IP Address

206.123.145.50

IPv4 Public
US US
AS60223
Netiface Limited
782 Reports
This IP is on the Blacklist High confidence threat - blocking recommended
10/10 Threat
79% Confidence
782 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Top 10% High Threat
US
US Location
Netiface Limited ASN 60223
782 Reports
Honeypot Data Source

Extreme Threat

IP 206.123.145.50 is a critical-risk address operated by Netiface Limited (AS60223) that has accumulated 782 reported hacking incidents primarily consisting of unauthorized SSH access attempts, detected by automated honeypot sensors over a concentrated reporting window in March and April 2026.

The IP has generated these 782 abuse reports from honeypot sources over approximately two months, yielding a confidence score of 79% for its malicious categorization. Netiface Limited, registered in the United States, operates the AS60223 autonomous system from which this address initiates its activity. The volume of reports, averaging roughly 13 distinct incident submissions per day during the active period, indicates sustained, methodical probing rather than opportunistic scanning. All recent reports consistently classify the activity as general hacking, encompassing intrusion attempts and exploitation of exposed services.

Detection systems specifically flagged SSH session establishment on commonly expected ports, suggesting the operator is conducting reconnaissance and credential-based attacks against publicly accessible SSH daemons. The high threat score of 10/10 reflects both the volume of reports and the potential impact of successful compromise, as SSH access provides a direct pathway to command execution and lateral movement within target environments.

Organizations running publicly accessible SSH services should implement immediate defensive measures. Deploying fail2ban or similar dynamic blocking tools to automatically ban IPs after repeated failed authentication attempts substantially reduces exposure to brute-force campaigns. Enforcing key-based authentication instead of password authentication eliminates the most common attack vector these actors exploit. Additionally, implementing two-factor authentication, restricting SSH access to known IP ranges via firewall rules, and maintaining current patches across all exposed systems address both technical and procedural vulnerabilities. Continuous monitoring of authentication logs for patterns associated with this address and similar sources enables proactive threat hunting and early detection of compromise attempts.

More threatening than 94% of monitored IPs

Threat Categories

Hacking 30

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

Reputable Network

This IP is hosted on a network (ASN 60223) with generally good reputation. The ISP Netiface Limited maintains standard security practices.

The malicious activity may represent an isolated compromised system rather than systematic abuse.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 0/10 Inactive
Confidence Score 71% High Confidence

Confidence History

5. Apr 2026 - 6. Apr 2026
79% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
10 of 782 shown

Technical Details

Basic Information

IP Address
206.123.145.50
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class C

Geolocation

Country
US US
ASN
AS60223
ISP
Netiface Limited

DNS Information

Reverse DNS
None
PTR Record
No
Connection Type
Static

Statistics

Total Reports
782
First Reported
28 Mar 2026
Last Reported
6 Apr 2026, 02:02

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS60223
Netiface Limited
NL NL

Network Threat Assessment

3/10
This network appears to be relatively clean with very low threat indicators.

Network Statistics

150
Total IPs Monitored
22,137
Total Reports
147.6
Reports per IP

Network Context

This IP address belongs to Netiface Limited (AS60223), which manages 150 IP addresses in our monitoring system. Out of these, 22,137 have been reported for suspicious activities, resulting in a network-wide threat level of 3/10.

Network status: This network appears to be well-maintained with low threat indicators.

Comparative Analysis

How this IP compares to others in our threat intelligence database

94 %

Global Threat Ranking

This IP is more threatening than 94% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 199,613 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 782 avg: 23 ++

Network Comparison

Compared against 165 IPs in ASN 60223

Threat Level 10/10 network avg: 7.6 +
Total Reports 782 network avg: 140 ++
Network Netiface Limited has overall threat level 3/10

Geographic Comparison

Compared against 38,468 IPs in US

Threat Level 10/10 country avg: 5.9 ++
Total Reports 782 country avg: 41 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,273 threat incidents tracked globally • Last 24h: 18,965 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US THIS IP
    38,457 20.5%
  2. 02
    IN
    India IN
    29,090 15.5%
  3. 03
    CN
    China CN
    26,027 13.9%
  4. 04
    BR
    Brazil BR
    10,256 5.5%
  5. 05
    DE
    Germany DE
    7,143 3.8%
  6. 06
    SG
    Singapore SG
    6,476 3.5%
  7. 07
    ID
    Indonesia ID
    5,543 3%
  8. 08
    RU
    Russia RU
    4,703 2.5%
  9. 09
    PK
    Pakistan PK
    4,670 2.5%
  10. 10
    NL
    Netherlands NL
    4,357 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same Autonomous System (AS) network provider.

