AR

Abuse Radar Threat Feed

Sanitized threat intelligence from monitored infrastructure.

Abuse intelligence, cleaned for public use.

Collector signals are normalized into a public-safe feed with source details, usernames, hostnames, and raw logs removed.

The Abuse Radar Threat Feed publishes sanitized SSH abuse, mail brute force, credential guessing, and leak trap signals for defenders who need current IP threat intelligence without exposing private infrastructure logs. IP context can be checked against the AbuseIPDB reference while this page keeps bulk IP lookup links out of the table to avoid noisy external-link counts.

Use the sections below to check an IP, review active signals, download blocklists, and integrate the public JSON API.

Latest signal2026-06-11 18:55 GMT+8
Unique records3252
Total detections3968
Active records3136
Last 24h24
Leak signals2843
Geo pending0
Total visitors235
Current visitors1
3852Active signals

Attack Mix

Active detections grouped by public-safe category.

This mix helps separate SSH attacks, mail authentication abuse, leak trap hits, and other abuse patterns before reviewing individual IP records.

SSH attacks577
Mail brute/auth46
Leak trap3229
Other0

Country Signal Map

Approximate country placement from IP geolocation. Point size follows detection volume.

The map is a quick geographic view of current threat feed activity and should be treated as operational context, not attribution.

Live Threat Flow

Collector Health

  • Leak Trap Sensor 012026-06-11 18:55 GMT+8Live
  • SSH Sensor 012026-06-11 13:45 GMT+8Warm
  • SSH Sensor 022026-06-11 12:13 GMT+8Warm
  • Mail Sensor 012026-06-11 10:15 GMT+8Warm
  • SSH Sensor 032026-06-11 09:54 GMT+8Warm
  • SSH Sensor 042026-06-11 07:39 GMT+8Warm
  • Mail Sensor 022026-06-10 12:55 GMT+8Quiet

Latest Geo Signals

  • 45.80.185.112Costa Rica CRLeak trap address contacted · 2026-06-11 18:55 GMT+8
  • 167.71.239.213India INSuspicious SSH authentication attempts · 2026-06-11 13:45 GMT+8
  • 114.247.140.114China CNSuspicious SSH authentication attempts · 2026-06-11 13:37 GMT+8
  • 114.35.183.71Taiwan TWSuspicious SSH authentication attempts · 2026-06-11 12:13 GMT+8
  • 45.80.185.37Costa Rica CRLeak trap address contacted · 2026-06-11 12:00 GMT+8
  • 77.90.185.239Germany DESuspicious mail authentication attempts · 2026-06-11 10:15 GMT+8
  1. ChinaCN922
  2. IndiaIN642
  3. Republic of KoreaKR324
  4. RussiaRU235
  5. United StatesUS215
  6. BrazilBR171
  7. NetherlandsNL113
  8. TaiwanTW112
  9. MalaysiaMY100
  10. SwedenSE78

Plain IP Blocklists

One IP per line, no reason, source, username, or raw log details.

Choose shorter windows for aggressive blocking or longer windows when you want broader coverage from the active Abuse Radar feed.

10 daysRecent high-signal IPs13 downloads 15 daysBalanced block window12 downloads 30 daysExtended active feed14 downloads

Signal Ledger

The signal ledger lists the latest active and archived records with reason, country context, first seen time, last seen time, and blocklist eligibility.

IPReasonSeverityIP DetailFirst SeenLast SeenDetectionsFeed
Leak trap address contacted Medium Brazil (BR)T I TELECOMUNICA ES LTDA ME 2026-06-07 06:30 GMT+84 days ago 2026-06-07 06:30 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium United States (US)Comcast Cable Communications, LLC 2026-05-26 07:55 GMT+816 days ago 2026-06-07 06:30 GMT+84 days ago 2 10/15/30d lists
Leak trap address contacted Medium China (CN)Beijing Baidu Netcom Science And Technology Co., Ltd. 2026-06-07 05:35 GMT+84 days ago 2026-06-07 05:35 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium India (IN)Reliance Jio Infocomm Limited 2026-06-05 04:35 GMT+86 days ago 2026-06-07 04:35 GMT+84 days ago 2 10/15/30d lists
Leak trap address contacted Medium Sweden (SE)Obenet Ab 2026-05-27 20:10 GMT+815 days ago 2026-06-07 04:30 GMT+84 days ago 2 10/15/30d lists
Leak trap address contacted Medium Indonesia (ID)Pt Pascal Indonesia 2026-05-24 14:05 GMT+818 days ago 2026-06-07 04:30 GMT+84 days ago 2 10/15/30d lists
Leak trap address contacted Medium Taiwan (TW)Mobile Business Group 2026-06-07 04:30 GMT+84 days ago 2026-06-07 04:30 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium Finland (FI)Telia Finland Oyj 2026-06-07 04:30 GMT+84 days ago 2026-06-07 04:30 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium Russia (RU)JSC Er telecom Holding 2026-06-07 04:30 GMT+84 days ago 2026-06-07 04:30 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium Philippines (PH)Philippine Long Distance Telephone Co. 2026-05-25 06:30 GMT+817 days ago 2026-06-07 04:30 GMT+84 days ago 2 10/15/30d lists
Leak trap address contacted Medium Republic of Korea (KR)Korea Telecom 2026-06-07 04:30 GMT+84 days ago 2026-06-07 04:30 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium China (CN)China Unicom Beijing Province Network 2026-05-28 15:00 GMT+814 days ago 2026-06-07 04:30 GMT+84 days ago 2 10/15/30d lists
Leak trap address contacted Medium India (IN)Bharti Airtel Limited 2026-05-28 03:05 GMT+814 days ago 2026-06-07 03:10 GMT+84 days ago 2 10/15/30d lists
Suspicious SSH authentication attempts Medium Poland (PL)Wirtualne Powiaty Sp. Z O.O. 2026-06-07 03:07 GMT+84 days ago 2026-06-07 03:07 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium United States (US)Advin Services LLC 2026-06-07 03:00 GMT+84 days ago 2026-06-07 03:00 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium India (IN)Bharti Airtel 2026-06-07 02:25 GMT+84 days ago 2026-06-07 02:25 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium Taiwan (TW)Mobile Business Group 2026-06-07 02:25 GMT+84 days ago 2026-06-07 02:25 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium Philippines (PH)Globe Telecom Inc. 2026-06-07 02:25 GMT+84 days ago 2026-06-07 02:25 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium Germany (DE)Vodafone GmbH 2026-05-25 19:30 GMT+817 days ago 2026-06-07 02:25 GMT+84 days ago 2 10/15/30d lists
Suspicious SSH authentication attempts Medium China (CN)China Unicom China1 Backbone 2026-05-22 17:50 GMT+820 days ago 2026-06-07 01:57 GMT+84 days ago 2 10/15/30d lists
Suspicious SSH authentication attempts Medium China (CN)China Unicom China1 Backbone 2026-05-22 17:48 GMT+820 days ago 2026-06-07 01:57 GMT+84 days ago 2 10/15/30d lists
Suspicious SSH authentication attempts Medium China (CN)China Mobile 2026-06-07 01:53 GMT+84 days ago 2026-06-07 01:53 GMT+84 days ago 1 10/15/30d lists
Suspicious SSH authentication attempts Medium Indonesia (ID)Telekomunikasi Indonesia pt 2026-06-07 01:28 GMT+84 days ago 2026-06-07 01:28 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium United States (US)Charter Communications LLC 2026-05-27 21:00 GMT+814 days ago 2026-06-07 00:25 GMT+84 days ago 2 10/15/30d lists
