IP Address

207.90.244.23

IPv4 Public
US US
AS174
COGENT-174
684 Reports
This IP is under Observation Suspicious activity detected - monitor closely
8/10 Threat
67% Confidence
684 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Above Average Risk
US
US Location
COGENT-174 ASN 174
684 Reports
Honeypot Data Source

Significant Threat

IP address 207.90.244.23 is a high-risk address associated with persistent hacking activity, originating from Cogent Communications infrastructure in the United States. With 684 abuse reports logged against it and a threat level of 8/10, this IP has been reliably flagged by automated honeypot sensors over a concentrated detection window spanning September through November 2025. The volume of reports far exceeds typical background noise levels seen on internet-facing systems, placing it well within the upper percentile of reported malicious actors for its geographic region and network operator.

The detection data reveals a consistent pattern of intrusion-oriented activity attributed entirely to the hacking category, with 20 recent reports corroborating this classification across multiple sensor sources. The network operator, Cogent-174 (AS174), is a major tier-one internet service provider whose IP space is frequently repurposed by threat actors due to the sheer volume of customers and the difficulty in coordinating takedowns across such large address allocations. The activity frequency metric of 0/10, combined with a September–November 2025 reporting window, suggests this IP was highly active during that period but has since quieted—though the 684 cumulative reports indicate a sustained campaign rather than a brief probe.

The hacking classification encompasses systematic intrusion attempts, vulnerability exploitation, and unauthorized access scanning directed at exposed services. For any organisation running open SSH, RDP, web interfaces, or database ports, such an IP represents a direct pathway to compromise if left unguarded. The real-world risk is not theoretical: automated exploitation toolkits routinely cycle through dictionaries of weak credentials and known CVEs against every reachable host, and even a single successful foothold can enable lateral movement, data exfiltration, or ransomware deployment within minutes. The 67% confidence score indicates some detection ambiguity, likely due to the use of common scanning tools that overlap with legitimate penetration-testing signatures, but the report volume anchors the assessment firmly in hostile territory.

More threatening than 79% of monitored IPs

Threat Categories

Hacking 30

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

Moderate Network Risk

The network hosting this IP (ASN 174, operated by COGENT-174) shows moderate threat indicators. Some concerning activity has been detected from neighboring addresses.

Consider the network context when assessing this individual IP.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 8/10 High
Critical
Activity Frequency 0/10 Inactive
Confidence Score 59% High Confidence

Confidence History

18. Nov 2025 - 19. Nov 2025
67% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
10 of 684 shown

Technical Details

Basic Information

IP Address
207.90.244.23
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class C

Geolocation

Country
US US
ASN
AS174
ISP
COGENT-174

DNS Information

Reverse DNS
None
PTR Record
No
Connection Type
Static

Statistics

Total Reports
684
First Reported
9 Sep 2025
Last Reported
19 Nov 2025, 04:46

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS174
Cogent Communications, LLC
CA CA

Network Threat Assessment

4/10
This network has low threat indicators with minimal suspicious activity.

Network Statistics

127
Total IPs Monitored
156,835
Total Reports
1234.9
Reports per IP

Network Context

This IP address belongs to Cogent Communications, LLC (AS174), which manages 127 IP addresses in our monitoring system. Out of these, 156,835 have been reported for suspicious activities, resulting in a network-wide threat level of 4/10.

Network notice: This network shows some suspicious activity patterns. Monitor interactions with IPs from this ASN.

Comparative Analysis

How this IP compares to others in our threat intelligence database

79 %

Global Threat Ranking

This IP is more threatening than 79% of all IPs in our database.

High Threat Percentile

Global Comparison

Compared against 199,213 reported IPs worldwide

Threat Level 8/10 avg: 5.3 ++
Total Reports 684 avg: 23 ++

Network Comparison

Compared against 171 IPs in ASN 174

Threat Level 8/10 network avg: 5.8 +
Total Reports 684 network avg: 1,027 -
Network COGENT-174 has overall threat level 4/10

Geographic Comparison

Compared against 38,421 IPs in US

Threat Level 8/10 country avg: 5.9 +
Total Reports 684 country avg: 41 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

186,914 threat incidents tracked globally • Last 24h: 18,893 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US THIS IP
    38,421 20.6%
  2. 02
    IN
    India IN
    28,931 15.5%
  3. 03
    CN
    China CN
    26,004 13.9%
  4. 04
    BR
    Brazil BR
    10,236 5.5%
  5. 05
    DE
    Germany DE
    7,138 3.8%
  6. 06
    SG
    Singapore SG
    6,475 3.5%
  7. 07
    ID
    Indonesia ID
    5,522 3%
  8. 08
    RU
    Russia RU
    4,700 2.5%
  9. 09
    PK
    Pakistan PK
    4,646 2.5%
  10. 10
    NL
    Netherlands NL
    4,354 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same Autonomous System (AS) network provider.

