Is IP address 193.32.162.145 dangerous?

Yes, 193.32.162.145 is considered dangerous with a threat level of 10/10. It has been reported 479 times for malicious activities including . We recommend blocking this IP address.

Who owns or operates IP address 193.32.162.145?

IP address 193.32.162.145 is operated by Unmanaged Ltd (ASN 47890) and is geolocated to RO. This information is derived from public WHOIS and geolocation databases.

Should I block IP address 193.32.162.145?

Yes, blocking 193.32.162.145 is strongly recommended. With a threat level of 10/10 and 479 security reports, this IP poses significant risk. Implement firewall rules to block incoming and outgoing traffic.

How accurate is this threat assessment for 193.32.162.145?

Our threat assessment for 193.32.162.145 has a confidence score of 87%, based on 479 independent reports from multiple independent sources. Higher confidence scores indicate more reliable assessments.

IP Address

193.32.162.145

IPv4 Public

AS47890

Unmanaged Ltd

479 Reports

RO Location

Unmanaged Ltd ASN 47890

479 Reports

Honeypot Data Source

Critical Alert

IP 193.32.162.145 is a critical-risk address originating from Romania that has been flagged 479 times by automated honeypot sensors over approximately nine months, with the vast majority of activity linked to sustained SSH brute-force attacks and broader hacking reconnaissance. With a threat level of 10 out of 10 and an activity frequency rating of 8 out of 10, this IP represents one of the most consistently malicious automated threats observable in public telemetry data.

Detection data collected from 20 separate automated honeypot sensors spanning August 2025 through May 2026 documents 17 SSH-related incidents and 16 general hacking attempts, alongside a single report of the address functioning as an exploited host. Suricata intrusion-detection alerts explicitly document repeated SSH brute-force attempts, including sessions detected on expected SSH ports and stream packets bearing invalid timestamps—a signature consistent with automated password-guessing toolkits. The network is registered to Unmanaged Ltd operating AS47890 in Romania, suggesting either a deliberately unmanaged infrastructure purpose-built for malicious activity or a compromised system being weaponized by third parties.

SSH brute-force attacks systematically attempt to guess server credentials by cycling through common username-password combinations, exploiting systems that retain weak or default authentication settings. Successful compromise grants attackers persistent command-level access, enabling data exfiltration, malware deployment or incorporation of the victim machine into a botnet. The presence of exploited-host indicators suggests this IP may simultaneously serve as both an attack origin and a target of prior compromise, amplifying its danger to any exposed SSH service.

Operators running publicly accessible SSH services should block this address at the firewall level, implement fail2ban or equivalent rate-limiting rules to throttle repeated authentication failures, and enforce key-based authentication while disabling root login. Regular monitoring of authentication logs for patterns matching this source address and prompt application of security patches to SSH daemons will further reduce exposure to credential-stuffing campaigns.

More threatening than 96% of monitored IPs

Threat Categories

SSH 26

Hacking 25

Exploited Host 2

Technical Details

SSH attacks attempt to gain server access through password guessing or exploitation of SSH vulnerabilities.

Recommended Mitigations

Use key-based authentication, change default ports, implement fail2ban, and disable root login.

Behavioral Analysis

Activity Pattern: Sporadic

Irregular burst activity pattern indicates intermittent use of a compromised system.

First Observed 11. May 2026

Last Activity 25. May 2026

Recent (7 days) 0 incidents

High-Risk Network Association

This IP belongs to a network (ASN 47890) with elevated threat levels. The ISP Unmanaged Ltd hosts multiple reported malicious addresses, suggesting systemic security issues or permissive policies.

Network-wide patterns may indicate this is part of a larger malicious infrastructure.

Security Recommendations

Implement adaptive blocking rules.

Reputation Summary

Threat Level 10/10 Critical

Critical

Activity Frequency 8/10 High

Confidence Score 82% Verified

Confidence History

15. May 2026 - 25. May 2026

87% Current

Stable Trend

Date	Categories	Source	Confidence
25. May 2026	Hacking SSH	Honeypot x2	75%
25. May 2026	Hacking SSH	Honeypot x2	75%
25. May 2026	Hacking SSH	Honeypot x2	75%
25. May 2026	Hacking SSH	Honeypot x2	75%
25. May 2026	SSH Hacking	Honeypot x2	75%
24. May 2026	Hacking SSH	Honeypot x2	75%
24. May 2026	Hacking SSH	Honeypot x2	75%
24. May 2026	Hacking SSH	Honeypot x2	75%
24. May 2026	SSH Hacking	Honeypot x2	75%
24. May 2026	Exploited Host	Honeypot	75%
24. May 2026	Hacking SSH	Honeypot x2	75%
20. May 2026	SSH	Honeypot	75%
20. May 2026	SSH Hacking	Honeypot x2	75%
20. May 2026	SSH Hacking	Honeypot x2	75%
20. May 2026	Hacking	Honeypot	75%
20. May 2026	SSH	Honeypot	75%
20. May 2026	Hacking	Honeypot	75%
20. May 2026	SSH	Honeypot	75%
20. May 2026	SSH Hacking	Honeypot x2	75%
20. May 2026	SSH Hacking	Honeypot x2	75%
20. May 2026	Hacking SSH	Honeypot x2	75%
20. May 2026	Hacking SSH	Honeypot x2	75%
20. May 2026	Hacking SSH	Honeypot x2	75%
20. May 2026	Exploited Host	Honeypot	75%
20. May 2026	Hacking SSH	Honeypot x2	75%
15. May 2026	Hacking SSH	Honeypot x2	75%
15. May 2026	SSH Hacking	Honeypot x2	75%
15. May 2026	SSH Hacking	Honeypot x2	75%
15. May 2026	Hacking SSH	Honeypot x2	75%
15. May 2026	Hacking SSH	Honeypot x2	75%

Basic Information

IP Address: 193.32.162.145
IP Version: IPv4
Network Type: Public
Tor Network: No
Network Class: Class C

Geolocation

Country: RO
ASN: AS47890
ISP: Unmanaged Ltd

DNS Information

Reverse DNS: None
PTR Record: No
Connection Type: Static

Statistics

Total Reports: 479
First Reported: 17 Aug 2025
Last Reported: 25 May 2026, 01:01

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

ASN: AS47890

Organization: Unmanaged Ltd

Country:

Network Threat Assessment

8/10

This network has a high threat level with significant malicious activity reported across multiple IPs.

Network Statistics

185

Total IPs Monitored

149,970

Total Reports

810.6

Reports per IP

Network Context

This IP address belongs to Unmanaged Ltd (AS47890), which manages 185 IP addresses in our monitoring system. Out of these, 149,970 have been reported for suspicious activities, resulting in a network-wide threat level of 8/10.

Network warning: This network has elevated threat levels. Exercise caution when interacting with IPs from this ASN.

Comparative Analysis

How this IP compares to others in our threat intelligence database

96 %

Global Threat Ranking

This IP is more threatening than 96% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 199,218 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++

Total Reports 479 avg: 23 ++

Network Comparison

Compared against 190 IPs in ASN 47890

Threat Level 10/10 network avg: 7.8 +

Total Reports 479 network avg: 806 -

Network Unmanaged Ltd has overall threat level 8/10

Geographic Comparison

Compared against 627 IPs in RO

Threat Level 10/10 country avg: 6.2 ++

Total Reports 479 country avg: 259 ++

Daily report activity over the last 30 days showing patterns and peaks.

Peak Day 12 May 2026 18 reports

Daily Average 2 reports/day

Most Active Sunday 133 reports

Evolution of threat level over time based on reported categories and frequency.

Initial Threat 6/10

Current Threat 6/10

Distribution of threat categories reported over time.

Top Threat Categories

Hacking 429

SSH 375

Exploited Host 23

Activity patterns showing when this IP is most active during the day and week.

Hourly Activity

Peak activity at 11:00 with 42 reports

Weekly Activity

Geographic Threat Distribution

186,914 threat incidents tracked globally • Last 24h: 18,893 Logs

FEED

Top Threat Sources

01

United States US

38,421 20.6%
02

India IN

28,931 15.5%
03

China CN

26,004 13.9%
04

Brazil BR

10,236 5.5%
05

Germany DE

7,138 3.8%
06

Singapore SG

6,475 3.5%
07

Indonesia ID

5,522 3%
08

Russia RU

4,700 2.5%
09

Pakistan PK

4,646 2.5%
10

Netherlands NL

4,354 2.3%

+40 more countries

THREAT LEVEL

LOW MED HIGH

IPs from the same Autonomous System (AS) network provider.

20 Related IPs

9.7/10 Avg Threat

95% Avg Confidence

20 High Threat

High-risk network: Majority of related IPs are flagged

Critical Alert

Threat Categories

Technical Details

Recommended Mitigations

Behavioral Analysis

High-Risk Network Association

Security Recommendations

Basic Information

Geolocation

DNS Information

Statistics

Network Reputation

Network Identity

Network Threat Assessment

Network Statistics

Network Context

Global Threat Ranking

Top Threat Categories

Hourly Activity

Weekly Activity

FEED

Top Threat Sources

JSON Report

Firewall Rules

iptables / netfilter

UFW (Ubuntu)

Windows Firewall

Cloudflare

nginx

Apache .htaccess

PDF Report

Analyzed high-risk IP addresses

reportedIP

Parkstraße 19, 80339 München

Consultation

+49-89-215505888

Report a IP

[email protected]