Leak trap address contacted Medium Spain (ES)VODAFONE ESPANA S.A.U. 2026-06-07 00:25 GMT+84 days ago 2026-06-07 00:25 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium China (CN)Beijing Baidu Netcom Science And Technology Co., Ltd. 2026-06-07 00:25 GMT+84 days ago 2026-06-07 00:25 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted High India (IN)Bharti Airtel Limited 2026-05-18 11:45 GMT+824 days ago 2026-06-07 00:25 GMT+84 days ago 2 10/15/30d lists
Leak trap address contacted Medium Republic of Korea (KR)Korea Telecom 2026-06-07 00:25 GMT+84 days ago 2026-06-07 00:25 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium Afghanistan (AF)Government Communications Network 2026-06-07 00:25 GMT+84 days ago 2026-06-07 00:25 GMT+84 days ago 1 10/15/30d lists
Suspicious SSH authentication attempts Medium China (CN)China Mobile Communications Corporation 2026-06-06 23:57 GMT+84 days ago 2026-06-06 23:57 GMT+84 days ago 3 10/15/30d lists
Leak trap address contacted Medium Republic of Korea (KR)Lg Dacom Corporation 2026-05-24 16:15 GMT+818 days ago 2026-06-06 23:25 GMT+84 days ago 2 10/15/30d lists
Leak trap address contacted Medium Russia (RU)Pjsc Megafon 2026-05-24 23:10 GMT+817 days ago 2026-06-06 23:15 GMT+84 days ago 2 10/15/30d lists
Leak trap address contacted Medium Republic of Korea (KR)Korea Telecom 2026-06-06 22:20 GMT+84 days ago 2026-06-06 22:20 GMT+84 days ago 1 10/15/30d lists
Leak trap address contacted Medium India (IN)Bharti Airtel Limited 2026-05-24 07:20 GMT+818 days ago 2026-06-06 22:20 GMT+84 days ago 2 10/15/30d lists
Leak trap address contacted Medium China (CN)China Mobile 2026-05-28 02:25 GMT+814 days ago 2026-06-06 22:20 GMT+84 days ago 2 10/15/30d lists
Leak trap address contacted Medium Finland (FI)Telia Finland Oyj 2026-05-23 10:35 GMT+819 days ago 2026-06-06 22:20 GMT+84 days ago 2 10/15/30d lists
Suspicious SSH authentication attempts Medium China (CN)Chinanet 2026-06-06 17:50 GMT+85 days ago 2026-06-06 17:50 GMT+85 days ago 1 10/15/30d lists
Suspicious SSH authentication attempts Medium Republic of Korea (KR)LG POWERCOMM 2026-06-06 17:02 GMT+85 days ago 2026-06-06 17:02 GMT+85 days ago 1 10/15/30d lists
Leak trap address contacted Medium Finland (FI)Dpkgsoft International Limited 2026-06-06 17:00 GMT+85 days ago 2026-06-06 17:00 GMT+85 days ago 1 10/15/30d lists
Leak trap address contacted Medium United States (US)Comcast Cable Communications, LLC 2026-05-25 14:30 GMT+817 days ago 2026-06-06 14:35 GMT+85 days ago 2 10/15/30d lists
Leak trap address contacted Medium United States (US)Limestone Networks, Inc. 2026-06-06 14:30 GMT+85 days ago 2026-06-06 14:30 GMT+85 days ago 1 10/15/30d lists
Suspicious SSH authentication attempts Medium China (CN)Chinanet 2026-06-06 13:00 GMT+85 days ago 2026-06-06 13:00 GMT+85 days ago 1 10/15/30d lists
Suspicious SSH authentication attempts Medium China (CN)No. 1,jin rong Street 2026-06-06 12:56 GMT+85 days ago 2026-06-06 12:56 GMT+85 days ago 1 10/15/30d lists
Suspicious SSH authentication attempts Medium China (CN)Chinanet 2026-06-06 12:56 GMT+85 days ago 2026-06-06 12:56 GMT+85 days ago 1 10/15/30d lists
Suspicious SSH authentication attempts Medium Spain (ES)VODAFONE ESPANA S.A.U. 2026-06-06 12:46 GMT+85 days ago 2026-06-06 12:46 GMT+85 days ago 1 10/15/30d lists
Leak trap address contacted Medium United States (US)FREAKHOSTING LTD 2026-06-06 11:50 GMT+85 days ago 2026-06-06 11:50 GMT+85 days ago 1 10/15/30d lists
Leak trap address contacted Medium India (IN)Bharti Airtel Limited 2026-06-06 10:25 GMT+85 days ago 2026-06-06 10:25 GMT+85 days ago 1 10/15/30d lists
Leak trap address contacted Medium Brazil (BR)V Tal 2026-05-25 09:00 GMT+817 days ago 2026-06-06 09:20 GMT+85 days ago 3 10/15/30d lists
Leak trap address contacted Medium India (IN)Bharti Airtel Limited 2026-05-24 03:50 GMT+818 days ago 2026-06-06 09:15 GMT+85 days ago 2 10/15/30d lists
Leak trap address contacted Medium India (IN)Bharti Airtel Limited 2026-06-06 09:15 GMT+85 days ago 2026-06-06 09:15 GMT+85 days ago 1 10/15/30d lists
Showing 50 of 3136 matched records. Page 4 of 63.