2026, 18:08:57	Yes	Yes	APT15, APT17, APT28, APT31, APT36, APT37, APT40, APT45, Bitter APT, Bluenoroff, Donot Team, DragonFly, Energetic Bear, Equation Group, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, Leafminer, Luckycat APT, MuddyWater Group, Salt Typhoon, SideWinder APT	CVE-2010-1899, CVE-2010-2730, CVE-2010-3972, CVE-2022-4900, CVE-2023-28531, CVE-2023-36457, CVE-2023-36458, CVE-2023-37477, CVE-2023-38408, CVE-2023-39964, CVE-2023-39965, CVE-2023-39966, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-2352, CVE-2024-24768, CVE-2024-27288, CVE-2024-30257, CVE-2024-34352, CVE-2024-39907, CVE-2024-39911, CVE-2024-5458, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-34410, CVE-2025-34429, CVE-2025-34430, CVE-2025-54424, CVE-2025-56413, CVE-2025-61984, CVE-2025-61985, CVE-2025-66507, CVE-2025-66508	05/02/2026, 20:00:05	datadock.ne.jp
8.134.185.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	03/02/2026, 22:41:00	25/02/2026, 18:18:20	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2014-4078, CVE-2015-9251, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-11358, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2020-15778, CVE-2020-23064, CVE-2020-8022, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-43622, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-61984, CVE-2025-61985	06/02/2026, 12:02:12	-
91.99.199.•••:18789	Claw (🦞)	🇩🇪 Germany	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	03/02/2026, 22:41:00	20/02/2026, 08:06:46	Yes	No	-	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 06:07:44	christianj.net
43.138.124.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	03/02/2026, 22:41:00	17/04/2026, 10:05:59	Yes	Yes	APT37, El-Machete	-	05/02/2026, 21:08:03	tencent.com
43.160.195.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 22:41:00	25/03/2026, 11:03:59	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 12:02:13	tencent.com
89.167.29.•••:18789	Assistant	🇫🇮 Finland	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	03/02/2026, 22:41:00	17/04/2026, 23:57:52	-	-	-	-	05/02/2026, 20:06:26	-
43.160.236.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 22:41:00	01/03/2026, 06:02:40	Yes	No	-	CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:45:54	tencent.com
34.199.201.•••:443	LobstahChris (🦞)	🇺🇸 United States	Yes	false	Clean	AS14618	Amazon.com, Inc.	Amazon	03/02/2026, 22:41:00	16/04/2026, 01:23:01	No	No	-	-	05/02/2026, 21:08:08	-
110.42.134.•••:443	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:41:00	25/03/2026, 07:19:50	Yes	Yes	APT37, El-Machete	-	05/02/2026, 19:54:01	tencent.com
43.156.79.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 22:41:00	22/02/2026, 09:26:09	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:00:08	tencent.com
38.175.200.•••:18789	Assistant	🇯🇵 Japan	Yes	false	Leaked	AS979	NetLab Global	Cogent Communications	03/02/2026, 22:41:00	24/02/2026, 06:59:02	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387	05/02/2026, 20:14:16	cogentco.com, qzz.io
170.106.117.•••:18789	Moss (🚀)	🇺🇸 United States	Yes	false	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 22:41:00	19/02/2026, 20:11:38	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	05/02/2026, 06:08:37	-
52.62.204.•••:18789	Assistant	🇦🇺 Australia	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon	03/02/2026, 22:41:00	10/02/2026, 03:11:25	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 10:52:55	-
120.27.233.•••:18789	-	🇨🇳 China mainland	-	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 22:41:00	04/02/2026, 21:19:10	Yes	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, DarkHotel Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-1247, CVE-2016-20012, CVE-2017-15906, CVE-2017-20005, CVE-2017-7529, CVE-2018-15473, CVE-2018-15919, CVE-2018-16843, CVE-2018-16844, CVE-2018-16845, CVE-2018-20685, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	06/02/2026, 12:02:15	chinamobile.com, aliyun.com, chinamobile.cn
82.156.170.•••:18789	无敌辣 (🌶️)	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	03/02/2026, 22:41:00	06/03/2026, 23:04:18	No	Yes	APT37, El-Machete	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617	05/02/2026, 10:51:23	-
178.156.159.•••:18789	Justin (⚡)	🇺🇸 United States	Yes	false	Leaked	AS213230	Hetzner Online GmbH	Hetzner Online	03/02/2026, 22:41:00	22/03/2026, 15:20:50	Yes	No	-	CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:49:24	hetzner.com
218.1.216.•••:18789	-	🇨🇳 China mainland	-	false	Leaked	AS4812	China Telecom (Group)	ChinaNet Shanghai	03/02/2026, 22:41:00	04/02/2026, 21:19:10	Yes	No	-	-	06/02/2026, 12:02:16	bj189.cn, ctwing.cn, chinatelecom.com.cn, chinatelecom.cn, new-gm.cn, 189.cn, 189free.cn, daqu.com.cn, ctyun.cn
2a02:4780:28:4839::1:55443	-	🇫🇷 France	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	03/02/2026, 22:41:00	06/02/2026, 23:43:56	-	-	-	-	05/02/2026, 17:39:29	-
64.23.190.•••:18789	VIRES (Virtualized Intelligence for Rapid Engineer (🤖)	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 22:41:00	19/03/2026, 07:09:27	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 10:52:00	-
47.115.72.•••:443	-	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 22:41:00	04/02/2026, 21:19:10	No	No	-	CVE-2015-9251, CVE-2019-11358, CVE-2020-11022, CVE-2020-11023	06/02/2026, 12:02:17	-
159.65.182.•••:18789	Alfred (—)	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 22:41:00	18/02/2026, 08:31:10	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	05/02/2026, 20:55:08	-
138.68.75.•••:18789	-	🇩🇪 Germany	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 22:41:00	04/02/2026, 21:19:10	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 12:02:18	-
47.95.159.•••:18789	小智 (/avatar/main)	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 22:41:00	17/04/2026, 10:06:47	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728	05/02/2026, 20:55:51	-
115.190.153.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	03/02/2026, 22:41:00	16/04/2026, 20:35:26	No	No	-	-	05/02/2026, 16:35:07	-
175.178.220.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:41:00	06/03/2026, 23:05:33	Yes	Yes	APT37, El-Machete	-	05/02/2026, 13:00:42	tencent.com, ub.ac.id
43.165.4.•••:18789	老蜜 (Lao Mi) (/avatar/main)	🇸🇬 Singapore	Yes	false	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 22:41:00	13/03/2026, 19:58:38	-	-	-	-	05/02/2026, 14:19:29	-
43.162.105.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 22:41:00	20/02/2026, 23:44:39	Yes	No	-	CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:16:07	tencent.com
1.14.139.•••:18789	-	🇨🇳 China mainland	-	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:41:00	04/02/2026, 21:19:10	-	-	-	-	06/02/2026, 12:02:19	-
89.167.27.•••:18789	Assistant	🇫🇮 Finland	Yes	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	03/02/2026, 22:41:00	12/03/2026, 20:50:19	-	-	-	-	05/02/2026, 13:01:51	-
43.139.226.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	03/02/2026, 22:41:00	17/04/2026, 19:28:31	Yes	-	-	-	05/02/2026, 21:08:24	tencent.com
165.245.130.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 22:41:00	06/02/2026, 13:49:38	-	-	-	-	05/02/2026, 13:45:45	-
148.135.84.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS35916	MULTACOM CORPORATION	Brander Group	03/02/2026, 22:41:00	11/02/2026, 16:50:11	Yes	Yes	APT15, APT28, APT31, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, Lyceum APT, MuddyWater Group, RomCom Group, Salt Typhoon, Sea Turtle Group, SideWinder APT, TEMP.Hermit, The Shadow Brokers	CVE-2010-4478, CVE-2010-4755, CVE-2010-5107, CVE-2011-4327, CVE-2011-5000, CVE-2012-0814, CVE-2014-1692, CVE-2014-2532, CVE-2014-2653, CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-0777, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2018-15473, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	05/02/2026, 15:43:55	brandergroup.net
103.117.137.•••:18789	-	🇭🇰 Hong Kong	-	false	Clean	AS401696	cognetcloud INC	Fojip Technology	03/02/2026, 22:41:00	07/02/2026, 02:44:15	Yes	Yes	DragonFly	CVE-2011-4718, CVE-2013-6501, CVE-2013-7327, CVE-2014-0236, CVE-2014-2020, CVE-2014-4078, CVE-2014-4670, CVE-2014-5459, CVE-2014-9425, CVE-2014-9426, CVE-2014-9767, CVE-2015-1351, CVE-2015-4116, CVE-2015-4601, CVE-2015-7803, CVE-2015-7804, CVE-2015-8865, CVE-2015-8874, CVE-2015-8877, CVE-2015-8879, CVE-2015-8994, CVE-2015-9253, CVE-2016-10158, CVE-2016-10159, CVE-2016-10161, CVE-2016-10397, CVE-2016-10712, CVE-2016-1903, CVE-2016-2554, CVE-2016-3141, CVE-2016-3142, CVE-2016-4070, CVE-2016-4342, CVE-2016-4343, CVE-2016-4537, CVE-2016-4538, CVE-2016-4539, CVE-2016-4540, CVE-2016-4541, CVE-2016-4542, CVE-2016-4543, CVE-2016-5093, CVE-2016-5094, CVE-2016-5095, CVE-2016-5096, CVE-2016-5114, CVE-2016-5399, CVE-2016-5768, CVE-2016-5769, CVE-2016-5770, CVE-2016-5771, CVE-2016-5772, CVE-2016-5773, CVE-2016-6288, CVE-2016-6289, CVE-2016-6290, CVE-2016-6291, CVE-2016-6292, CVE-2016-6294, CVE-2016-6295, CVE-2016-6296, CVE-2016-6297, CVE-2016-7124, CVE-2016-7125, CVE-2016-7126, CVE-2016-7127, CVE-2016-7128, CVE-2016-7129, CVE-2016-7130, CVE-2016-7131, CVE-2016-7132, CVE-2016-7411, CVE-2016-7412, CVE-2016-7413, CVE-2016-7414, CVE-2016-7416, CVE-2016-7417, CVE-2016-7418, CVE-2016-7478, CVE-2016-9137, CVE-2016-9138, CVE-2016-9934, CVE-2016-9935, CVE-2017-11142, CVE-2017-11143, CVE-2017-11144, CVE-2017-11145, CVE-2017-11147, CVE-2017-11628, CVE-2017-12933, CVE-2017-16642, CVE-2017-7272, CVE-2017-7890, CVE-2017-7963, CVE-2017-8923, CVE-2017-9224, CVE-2017-9226, CVE-2018-10545, CVE-2018-10546, CVE-2018-10547, CVE-2018-10548, CVE-2018-10549, CVE-2018-14851, CVE-2018-14883, CVE-2018-15132, CVE-2018-17082, CVE-2018-19395, CVE-2018-19396, CVE-2018-19520, CVE-2018-20783, CVE-2018-5711, CVE-2018-5712, CVE-2018-7584, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9023, CVE-2019-9024, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9641, CVE-2022-31628, CVE-2022-31629, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:09:27	datadock.ne.jp
121.4.252.•••:18789	Assistant	🇨🇳 China mainland	-	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:41:00	06/02/2026, 17:42:18	Yes	Yes	APT14, APT27, APT28, APT35, APT37, APT39, APT40, APT41, Chimera APT, Cobalt Group, DRBControl, Earth Berberoka, El-Machete, Equation Group, Evil Eye APT, Gamaredon Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, Mustang Panda, Night Dragon, Sandworm Team, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Tropic Trooper, UNC2452, WIRTE	CVE-2008-0455, CVE-2011-2262, CVE-2011-4718, CVE-2012-0553, CVE-2012-0572, CVE-2012-0574, CVE-2012-1171, CVE-2012-1702, CVE-2012-1705, CVE-2012-3180, CVE-2012-3499, CVE-2012-4558, CVE-2012-5060, CVE-2012-6095, CVE-2013-0383, CVE-2013-0384, CVE-2013-0385, CVE-2013-0389, CVE-2013-1492, CVE-2013-1506, CVE-2013-1521, CVE-2013-1552, CVE-2013-1555, CVE-2013-1635, CVE-2013-1643, CVE-2013-1824, CVE-2013-1896, CVE-2013-2110, CVE-2013-2249, CVE-2013-2378, CVE-2013-2389, CVE-2013-2391, CVE-2013-2392, CVE-2013-3735, CVE-2013-3802, CVE-2013-3804, CVE-2013-3808