51.68.247.202
IP Intelligence Briefing: 51.68.247.202
Date: June 14, 2026
---
**1. Core Profile**
- Ownership:
- Registered to Ahrefs Pte Ltd (ASN 16276).
- Geolocation: France (FR), with no city/region specificity.
- Network Role: OVH CloudCompute instance, part of a hosting infrastructure.
- Stability: Minimal risk (riskScore: 50/100), moderate abuse density (subnetwork abuseDensity: 0.7188).
- Threat Indicators:
- No direct malicious activity detected (no indicators, campaigns, or blacklists).
- DNS records point to proxy-fr003-san202.ahrefs.net (likely legitimate).
- BGP data shows stable routing (routeChanges30d: 0).
---
**2. Observation History**
- Recent Activity (Last 30 Days):
- 15 observations recorded, with overall confidence: 24.73%.
- Threat Persistence: No persistent malicious activity (threatObservationCount: 1).
- Risk Trends: Moderate risk score (50) with no upward trend.
---
**3. Network Relationships**
- Connected Entities:
- Linked to OVH network 282114228 (same ASN, infrastructure).
- No direct connections to known malicious networks or organizations.
- DNS: 1 PTR hostname, no email authentication records (SPF/DKIM).
---
**4. Subnet Neighbors**
- Subnet: 51.68.247.202/24.
- Neighbor Risk:
- 31 total IPs, 10 active, 23 with risk scores (40β50).
- Abuse Density: 71.88% (high abuse classification).
- Notable: 23 neighbors flagged with moderate risk (40β50), suggesting potential for misuse within the subnet.
---
**5. Recommendations**
- Monitor: Track neighbor IPs for anomalous activity, as the subnet has a high abuse density.
- Verify: Confirm the legitimacy of DNS records and ensure no unexpected services are hosted.
- Blocklist: Consider blocking neighbors with high risk scores (40β50) if they are not part of your infrastructure.
Note: This IP is associated with a legitimate hosting provider but should be monitored for potential misuse given the subnetβs abuse profile.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Ahrefs Pte Ltd Dmytro |
| ASN | AS16276 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | proxy-fr003-san202.ahrefs.net |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-fr003-san202.ahrefs.net |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 26% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 17% | 2 | 3 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 35% | 2 | 3 |
| Overall | 23% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:04:27 UTC |
| Last Seen | 2026-06-27 07:19:53 UTC |
| Profile Built | 2026-06-28 01:26:50 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 29 |
Full dossier details are available via our API.