🦞 OpenClaw Exposure Watchboard
This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.
Exposed Instances: 683295 Page: 926 / 6833 (100 per page) Showing: 92501-92600 Last Imported: 19/04/2026, 08:41:00
🇨🇳 364,448
🇺🇸 188,265
Build With Vivgrid
Explore Vivgrid Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com
Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.
| Endpoint | Assistant Name | Country | auth_required | is_active | has_leaked_creds | asn | asn_name | org | first_seen | last_seen | asi_has_breach | asi_has_threat_actor | asi_threat_actors | asi_cves | asi_enriched_at | asi_domains |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 160.250.180.•••:18789 | - | 🇻🇳 Vietnam | Yes | true | Clean | AS150895 | EZ TECHNOLOGY COMPANY LIMITED | VPSRE.NET LLC | 05/04/2026, 06:04:10 | 17/04/2026, 23:57:38 | No | No | - | CVE-2016-20012, CVE-2020-14145, CVE-2020-15778, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2024-7347, CVE-2025-23419, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 05/04/2026, 13:35:13 | - |
| 16.147.243.•••:443 | - | 🇺🇸 United States | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 05/04/2026, 06:04:09 | 06/04/2026, 05:15:38 | - | - | - | - | - | - |
| 13.228.79.•••:443 | - | 🇸🇬 Singapore | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 05/04/2026, 06:04:08 | 05/04/2026, 13:33:52 | No | No | - | - | 30/03/2026, 13:35:57 | - |
| 221.14.172.•••:18789 | - | 🇽🇽 XX | Yes | true | Clean | AS4837 | CHINA UNICOM China169 Backbone | Unknown | 05/04/2026, 06:04:08 | 05/04/2026, 13:33:52 | No | No | - | - | 30/03/2026, 13:35:59 | - |
| 47.239.43.•••:80 | - | 🇭🇰 Hong Kong | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud HK | 05/04/2026, 06:04:08 | 09/04/2026, 01:08:03 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 05/04/2026, 13:36:11 | - |
| 124.163.143.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS4837 | CHINA UNICOM China169 Backbone | China Unicom Shanxi | 05/04/2026, 06:04:08 | 05/04/2026, 13:33:52 | No | No | - | - | 30/03/2026, 13:36:12 | - |
| 204.168.221.•••:18789 | - | 🇫🇮 Finland | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 05/04/2026, 06:04:08 | 08/04/2026, 13:08:16 | - | - | - | - | - | - |
| 104.208.140.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 05/04/2026, 06:01:57 | 05/04/2026, 11:17:01 | - | - | - | - | - | - |
| 47.238.64.•••:18789 | - | 🇭🇰 Hong Kong | - | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud HK | 05/04/2026, 06:01:57 | 05/04/2026, 19:29:22 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 05/04/2026, 16:30:21 | - |
| 180.158.166.•••:18789 | - | 🇨🇳 China mainland | - | true | Clean | AS4812 | China Telecom (Group) | ChinaNet Shanghai | 05/04/2026, 06:01:57 | 05/04/2026, 11:17:01 | - | - | - | - | - | - |
| 134.209.101.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 05/04/2026, 06:01:57 | 05/04/2026, 11:17:01 | - | - | - | - | - | - |
| 78.138.31.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS36007 | Kamatera, Inc. | Kamatera US NY2 Data Center | 05/04/2026, 06:01:57 | 17/04/2026, 21:42:03 | - | - | - | - | - | - |
| 111.228.29.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS141679 | China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch | Jingdong Headquarters | 05/04/2026, 06:01:56 | 14/04/2026, 05:17:10 | - | - | - | - | - | - |
| 20.210.114.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 05/04/2026, 06:01:56 | 05/04/2026, 11:17:00 | - | - | - | - | - | - |
| 172.67.150.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS13335 | Cloudflare, Inc. | Cloudflare | 05/04/2026, 06:01:56 | 05/04/2026, 11:17:00 | - | - | - | - | - | - |
| 2408:8215:5900:b157:bb80:c975:dc87:ae21:18789 | - | 🇨🇳 China mainland | - | true | Clean | AS4837 | CHINA UNICOM China169 Backbone | China Unicom | 05/04/2026, 06:01:56 | 05/04/2026, 11:17:00 | - | - | - | - | - | - |
| 217.154.107.•••:18789 | - | 🇪🇸 Spain | Yes | true | Clean | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | Ionos Cloud Virtual IT | 05/04/2026, 06:01:56 | 14/04/2026, 20:58:39 | - | - | - | - | - | - |
| 95.111.255.•••:18789 | - | 🇫🇷 France | Yes | true | Clean | AS51167 | Contabo GmbH | Contabo | 05/04/2026, 06:01:56 | 17/04/2026, 10:04:32 | No | Yes | Salt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387 | 11/04/2026, 08:38:25 | - |
| 159.75.22.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 05/04/2026, 06:01:56 | 05/04/2026, 11:17:00 | - | - | - | - | - | - |
| 47.92.197.•••:18789 | - | 🇨🇳 China mainland | - | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 05/04/2026, 06:01:56 | 17/04/2026, 10:03:16 | No | No | - | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 08:39:20 | - |
| 204.168.187.•••:18789 | - | 🇫🇮 Finland | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 05/04/2026, 06:01:56 | 17/04/2026, 10:03:23 | - | - | - | - | - | - |
| 35.234.126.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS396982 | Google LLC | 05/04/2026, 06:01:55 | 08/04/2026, 13:05:26 | No | Yes | DragonFly, Packrat | CVE-2016-20012, CVE-2020-14145, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617 | 05/04/2026, 16:32:07 | - | |
| 61.173.163.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS4812 | China Telecom (Group) | ChinaNet Shanghai | 05/04/2026, 06:01:55 | 05/04/2026, 11:16:59 | - | - | - | - | - | - |
| 144.24.89.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS31898 | Oracle Corporation | Oracle UK | 05/04/2026, 06:01:55 | 18/04/2026, 00:41:06 | Yes | Yes | APT28, APT35, APT37, APT39, Cobalt Group, DragonFly, Kimsuky, Mustang Panda, Packrat, Sandworm Team, The Shadow Brokers, gozi | CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-33245, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 07/04/2026, 18:18:04 | healtheintent.com, purewellness.com, retek.com, tryfoexnow.com, moatads.com, oraclefusion.com, connectinc.com, inquira.com, portal.com, oraclecloudservices.com, rsys2.net, hyperroll.com, orcale.com, oraclemobile.com, sun.co.in, stellent.com, siebel.com, cerner.net, oracle-cloud.com, docucorp.com, mvalent.com, elementfusion.com, oracleemaildelivery.com, en25.com, solaris.com, rightnowtech.com, think.com, ipapp.com, jdedwards.com, tiger-institute.org, skire.com, sales.com, fyleio.com, push.io, estara.com, tekelec.com, textura.com, paymyhealthbill.com, duckdns.org, dyndns.com, optika.com, jcp.org, smed.com, cernerenviza-tw.com, recruitmax.com, decisioneering.com, stortek.com, seebeyond.com, livelook.com, oraclehealth.com, aimsystems.com, sunworld.com, plumtree.com, storagetek.com |
| 154.94.233.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS401701 | cognetcloud INC | CognetCloud | 05/04/2026, 06:01:55 | 18/04/2026, 00:40:47 | - | - | - | - | - | - |
