51.195.215.119
IP Intelligence Briefing: 51.195.215.119/32
*Generated from IPDebrief tools: Profile, History, Relationships, Neighbors, Actions*
---
**1. Core Profile**
- Risk Score: 40 (Moderate Risk)
- Ownership: Owned by Ahrefs Pte Ltd (OVH ASN 16276).
- Geolocation: Linked to London, England (GB), but geo-validation shows inconsistency.
- Network Role: Hosting provider (OVH), no public services detected.
- Threat Indicators: No malicious activity, spam, or known attacker associations.
---
**2. Observation History**
- Last 30 Days:
- Consistent geolocation in London (GB) with 750km accuracy radius.
- Network role remains stable as a hosting provider.
- No spikes in threat signals or DNS anomalies.
- Longevity: IP has been observed since June 2026.
---
**3. Relationships**
- Network: Part of OVH network (ASN 16276), subnet 51.195.215.0/24.
- DNS: Associated with proxy-uk009-san119.ahrefs.net (Ahrefs domain).
- Certificates: DNSSEC valid, CAA records present.
- Neighbors: 255 IPs in subnet; 131 flagged as high-risk.
---
**4. Neighborhood Analysis**
- Subnet: 51.195.215.0/24 (OVH).
- Abuse Density: 51.37% of subnet IPs are flagged as high-risk.
- Key Neighbors:
- 155 active IPs, 82 medium-risk, 18 low-risk.
- No direct malicious ties, but high-risk neighbors suggest potential network compromise.
---
**5. Recommended Actions**
- Monitoring: Track traffic patterns due to high-risk neighbors.
- Firewall Rules:
- Block IP using standard rules (e.g., `iptables -A INPUT -s 51.195.215.119 -j DROP`).
- Add to WAFs (Cloudflare, AWS) to mitigate potential threats.
- Investigation: Verify Ahrefs' use of this IP for legitimate hosting.
---
Summary:
The IP is part of a high-risk OVH subnet linked to Ahrefs. While no direct malicious activity is detected, the subnet's abuse density warrants closer monitoring. SOC teams should prioritize inspecting traffic patterns and ensuring no unauthorized access via associated DNS entries.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Ahrefs Pte Ltd Dmytro |
| ASN | AS16276 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | proxy-uk009-san119.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-uk009-san119.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 32% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 32% | 1 | 3 |
| geolocation | 40% | 2 | 3 |
| Overall | 25% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-26 18:57:52 UTC |
| Last Seen | 2026-06-29 03:24:26 UTC |
| Profile Built | 2026-06-29 09:26:39 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 25 |
Full dossier details are available via our API.