, CVE-2013-4113, CVE-2013-4248, CVE-2013-4359, CVE-2013-4635, CVE-2013-4636, CVE-2013-5704, CVE-2013-5908, CVE-2013-6420, CVE-2013-6438, CVE-2013-6712, CVE-2013-7345, CVE-2014-0098, CVE-2014-0118, CVE-2014-0185, CVE-2014-0207, CVE-2014-0226, CVE-2014-0231, CVE-2014-0237, CVE-2014-0238, CVE-2014-0386, CVE-2014-0393, CVE-2014-0401, CVE-2014-0402, CVE-2014-0412, CVE-2014-0437, CVE-2014-1943, CVE-2014-2270, CVE-2014-2497, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3515, CVE-2014-3538, CVE-2014-3581, CVE-2014-3587, CVE-2014-3597, CVE-2014-3668, CVE-2014-3669, CVE-2014-3670, CVE-2014-3710, CVE-2014-3981, CVE-2014-4049, CVE-2014-4698, CVE-2014-4721, CVE-2014-5120, CVE-2014-8109, CVE-2014-8142, CVE-2014-9652, CVE-2014-9653, CVE-2014-9705, CVE-2014-9709, CVE-2014-9767, CVE-2014-9912, CVE-2015-0228, CVE-2015-0231, CVE-2015-0232, CVE-2015-0235, CVE-2015-0273, CVE-2015-1352, CVE-2015-2301, CVE-2015-2305, CVE-2015-2325, CVE-2015-2326, CVE-2015-2331, CVE-2015-2348, CVE-2015-2783, CVE-2015-2787, CVE-2015-3152, CVE-2015-3183, CVE-2015-3185, CVE-2015-3307, CVE-2015-3329, CVE-2015-3330, CVE-2015-3411, CVE-2015-3412, CVE-2015-3414, CVE-2015-3415, CVE-2015-3416, CVE-2015-4021, CVE-2015-4022, CVE-2015-4024, CVE-2015-4025, CVE-2015-4026, CVE-2015-4147, CVE-2015-4148, CVE-2015-4598, CVE-2015-4599, CVE-2015-4600, CVE-2015-4602, CVE-2015-4603, CVE-2015-4604, CVE-2015-4605, CVE-2015-4643, CVE-2015-4644, CVE-2015-5589, CVE-2015-5590, CVE-2015-6831, CVE-2015-6832, CVE-2015-6833, CVE-2015-6834, CVE-2015-6835, CVE-2015-6836, CVE-2015-8835, CVE-2015-8838, CVE-2015-8867, CVE-2015-8873, CVE-2015-8876, CVE-2015-8935, CVE-2015-8994, CVE-2016-0736, CVE-2016-10708, CVE-2016-2161, CVE-2016-3125, CVE-2016-3185, CVE-2016-4975, CVE-2016-5387, CVE-2016-6174, CVE-2016-7478, CVE-2016-8612, CVE-2016-8743, CVE-2017-15710, CVE-2017-15715, CVE-2017-15906, CVE-2017-3167, CVE-2017-7418, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-15473, CVE-2018-15919, CVE-2018-17199, CVE-2018-19395, CVE-2018-19396, CVE-2018-19520, CVE-2018-20685, CVE-2019-0217, CVE-2019-0220, CVE-2019-10092, CVE-2019-10098, CVE-2019-12815, CVE-2019-18217, CVE-2019-19270, CVE-2019-19271, CVE-2019-19272, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11985, CVE-2020-14145, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9272, CVE-2021-26690, CVE-2021-26691, CVE-2021-34798, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44790, CVE-2021-46854, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30522, CVE-2022-30556, CVE-2022-31813	05/02/2026, 19:15:17	tencent.com
154.12.28.•••:18789	-	🇺🇸 United States	Yes	false	Leaked	AS401696	cognetcloud INC	FOJ IP Technology	03/02/2026, 22:41:00	10/04/2026, 10:12:27	Yes	Yes	APT-C-23, APT1 Comment Crew, APT15, APT27, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Earth Longzhi, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2015-9251, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-11358, CVE-2019-12418, CVE-2019-17563, CVE-2019-2684, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11022, CVE-2020-11023, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-14145, CVE-2020-15778, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-8022, CVE-2020-9484, CVE-2021-24122, CVE-2021-25122, CVE-2021-25329, CVE-2021-30640, CVE-2021-33037, CVE-2021-36368, CVE-2021-41079, CVE-2021-41617, CVE-2021-43980, CVE-2022-29885, CVE-2022-42252, CVE-2023-28708, CVE-2023-38408, CVE-2023-41080, CVE-2023-42795, CVE-2023-44487, CVE-2023-45648, CVE-2023-46589, CVE-2023-48795, CVE-2023-51385, CVE-2024-21733, CVE-2024-23672, CVE-2024-24549, CVE-2024-34750, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 14:20:13	cogentco.com
