185.216.145.189

Basic Info

City: London

Region: England

Country: United Kingdom

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '185.216.145.160 - 185.216.145.191'

% Abuse contact for '185.216.145.160 - 185.216.145.191' is 'abuse@infrawat.ch'

inetnum:        185.216.145.160 - 185.216.145.191
netname:        INFRAWATCH
remarks:        -----------------------------------------------------
remarks:        Real time internet intelligence data
remarks:        infrawat.ch
remarks:        -----------------------------------------------------
country:        GB
geoloc:         51.494840911758295 -0.018682268947961784
org:            ORG-IL948-RIPE
admin-c:        LD7399-RIPE
tech-c:         LD7399-RIPE
status:         ASSIGNED PA
created:        2026-04-26T03:19:11Z
last-modified:  2026-04-26T03:19:11Z
source:         RIPE
mnt-by:         HYDRA-MNT

organisation:   ORG-IL948-RIPE
org-name:       Infrawatch Limited
org-type:       OTHER
address:        128 City Road
address:        London
address:        EC1V 2NX
country:        GB
abuse-c:        ACRO64026-RIPE
mnt-ref:        HYDRA-MNT
created:        2026-03-26T04:32:13Z
last-modified:  2026-04-27T01:46:41Z
source:         RIPE # Filtered
mnt-by:         HYDRA-MNT

person:         Lloyd Davies
address:        128 City Road
address:        London
address:        EC1V 2NX
address:        United Kingdom
phone:          +448000803330
nic-hdl:        LD7399-RIPE
created:        2026-03-26T04:34:31Z
last-modified:  2026-04-27T01:47:59Z
source:         RIPE # Filtered
mnt-by:         HYDRA-MNT

% Information related to '185.216.144.0/22AS25369'

route:          185.216.144.0/22
origin:         AS25369
mnt-by:         HYDRA-MNT
created:        2021-05-19T19:14:21Z
last-modified:  2021-05-19T19:14:21Z
source:         RIPE

% This query was served by the RIPE Database Query Service version 1.122.1 (BUSA)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 185.216.145.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59467
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;185.216.145.189.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026053101 1800 900 604800 86400

;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 01 13:31:19 CST 2026
;; MSG SIZE  rcvd: 108

Host info

189.145.216.185.in-addr.arpa domain name pointer 185-216-145-189.infrawat.ch.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
189.145.216.185.in-addr.arpa	name = 185-216-145-189.infrawat.ch.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
162.243.192.108	attack	(sshd) Failed SSH login from 162.243.192.108 (US/United States/-): 5 in the last 3600 secs	2020-09-17 05:31:26
122.51.186.86	attack	Sep 16 19:00:23 hell sshd[28909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.186.86 Sep 16 19:00:25 hell sshd[28909]: Failed password for invalid user admin from 122.51.186.86 port 50974 ssh2 ...	2020-09-17 05:46:37
171.25.193.20	attackbotsspam	$lgm	2020-09-17 05:41:13
190.199.78.55	attack	Unauthorized connection attempt from IP address 190.199.78.55 on Port 445(SMB)	2020-09-17 05:24:16
181.120.204.164	attackbotsspam	Sep 16 19:00:44 sip sshd[28867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.120.204.164 Sep 16 19:00:45 sip sshd[28869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.120.204.164 Sep 16 19:00:46 sip sshd[28867]: Failed password for invalid user osmc from 181.120.204.164 port 42390 ssh2	2020-09-17 05:29:43
156.209.50.0	attack	Unauthorized connection attempt from IP address 156.209.50.0 on Port 445(SMB)	2020-09-17 05:21:07
218.60.41.136	attackspam	fail2ban detected bruce force on ssh iptables	2020-09-17 05:16:56
82.112.62.181	attackbotsspam	Auto Detect Rule! proto TCP (SYN), 82.112.62.181:22767->gjan.info:23, len 40	2020-09-17 05:35:12
192.241.228.251	attack	Sep 16 22:17:10 lunarastro sshd[22640]: Failed password for root from 192.241.228.251 port 40638 ssh2	2020-09-17 05:38:23
93.115.1.195	attack	Sep 16 22:46:56 nextcloud sshd\[20137\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.115.1.195 user=root Sep 16 22:46:58 nextcloud sshd\[20137\]: Failed password for root from 93.115.1.195 port 57952 ssh2 Sep 16 22:53:14 nextcloud sshd\[26574\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.115.1.195 user=root	2020-09-17 05:23:28
140.206.242.34	attackbotsspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-16T16:57:48Z and 2020-09-16T17:07:30Z	2020-09-17 05:41:38
112.85.42.173	attackbots	$f2bV_matches	2020-09-17 05:53:36
41.230.68.191	attack	Auto Detect Rule! proto TCP (SYN), 41.230.68.191:1026->gjan.info:23, len 40	2020-09-17 05:45:00
171.25.193.25	attack	Auto Fail2Ban report, multiple SSH login attempts.	2020-09-17 05:24:55
103.76.136.250	attack	Port Scan ...	2020-09-17 05:27:07

Recently Reported IPs

193.176.29.19	195.206.182.212	188.240.59.54	188.240.59.41
121.41.167.60	44.243.227.45	2606:4700:10::6816:3114	110.78.150.140
18.97.26.80	164.92.162.29	34.118.38.189	2606:4700:10::6816:4541
2606:4700:10::ac43:2734	2606:4700:20::681a:600	120.227.39.12	213.166.84.55
213.166.84.51	188.240.59.34	182.133.4.37	115.233.196.53