| 129.121.87.•••:18789 | - | 🇺🇸 United States | - | true | Leaked | AS31898 | Oracle Corporation | OGTIPS1 | 05/04/2026, 06:01:55 | 17/04/2026, 06:19:13 | Yes | Yes | APT28, APT41, Equation Group, Sandworm Team | CVE-2010-4478, CVE-2010-5107, CVE-2011-4327, CVE-2011-5000, CVE-2012-0814, CVE-2016-0777, CVE-2017-15906, CVE-2020-12783, CVE-2020-28007, CVE-2020-28008, CVE-2020-28009, CVE-2020-28010, CVE-2020-28011, CVE-2020-28012, CVE-2020-28013, CVE-2020-28014, CVE-2020-28015, CVE-2020-28016, CVE-2020-28018, CVE-2020-28019, CVE-2020-28021, CVE-2020-28022, CVE-2020-28023, CVE-2020-28024, CVE-2020-28025, CVE-2020-28026, CVE-2021-27216, CVE-2021-38371 | 11/04/2026, 00:44:36 | athenixinc.com, hostmonster.com, site5.com, domain.com, readyhosting.com, homestead.com, endurance.com, mojomarketplace.com, dotster.com, bluehost.com |
| 140.245.78.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS31898 | Oracle Corporation | Oracle | 05/04/2026, 06:01:55 | 15/04/2026, 13:27:57 | - | - | - | - | - | - |
| 170.64.182.•••:18789 | - | 🇦🇺 Australia | - | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 05/04/2026, 06:01:55 | 09/04/2026, 07:51:03 | No | No | - | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728 | 08/04/2026, 02:35:11 | - |
| 124.221.176.•••:18789 | - | 🇨🇳 China mainland | - | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 05/04/2026, 06:01:54 | 17/04/2026, 04:49:09 | Yes | Yes | APT37, El-Machete | - | 11/04/2026, 10:54:44 | tencent.com |
| 45.55.177.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 05/04/2026, 06:01:54 | 05/04/2026, 19:29:19 | - | - | - | - | - | - |
| 107.23.188.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14618 | Amazon.com, Inc. | Amazon | 05/04/2026, 06:01:54 | 05/04/2026, 11:16:58 | - | - | - | - | - | - |
| 165.99.43.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Clean | AS401701 | cognetcloud INC | ZenithCloud Systems Limited | 05/04/2026, 06:01:54 | 05/04/2026, 11:16:58 | - | - | - | - | - | - |
| 20.225.70.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 05/04/2026, 06:01:54 | 05/04/2026, 11:16:58 | - | - | - | - | - | - |
| 178.156.153.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS213230 | Hetzner Online GmbH | Hetzner Online | 05/04/2026, 06:01:54 | 05/04/2026, 11:16:57 | - | - | - | - | - | - |
| 222.242.112.•••:18789 | - | 🇨🇳 China mainland | - | true | Clean | AS4134 | Chinanet | ChinaNet Hunan | 05/04/2026, 06:01:54 | 05/04/2026, 11:16:57 | - | - | - | - | - | - |
| 20.89.244.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 05/04/2026, 06:01:53 | 05/04/2026, 11:16:57 | - | - | - | - | - | - |
| 172.67.128.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS13335 | Cloudflare, Inc. | Cloudflare | 05/04/2026, 06:01:53 | 05/04/2026, 11:16:57 | - | - | - | - | - | - |
| 115.190.77.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS137718 | Beijing Volcano Engine Technology Co., Ltd. | Beijing Volcano Engine Technology | 05/04/2026, 06:01:53 | 17/04/2026, 02:33:50 | Yes | No | - | CVE-2016-20012, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 11/04/2026, 10:54:20 | gwbn.net.cn |
| 183.4.46.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS140308 | CHINATELECOM Guangdong province Zhuhai 5G network | CHINANET Guangdong | 05/04/2026, 06:01:53 | 08/04/2026, 15:28:24 | No | No | - | - | 02/04/2026, 15:37:56 | - |
| 189.226.12.•••:18789 | - | 🇲🇽 Mexico | Yes | true | Clean | AS8151 | UNINET | Uninet | 05/04/2026, 06:01:52 | 08/04/2026, 12:19:22 | - | - | - | - | - | - |
| 120.76.196.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 05/04/2026, 06:01:52 | 17/04/2026, 20:56:29 | Yes | Yes | APT-C-23, Gamaredon Group, Ghostwriter, Lazarus Group, Turla APT Group, Volt Typhoon | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 17/04/2026, 20:12:12 | aliyun.com |
| 47.253.235.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud US | 05/04/2026, 06:01:52 | 17/04/2026, 00:18:22 | No | No | - | CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 14/04/2026, 00:45:53 | - |
| 119.28.13.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Clean | AS132203 | Tencent Building, Kejizhongyi Avenue | Tencent Cloud | 05/04/2026, 06:01:52 | 05/04/2026, 11:16:56 | - | - | - | - | - | - |
| 111.229.19.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 05/04/2026, 06:01:52 | 11/04/2026, 17:42:25 | Yes | - | - | - | 08/04/2026, 11:34:57 | tencent.com |
| 58.38.97.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS4812 | China Telecom (Group) | ChinaNet Shanghai | 05/04/2026, 06:01:52 | 17/04/2026, 10:04:06 | Yes | No | - | - | 17/04/2026, 07:51:31 | online.sh.cn |
| 158.179.21.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS31898 | Oracle Corporation | Oracle | 05/04/2026, 06:01:52 | 08/04/2026, 00:17:44 | - | - | - | - | - | - |
| 4.150.11.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 05/04/2026, 06:01:52 | 05/04/2026, 11:16:55 | - | - | - | - | - | - |
| 2a02:4780:c:ded0::1:18789 | - | 🇱🇹 Lithuania | - | true | Clean | AS47583 | Hostinger International Limited | Hostinger | 05/04/2026, 06:01:52 | 15/04/2026, 11:19:36 | - | - | - | - | - | - |
| 180.120.189.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS4134 | Chinanet | Chinanet Jiangsu Province Network | 05/04/2026, 06:01:52 | 05/04/2026, 11:16:55 | - | - | - | - | - | - |
| 3.230.115.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS14618 | Amazon.com, Inc. | Amazon Web Services | 05/04/2026, 06:01:52 | 17/04/2026, 10:04:15 | No | Yes | APT28, APT35, APT37, APT39, Cobalt Group, Kimsuky, Mustang Panda, Sandworm Team, The Shadow Brokers | CVE-2016-10708, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617 | 05/04/2026, 19:30:26 | - |
| 129.121.84.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS31898 | Oracle Corporation | OGTIPS1 | 05/04/2026, 06:01:51 | 16/04/2026, 23:33:12 | - | - | - | - | - | - |
| 103.6.234.•••:18789 | - | 🇻🇳 Vietnam | Yes | true | Clean | AS152992 | ONLINE DATA COMPANY LIMITED | Hasaki Vietnam Security Services | 05/04/2026, 06:01:51 | 16/04/2026, 11:27:08 | - | - | - | - | - | - |
| 203.174.117.•••:18789 | - | 🇭🇰 Hong Kong | Yes | true | Clean | AS4847 | China Networks Inter-Exchange | Beijing WangJu Interworking Information Technology Co. LTD | 05/04/2026, 06:01:51 | 17/04/2026, 00:18:22 | - | - | - | - | - | - |
| 40.74.3.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 05/04/2026, 06:01:51 | 05/04/2026, 11:16:55 | - | - | - | - | - | - |
| 101.237.129.•••:18789 | - | 🇨🇳 China mainland | - | true | Clean | AS23724 | IDC, China Telecommunications Corporation | UCloud | 05/04/2026, 06:01:51 | 05/04/2026, 11:16:54 | - | - | - | - | - | - |
| 23.88.122.•••:18789 | - | 🇩🇪 Germany | Yes | true | Leaked | AS24940 | Hetzner Online GmbH | Hetzner Online | 05/04/2026, 06:01:51 | 10/04/2026, 17:43:20 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-38709, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2024-6387, CVE-2025-23048, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-61984, CVE-2025-61985, CVE-2025-65082, CVE-2025-66200 | 08/04/2026, 05:36:17 | hetzner.com |
| 134.215.255.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS4181 | TDS TELECOM | TDS Telecom | 05/04/2026, 06:01:51 | 05/04/2026, 11:16:54 | - | - | - | - | - | - |
| 113.31.117.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS17621 | China Unicom Shanghai network / AS4811 China Telecom (Group) | UCloud | 05/04/2026, 06:01:50 | 15/04/2026, 10:40:45 | - | - | - | - | - | - |
| 89.167.126.•••:18789 | - | 🇫🇮 Finland | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 05/04/2026, 06:01:50 | 14/04/2026, 02:16:18 | - | - | - | - | - | - |
| 89.167.51.•••:18789 | - | 🇫🇮 Finland | Yes | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 05/04/2026, 06:01:50 | 08/04/2026, 22:50:01 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 22:53:03 | - |
| 121.4.35.•••:18789 | - | 🇨🇳 China mainland | - | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 05/04/2026, 06:01:50 | 11/04/2026, 05:38:59 | - | - | - | - | - | - |
| 40.115.137.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 05/04/2026, 06:01:50 | 05/04/2026, 11:16:54 | - | - | - | - | - | - |
| 150.158.38.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 05/04/2026, 06:01:50 | 16/04/2026, 18:15:49 | Yes | Yes | APT37, El-Machete | - | 13/04/2026, 19:30:56 | tencent.com |
| 141.94.151.•••:18789 | - | 🇫🇷 France | - | true | Clean | AS16276 | OVH SAS | OVH | 05/04/2026, 06:01:50 | 18/04/2026, 00:41:07 | - | - | - | - | - | - |
| 1.175.189.•••:18789 | - | 🇹🇼 Taiwan | Yes | true | Clean | AS3462 | Data Communication Business Group | Chunghwa Telecom | 05/04/2026, 06:01:49 | 08/04/2026, 00:17:36 | - | - | - | - | - | - |
| 47.82.91.•••:18789 | - | 🇺🇸 United States | Yes | true | Leaked | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud | 05/04/2026, 06:01:49 | 12/04/2026, 21:38:27 | Yes | No | - | - | 12/04/2026, 20:54:12 | hichina.com, alibaba-inc.com |
| 104.21.90.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS13335 | Cloudflare, Inc. | Cloudflare | 05/04/2026, 06:01:49 | 05/04/2026, 11:16:53 | - | - | - | - | - | - |
| 43.167.159.•••:18789 | - | 🇸🇬 Singapore | - | true | Clean | AS132203 | Tencent Building, Kejizhongyi Avenue | Aceville Pte Ltd | 05/04/2026, 06:01:49 | 11/04/2026, 10:52:35 | - | - | - | - | - | - |
| 68.183.186.•••:18789 | - | 🇸🇬 Singapore | - | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 05/04/2026, 06:01:49 | 05/04/2026, 23:13:44 | - | - | - | - | - | - |
| 120.26.134.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Leaked | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alisoft | 05/04/2026, 06:01:49 | 17/04/2026, 23:11:44 | Yes | Yes | APT15, APT31, APT37, APT39, Bitter APT, Bluenoroff, Donot Team, Gamaredon Group, Gaza Cybergang, Inception Framework, Kimsuky, MuddyWater Group, Salt Typhoon, SideWinder APT | CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 08/04/2026, 22:09:39 | aliyun.com |