187.73.185.•••:18789	-	🇧🇷 Brazil	Yes	false	Clean	AS270517	tryideas ltda	Tryideas Ltda	03/02/2026, 22:41:00	15/04/2026, 13:30:30	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 12:02:20	-
2a02:4780:66:e6f6::1:18789	-	🇧🇷 Brazil	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	03/02/2026, 22:41:00	17/04/2026, 10:06:43	-	-	-	-	05/02/2026, 14:19:18	-
152.69.231.•••:18789	Swift (🚀)	🇺🇸 United States	Yes	false	Clean	AS31898	Oracle Corporation	Oracle	03/02/2026, 22:41:00	15/04/2026, 01:36:00	-	-	-	-	05/02/2026, 20:06:53	-
175.178.89.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:41:00	16/04/2026, 13:46:08	Yes	Yes	APT37, El-Machete	-	05/02/2026, 20:02:36	tencent.com, ub.ac.id
129.226.158.•••:18789	-	🇸🇬 Singapore	-	false	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Raffles	03/02/2026, 22:41:00	04/02/2026, 21:19:10	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 12:02:22	-
138.19.28.•••:18789	-	🇭🇰 Hong Kong	Yes	false	Leaked	AS9269	Hong Kong Broadband Network Ltd.	Hong Kong Broadband Network	03/02/2026, 22:41:00	02/03/2026, 00:35:30	Yes	No	-	CVE-2019-7659	06/02/2026, 12:02:23	macmadigan.com, chickenkiller.com, quickconnect.to, fastspeed.dk, asuscomm.com, synology.me
44.242.104.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon	03/02/2026, 22:41:00	06/04/2026, 05:15:34	Yes	No	-	CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:08:24	c1m.ai
3.6.18.•••:443	-	🇮🇳 India	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	03/02/2026, 22:41:00	30/03/2026, 19:29:29	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 09:56:24	-
46.224.234.•••:18789	-	🇩🇪 Germany	-	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	03/02/2026, 22:41:00	04/02/2026, 21:19:10	No	No	-	-	06/02/2026, 12:02:24	-
43.134.100.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	6 Collyer Quay	03/02/2026, 22:41:00	28/02/2026, 10:00:27	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 10:52:29	tencent.com
66.154.104.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS7393	CYBERCON, INC.	Asia Optimized IP Range	03/02/2026, 22:41:00	15/02/2026, 03:06:04	No	No	-	CVE-2006-20001, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-31122, CVE-2023-38709, CVE-2023-45802, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-61984, CVE-2025-61985	05/02/2026, 21:40:00	-
46.224.225.•••:18789	Tarzan (🐕)	🇩🇪 Germany	-	false	Clean	AS24940	Hetzner Online GmbH	Hetzner	03/02/2026, 22:41:00	07/02/2026, 08:50:18	No	No	-	-	05/02/2026, 19:27:56	-
2a02:4780:28:507::1:18789	-	🇫🇷 France	-	false	Clean	AS47583	Hostinger International Limited	Hostinger	03/02/2026, 22:41:00	06/02/2026, 23:43:55	-	-	-	-	05/02/2026, 17:41:13	-
122.51.2.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:41:00	30/03/2026, 23:15:24	Yes	Yes	APT37, El-Machete	-	05/02/2026, 21:07:31	tencent.com
47.107.87.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 22:41:00	02/03/2026, 09:29:52	No	No	-	-	05/02/2026, 21:07:50	-
146.190.169.•••:18789	-	🇺🇸 United States	-	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 22:41:00	04/02/2026, 21:19:10	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 12:02:25	-
172.235.18.•••:80	-	🇮🇳 India	-	false	Clean	AS63949	Akamai Connected Cloud	Linode	03/02/2026, 22:41:00	04/02/2026, 21:19:10	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 12:02:26	-
47.121.24.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 22:41:00	27/02/2026, 07:42:33	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:03:52	-
23.185.200.•••:443	-	🇺🇸 United States	Yes	false	Clean	AS8796	FASTNET DATA INC	Crystal	03/02/2026, 22:41:00	04/02/2026, 21:19:10	No	No	-	CVE-2016-20012, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 12:02:28	-
