57.128.200.145📋 Copy

IP Intelligence Briefing: 57.128.200.145

Date: 2026-06-10

---

**1. Profile Summary**

• Risk Score: 25 (Low Risk)
• Provider: OVH Sp. z o.o. (ASN 16276)
• Geolocation: Warsaw, Mazovia, Poland (PL)
• Network Role: Cloud Compute (OVH VPS)
• Services: HTTP (80), HTTPS (443), SSH (22)
• TLS Certificate: Issued to *server.perubyte.com* (self-signed, no SAN issues)
• DNS: Resolves to *vps-ca3df597.vps.ovh.net* (SPF/DKIM configured)

---

**2. Threat Indicators**

• No malicious indicators: No known abuse, spam, or campaign ties.
• DNS Security: SPF (v=spf1 include:mx.ovh.com ?all) and DMARC (p=none) records detected.
• SSL/TLS: Valid certificate with no revoked or expired status.

---

**3. Observation History (30-Day Trends)**

• Stability: No significant changes in geolocation, DNS, or threat signals.
• Network Activity: Consistent HTTP/HTTPS traffic; no spikes in scans or connections.
• BGP: Stable route (AS16276), no blackhole or hijack events.

---

**4. Relationships & Network Context**

• Subnet: 57.128.200.0/24 (OVH VPS-WAW2 network)
• Neighbors:

- 57.128.200.130 (Risk Score: 50, Moderate Risk)

• Connected Entities:

- DNS: *vps-ca3df597.vps.ovh.net*

- Hosting: *perubyte.com* (TLS server banner: nginx)

---

**5. Recommendations**

• Monitor Neighbors: 57.128.200.130 shows moderate risk; investigate potential lateral movement.
• Verify Ownership: Confirm OVH VPS ownership via RDAP for compliance.
• Secure DNS: Ensure SPF/DKIM alignment for *perubyte.com* to prevent spoofing.
• Baseline Traffic: Establish baselines for HTTP/HTTPS traffic to detect anomalies.

---

Conclusion:

The IP is a legitimate OVH cloud server with no immediate threat indicators. Focus on monitoring its subnet and associated domains for indirect risks. No immediate action required, but maintain visibility for anomalies.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.