51.75.64.35

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP Intelligence Briefing: 51.75.64.35

Date: 2026-06-14

---

1. Risk Profile

Risk Score: 65 (Moderate Risk)
Provider: OVH GmbH (AS16276)
Geolocation: Germany (DE), Latitude 48.86, Longitude 6.6
Network Role: CloudCompute (OVH infrastructure)
Threat Indicators: No active malicious indicators, no known attacker associations, and no spam sources.

---

2. Network & Hosting Context

Hosting: Cloud-based virtual private server (VPS) managed by OVH.
Services:

- Open ports: HTTP (80), HTTPS (443), SSH (22).

- Server banner: Apache.

- TLS certificate: Self-signed, valid for `*.server.dev` and `vps-3d54f2a3.vps.ovh.net`.

DNS:

- PTR hostname: `vps-3d54f2a3.vps.ovh.net`.

- Domain: `ovh.net` (hosted by OVH).

- DNSSEC and CAA records present.

---

3. Observations & Activity

Recent Activity (Last 30 Days):

- 1 observation of moderate confidence (Basic risk label).

- No significant changes in risk scores or network behavior.

- No DNSBL listings or spam-related activity.

Network Stability:

- Subnet `51.75.64.35/24` has low abuse density (0/10).

- No neighboring IPs detected (likely isolated or private subnet).

---

4. Relationships & Context

Network Connections:

- Linked to OVH’s cloud infrastructure (`VPS-DE2` network).

- No direct relationships to other malicious IPs or domains.

Certificate Authority:

- Self-signed certificate with no external trust chain.

---

5. Recommendations

1. Secure SSH Access: Ensure SSH keys are restricted and monitor for brute-force attempts.

2. Certificate Management: Replace self-signed certificate with a trusted CA-issued certificate for external services.

3. Monitor Subnet: Track `51.75.64.35/24` for unexpected activity, though current abuse density is low.

4. Validate DNS Configuration: Confirm DNSSEC and CAA records align with OVH’s infrastructure.

---

Conclusion: This IP is a legitimate OVH cloud server with no immediate malicious activity. Focus on securing its configuration and monitoring for anomalies in its isolated subnet.

Source: IPDebrief Threat Intelligence Platform

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇩🇪 Germany
Region	—
City	—
Timezone	Europe/Berlin
Latitude	48.86
Longitude	6.60

🏢 Ownership & Registration

Organization	OVH GmbH
ASN	AS16276
Network Name	—
CIDR Block	—
RIR	ARIN
Country	—
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR	vps-3d54f2a3.vps.ovh.net
Forward Confirmed	Yes — FCrDNS verified
Forward Hostnames	`vps-3d54f2a3.vps.ovh.net`

🔐 DNS Hygiene

Hygiene Score	80% (Excellent)
SPF	1/2 domains
DMARC	2/2 domains
FCrDNS	Verified
DNSSEC	Valid
CAA	Not configured
Domains Checked	2 domains

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Web Server
Network Tier	Hosting — Infrastructure provider without advanced routing

CloudHosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
80	http	tcp	—
443	https	tcp	—
22	ssh	tcp	SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.13
Closed Ports	25, 3389, 8080, 8443 (3 open / 7 scanned)

Server	Apache
HTTP Title	—
SSH Version	SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.13

🔐 TLS Certificate

A self-signed certificate was detected. This is common for development servers, internal services, or IoT devices.

⚠️

E=dev@server.dev, CN=*.server.dev

Issued by E=dev@server.dev, CN=*.server.dev

Self-signed: Yes

SANs	*.server.devserver.devlocalhostvps-3d54f2a3.vps.ovh.netvps-3d54f2a3
Valid From	2023-04-11T19:05:18+00:00
Valid Until	2028-04-09T19:05:18+00:00
TLS Protocol	Tls13
Cipher Suite	TLS_AES_256_GCM_SHA384
Signature Algorithm	sha256RSA
Validity Period	1825 days
Serial Number	79EC22E13C5D2FF48669B620DA432DD51922BA42
Thumbprint	B043655A8764E636D9D070EFDAEA224FD1E44A9E

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	28%	2	4
routing	8%	1	1
services	23%	2	4
ownership	20%	2	3
reputation	26%	1	3
geolocation	30%	2	3
Overall	22%	10	18

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (70%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-07 23:04:27 UTC
Last Seen	2026-06-27 07:26:36 UTC
Profile Built	2026-06-28 01:32:33 UTC
Data Freshness	Live
Signal Types	23
Total Observations	30

🔍 23 signal types · 30 observations collected

This report is generated from 23+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

51.75.64.35📋 Copy

**1. Risk Profile**

**2. Network & Hosting Context**

**3. Observations & Activity**

**4. Relationships & Context**

**5. Recommendations**