51.222.168.25
IP Intelligence Briefing: 51.222.168.25
*Generated via IPDebrief Analysis*
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Owned by Dmytro, Ahrefs Pte Ltd (OVH ASN 16276).
- Geolocation:
- Country: Canada (CA) / Singapore (discrepancy noted).
- Region: Quebec (CA), latitude 45.5075, longitude -73.5887.
- Accuracy: 3000 km radius (low precision).
- Network Role: CloudCompute infrastructure (OVH-hosted, no public services).
- DNS: Resolves to `proxy-ca018-san25.ahrefs.net` (Ahrefs, SEO tool).
---
**2. Threat & Behavior**
- Threat Indicators: No malicious activity detected (no spam, abuse, or campaign ties).
- Control Plane:
- DNSSEC and CAA records validated.
- No BGP anomalies or route instability.
- Historical Observations:
- 14 signals recorded (last 30 days).
- Geolocation inconsistencies (Canada vs. Singapore), but no malicious signals.
- Operator risk score: 0.2174 (Minimal).
---
**3. Relationships**
- Linked Entities:
- Same network: OVH-CUST-281059697 (51.222.168.0/24).
- DNS associations: `proxy-ca018-san25.ahrefs.net` (Ahrefs).
- No malicious peer relationships detected.
---
**4. Neighborhood Analysis**
- Subnet: 51.222.168.0/24 (100 IPs).
- Risk Distribution:
- Low risk: 1 IP (self).
- Medium risk: 99 IPs.
- Abuse density: 0% (no malicious neighbors).
- Notable Neighbors:
- 51.222.168.0β4: Medium-risk IPs (likely OVH cloud instances).
---
**5. Recommendations**
- Monitor: Track geolocation discrepancies and subnet activity for anomalies.
- Allow: Legitimate cloud traffic from OVH (no firewall restrictions needed).
- Verify: Confirm Ahrefsβ ownership and ensure DNS records are valid.
Conclusion: This IP is a low-risk cloud server associated with Ahrefs. No immediate threat detected, but ongoing monitoring is advised for geolocation inconsistencies and subnet behavior.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Dmytro, Ahrefs Pte Ltd |
| ASN | AS16276 |
| Network Name | OVH-CUST-281059697 |
| CIDR Block | 51.222.168.0/24 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | β |
π DNS Intelligence
| PTR | proxy-ca018-san25.ahrefs.net |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-ca018-san25.ahrefs.net |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 21% | 2 | 2 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 17% | 1 | 2 |
| geolocation | 21% | 2 | 2 |
| Overall | 18% | 9 | 10 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-09 06:53:51 UTC |
| Last Seen | 2026-06-21 15:50:25 UTC |
| Profile Built | 2026-06-21 16:11:48 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 21 |
Full dossier details are available via our API.