54.39.83.131 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 54.39.83.131 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: Canada
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: mailgnfzh.click cpcontacts.mta131.shoponmailer.online cpcalendars.mta131.shoponmailer.online mta131.shoponmailer.online

Malware Detected on Host

Count: 17 a498607ec6e4910239b5658fde2e5f349378d58b4e510e9c9374d07d3420ae54 3f5698849696ec65baa71b409e83e1f4f251838206c9108e2541cf4f24d245af e7159ea516038a93d12fb53102a6008af8cbec345b56850750ef19850eb0e9fa c79cdf49b959e9ae6bcbe03eeee5a5526895e46ec3612682838850cbebd75830 6832b0df642d716fece380859c30a5e66f02797ee93bf645ea3cb257549ab267 4ebb88b0c6c9d90c93407d460ae5024b69a6e4db68490a55a3ced886d65e3215 07e379daa018049d085a1808cd855ddc1cde455ac6870bf38bf02bbddc11ee6d 61ee7fd86c1745419f29f60a1d060ad8dda003079e47787d83afdd17bb5c37c4 35ab1e82fc5b5f7aeca80e6c6b37b90b1d795fcbfa8886fef9b3d7a5794b8e83 8a4f23233e69965509e0730cdb68d6e12ff7121c9a2c203e191d82bf639fe3f7

Open Ports Detected

1080 53

Map

Whois Information

• NetRange: 54.39.0.0 - 54.39.255.255
• CIDR: 54.39.0.0/16
• NetName: HO-2
• NetHandle: NET-54-39-0-0-1
• Parent: NET54 (NET-54-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: OVH Hosting, Inc. (HO-2)
• RegDate: 2017-10-16
• Updated: 2017-10-16
• Ref: https://rdap.arin.net/registry/ip/54.39.0.0
• OrgName: OVH Hosting, Inc.
• OrgId: HO-2
• Address: 800-1801 McGill College
• City: Montreal
• StateProv: QC
• PostalCode: H3A 2N4
• Country: CA
• RegDate: 2011-06-22
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/HO-2
• OrgTechHandle: NOC11876-ARIN
• OrgTechName: NOC
• OrgTechPhone: +1-855-684-5463
• OrgTechEmail: noc@ovh.net
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC11876-ARIN
• OrgAbuseHandle: ABUSE3956-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-855-684-5463
• OrgAbuseEmail: abuse@ovh.ca
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3956-ARIN
• NetRange: 54.39.83.128 - 54.39.83.191
• CIDR: 54.39.83.128/26
• NetName: OVH-CUST-163951392
• NetHandle: NET-54-39-83-128-1
• Parent: HO-2 (NET-54-39-0-0-1)
• NetType: Reassigned
• OriginAS: AS16276
• Customer: OLEKSANDR, GUTNIK (C08116518)
• RegDate: 2021-11-27
• Updated: 2021-11-27
• Ref: https://rdap.arin.net/registry/ip/54.39.83.128
• CustName: OLEKSANDR, GUTNIK
• Address: Kesklinna linnaosa, Kaupmehe tn 7-120
• City: Tallinn
• StateProv:
• PostalCode: 10114
• Country: EE
• RegDate: 2021-11-27
• Updated: 2021-11-27
• Ref: https://rdap.arin.net/registry/entity/C08116518
• OrgTechHandle: NOC11876-ARIN
• OrgTechName: NOC
• OrgTechPhone: +1-855-684-5463
• OrgTechEmail: noc@ovh.net
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC11876-ARIN
• OrgAbuseHandle: ABUSE3956-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-855-684-5463
• OrgAbuseEmail: abuse@ovh.ca
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3956-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-07-13