| 2a0f:f01:206:4d6:::18789 | - | 🇩🇰 Denmark | - | true | Clean | AS44803 | Webdock.io ApS | DK Webdock | 05/04/2026, 06:01:49 | 05/04/2026, 17:14:46 | - | - | - | - | - | - |
| 175.27.141.•••:18789 | - | 🇨🇳 China mainland | - | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud | 05/04/2026, 06:01:49 | 11/04/2026, 10:52:50 | - | - | - | - | - | - |
| 8.168.30.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS37963 | Hangzhou Alibaba Advertising Co.,Ltd. | Alibaba Cloud | 05/04/2026, 06:01:49 | 05/04/2026, 11:16:52 | - | - | - | - | - | - |
| 2409:8a34:1ad0:cbc0:888e:6880:1d35:5:18789 | - | 🇨🇳 China mainland | - | true | Clean | AS9808 | China Mobile Communications Group Co., Ltd. | China Mobile | 05/04/2026, 06:01:48 | 17/04/2026, 10:03:14 | - | - | - | - | - | - |
| 158.69.203.•••:18789 | - | 🇫🇷 France | - | true | Clean | AS16276 | OVH SAS | OVH Hosting | 05/04/2026, 06:01:48 | 05/04/2026, 23:13:35 | - | - | - | - | - | - |
| 36.137.120.•••:18789 | Assistant | 🇨🇳 China mainland | Yes | true | Clean | AS9808 | China Mobile Communications Group Co., Ltd. | China Mobile | 05/04/2026, 06:01:48 | 05/04/2026, 11:16:51 | - | - | - | - | - | - |
| 16.147.243.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon | 05/04/2026, 06:01:48 | 06/04/2026, 02:58:05 | - | - | - | - | - | - |
| 13.228.79.•••:18789 | - | 🇸🇬 Singapore | - | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services | 05/04/2026, 06:01:46 | 05/04/2026, 12:01:46 | No | No | - | - | 30/03/2026, 12:02:06 | - |
| 221.14.172.•••:18789 | - | 🇽🇽 XX | Yes | true | Clean | AS4837 | CHINA UNICOM China169 Backbone | Unknown | 05/04/2026, 06:01:46 | 05/04/2026, 12:01:46 | No | No | - | - | 30/03/2026, 12:02:08 | - |
| 5.161.106.•••:18789 | - | 🇺🇸 United States | - | true | Leaked | AS213230 | Hetzner Online GmbH | Hetzner Online | 05/04/2026, 06:01:46 | 05/04/2026, 12:01:46 | Yes | Yes | APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon | CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387 | 05/04/2026, 12:02:11 | hetzner.com |
| 46.225.56.•••:18789 | - | 🇩🇪 Germany | - | true | Clean | AS24940 | Hetzner Online GmbH | Hetzner | 05/04/2026, 06:01:46 | 10/04/2026, 00:57:32 | No | No | - | CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985 | 05/04/2026, 12:02:13 | - |
| 194.164.17.•••:18789 | - | 🇬🇧 United Kingdom | - | true | Clean | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | IONOS Cloud London | 05/04/2026, 05:59:42 | 05/04/2026, 10:29:43 | - | - | - | - | - | - |
| 4.217.193.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 05/04/2026, 05:59:40 | 05/04/2026, 10:29:41 | - | - | - | - | - | - |
| 4.151.136.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 05/04/2026, 05:59:37 | 05/04/2026, 11:14:44 | - | - | - | - | - | - |
| 2a02:4780:f:504b::1:18789 | - | 🇬🇧 United Kingdom | - | true | Clean | AS47583 | Hostinger International Limited | Hostinger | 05/04/2026, 05:59:37 | 17/04/2026, 10:01:30 | - | - | - | - | - | - |
| 38.127.47.•••:18789 | - | 🇺🇸 United States | Yes | true | Clean | AS18978 | Enzu Inc | Enzu | 05/04/2026, 05:59:37 | 18/04/2026, 00:38:19 | No | No | - | - | 02/04/2026, 13:51:35 | - |
| 4.151.205.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 05/04/2026, 05:59:37 | 05/04/2026, 11:14:44 | - | - | - | - | - | - |
| 104.208.140.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 05/04/2026, 05:59:37 | 05/04/2026, 11:14:44 | - | - | - | - | - | - |
| 47.238.64.•••:18789 | - | 🇭🇰 Hong Kong | - | true | Clean | AS45102 | Alibaba (US) Technology Co., Ltd. | Alibaba Cloud HK | 05/04/2026, 05:59:37 | 05/04/2026, 19:26:55 | - | - | - | - | - | - |
| 180.158.166.•••:18789 | - | 🇨🇳 China mainland | - | true | Clean | AS4812 | China Telecom (Group) | ChinaNet Shanghai | 05/04/2026, 05:59:36 | 05/04/2026, 11:14:43 | - | - | - | - | - | - |
| 134.209.101.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS14061 | DigitalOcean, LLC | DigitalOcean | 05/04/2026, 05:59:36 | 05/04/2026, 11:14:43 | - | - | - | - | - | - |
| 78.138.31.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS36007 | Kamatera, Inc. | Kamatera US NY2 Data Center | 05/04/2026, 05:59:36 | 17/04/2026, 21:39:43 | No | Yes | APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, Volt Typhoon, WIRTE | CVE-2006-20001, CVE-2016-20012, CVE-2017-15710, CVE-2017-15715, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11993, CVE-2020-12062, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-28041, CVE-2021-33193, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-31122, CVE-2023-38408, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26466 | 08/04/2026, 16:03:13 | - |
| 111.228.29.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS141679 | China Telecom Beijing Tianjin Hebei Big Data Industry Park Branch | Jingdong Headquarters | 05/04/2026, 05:59:36 | 14/04/2026, 05:14:49 | - | - | - | - | - | - |
| 20.210.114.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS8075 | Microsoft Corporation | Microsoft | 05/04/2026, 05:59:36 | 05/04/2026, 11:14:43 | - | - | - | - | - | - |
| 46.137.202.•••:18789 | - | 🇸🇬 Singapore | Yes | true | Clean | AS16509 | Amazon.com, Inc. | Amazon Web Services (AWS) | 05/04/2026, 05:59:36 | 16/04/2026, 19:44:52 | - | - | - | - | - | - |
| 104.21.39.•••:18789 | - | 🇺🇸 United States | - | true | Clean | AS13335 | Cloudflare, Inc. | Cloudflare | 05/04/2026, 05:59:36 | 05/04/2026, 11:14:42 | - | - | - | - | - | - |
| 2408:8215:5900:b157:bb80:c975:dc87:ae21:18789 | - | 🇨🇳 China mainland | - | true | Clean | AS4837 | CHINA UNICOM China169 Backbone | China Unicom | 05/04/2026, 05:59:35 | 05/04/2026, 11:14:42 | - | - | - | - | - | - |
| 217.154.107.•••:18789 | - | 🇪🇸 Spain | Yes | true | Leaked | AS8560 | This is the joint network for IONOS, Fasthosts, Arsys, 1&1 Mail and Media and 1&1 Telecom. Formerly known as 1&1 Internet SE. | Ionos Cloud Virtual IT | 05/04/2026, 05:59:35 | 14/04/2026, 20:56:21 | Yes | No | - | CVE-2024-42516, CVE-2024-43204, CVE-2024-43394, CVE-2024-47252, CVE-2025-23048, CVE-2025-49630, CVE-2025-49812, CVE-2025-53020, CVE-2025-55753, CVE-2025-58098, CVE-2025-59775, CVE-2025-65082, CVE-2025-66200 | 05/04/2026, 05:59:39 | ionos.com |
| 95.111.255.•••:18789 | - | 🇫🇷 France | Yes | true | Clean | AS51167 | Contabo GmbH | Contabo | 05/04/2026, 05:59:35 | 17/04/2026, 10:02:13 | No | Yes | Salt Typhoon | CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387 | 05/04/2026, 05:59:41 | - |
| 159.75.22.•••:18789 | - | 🇨🇳 China mainland | Yes | true | Clean | AS45090 | Shenzhen Tencent Computer Systems Company Limited | Tencent Cloud Computing | 05/04/2026, 05:59:35 | 05/04/2026, 11:14:42 | - | - | - | - | - | - |