51.195.183.215
IP Intelligence Briefing: 51.195.183.215
*Generated via IPDebrief Analysis*
---
**1. Core Profile**
- Risk Score: 40 (Moderate Risk)
- Ownership: Ahrefs Pte Ltd (AS16276, OVH provider)
- Geolocation: London, England, GB (high-confidence inference)
- Network Role: CloudCompute (OVH-hosted, no open ports)
- Threat Indicators: No malicious activity detected (no blacklists, campaigns, or abuse reports).
---
**2. Observation History**
- Recent Activity:
- June 15, 2026: Subnet abuse density 67.97% (high abuse classification).
- June 8, 2026: No active services, no TLS certs, no banners.
- Trend: Stable risk profile; no significant changes in threat signals.
---
**3. Relationships & Context**
- DNS Associations: Linked to `proxy-uk003-san215.ahrefs.net` (Ahrefs infrastructure).
- Network Affiliation: Part of OVH network (AS16276), classified as high-risk subnet (51.195.0.0/16).
- Subnet Risk:
- Abuse Density: 63.67% (high abuse classification).
- Neighbor Analysis: 100 IPs in 51.195.183.0/24, 99 medium-risk, 1 high-risk.
---
**4. Actionable Insights**
- SOC Recommendation:
- Monitor the 51.195.183.0/24 subnet for lateral movement or amplification attacks.
- Block high-risk neighbors (e.g., IPs with 40+ risk scores) using firewall rules.
- Verify Ahrefs DNS hosts for compliance, as the IP is tied to a commercial service.
- Mitigation:
- Apply restrictive ACLs to isolate this IP from critical assets.
- Continuously track subnet abuse density for emerging threats.
---
Conclusion: While the IP itself is not malicious, its association with a high-risk subnet and cloud infrastructure warrants close monitoring. Prioritize isolating the subnet and validating Ahrefs' DNS hosts for potential compromise.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Ahrefs Pte Ltd Dmytro |
| ASN | AS16276 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | proxy-uk003-san215.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-uk003-san215.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 33% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 24% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-19 15:39:17 UTC |
| Last Seen | 2026-06-28 09:24:22 UTC |
| Profile Built | 2026-06-29 03:29:48 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 25 |
Full dossier details are available via our API.