What ASN owns 194.165.16.2?

194.165.16.2 is routed via AS61339, owned by Shadowserver Foundation.

Has 194.165.16.2 hosted malware?

No, there are no known malware associations for IP address 194.165.16.2.

Legal Disclaimer:

This platform is for authorized security research and educational purposes ONLY. Scanning assets without explicit permission is illegal.

Verified Crawler / Security Research

Threat Entity Node

194.165.16.2

AS61339 — Shadowserver Foundation

Threat Score

5/100

Abuse Confidence

🛡️ E-E-A-T Credibility & Fact Verification

Verdict:Active Scanner Threat

Verified By:ReconShield Threat Research Team

Methodology:Multi-Sensor Telemetry Consensus

Last Scanned:6/2/2026

Editorial Verification Notice: This node profile was compiled in compliance with ReconShield's defensive research workflow. Threat reputation scoring is derived from multi-sensor telemetry consensus. Verified Anycast resolvers and search engine scrapers are whitelisted to prevent false positive security blocks.

✅ VERIFIED SERVICE CLASSIFICATION

This IP address is verified as safe public infrastructure. It is not associated with malware or unsolicited scanning activity. We recommend excluding this network node from defensive blacklists to prevent service interruption.

Reference Checks:abuseipdb.com/check/194.165.16.2 www.spamhaus.org cisa.gov

// AI Intelligence Summary

ReconShield Intelligence profiles 194.165.16.2 as a verified security scanner operated by the Shadowserver Foundation. Shadowserver is a non-profit organization that passively audits public ports to raise security awareness. This scan traffic is benign and authorized for global internet research.

// Infrastructure Fingerprint

IP Address: 194.165.16.2
Reverse DNS: scanner.shadowserver.org
ASN: AS61339
Organization: Shadowserver Foundation
Geolocation: United Kingdom (GB)
Infra Type: Non-Profit Security Research Scanner
Proxy / VPN: None
Last Activity: 6/2/2026, 8:23:32 PM

// Threat Analysis & Telemetry

Verified Public Infrastructure

This node has been vetted by the ReconShield Infrastructure Intelligence Unit. Analysis confirms its role as a core public internet utility rather than a malicious platform. No scanning anomalies have been reported in our telemetry records.

Open Ports & Services

Port 80
Port 443

Threat Signatures

No Threat Signatures Associated

// Activity Timeline

2014-08-12

Added to Shadowserver research subnets

2026-05-30

Scan verification matches authorized security intelligence telemetry

// FREQUENTLY ASKED QUESTIONS

Is 194.165.16.2 malicious?

Based on ReconShield intelligence, 194.165.16.2 is classified as verified crawler / security research with a threat score of 5/100.

Who hosts 194.165.16.2?

This IP is part of AS61339 and is allocated to Shadowserver Foundation, operating primarily out of United Kingdom.

Are there known CVEs associated with this IP?

No, there are no known CVE exploitation attempts associated with this IP address in our database.