IP Address

79.124.59.78

IPv4 Public
BG BG
AS50360
Tamatiya EOOD
3,364 Reports
This IP is on the Blacklist High confidence threat - blocking recommended
10/10 Threat
88% Confidence
3,364 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Top 5% Most Dangerous
BG
BG Location
Tamatiya EOOD ASN 50360
3,364 Reports
Honeypot Data Source

Maximum Danger

IP 79.124.59.78 is a maximum-threat-level address originating from Bulgaria, operated by Tamatiya EOOD under ASN AS50360, with a documented history of sustained hacking activity that warrants immediate defensive action. This IP has accumulated 3,299 abuse reports over approximately eleven months, with an activity frequency rated 8 out of 10, indicating persistent rather than opportunistic intrusion attempts. Detection systems assigned an 88% confidence score to the malicious classification, reflecting strongly corroborating evidence across multiple sensor sources.

Community-driven threat reporting and automated honeypot sensors documented activity between August 2025 and June 2026, capturing repeated unauthorized access attempts consistent with intrusion scanning patterns. The network traffic associated with this address triggered Suricata rules flagging ICMP Destination Unreachable communications where the destination host signaled administrative prohibition, a signature commonly observed during network reconnaissance and vulnerability probing operations. The 3,299 total reports represent substantial cross-platform detection, meaning this address has been flagged by diverse monitoring infrastructure across multiple targets rather than isolated incidents.

The dominant threat classification for IP 79.124.59.78 is hacking activity, encompassing unauthorized access attempts, exploitation probing, and intrusion-enabling reconnaissance against exposed services. The ICMP communication pattern detected suggests the host may be conducting network mapping or testing firewall rule effectiveness before launching more targeted attacks. For any exposed service, this represents a concrete risk of credential compromise, vulnerability exploitation, or initial footholds enabling further network penetration.

Network operators should implement immediate blocking measures for this address at the firewall or edge device level, with automated tools such as fail2ban or comparable intrusion-prevention systems providing dynamic response. Exposed services should follow least-privilege access principles, with strong authentication enforcement and minimal attack surface. Maintaining current patches and employing network intrusion detection monitoring will further reduce the risk posed by sustained scanning activity from this high-threat address.

More threatening than 96% of monitored IPs

Threat Categories

Hacking 30

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

Behavioral Analysis

Activity Pattern: Sporadic

Irregular burst activity pattern indicates intermittent use of a compromised system.

First Observed 11. May 2026
Last Activity 9. June 2026
Recent (7 days) 164 incidents

Reputable Network

This IP is hosted on a network (ASN 50360) with generally good reputation. The ISP Tamatiya EOOD maintains standard security practices.

The malicious activity may represent an isolated compromised system rather than systematic abuse.

Security Recommendations

Implement adaptive blocking rules.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 8/10 High
Confidence Score 88% Verified

Confidence History

8. Jun 2026 - 9. Jun 2026
88% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
Hacking Honeypot 75%
10 of 3364 shown

Technical Details

Basic Information

IP Address
79.124.59.78
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class A

Geolocation

Country
BG BG
ASN
AS50360
ISP
Tamatiya EOOD

DNS Information

Reverse DNS
ip-59-78.4vendeta.com
PTR Record
Yes
Connection Type
Static

Statistics

Total Reports
3,364
First Reported
17 Aug 2025
Last Reported
9 Jun 2026, 06:42

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS50360
Tamatiya EOOD
BG BG

Network Threat Assessment

3/10
This network appears to be relatively clean with very low threat indicators.

Network Statistics

18
Total IPs Monitored
3,070
Total Reports
170.6
Reports per IP

Network Context

This IP address belongs to Tamatiya EOOD (AS50360), which manages 18 IP addresses in our monitoring system. Out of these, 3,070 have been reported for suspicious activities, resulting in a network-wide threat level of 3/10.

Network status: This network appears to be well-maintained with low threat indicators.

Comparative Analysis

How this IP compares to others in our threat intelligence database

96 %

Global Threat Ranking

This IP is more threatening than 96% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 199,207 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 3,364 avg: 23 ++

Network Comparison

Compared against 19 IPs in ASN 50360

Threat Level 10/10 network avg: 8.1 +
Total Reports 3,364 network avg: 221 ++
Network Tamatiya EOOD has overall threat level 3/10

Geographic Comparison

Compared against 706 IPs in BG

Threat Level 10/10 country avg: 6.6 ++
Total Reports 3,364 country avg: 105 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

186,914 threat incidents tracked globally • Last 24h: 18,893 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,421 20.6%
  2. 02
    IN
    India IN
    28,931 15.5%
  3. 03
    CN
    China CN
    26,004 13.9%
  4. 04
    BR
    Brazil BR
    10,236 5.5%
  5. 05
    DE
    Germany DE
    7,138 3.8%
  6. 06
    SG
    Singapore SG
    6,475 3.5%
  7. 07
    ID
    Indonesia ID
    5,522 3%
  8. 08
    RU
    Russia RU
    4,700 2.5%
  9. 09
    PK
    Pakistan PK
    4,646 2.5%
  10. 10
    NL
    Netherlands NL
    4,354 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same subnet range, likely same network segment.

2 Related IPs
10/10 Avg Threat
78% Avg Confidence
2 High Threat
High-risk network: Majority of related IPs are flagged
79.124.59.130 10/10
Confidence 79%
Reports 320
Location BG BG
8 Apr 2026
79.124.59.154 10/10
Confidence 76%
Reports 134
Location BG BG
25 Mar 2026

IPs from the same country with similar threat profiles.

15 Related IPs
9.5/10 Avg Threat
99% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
78.142.18.172 8/10
Confidence 100%
Reports 578
ISP ColocaTel Inc.
9 Jun 2026
212.233.202.126 10/10
Confidence 100%
Reports 83
ISP Optisprint OOD
28 May 2026
195.178.110.103 10/10
Confidence 100%
Reports 50
ISP Techoff Srv Lim...
14 May 2026
93.123.109.167 10/10
Confidence 100%
Reports 47
ISP Techoff Srv Lim...
9 Jun 2026
93.123.109.166 10/10
Confidence 100%
Reports 37
ISP Techoff Srv Lim...
8 Jun 2026
93.123.109.163 10/10
Confidence 100%
Reports 33
ISP Techoff Srv Lim...
8 Jun 2026
93.123.109.164 10/10
Confidence 100%
Reports 28
ISP Techoff Srv Lim...
9 Jun 2026
195.178.110.105 8/10
Confidence 100%
Reports 23
ISP Techoff Srv Lim...
8 Jun 2026
85.11.167.7 10/10
Confidence 98%
Reports 459
ISP ColocaTel Inc.
9 Jun 2026
195.178.110.135 10/10
Confidence 98%
Reports 19
ISP Techoff Srv Lim...
27 May 2026
78.83.249.54 10/10
Confidence 97%
Reports 58
ISP A1 Bulgaria EAD
6 Jun 2026
31.13.245.227 8/10
Confidence 97%
Reports 16
ISP Neterra Ltd.
6 May 2026
85.217.149.24 8/10
Confidence 96%
Reports 138
ISP NetIX Communica...
8 Jun 2026
94.26.106.113 10/10
Confidence 96%
Reports 47
ISP Telco power Ltd
6 Feb 2026
195.178.110.108 10/10
Confidence 96%
Reports 27
ISP Techoff Srv Lim...
27 May 2026

IPs with similar threat level and confidence scores.

15 Related IPs
8.7/10 Avg Threat
88% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
80.94.92.183 10/10
Confidence 88%
Reports 5,389
Location RO RO
18 May 2026
176.65.149.64 10/10
Confidence 88%
Reports 5,346
Location NL NL
9 Jun 2026
178.128.32.203 8/10
Confidence 88%
Reports 4,650
Location GB GB
9 Jun 2026
35.240.174.82 10/10
Confidence 88%
Reports 1,724
Location SG SG
31 May 2026
204.76.203.73 10/10
Confidence 88%
Reports 1,724
Location NL NL
26 May 2026
80.94.95.169 8/10
Confidence 88%
Reports 1,001
Location RO RO
24 Apr 2026
106.75.137.178 10/10
Confidence 88%
Reports 973
Location CN CN
9 Jun 2026
185.242.3.100 7/10
Confidence 88%
Reports 791
Location NL NL
13 May 2026
207.90.244.17 8/10
Confidence 88%
Reports 641
Location US US
9 Jun 2026
65.49.20.69 8/10
Confidence 88%
Reports 570
Location US US
9 Jun 2026
64.62.156.108 8/10
Confidence 88%
Reports 537
Location US US
9 Jun 2026
93.174.93.12 8/10
Confidence 88%
Reports 506
Location NL NL
9 Jun 2026
167.94.146.56 8/10
Confidence 88%
Reports 504
Location US US
9 Jun 2026
167.94.146.62 10/10
Confidence 88%
Reports 500
Location US US
8 Jun 2026
64.62.197.167 8/10
Confidence 88%
Reports 495
Location US US
9 Jun 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "79.124.59.78",
    "threat_level": 10,
    "confidence_score": 88,
    "total_reports": 3364,
    "country_code": "BG",
    "isp_name": "Tamatiya EOOD",
    "asn": "50360",
    "first_reported": "2025-08-17 06:20:44",
    "last_reported": "2026-06-09 06:42:32",
    "exported_at": "2026-06-09T06:55:52+02:00",
    "source": "https://reportedip.de/ip/79.124.59.78/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses