51.178.54.174
IP Intelligence Briefing: 51.178.54.174
Date: 2026-06-14
---
**1. Core Profile**
- Risk Score: Moderate (50/100)
- Provider: OVH SAS (ASN 16276)
- Geolocation: France (FR), plausible location with ~500km accuracy radius.
- Network Role: CloudCompute (OVH VPS infrastructure).
- Services:
- HTTP/HTTPS (ports 80/443), SSH (port 22).
- Server banner: Caddy web server.
- Threat Indicators:
- Listed in 2 DNSBLs (open resolver/malware categories).
- No known attacker/spam source flags.
- Ownership:
- Stable (no recent ownership changes).
- Resilient to abuse (abuse density: 0).
---
**2. Observation History**
- Recent Activity (Last 30 Days):
- 23 observations, primarily DNSBL listings and operator score updates.
- High-severity signals:
- DNSBL listings (open resolver, malware).
- Operator score labeled "Basic" (low risk but non-compliant).
- Geolocation consistency: Validated via 5 probes (avg RTT: 103ms).
- No persistent malicious activity detected.
---
**3. Relationships**
- DNS Associations:
- Resolves to vps-7754fa8e.vps.ovh.net (OVH-managed hostname).
- SPF/DKIM records present but no email-related threats.
- Network Context:
- Part of OVH's VPS-SBG6 network segment.
- No direct links to known malicious subnets or campaigns.
---
**4. Neighborhood Analysis**
- Subnet: 51.178.54.174/24
- Neighbor Data:
- 0 active neighbors in the subnet.
- Abuse density: 0 (subnet classified as "mostly_clean").
- Isolation: This IP appears isolated in its subnet with no peer risk indicators.
---
**5. Recommendations**
- Monitor DNSBL Listings: Investigate why this IP is listed in open resolver/malware categories.
- Verify Server Configuration: Ensure Caddy/SSH services are not misconfigured (e.g., weak SSH keys).
- Network Segmentation: Consider isolating this VPS if it hosts sensitive services.
- Whitelist OVH Compliance: No immediate action needed for OVH infrastructure unless abuse persists.
Conclusion: This IP is a legitimate OVH VPS server with moderate risk due to DNSBL listings. No evidence of active exploitation, but monitoring is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | OVH SAS |
| ASN | AS16276 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | vps-7754fa8e.vps.ovh.net |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | vps-7754fa8e.vps.ovh.net |
๐ DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| 22 | ssh | tcp | |
| Closed Ports | 25, 3389, 8080, 8443 (3 open / 7 scanned) | ||
| Server | Caddy |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_9.9p1 Ubuntu-3ubuntu3.2 |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 40% | 2 | 6 |
| routing | 13% | 1 | 1 |
| services | 28% | 2 | 3 |
| ownership | 20% | 2 | 3 |
| reputation | 24% | 1 | 3 |
| geolocation | 30% | 2 | 3 |
| Overall | 26% | 10 | 19 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:04:25 UTC |
| Last Seen | 2026-06-27 06:30:27 UTC |
| Profile Built | 2026-06-28 06:42:17 UTC |
| Data Freshness | Live |
| Signal Types | 24 |
| Total Observations | 32 |
Full dossier details are available via our API.