IP Address

130.12.180.70

IPv4 Public
US US
AS202412
Omegatech LTD
447 Reports
This IP is on the Blacklist High confidence threat - blocking recommended
10/10 Threat
72% Confidence
447 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Top 10% High Threat
US
US Location
Omegatech LTD ASN 202412
447 Reports
Honeypot Data Source

Extreme Threat

IP 130.12.180.70 is a critical-risk address operated by Omegatech LTD (ASN AS202412) that has been classified as an exploited host, indicating the system has been compromised and is being weaponized by threat actors to conduct automated attacks without the owner's knowledge. With a threat level of 10 out of 10 and 447 total abuse reports submitted across 20 automated honeypot sensors, this IP represents an active and dangerous compromised asset that should be immediately blocked at the network perimeter. The dominant threat profile involves malware and exploit activity consistent with the host being used as a staging point or attack platform, posing direct risk to any exposed service it targets.

Analysis of the available telemetry reveals a concentrated abuse window during March 2026, with all 20 contributing honeypot sensors flagging identical Exploited Host activity within the same reporting period. The 447 aggregate reports indicate sustained malicious engagement originating from this single compromised endpoint, demonstrating persistent automated exploitation attempts rather than opportunistic scanning. While the confidence score of 72% leaves some room for uncertainty regarding attribution, the volume and consistency of automated sensor detections provide substantial corroboration. Geographic context places this activity within United States network infrastructure operated by Omegatech LTD, a hosting provider whose network has generated significant abuse telemetry over the documented timeframe.

An exploited host differs fundamentally from an attacker-operated infrastructure because the compromised machine's legitimate owner is unaware their system is participating in malicious activity, often making takedown coordination more complex. The malware and exploit patterns associated with this IP suggest it may be running automated exploitation toolkits, scanning scripts, or dropper malware that relay commands from an external threat actor. For any organization exposing services to the internet, an IP with this threat classification creates a concrete risk of secondary compromise through drive-by attacks, credential theft attempts, or exploitation of vulnerable application surfaces.

More threatening than 93% of monitored IPs

Threat Categories

Exploited Host 30

Technical Details

This IP belongs to a compromised system being used as an attack platform without the owner's knowledge.

Recommended Mitigations

Block the IP and consider notifying the hosting provider or system owner about the compromise.

Moderate Network Risk

The network hosting this IP (ASN 202412, operated by Omegatech LTD) shows moderate threat indicators. Some concerning activity has been detected from neighboring addresses.

Consider the network context when assessing this individual IP.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 0/10 Inactive
Confidence Score 67% High Confidence

Confidence History

13. Mar 2026 - 14. Mar 2026
72% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
Exploited Host Honeypot 75%
10 of 447 shown

Technical Details

Basic Information

IP Address
130.12.180.70
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class B

Geolocation

Country
US US
ASN
AS202412
ISP
Omegatech LTD

DNS Information

Reverse DNS
None
PTR Record
No
Connection Type
Static

Statistics

Total Reports
447
First Reported
8 Mar 2026
Last Reported
14 Mar 2026, 04:52

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS202412
Omegatech LTD
US US

Network Threat Assessment

6/10
This network shows moderate threat levels with some malicious activity patterns.

Network Statistics

148
Total IPs Monitored
27,689
Total Reports
187.1
Reports per IP

Network Context

This IP address belongs to Omegatech LTD (AS202412), which manages 148 IP addresses in our monitoring system. Out of these, 27,689 have been reported for suspicious activities, resulting in a network-wide threat level of 6/10.

Network warning: This network has elevated threat levels. Exercise caution when interacting with IPs from this ASN.

Comparative Analysis

How this IP compares to others in our threat intelligence database

93 %

Global Threat Ranking

This IP is more threatening than 93% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 199,359 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 447 avg: 23 ++

Network Comparison

Compared against 166 IPs in ASN 202412

Threat Level 10/10 network avg: 6.3 ++
Total Reports 447 network avg: 175 ++
Network Omegatech LTD has overall threat level 6/10

Geographic Comparison

Compared against 38,426 IPs in US

Threat Level 10/10 country avg: 5.9 ++
Total Reports 447 country avg: 41 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,017 threat incidents tracked globally • Last 24h: 18,967 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US THIS IP
    38,426 20.5%
  2. 02
    IN
    India IN
    28,977 15.5%
  3. 03
    CN
    China CN
    26,016 13.9%
  4. 04
    BR
    Brazil BR
    10,249 5.5%
  5. 05
    DE
    Germany DE
    7,139 3.8%
  6. 06
    SG
    Singapore SG
    6,475 3.5%
  7. 07
    ID
    Indonesia ID
    5,533 3%
  8. 08
    RU
    Russia RU
    4,701 2.5%
  9. 09
    PK
    Pakistan PK
    4,647 2.5%
  10. 10
    NL
    Netherlands NL
    4,355 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same Autonomous System (AS) network provider.

20 Related IPs
8.6/10 Avg Threat
88% Avg Confidence
20 High Threat
High-risk network: Majority of related IPs are flagged
158.94.210.72 8/10
Confidence 100%
Reports 77
Location NL NL
1 Jun 2026
91.92.240.214 7/10
Confidence 95%
Reports 32
Location DE DE
27 May 2026
178.16.52.22 10/10
Confidence 94%
Reports 83
Location DE DE
18 Apr 2026
130.12.180.29 8/10
Confidence 94%
Reports 80
Location US US
20 May 2026
45.74.7.30 10/10
Confidence 94%
Reports 20
Location US US
7 Jun 2026
91.92.240.13 8/10
Confidence 93%
Reports 841
Location DE DE
18 May 2026
91.92.243.235 8/10
Confidence 93%
Reports 158
Location US US
29 Apr 2026
91.92.243.76 8/10
Confidence 91%
Reports 1,761
Location US US
9 Jun 2026
158.94.211.49 7/10
Confidence 90%
Reports 2,247
Location US US
25 May 2026
178.16.52.116 7/10
Confidence 90%
Reports 619
Location DE DE
23 Apr 2026
178.16.54.237 7/10
Confidence 90%
Reports 563
Location NL NL
5 Jun 2026
178.16.54.134 10/10
Confidence 90%
Reports 446
Location NL NL
4 May 2026
130.12.180.65 10/10
Confidence 87%
Reports 823
Location NL NL
9 Jun 2026
178.16.54.141 7/10
Confidence 87%
Reports 578
Location NL NL
4 May 2026
178.16.54.124 8/10
Confidence 86%
Reports 458
Location NL NL
5 May 2026
130.12.180.30 10/10
Confidence 81%
Reports 14
Location NL NL
17 Apr 2026
178.16.55.208 10/10
Confidence 79%
Reports 25
Location US US
15 Apr 2026
158.94.209.131 10/10
Confidence 79%
Reports 20
Location NL NL
8 Apr 2026
158.94.208.44 10/10
Confidence 78%
Reports 28
Location DE DE
1 Apr 2026
158.94.211.252 8/10
Confidence 78%
Reports 16
Location US US
31 Mar 2026

IPs from the same subnet range, likely same network segment.

20 Related IPs
9.8/10 Avg Threat
79% Avg Confidence
20 High Threat
High-risk network: Majority of related IPs are flagged
130.12.180.207 10/10
Confidence 94%
Reports 350
Location US US
29 Dec 2025
130.12.180.29 8/10
Confidence 94%
Reports 80
Location US US
20 May 2026
130.12.180.52 10/10
Confidence 91%
Reports 71
Location US US
30 May 2026
130.12.180.65 10/10
Confidence 87%
Reports 823
Location NL NL
9 Jun 2026
130.12.180.51 10/10
Confidence 87%
Reports 222
Location US US
9 Jun 2026
130.12.180.106 10/10
Confidence 85%
Reports 221
Location US US
4 Feb 2026
130.12.180.103 10/10
Confidence 83%
Reports 78
Location US US
23 Apr 2026
130.12.180.30 10/10
Confidence 81%
Reports 14
Location NL NL
17 Apr 2026
130.12.180.90 8/10
Confidence 76%
Reports 42
Location US US
11 Apr 2026
130.12.180.107 10/10
Confidence 75%
Reports 443
Location US US
23 Apr 2026
130.12.180.95 10/10
Confidence 74%
Reports 194
Location US US
23 Apr 2026
130.12.180.55 10/10
Confidence 72%
Reports 463
Location US US
14 Mar 2026
130.12.180.19 10/10
Confidence 72%
Reports 462
Location US US
14 Mar 2026
130.12.180.37 10/10
Confidence 72%
Reports 460
Location US US
14 Mar 2026
130.12.180.72 10/10
Confidence 72%
Reports 452
Location US US
14 Mar 2026
130.12.180.71 10/10
Confidence 72%
Reports 449
Location US US
14 Mar 2026
130.12.180.57 10/10
Confidence 72%
Reports 448
Location US US
14 Mar 2026
130.12.180.44 10/10
Confidence 72%
Reports 445
Location US US
14 Mar 2026
130.12.180.66 10/10
Confidence 72%
Reports 445
Location US US
14 Mar 2026
130.12.180.39 10/10
Confidence 72%
Reports 444
Location US US
14 Mar 2026

IPs from the same country with similar threat profiles.

15 Related IPs
8.3/10 Avg Threat
100% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
208.109.188.137 8/10
Confidence 100%
Reports 514
ISP GO-DADDY-COM-LLC
9 Jun 2026
50.6.7.129 8/10
Confidence 100%
Reports 447
ISP ORACLE-BMC-31898
22 May 2026
72.167.150.128 8/10
Confidence 100%
Reports 429
ISP GO-DADDY-COM-LLC
27 May 2026
50.6.229.148 8/10
Confidence 100%
Reports 346
ISP ORACLE-BMC-31898
9 May 2026
87.121.84.30 8/10
Confidence 100%
Reports 295
ISP Vpsvault.host Ltd
20 Apr 2026
50.6.226.221 10/10
Confidence 100%
Reports 223
ISP ORACLE-BMC-31898
2 Mar 2026
31.57.184.107 8/10
Confidence 100%
Reports 202
ISP Netiface LLC
3 Jun 2026
64.31.25.250 8/10
Confidence 100%
Reports 176
ISP Limestone Netwo...
8 Jun 2026
74.206.180.196 8/10
Confidence 100%
Reports 143
ISP MOJOHOST
4 Jun 2026
35.226.7.126 8/10
Confidence 100%
Reports 131
ISP Google LLC
18 May 2026
147.135.37.185 8/10
Confidence 100%
Reports 131
ISP OVH SAS
14 May 2026
162.241.152.21 8/10
Confidence 100%
Reports 126
ISP Network Solutio...
8 Jun 2026
38.95.35.74 8/10
Confidence 100%
Reports 112
ISP Limestone Netwo...
2 Jun 2026
50.6.169.131 8/10
Confidence 100%
Reports 106
ISP Network Solutio...
6 Jun 2026
162.214.206.32 10/10
Confidence 100%
Reports 98
ISP Unified Layer
30 May 2026

IPs with similar threat level and confidence scores.

15 Related IPs
9.4/10 Avg Threat
72% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
187.108.1.130 8/10
Confidence 72%
Reports 4,633
Location BR BR
25 May 2026
49.64.242.249 10/10
Confidence 72%
Reports 2,977
Location CN CN
26 May 2026
92.63.197.55 8/10
Confidence 72%
Reports 2,582
Location UA UA
5 Apr 2026
179.51.153.37 10/10
Confidence 72%
Reports 2,285
Location BR BR
3 Jun 2026
198.235.24.42 10/10
Confidence 72%
Reports 1,054
Location US US
8 Jun 2026
103.183.75.90 10/10
Confidence 72%
Reports 829
Location ID ID
8 Jun 2026
147.185.133.104 10/10
Confidence 72%
Reports 750
Location US US
7 Jun 2026
78.153.140.43 10/10
Confidence 72%
Reports 622
Location GB GB
8 Jun 2026
45.144.212.136 7/10
Confidence 72%
Reports 604
Location UA UA
26 Mar 2026
85.215.119.240 8/10
Confidence 72%
Reports 589
Location DE DE
6 Mar 2026
45.79.181.104 10/10
Confidence 72%
Reports 576
Location US US
5 Jun 2026
118.193.65.234 10/10
Confidence 72%
Reports 551
Location GB GB
8 Jun 2026
118.193.58.187 10/10
Confidence 72%
Reports 483
Location DE DE
19 May 2026
173.239.240.145 10/10
Confidence 72%
Reports 467
Location US US
14 Apr 2026
130.12.180.55 10/10
Confidence 72%
Reports 463
Location US US
14 Mar 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "130.12.180.70",
    "threat_level": 10,
    "confidence_score": 72,
    "total_reports": 447,
    "country_code": "US",
    "isp_name": "Omegatech LTD",
    "asn": "202412",
    "first_reported": "2026-03-08 23:25:27",
    "last_reported": "2026-03-14 04:52:24",
    "exported_at": "2026-06-09T08:06:08+02:00",
    "source": "https://reportedip.de/ip/130.12.180.70/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses