51.91.177.11
IP Intelligence Briefing: 51.91.177.11
Date: 2026-06-14
---
**Risk Profile**
- Risk Score: 55 (Moderate Risk)
- Provider: OVH Hosting Limited (ASN 16276)
- Geolocation: Ireland (IE), coordinates 53.14°N, 7.69°W
- Network Role: Hosting provider (cloud infrastructure)
- Threat Indicators:
- Listed in 8 threat feeds (3 high-severity, 5 medium-severity)
- No direct indicators of C2, malware, or exploitation
---
**Observation History**
- Recent Activity:
- Detected in 20 threat feeds (June 5โ14, 2026)
- Moderate confidence (0.85โ0.90) in DNS, BGP, and network classification
- No persistent malicious behavior or campaign correlation
---
**Network Relationships**
- DNS Associations:
- `ip11.ip-51-91-177.eu` (PTR record validated)
- Network Peers:
- Linked to OVH-DEDICATED-FO network (same ASN, /24 subnet)
- Services:
- No open ports or TLS certificates detected
- Server banner and HTTP title not available
---
**Neighborhood Analysis**
- Subnet: 51.91.177.0/24
- Neighbor Risk:
- Two sibling IPs with identical risk scores (55) and authority scores (60)
- Subnet abuse density: 0% (clean)
---
**Actionable Insights**
1. Monitor Threat Feed Listings:
- The IP appears in multiple threat feeds (e.g., spam, abuse). Validate listings with additional sources.
2. Check Hosting Context:
- OVH Hostingโs infrastructure may host legitimate services, but ensure access controls restrict unauthorized use.
3. Verify DNS Validity:
- Confirm `ip11.ip-51-91-177.eu` is authorized and not used for phishing or misdirection.
4. Subnet-Level Monitoring:
- The /24 subnet has no abuse indicators, but monitor for lateral movement if the IP is compromised.
---
Conclusion: This IP is a moderate-risk hosting server with no direct malicious activity. Focus on validating threat feed alerts and ensuring network segmentation to mitigate potential lateral risks.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | OVH Hosting Limited |
| ASN | AS16276 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | ip11.ip-51-91-177.eu |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | ip11.ip-51-91-177.eu |
๐ DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 28% | 2 | 2 |
| routing | 13% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 20% | 2 | 3 |
| reputation | 21% | 1 | 2 |
| geolocation | 31% | 2 | 3 |
| Overall | 20% | 9 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-09 11:34:10 UTC |
| Last Seen | 2026-06-27 15:46:06 UTC |
| Profile Built | 2026-06-28 09:52:02 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 25 |
Full dossier details are available via our API.