152.136.125.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	03/02/2026, 22:41:00	23/02/2026, 07:46:38	No	Yes	APT37, El-Machete	-	05/02/2026, 19:53:55	-
149.56.100.•••:443	Jarvis (🤖)	🇨🇦 Canada	Yes	false	Clean	AS16276	OVH SAS	OVH Hosting	03/02/2026, 22:41:00	17/04/2026, 23:59:14	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MoustachedBouncer, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2007-4559, CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2022-48560, CVE-2022-48564, CVE-2022-48565, CVE-2022-48566, CVE-2023-24329, CVE-2023-27043, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-0397, CVE-2024-11168, CVE-2024-3219, CVE-2024-4030, CVE-2024-4032, CVE-2024-5642, CVE-2024-6232, CVE-2024-6923, CVE-2024-7592, CVE-2024-8088, CVE-2024-9287, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 17:41:10	-
159.138.99.•••:18789	小段 (/avatar/main)	🇸🇬 Singapore	Yes	false	Clean	AS136907	HUAWEI CLOUDS	Huawei Cloud SG	03/02/2026, 22:41:00	20/02/2026, 16:16:21	No	No	-	CVE-2021-23017, CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-1695, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:39:52	-
43.156.67.•••:18789	Assistant	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 22:41:00	09/02/2026, 10:17:55	Yes	Yes	APT15, APT28, APT31, APT35, APT37, APT39, Bitter APT, Bluenoroff, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 19:16:10	tencent.com
74.48.139.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS35916	MULTACOM CORPORATION	Multacom Corporation	03/02/2026, 22:41:00	17/04/2026, 21:44:50	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	05/02/2026, 10:52:15	multacom.com
38.143.57.•••:443	-	🇨🇦 Canada	Yes	false	Leaked	AS26832	Rica Web Services	Servarica	03/02/2026, 22:41:00	12/04/2026, 00:49:06	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:00:29	cogentco.com
43.159.46.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 22:41:00	15/04/2026, 13:31:27	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2017-8923, CVE-2018-15473, CVE-2018-15919, CVE-2018-17082, CVE-2018-19518, CVE-2018-19935, CVE-2018-20685, CVE-2018-20783, CVE-2019-11034, CVE-2019-11035, CVE-2019-11036, CVE-2019-11038, CVE-2019-11039, CVE-2019-11040, CVE-2019-11041, CVE-2019-11042, CVE-2019-11043, CVE-2019-11044, CVE-2019-11045, CVE-2019-11046, CVE-2019-11047, CVE-2019-11048, CVE-2019-11050, CVE-2019-13224, CVE-2019-20372, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-6977, CVE-2019-9020, CVE-2019-9021, CVE-2019-9022, CVE-2019-9023, CVE-2019-9024, CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9640, CVE-2019-9641, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-7059, CVE-2020-7060, CVE-2020-7061, CVE-2020-7062, CVE-2020-7063, CVE-2020-7064, CVE-2020-7066, CVE-2020-7067, CVE-2020-7068, CVE-2020-7069, CVE-2020-7070, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-31628, CVE-2022-31629, CVE-2022-37454, CVE-2022-41741, CVE-2022-41742, CVE-2022-4900, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 09:25:47	tencent.com
124.223.18.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:41:00	16/04/2026, 21:20:41	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	05/02/2026, 20:48:49	tencent.com, chinaunicom.cn
1.15.231.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:41:00	17/04/2026, 10:07:16	Yes	Yes	APT1 Comment Crew, APT10, APT27, APT28, APT29, APT33, APT34, APT35, APT37, APT39, APT41, Cobalt Group, Donot Team, Earth Longzhi, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers, Turla APT Group, Volatile Kitten	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2021-41617	06/02/2026, 03:07:29	tencent.com, tot.co.th