20 Related IPs
8.7/10 Avg Threat
89% Avg Confidence
20 High Threat
High-risk network: Majority of related IPs are flagged
38.99.81.38 8/10
Confidence 100%
Reports 23
Location US US
23 May 2026
207.90.244.19 8/10
Confidence 98%
Reports 452
Location US US
8 Jun 2026
207.90.244.18 8/10
Confidence 96%
Reports 461
Location US US
9 Jun 2026
38.96.178.220 10/10
Confidence 94%
Reports 53
Location US US
9 Jun 2026
38.96.178.216 10/10
Confidence 94%
Reports 37
Location US US
8 Jun 2026
38.95.100.220 10/10
Confidence 94%
Reports 28
Location US US
21 Apr 2026
38.76.31.219 10/10
Confidence 94%
Reports 19
Location US US
2 Feb 2026
207.90.244.12 10/10
Confidence 93%
Reports 542
Location US US
8 Jun 2026
207.90.244.6 10/10
Confidence 93%
Reports 335
Location US US
9 Jun 2026
207.90.244.4 10/10
Confidence 91%
Reports 369
Location US US
8 Jun 2026
207.90.244.17 8/10
Confidence 88%
Reports 641
Location US US
9 Jun 2026
207.90.244.27 8/10
Confidence 87%
Reports 9,886
Location US US
9 Jun 2026
207.90.244.21 8/10
Confidence 83%
Reports 12,269
Location US US
9 Jun 2026
207.90.244.22 8/10
Confidence 83%
Reports 12,089
Location US US
9 Jun 2026
2.59.22.234 8/10
Confidence 83%
Reports 265
Location AT AT
26 May 2026
207.90.244.3 8/10
Confidence 82%
Reports 13,308
Location US US
9 Jun 2026
207.90.244.2 8/10
Confidence 82%
Reports 13,199
Location US US
9 Jun 2026
207.90.244.25 8/10
Confidence 81%
Reports 14,035
Location US US
6 Jun 2026
207.90.244.13 8/10
Confidence 80%
Reports 16,201
Location US US
9 Jun 2026
207.90.244.5 8/10
Confidence 78%
Reports 18,175
Location US US
9 Jun 2026

IPs from the same subnet range, likely same network segment.

20 Related IPs
8.6/10 Avg Threat
81% Avg Confidence
20 High Threat
High-risk network: Majority of related IPs are flagged
207.90.244.19 8/10
Confidence 98%
Reports 452
Location US US
8 Jun 2026
207.90.244.18 8/10
Confidence 96%
Reports 461
Location US US
9 Jun 2026
207.90.244.12 10/10
Confidence 93%
Reports 542
Location US US
8 Jun 2026
207.90.244.6 10/10
Confidence 93%
Reports 335
Location US US
9 Jun 2026
207.90.244.4 10/10
Confidence 91%
Reports 369
Location US US
8 Jun 2026
207.90.244.17 8/10
Confidence 88%
Reports 641
Location US US
9 Jun 2026
207.90.244.27 8/10
Confidence 87%
Reports 9,886
Location US US
9 Jun 2026
207.90.244.21 8/10
Confidence 83%
Reports 12,269
Location US US
9 Jun 2026
207.90.244.22 8/10
Confidence 83%
Reports 12,089
Location US US
9 Jun 2026
207.90.244.3 8/10
Confidence 82%
Reports 13,308
Location US US
9 Jun 2026
207.90.244.2 8/10
Confidence 82%
Reports 13,199
Location US US
9 Jun 2026
207.90.244.25 8/10
Confidence 81%
Reports 14,035
Location US US
6 Jun 2026
207.90.244.13 8/10
Confidence 80%
Reports 16,201
Location US US
9 Jun 2026
207.90.244.5 8/10
Confidence 78%
Reports 18,175
Location US US
9 Jun 2026
207.90.244.20 8/10
Confidence 77%
Reports 20,134
Location US US
9 Jun 2026
207.90.244.10 8/10
Confidence 76%
Reports 21,403
Location US US
9 Jun 2026
207.90.244.26 8/10
Confidence 70%
Reports 17,657
Location US US
9 Jun 2026
207.90.244.16 10/10
Confidence 62%
Reports 269
Location US US
9 Oct 2025
207.90.244.14 10/10
Confidence 62%
Reports 9
Location US US
2 Jun 2026
207.90.244.15 10/10
Confidence 61%
Reports 18
Location US US
15 Sep 2025

IPs from the same country with similar threat profiles.

15 Related IPs
8.3/10 Avg Threat
100% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
208.109.188.137 8/10
Confidence 100%
Reports 513
ISP GO-DADDY-COM-LLC
9 Jun 2026
50.6.7.129 8/10
Confidence 100%
Reports 447
ISP ORACLE-BMC-31898
22 May 2026
72.167.150.128 8/10
Confidence 100%
Reports 429
ISP GO-DADDY-COM-LLC
27 May 2026
50.6.229.148 8/10
Confidence 100%
Reports 346
ISP ORACLE-BMC-31898
9 May 2026
87.121.84.30 8/10
Confidence 100%
Reports 295
ISP Vpsvault.host Ltd
20 Apr 2026
50.6.226.221 10/10
Confidence 100%
Reports 223
ISP ORACLE-BMC-31898
2 Mar 2026
31.57.184.107 8/10
Confidence 100%
Reports 202
ISP Netiface LLC
3 Jun 2026
64.31.25.250 8/10
Confidence 100%
Reports 176
ISP Limestone Netwo...
8 Jun 2026
74.206.180.196 8/10
Confidence 100%
Reports 143
ISP MOJOHOST
4 Jun 2026
35.226.7.126 8/10
Confidence 100%
Reports 131
ISP Google LLC
18 May 2026
147.135.37.185 8/10
Confidence 100%
Reports 131
ISP OVH SAS
14 May 2026
162.241.152.21 8/10
Confidence 100%
Reports 126
ISP Network Solutio...
8 Jun 2026
38.95.35.74 8/10
Confidence 100%
Reports 112
ISP Limestone Netwo...
2 Jun 2026
50.6.169.131 8/10
Confidence 100%
Reports 106
ISP Network Solutio...
6 Jun 2026
162.214.206.32 10/10
Confidence 100%
Reports 98
ISP Unified Layer
30 May 2026

IPs with similar threat level and confidence scores.

15 Related IPs
9.5/10 Avg Threat
67% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
119.96.159.237 10/10
Confidence 67%
Reports 1,904
Location CN CN
26 May 2026
152.32.135.214 10/10
Confidence 67%
Reports 1,466
Location HK HK
9 Jun 2026
180.153.91.15 10/10
Confidence 67%
Reports 1,424
Location CN CN
9 Jun 2026
66.132.153.50 10/10
Confidence 67%
Reports 1,350
Location US US
23 Mar 2026
77.83.39.249 7/10
Confidence 67%
Reports 1,106
Location UA UA
11 Mar 2026
167.99.141.235 8/10
Confidence 67%
Reports 1,100
Location DE DE
21 Mar 2026
130.12.180.80 10/10
Confidence 67%
Reports 976
Location GB GB
14 Mar 2026
45.135.232.177 8/10
Confidence 67%
Reports 876
Location RU RU
16 Nov 2025
120.48.175.69 10/10
Confidence 67%
Reports 857
Location CN CN
6 Jun 2026
103.105.66.26 10/10
Confidence 67%
Reports 726
Location ID ID
26 Oct 2025
23.94.38.226 10/10
Confidence 67%
Reports 717
Location US US
26 Oct 2025
115.247.46.121 10/10
Confidence 67%
Reports 666
Location IN IN
28 Oct 2025
204.76.203.18 10/10
Confidence 67%
Reports 591
Location NL NL
23 Mar 2026
136.114.224.44 10/10
Confidence 67%
Reports 571
Location US US
27 Oct 2025
92.118.39.84 10/10
Confidence 67%
Reports 545
Location US US
19 Mar 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "207.90.244.23",
    "threat_level": 8,
    "confidence_score": 67,
    "total_reports": 684,
    "country_code": "US",
    "isp_name": "COGENT-174",
    "asn": "174",
    "first_reported": "2025-09-09 05:33:22",
    "last_reported": "2025-11-19 04:46:15",
    "exported_at": "2026-06-09T06:58:23+02:00",
    "source": "https://reportedip.de/ip/207.90.244.23/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses