194.165.16.164 Threat Intelligence and Host Information

Apr 06, 2026 ipinfopage

General

IP Address
194.165.16.164
IPv4 Address
Location
🇲🇨 Monaco, Monaco
MC
Network
AS48721
Flyservers S.A.
Threat Score
60/100
High Risk
2026-012026-02adminakiraasyncratattackAutomatedbadrequest
Attack Intelligence
MITRE ATT&CK Techniques
T1005 - Data from Local System, T1016 - System Network Configuration Discovery, T1021.002 - SMB/Windows Admin Shares, T1033 - System Owner/User Discovery, T1041 - Exfiltration Over C2 Channel, T1047 - Windows Management Instrumentation, T1057 - Process Discovery, T1059.004 - Unix Shell, T1068 - Exploitation for Privilege Escalation, T1070.004 - File Deletion, T1071.001 - Web Protocols, T1078 - Valid Accounts, T1082 - System Information Discovery, T1083 - File and Directory Discovery, T1090 - Proxy, T1105 - Ingress Tool Transfer, T1110 - Brute Force, T1133 - External Remote Services, T1555 - Credentials from Password Stores, T1595 - Active Scanning
Geographic Location
Country
Monaco
City
Monaco
Region
Unknown
Coordinates
43.7312, 7.4138
Network Information
ASN
AS48721
Organization
Flyservers S.A.
Network
AS48721 Flyservers S.A.
WHOIS Information
inetnum
194.165.16.0 - 194.165.17.255
netname
PA-FLYSERVERS
country
PA
org
ORG-FS255-RIPE
admin-c
FGNO1-RIPE
tech-c
FGNO1-RIPE
status
ASSIGNED PI
mnt-by
mnt-pa-flyservers-1
created
2021-12-15T17:18:44Z
last-modified
2021-12-15T17:18:44Z
organisation
ORG-FS255-RIPE
org-name
Flyservers S.A.
org-type
LIR
address
Panama
phone
+5078321840
reg-nr
155643789
mnt-ref
mnt-pa-flyservers-1
abuse-c
FGNO1-RIPE
role
FLYSERVERS GLOBAL NETWORK OPERATION CENTRE
abuse-mailbox
abuse@flyservers.com
nic-hdl
FGNO1-RIPE
route
194.165.16.0/24
origin
AS48721

  • Country: Monaco
  • Network:
  • Noticed: 50 times
  • Protocols Attacked: portscan
  • Countries Attacked: Australia, Brazil, Malaysia, United States of America

Malware Detected on Host

Count: 40 30c3cc49698788683887fb08a8c9663292ecd973fc13d2214aec93ea5262e139 8792974b905e79b0aa20ca4da795d3aa9b917f335108b22e2c9fe34e2f182492 1cd3bd6d3f1b0f22dd67569ae5b10a277e06fddd19edbecb1502f7398e6f3b25 f1c684c0b293e53212e0edf9429bb7adc7bf6b56373c5d2eee010ea2a94c37ad 55f040af3c22106201ae7ac1088bf4b00f2ef92a048998b59630032fdf156562 8ce7086fa9037560fe7517781c47b6767560837e6443e78962dea9083c4586c7 bcfdf42151c555fdebb25fd7882bd412c7e6291c688561610283740c55434ae4 cdd23ad25c98df9187a7e8b2792fbe0cc99d258f190b2280b54af3fee4109468 74c1db55929de92b9323a1db1cc4866f955759644bfdb43c7b8ef34a67cf7afa d8c2bbc88ca90b2bb12f2feb7be9724900e7f0b126028e7c4276fbeaf72279c8

Share on:
Disclaimer
This page contains threat intelligence information for the IPv4 address 194.165.16.164 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.