51.195.215.22
IP Intelligence Briefing: 51.195.215.22
*Generated via IPDebrief tools: Profile, History, Relationships, Neighbors*
---
**1. Risk Profile**
- Risk Score: 40 (Moderate Risk)
- Ownership: Assigned to Ahrefs Pte Ltd (SEO company), ASN 16276.
- Geolocation: London, England (GB).
- Network Role: CloudCompute infrastructure (OVH provider), no active services or ports open.
- Threat Indicators: No malicious activity detected (no blacklists, campaigns, or DNS anomalies).
---
**2. Observation History**
- Recent Activity:
- Consistent geolocation in London (55.38°N, -3.44°E) with 750km accuracy.
- No significant changes in threat signals over time.
- Subnet abuse density (51.195.215.22/24) shows 0.6172 abuse density, classified as "high_abuse."
---
**3. Relationships**
- DNS Associations: Linked to proxy-uk009-san22.ahrefs.net (Ahrefs infrastructure).
- Network Connections:
- Same network as OVH_282347345 (ASN 16276).
- No connections to known malicious subnets or organizations.
---
**4. Neighborhood Analysis**
- Subnet: 51.195.215.22/24 (256 total IPs).
- Risk Distribution:
- 87 IPs with low risk (score 25โ40).
- 13 IPs with moderate risk (score 50).
- 0 IPs with high risk.
- Abuse Density: 0.6172 (high abuse), but no direct malicious activity observed on this IP.
---
**5. Actionable Insights**
- No Immediate Threat: The IP is associated with a legitimate company (Ahrefs) and shows no malicious indicators.
- Monitor Subnet: Given the high abuse density in the subnet, monitor neighboring IPs for unusual activity.
- Verify DNS: Confirm DNS associations (e.g., proxy-uk009-san22.ahrefs.net) are authorized.
- Baseline Behavior: Use historical data to detect future anomalies (e.g., unexpected port activity or geolocation shifts).
---
Conclusion: This IP is part of a cloud infrastructure linked to Ahrefs. While the subnet has a high abuse density, the IP itself shows no malicious activity. Prioritize monitoring the subnet for lateral movements or new threats.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Ahrefs Pte Ltd Dmytro |
| ASN | AS16276 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | proxy-uk009-san22.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-uk009-san22.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 24% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-18 09:25:02 UTC |
| Last Seen | 2026-06-28 07:13:17 UTC |
| Profile Built | 2026-06-29 01:17:28 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 27 |
Full dossier details are available via our API.