51.195.244.207
IP Intelligence Dossier
Your IP: 216.73.216.123
π€ Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 51.195.244.207
*Last Updated: 2026-06-15*
---
**1. Risk Profile**
- Risk Score: 40 (Moderate Risk)
- Provider: OVH (CloudCompute)
- Ownership: Ahrefs Pte Ltd (legitimate entity)
- Geolocation: London, England, GB (plausible, high accuracy)
- Threat Indicators: No malicious activity detected (no blacklists, campaigns, or DNS threats).
---
**2. Network & Subnet Context**
- Subnet: 51.195.244.207/24
- Abuse Density: 68.63% (high abuse density in subnet)
- Neighbor Risk: 100 neighbors analyzed; 175 are flagged as threats (high-risk IPs).
- Network Role: Cloud-hosted infrastructure (OVH), no residential/mobile traffic.
---
**3. Historical Observations**
- Stability: No ownership or threat persistence over 30 days.
- Signal Trends: Minimal changes in risk scores (stable at 40).
- Geolocation Consistency: Plausible UK location with consistent RTT (95β96 ms).
---
**4. Relationships & Connections**
- Network: Linked to OVH network segment (OVH_282347336).
- DNS: Resolves to `proxy-uk000-san207.ahrefs.net` (Ahrefs domain).
- Certificates: Valid DNSSEC, CAA records present.
- Routing: BGP prefix `51.195.0.0/16` (OVH).
---
**5. Threat & Abuse Context**
- Subnet Risk: High abuse density (68.63%) despite IP being clean.
- Neighbor Analysis: 175 high-risk neighbors in subnet; 27% inherited risk.
- No Malicious Activity: No DNS threats, spam, or campaign ties.
---
**6. Recommendations**
- Monitor Subnet: High abuse density in 51.195.244.0/24 warrants closer scrutiny.
- Verify Cloud Context: Confirm Ahrefsβ use of OVH infrastructure to rule out misconfigured cloud assets.
- Baseline Neighbor Activity: Track changes in the subnetβs threat landscape.
Conclusion: This IP is not malicious but resides in a subnet with elevated risk. Focus on subnet-level monitoring and validate cloud provider configurations.
*Generated by IPDebrief intelligence analysis.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Ahrefs Pte Ltd Dmytro |
| ASN | AS16276 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | proxy-uk000-san207.ahrefs.net |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-uk000-san207.ahrefs.net |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
No certificate
Issued by β
N/A
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 33% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 24% | 10 | 16 |
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-21 14:57:57 UTC |
| Last Seen | 2026-06-28 14:20:17 UTC |
| Profile Built | 2026-06-29 02:24:54 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 26 |
π 23 signal types Β· 26 observations collected
This report is generated from 23+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
βΉοΈ About This Report
All data shown is publicly available network metadata β IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.