20 Related IPs
8.9/10 Avg Threat
95% Avg Confidence
20 High Threat
High-risk network: Majority of related IPs are flagged
185.218.84.20 8/10
Confidence 97%
Reports 111
Location US US
19 Jan 2026
185.218.84.21 8/10
Confidence 97%
Reports 110
Location US US
19 Jan 2026
185.218.84.24 8/10
Confidence 97%
Reports 110
Location US US
19 Jan 2026
185.218.84.19 8/10
Confidence 97%
Reports 110
Location US US
19 Jan 2026
185.218.84.22 8/10
Confidence 97%
Reports 109
Location US US
19 Jan 2026
185.218.84.17 8/10
Confidence 97%
Reports 108
Location US US
19 Jan 2026
185.218.84.15 8/10
Confidence 97%
Reports 107
Location US US
19 Jan 2026
185.218.84.30 8/10
Confidence 97%
Reports 105
Location US US
19 Jan 2026
185.218.84.18 8/10
Confidence 97%
Reports 104
Location US US
19 Jan 2026
185.218.84.16 8/10
Confidence 97%
Reports 101
Location US US
19 Jan 2026
185.242.3.149 10/10
Confidence 94%
Reports 46
Location NL NL
5 Jun 2026
185.242.3.71 10/10
Confidence 94%
Reports 37
Location NL NL
26 May 2026
185.242.3.188 10/10
Confidence 94%
Reports 34
Location NL NL
1 Jun 2026
185.242.3.113 10/10
Confidence 94%
Reports 26
Location NL NL
1 Jun 2026
185.242.3.173 10/10
Confidence 94%
Reports 22
Location NL NL
9 Jun 2026
23.132.164.10 10/10
Confidence 94%
Reports 18
Location GB GB
21 Apr 2026
185.242.3.211 10/10
Confidence 91%
Reports 33
Location NL NL
4 Jun 2026
185.242.3.195 10/10
Confidence 90%
Reports 25
Location NL NL
28 May 2026
185.242.3.100 7/10
Confidence 88%
Reports 791
Location NL NL
13 May 2026
185.242.3.212 10/10
Confidence 88%
Reports 30
Location NL NL
3 Jun 2026

IPs from the same subnet range, likely same network segment.

20 Related IPs
10/10 Avg Threat
79% Avg Confidence
20 High Threat
High-risk network: Majority of related IPs are flagged
206.123.145.56 10/10
Confidence 79%
Reports 785
Location US US
6 Apr 2026
206.123.145.78 10/10
Confidence 79%
Reports 785
Location US US
6 Apr 2026
206.123.145.57 10/10
Confidence 79%
Reports 784
Location US US
6 Apr 2026
206.123.145.46 10/10
Confidence 79%
Reports 784
Location US US
6 Apr 2026
206.123.145.76 10/10
Confidence 79%
Reports 784
Location US US
6 Apr 2026
206.123.145.54 10/10
Confidence 79%
Reports 783
Location US US
6 Apr 2026
206.123.145.52 10/10
Confidence 79%
Reports 783
Location US US
6 Apr 2026
206.123.145.72 10/10
Confidence 79%
Reports 783
Location US US
6 Apr 2026
206.123.145.69 10/10
Confidence 79%
Reports 783
Location US US
6 Apr 2026
206.123.145.75 10/10
Confidence 79%
Reports 783
Location US US
6 Apr 2026
206.123.145.20 10/10
Confidence 79%
Reports 782
Location US US
6 Apr 2026
206.123.145.49 10/10
Confidence 79%
Reports 782
Location US US
6 Apr 2026
206.123.145.48 10/10
Confidence 79%
Reports 782
Location US US
6 Apr 2026
206.123.145.71 10/10
Confidence 79%
Reports 782
Location US US
6 Apr 2026
206.123.145.70 10/10
Confidence 79%
Reports 782
Location US US
6 Apr 2026
206.123.145.51 10/10
Confidence 79%
Reports 782
Location US US
6 Apr 2026
206.123.145.79 10/10
Confidence 79%
Reports 782
Location US US
6 Apr 2026
206.123.145.55 10/10
Confidence 79%
Reports 781
Location US US
6 Apr 2026
206.123.145.74 10/10
Confidence 79%
Reports 781
Location US US
6 Apr 2026
206.123.145.53 10/10
Confidence 79%
Reports 781
Location US US
6 Apr 2026

IPs from the same country with similar threat profiles.

15 Related IPs
8.3/10 Avg Threat
100% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
208.109.188.137 8/10
Confidence 100%
Reports 514
ISP GO-DADDY-COM-LLC
9 Jun 2026
50.6.7.129 8/10
Confidence 100%
Reports 447
ISP ORACLE-BMC-31898
22 May 2026
72.167.150.128 8/10
Confidence 100%
Reports 429
ISP GO-DADDY-COM-LLC
27 May 2026
50.6.229.148 8/10
Confidence 100%
Reports 346
ISP ORACLE-BMC-31898
9 May 2026
87.121.84.30 8/10
Confidence 100%
Reports 295
ISP Vpsvault.host Ltd
20 Apr 2026
50.6.226.221 10/10
Confidence 100%
Reports 223
ISP ORACLE-BMC-31898
2 Mar 2026
31.57.184.107 8/10
Confidence 100%
Reports 202
ISP Netiface LLC
3 Jun 2026
64.31.25.250 8/10
Confidence 100%
Reports 176
ISP Limestone Netwo...
8 Jun 2026
74.206.180.196 8/10
Confidence 100%
Reports 143
ISP MOJOHOST
4 Jun 2026
35.226.7.126 8/10
Confidence 100%
Reports 131
ISP Google LLC
18 May 2026
147.135.37.185 8/10
Confidence 100%
Reports 131
ISP OVH SAS
14 May 2026
162.241.152.21 8/10
Confidence 100%
Reports 126
ISP Network Solutio...
8 Jun 2026
38.95.35.74 8/10
Confidence 100%
Reports 112
ISP Limestone Netwo...
2 Jun 2026
50.6.169.131 8/10
Confidence 100%
Reports 106
ISP Network Solutio...
6 Jun 2026
162.214.206.32 10/10
Confidence 100%
Reports 98
ISP Unified Layer
30 May 2026

IPs with similar threat level and confidence scores.

15 Related IPs
9.6/10 Avg Threat
79% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
137.184.190.194 8/10
Confidence 79%
Reports 2,871
Location US US
9 Jun 2026
137.184.190.205 8/10
Confidence 79%
Reports 2,783
Location US US
9 Jun 2026
50.212.116.145 10/10
Confidence 79%
Reports 1,598
Location US US
15 Apr 2026
159.65.151.71 10/10
Confidence 79%
Reports 1,107
Location IN IN
8 Apr 2026
104.194.158.80 10/10
Confidence 79%
Reports 927
Location DE DE
22 Dec 2025
79.141.172.211 10/10
Confidence 79%
Reports 861
Location US US
1 Feb 2026
5.78.58.246 10/10
Confidence 79%
Reports 846
Location US US
12 Dec 2025
144.172.106.223 10/10
Confidence 79%
Reports 844
Location US US
15 Dec 2025
64.62.156.80 8/10
Confidence 79%
Reports 834
Location US US
9 Jun 2026
206.123.145.56 10/10
Confidence 79%
Reports 785
Location US US
6 Apr 2026
206.123.145.78 10/10
Confidence 79%
Reports 785
Location US US
6 Apr 2026
206.123.145.57 10/10
Confidence 79%
Reports 784
Location US US
6 Apr 2026
206.123.145.46 10/10
Confidence 79%
Reports 784
Location US US
6 Apr 2026
206.123.145.76 10/10
Confidence 79%
Reports 784
Location US US
6 Apr 2026
206.123.145.54 10/10
Confidence 79%
Reports 783
Location US US
6 Apr 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "206.123.145.50",
    "threat_level": 10,
    "confidence_score": 79,
    "total_reports": 782,
    "country_code": "US",
    "isp_name": "Netiface Limited",
    "asn": "60223",
    "first_reported": "2026-03-28 19:08:03",
    "last_reported": "2026-04-06 02:02:22",
    "exported_at": "2026-06-09T10:09:44+02:00",
    "source": "https://reportedip.de/ip/206.123.145.50/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses