5.196.139.131 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 5.196.139.131 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 13/100

Host and Network Information

• Tags: tsec

• View other sources: Spamhaus VirusTotal

• Country: France
• Network:
• Noticed: 4 times
• Protocols Attacked: SSH
• Passive DNS Results: gruppogeromin.com www.landing.gruppogeromin.com www.gruppogeromin.com landing.gruppogeromin.com test.gruppogeromin.com www.test.gruppogeromin.com www.mdmfisioterapia.it mdmfisioterapia.it www.thinking-app.com thinking-app.it www.thinking-app.it thinking-app.com studio-stra.com www.granzottocostruzioni.it www.urbanradio.it urbanradio.it www.sibox.it sibox.it www.elisabethmuller.it elisabethmuller.it www.elisabethmuller.com movefranco.com www.movefranco.com www.tinet.it www.jdesignoffice.com jdesignoffice.com jdesignoffice.it www.jdesignoffice.it www.jdesign.it jdesign.it scar.cloud www.scar.cloud hotelolanda.com www.hotelolanda.com blog.metaline.it www.blog.metaline.it come-diventare.eu www.come-diventare.eu www.consorziocavo.it consorziocavo.it whm5.metaline.it rawdiamond.gg www.rawdiamond.gg www.matrimonioplannit.andreamarchettieventi.com www.matrimonioplannercom.andreamarchettieventi.com matrimonioplannercom.andreamarchettieventi.com matrimonioplannit.andreamarchettieventi.com metaline.it learn.metaline.it www.learn.metaline.it latrevigiana.it elisabethmuller.com www.landing.metaline.it landing.metaline.it www.supportmystreamer.com supportmystreamer.com 2tautomazioni.com tinet.it clm-tv.it worldline.info geromin.it archimedegruden.us archimedegruden.com podartis.com www.podartis.com www.fisioscience.it archimedegruden.it granzottocostruzioni.it trevisomade.com luvitrans.it comtatto.com www.academy.yogaformazione.it emozionidarredo.com www.andreetta.com andreetta.com mailmatics.net furlanitaly.it www.moodlemontale.it moodlemontale.it dermasilk.alpretec.com antiacaro.alpretec.com www.antiacaro.alpretec.com www.costruireunsito.it www.persempreinsieme.it www.riconquistaunaex.com sedurreunuomo.com www.sedurreunuomo.com www.comericonquistareunuomo.com www.domenicoiapello.com domenicoiapello.com www.lucen.biz www.microairmask.it microairmask.it riccardobelletti.it www.riccardobelletti.it costruireunsito.com www.costruireunsito.com www.idmarinesrl.it idmarinesrl.it idmarinesrl.com www.idmarinesrl.com academy.yogaformazione.it www.yogaformazione.it cpcalendars.fisioscience.it fisioscience.it sonstucchi.it www.sonstucchi.it iannellolia.it www.iannellolia.it cpcontacts.yogaformazione.it cpcalendars.yogaformazione.it yogaformazione.it wirecobots.com www.wirecobots.com www.boxone.it boxone.it www.pixel.posizionamentomotoridiricerca.com pixel.posizionamentomotoridiricerca.com spiderads.it www.spiderads.it matrimonioplanner.it www.padovantendaggi.it padovantendaggi.it www.venetocasa.it www.dermasilk.it dermasilk.it riconquistaunaex.com www.studiomed.shop www.matrimonioplanner.it www.francomario.com francomario.com www.winform.it winform.it studiomed.shop test.metaline.it metaline.us www.metaline.us radiospeaker.it www.winformweb.com winformweb.com sagomm.it www.alpretec.com shop.andreamarchettieventi.com www.shop.andreamarchettieventi.com www.matrimonioplanner.com www.winform.shop winform.shop dermasilkintimo.it www.dermasilkintimo.it www.alpretec.it alpretec.it studiodefaveri.net www.samogintrans.it samogintrans.it www.metaline.org metaline.org www.orgmetaline.metaline.it orgmetaline.metaline.it cometalsrl.net www.cometalsrl.net sapdiffusione.it www.sapdiffusione.it dermasilkintimo.com www.dermasilkintimo.com www.dermasilk.com dermasilk.com www.gebogenemglas.de gebogenemglas.de metaline.info www.metaline.info infometaline.metaline.it www.infometaline.metaline.it comericonquistareunuomo.com autoscuoleburan.it www.autoscuoleburan.it winformweb.it www.winformweb.it sfera-vetricurvi.it www.sfera-vetricurvi.it dermasilk-hs.com www.dermasilk-hs.com revisionipuntoverde.com www.revisionipuntoverde.com pagineblu.metaline.it assistenza.metaline.it www.pagineblu.metaline.it www.albertocarlo.com albertocarlo.com www.sagomm.it www.studiodefaveri.net persempreinsieme.it www.francomario.it venetocasa.it www.andreamarchettieventi.com matrimonioplanner.com andreamarchettieventi.com francomario.it areariservata.holidaydream.club rtspedizioni.it www.pongho.it pongho.it www.pongho.metaline.it pongho.metaline.it mabosnc.com www.mabosnc.com www.mobyitaly.it mobyitaly.it www.rtspedizioni.it www.carontechnology.com carontechnology.com www.qjob.it www.comedimagrire.giuseppenotarnicola.com www.radiospeaker.it qjob.it archimedegruden.cn alpretec.com impresaedilemattiuzzo.it costruireunsito.it

Malware Detected on Host

Count: 1 7b60cd957414bb3e3dc4ac5b0ce5a571a62cf92236770aa8c5d3135bc47811c3

Map

Whois Information

• inetnum: 5.196.0.0 - 5.196.255.255
• netname: FR-OVH-20120823
• country: FR
• org: ORG-OS3-RIPE
• admin-c: OK217-RIPE
• tech-c: OTC2-RIPE
• status: ALLOCATED PA
• mnt-by: RIPE-NCC-HM-MNT
• mnt-by: OVH-MNT
• mnt-routes: OVH-MNT
• mnt-domains: OVH-MNT
• created: 2014-08-15T12:25:19Z
• last-modified: 2017-01-11T08:00:11Z
• organisation: ORG-OS3-RIPE
• org-name: OVH SAS
• country: FR
• org-type: LIR
• address: 2 rue Kellermann
• address: 59100
• address: Roubaix
• address: FRANCE
• phone: +33972101007
• admin-c: OTC2-RIPE
• admin-c: OK217-RIPE
• admin-c: TLB55-RIPE
• abuse-c: AR15333-RIPE
• mnt-ref: OVH-MNT
• mnt-ref: RIPE-NCC-HM-MNT
• mnt-by: RIPE-NCC-HM-MNT
• mnt-by: OVH-MNT
• created: 2004-04-17T11:23:17Z
• last-modified: 2025-09-17T09:23:15Z
• role: OVH Technical Contact
• address: OVH SAS
• address: 2 rue Kellermann
• address: 59100 Roubaix
• address: France
• admin-c: OK217-RIPE
• tech-c: GM84-RIPE
• tech-c: SL10162-RIPE
• nic-hdl: OTC2-RIPE
• abuse-mailbox: abuse@ovh.net
• mnt-by: OVH-MNT
• created: 2004-01-28T17:42:29Z
• last-modified: 2014-09-05T10:47:15Z
• person: Octave Klaba
• address: OVH SAS
• address: 2 rue Kellermann
• address: 59100 Roubaix
• address: France
• phone: +33 9 74 53 13 23
• nic-hdl: OK217-RIPE
• mnt-by: OVH-MNT
• created: 1970-01-01T00:00:00Z
• last-modified: 2017-10-30T21:44:51Z
• route: 5.196.0.0/16
• descr: OVH
• origin: AS16276
• mnt-by: OVH-MNT
• created: 2014-08-15T12:51:31Z
• last-modified: 2014-08-15T12:51:31Z

Links to attack logs

****** ****** ******