51.255.198.198
IP Intelligence Briefing: 51.255.198.198
Date: 2026-06-11
---
**1. Core Profile**
- Risk Rating: Moderate Risk (40/100)
- Ownership: Hosted by OVH SAS (ASN 16276), France.
- Geolocation: Roubaix, France (FR).
- Network Role: Cloud compute infrastructure (OVH hosting).
- Services:
- Open SSH port (22/tcp) with restricted access ("Not allowed at this time").
- No TLS certificate, no HTTP server detected.
---
**2. Threat Indicators**
- No malicious indicators: No blacklisted domains, spam, or known attacker activity.
- DNS Associations: Linked to `vps-89ba2da3.vps.ovh.net` (OVH-managed VPS).
- BGP/Network: Subnet `51.255.198.198/24` has low abuse density (0/10).
---
**3. Observation History**
- Recent Activity (2026-06-01):
- No persistent malicious behavior detected.
- Single threat observation (low severity) with 2 DNSBL listings.
- SSH port scan detected but no active exploitation.
---
**4. Relationships & Network Context**
- Connected Entities:
- DNS: `vps-89ba2da3.vps.ovh.net` (OVH VPS hostname).
- Network: Shared subnet with OVH's `FR-OVH-20150522` (no malicious siblings).
- No anomalous connections to other IPs or domains.
---
**5. Recommendations**
- Monitor: Track SSH access logs for unauthorized attempts.
- Verify: Confirm OVH's VPS configuration for secure defaults.
- No immediate mitigation required due to lack of active threats.
---
Conclusion:
This IP is part of OVH's cloud infrastructure with no current malicious activity. While flagged as moderate risk due to DNSBL listings, it shows no signs of active exploitation. SOC teams should maintain baseline monitoring but prioritize higher-risk assets.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | OVH SAS |
| ASN | AS16276 |
| Network Name | FR-OVH-20150522 |
| CIDR Block | 51.254.0.0/15 |
| RIR | ARIN |
| Country | FR |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | vps-89ba2da3.vps.ovh.net |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | vps-89ba2da3.vps.ovh.net |
๐ DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_10.0p2 Debian-7+deb13u4 |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 24% | 2 | 3 |
| services | 15% | 2 | 2 |
| ownership | 35% | 3 | 5 |
| reputation | 22% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 24% | 12 | 19 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-27 19:22:53 UTC |
| Last Seen | 2026-06-29 04:50:45 UTC |
| Profile Built | 2026-06-29 04:58:15 UTC |
| Data Freshness | Live |
| Signal Types | 26 |
| Total Observations | 28 |
Full dossier details are available via our API.