38.207.132.•••:18789	呆猫 ((待定))	🇭🇰 Hong Kong	Yes	false	Leaked	AS6134	XNNET LLC	Nearoute	03/02/2026, 22:41:00	12/02/2026, 14:07:01	Yes	-	-	CVE-2006-20001, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-65082, CVE-2025-66200	05/02/2026, 09:24:19	cogentco.com
103.188.171.•••:18789	Claw (🦞)	🇮🇩 Indonesia	-	false	Clean	AS58369	PT. Fiber Networks Indonesia	Mats Internasional Indonesia	03/02/2026, 22:41:00	07/02/2026, 06:38:28	-	-	-	-	05/02/2026, 20:47:27	-
34.59.93.•••:18789	Remi (🤝)	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	03/02/2026, 22:41:00	16/04/2026, 01:22:45	No	No	-	-	05/02/2026, 19:54:20	-
106.52.70.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:41:00	23/02/2026, 08:31:08	Yes	Yes	APT37, El-Machete	CVE-2014-4078, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385	05/02/2026, 20:56:21	bj189.cn, tencent.com
13.58.15.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon	03/02/2026, 22:41:00	02/03/2026, 06:31:56	No	-	-	-	05/02/2026, 19:16:02	-
13.251.225.•••:18789	-	🇸🇬 Singapore	Yes	false	Clean	AS16509	Amazon.com, Inc.	Amazon Web Services	03/02/2026, 22:41:00	04/04/2026, 19:54:32	No	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	05/02/2026, 21:45:05	-
34.47.155.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS396982	Google LLC	Google	03/02/2026, 22:41:00	17/04/2026, 10:07:03	-	-	-	-	05/02/2026, 17:41:24	-
95.211.43.•••:18789	-	🇳🇱 Netherlands	Yes	false	Clean	AS60781	Netherlands	LeaseWeb	03/02/2026, 22:41:00	17/04/2026, 23:58:20	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/02/2026, 11:52:43	-
98.142.241.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS979	NetLab Global	Netutils	03/02/2026, 22:41:00	07/02/2026, 11:46:36	Yes	No	-	CVE-2016-20012, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2021-46784, CVE-2022-41317, CVE-2022-41318, CVE-2023-28531, CVE-2023-38408, CVE-2023-46724, CVE-2023-46728, CVE-2023-46846, CVE-2023-46847, CVE-2023-46848, CVE-2023-48795, CVE-2023-49285, CVE-2023-49286, CVE-2023-49288, CVE-2023-50269, CVE-2023-51384, CVE-2023-51385, CVE-2023-5824, CVE-2024-23638, CVE-2024-25111, CVE-2024-25617, CVE-2024-33427, CVE-2024-37894, CVE-2024-45802, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 13:01:03	ipxo.com
106.54.179.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:41:00	14/02/2026, 13:13:36	Yes	Yes	APT37, El-Machete	-	05/02/2026, 06:07:11	bj189.cn, tencent.com
74.48.1.•••:18789	-	🇺🇸 United States	Yes	false	Clean	AS35916	MULTACOM CORPORATION	Multacom Corporation	03/02/2026, 22:41:00	10/03/2026, 21:16:03	Yes	No	-	CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	05/02/2026, 20:03:21	multacom.com
118.193.38.•••:18789	Assistant	🇭🇰 Hong Kong	Yes	false	Leaked	AS135377	UCLOUD INFORMATION TECHNOLOGY (HK) LIMITED	Ucloud Information Technology HK	03/02/2026, 22:41:00	25/02/2026, 10:50:22	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:11:32	ucloud.cn
106.14.83.•••:18789	Assistant	🇨🇳 China mainland	Yes	false	Leaked	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	03/02/2026, 22:41:00	23/02/2026, 13:42:59	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	06/02/2026, 11:52:45	bj189.cn, aliyun.com
80.225.184.•••:18789	Assistant	🇺🇸 United States	Yes	false	Leaked	AS31898	Oracle Corporation	Oracle Sweden	03/02/2026, 22:40:59	17/04/2026, 10:05:57	Yes	No	-	CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 06:42:59	healtheintent.com, purewellness.com, retek.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oraclecloudservices.com, rsys2.net, hyperroll.com, orcale.com, oraclemobile.com, sun.co.in, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, oracleemaildelivery.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, skire.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, paymyhealthbill.com, dyndns.com, optika.com, jcp.org, smed.com, cernerenviza-tw.com, recruitmax.com, decisioneering.com, stortek.com, seebeyond.com, livelook.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com
43.154.36.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 22:40:59	16/04/2026, 01:23:43	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2010-4478, CVE-2010-5107, CVE-2011-4327, CVE-2011-5000, CVE-2012-0814, CVE-2016-0777, CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:58:54	tencent.com
152.42.252.•••:443	-	🇸🇬 Singapore	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 22:40:59	21/02/2026, 10:13:52	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT45, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387	05/02/2026, 20:52:31	-
128.140.96.•••:18789	Bé Mi (🦾✨)	🇩🇪 Germany	Yes	false	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	03/02/2026, 22:40:59	02/03/2026, 19:10:04	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 06:07:40	hetzner.com
43.156.129.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	03/02/2026, 22:40:59	10/03/2026, 16:45:57	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT36, APT37, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 18:58:54	tencent.com
134.175.104.•••:18789	-	🇨🇳 China mainland	Yes	false	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	03/02/2026, 22:40:59	14/04/2026, 23:19:44	No	Yes	APT-C-23, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon	CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-7347	05/02/2026, 05:31:52	-
159.65.89.•••:18789	Lyra	🇬🇧 United Kingdom	Yes	false	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	03/02/2026, 22:40:59	17/04/2026, 10:05:31	No	No	-	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 21:01:06	-
148.135.5.•••:18789	Assistant	🇺🇸 United States	Yes	false	Clean	AS35916	MULTACOM CORPORATION	Brander Group	03/02/2026, 22:40:59	12/02/2026, 03:08:15	Yes	Yes	APT1 Comment Crew, APT15, APT27, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Earth Longzhi, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon, WildCard APT	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-11358, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-11022, CVE-2020-11023, CVE-2020-14145, CVE-2020-15778, CVE-2020-23064, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 17:40:30	brandergroup.net
118.126.105.•••:18789	-	🇨🇳 China mainland	Yes	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:40:59	17/04/2026, 10:06:56	Yes	No	-	CVE-2023-44487, CVE-2024-7347, CVE-2025-23419	05/02/2026, 18:57:37	tencent.com
106.55.166.•••:18789	-	🇨🇳 China mainland	-	false	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud	03/02/2026, 22:40:59	04/02/2026, 22:35:55	Yes	Yes	APT28, APT35, APT37, APT39, Cobalt Group, El-Machete, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers	CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617	06/02/2026, 11:52:46	bj189.cn, tencent.com
103.49.70.•••:18789	Assistant	🇮🇳 India	Yes	false	Clean	AS151845	Scalewithus India	A1CloudHost, ScaleWithUs	03/02/2026, 22:40:59	14/04/2026, 18:50:24	Yes	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:15:09	datadock.ne.jp
3.145.184.•••:18789	-	🇺🇸 United States	-	false	Clean	AS16509	Amazon.com, Inc.	Amazon	03/02/2026, 22:40:59	04/02/2026, 22:35:55	No	No	-	-	06/02/2026, 11:52:47	-
43.134.48.•••:18789	-	🇸🇬 Singapore	Yes	false	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	6 Collyer Quay	03/02/2026, 22:40:59	17/04/2026, 21:44:50	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/02/2026, 20:51:42	tencent.com

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.