193.70.86.68
# INTELLIGENCE BRIEFING: 193.70.86.68/32
## EXECUTIVE SUMMARY
IP 193.70.86.68 is a low-risk (score: 25) cloud hosting address operated by OVH (ASN 16276) in France. The IP resolves to an OVH VPS hostname and hosts web services (HTTP, HTTPS) with TLS certificates issued for malambi.net. No active threat indicators were detected. Neighborhood analysis shows low abuse density within the /24 subnet.
---
## OWNERSHIP & INFRASTRUCTURE
- Organization: Octave Klaba
- ASN: 16276 (OVH)
- Country: France (FR)
- Network Role: CloudCompute hosting infrastructure
- CIDR Block: 193.70.0.0/17
- Route Stability: False (route changes detected)
- Infrastructure Type: Cloud hosting environment
---
## NETWORK SERVICES & TLS CERTIFICATE
| Port | Protocol | Service |
|---|---|---|
| 80 | TCP | HTTP |
| 22 | TCP | SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.15 |
| 8443 | TCP | HTTPS-alt |
TLS Certificate Analysis:
- Issuer: RapidSSL TLS RSA CA G1 (DigiCert Inc, US)
- Subject: CN=*.malambi.net
- SANs: *.malambi.net, malambi.net
- Certificate Status: Valid, not self-signed
---
## DNS RESOLUTION
- PTR Hostname: vps-b075cdbb.vps.ovh.net
- Forward Resolution: vps-b075cdbb.vps.ovh.net
- DNS Records: SPF and DMARC records present and configured
---
## THREAT ASSESSMENT
- Overall Risk Score: 25 (Low Risk)
- Abuse Confidence Score: Not applicable
- Threat Indicators: None detected
- Tor Exit Node: No
- Known Attacker: No
- Spam Source: No
- Blacklist Count: 0
- DNSBL Listings: 1 of 8 total lists
---
## OBSERVATION HISTORY (22 Signals)
Recent observations from June 2026 indicate:
- DNS Signals: Confirmed resolution to malambi.net and ovh.net with valid SPF/DMARC records
- HTTP/HTTPS: Server fingerprinted as nginx (status code 301), HTTP/1.1 only
- Port Scan: Ports 22, 80, 8443 confirmed open
- TLS Protocol: TLS 1.3 detected
No persistent malicious behavior observed. Threat persistence days: 0.
---
## NEIGHBORHOOD ANALYSIS (193.70.86.0/24)
- Total Siblings: 3
- Active Siblings: 2
- Abuse Density: 1 (mostly clean classification)
- Inherited Risk: 7
- Neighbor Risk Distribution:
- 193.70.86.103: Risk 25, Authority 60
- 193.70.86.212: Risk 25, Authority 60
---
## RELATIONSHIP MAPPING
- DNS Associations: vps-b075cdbb.vps.ovh.net (multiple entries)
- Network Associations: FR-OVH-930901 (multiple entries)
- Total Relationships: 37
---
## SECURITY RECOMMENDATIONS
No immediate action recommended. The IP demonstrates standard cloud hosting behavior with proper security configuration (SPF, DMARC). No firewall rules or blocking actions are warranted based on current risk profile.
Monitoring Triggers:
- Certificate renewal for malambi.net domain
- Route stability changes (currently false)
- Any new threat indicator emergence
---
## INTELLIGENCE NOTES
The IP 193.70.86.68 operates within a legitimate OVH cloud hosting environment. The malambi.net certificate suggests this VPS may be hosting legitimate services or potentially related domains. No malicious activity patterns were identified during analysis. The low risk score and clean neighborhood metrics support continued monitoring without immediate intervention.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Octave Klaba |
| ASN | AS16276 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | vps-b075cdbb.vps.ovh.net |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | vps-b075cdbb.vps.ovh.net |
๐ DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | 2/2 domains |
| DMARC | 2/2 domains |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
| Domains Checked | 2 domains |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Multi-Service Host |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 22 | ssh | tcp | |
| 8443 | https-alt | tcp | โ |
| Closed Ports | 25, 443, 3389, 8080 (3 open / 7 scanned) | ||
| Server | nginx |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.15 |
๐ TLS Certificate
CN=*.malambi.net was found on this IP. This may indicate a previously hosted website, a decommissioned service, or stale infrastructure.| SANs | *.malambi.netmalambi.net |
| Valid From | 2023-04-19T00:00:00+00:00 |
| Valid Until | 2024-05-19T23:59:59+00:00 (expired) |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha256RSA |
| Validity Period | 396 days |
| Serial Number | 0893BE7F0A1D09C6B31877A9DA109BDD |
| Thumbprint | 7E0A0A6E015A29F483CEF04F7B39007A3BF957C8 |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 33% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 30% | 2 | 3 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 39% | 2 | 3 |
| Overall | 28% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-19 03:35:34 UTC |
| Last Seen | 2026-06-28 08:20:25 UTC |
| Profile Built | 2026-06-29 02:24:54 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 26 |
Full dossier details are available via our API.