192.95.20.52
IP Intelligence Briefing: 192.95.20.52
*Generated via IPDebrief Analysis*
---
**Key Findings**
- Risk Profile: Low risk (Risk Score: 25/100). No malicious indicators, spam, or known attacker associations.
- Ownership: Owned by OVH Hosting, Inc. (ASN 16276), a legitimate cloud infrastructure provider.
- Geolocation: Located in Montreal, Canada (QC).
- Network Role: Cloud compute instance (OVH Dedicated network). No CDN, VPN, or proxy activity.
- Services:
- Open ports: HTTP (80/TCP), RDP (3389/TCP).
- Server banner: Microsoft-IIS/7.5.
- No TLS certificate detected.
- Threat Indicators: Zero malicious signals, blacklist entries, or campaign correlations.
---
**Observation History (Last 21 Days)**
- Stable network activity with no spikes in threat signals.
- Consistent HTTP service with 404 status code responses.
- No DNS anomalies, TLS issues, or port scanning detected.
---
**Relationships**
- DNS: Linked to ip52.ip-192-95-20.net (forward resolution confirmed).
- Network: Same subnet as OVH-DEDICATED-6 (192.95.20.0/24).
- No Correlated Threats: No associated malicious IPs, domains, or certificates.
---
**Subnet Analysis**
- Subnet: 192.95.20.0/24.
- Abuse Density: 0% (clean classification).
- Neighbors: No active neighbors detected (zero sibling IPs).
---
**Recommendations**
1. Monitor for Changes: Track subnet activity for unexpected traffic spikes or new neighbor registrations.
2. Verify DNS: Confirm ownership of `ip52.ip-192-95-20.net` to ensure no subdomain hijacking.
3. Check Server Configuration: Investigate the outdated IIS server (7.5) for potential vulnerabilities.
4. Network Segmentation: Ensure isolation of cloud instances to prevent lateral movement risks.
---
Conclusion: 192.95.20.52 is a legitimate OVH-hosted cloud instance with no current threat indicators. While low-risk, its isolated subnet and outdated services warrant periodic re-evaluation.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | OVH Hosting, Inc. |
| ASN | AS16276 |
| Network Name | OVH-DEDICATED-6 |
| CIDR Block | 192.95.20.0/24 |
| RIR | ARIN |
| Country | Canada |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | ip52.ip-192-95-20.net |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | ip52.ip-192-95-20.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Multi-Service Host |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 3389 | rdp | tcp | โ |
| Closed Ports | 22, 25, 443, 8080, 8443 (2 open / 7 scanned) | ||
| Server | Microsoft-IIS/7.5 |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 27% | 2 | 3 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 24% | 2 | 3 |
| Overall | 23% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-30 00:19:52 UTC |
| Last Seen | 2026-06-29 06:58:43 UTC |
| Profile Built | 2026-06-29 07:04:25 UTC |
| Data Freshness | Live |
| Signal Types | 25 |
| Total Observations | 25 |
Full dossier details are available via our API.