167.114.139.114
IP Intelligence Briefing: 167.114.139.114
Date: 2026-06-09
---
**1. Core Profile**
- Risk Score: 50 (Moderate Risk)
- Ownership:
- ISP: OVH SAS (AS16276)
- Organization: Dmytro, Ahrefs Pte Ltd
- Network: OVH-CUST-281059679 (167.114.139.0/24)
- Geolocation:
- Country: Canada (QC, Beauharnois)
- Coordinates: Latitude 56.13, Longitude -106.35 (approximate)
- Network Role: Hosting provider (firewalled / no services)
---
**2. Threat Indicators**
- No direct malicious indicators (no malware, spam, or known attacker associations).
- Proxy Activity:
- Observed as a VPN proxy (via proxycheck.io) with a 66% risk score.
- PTR hostname: `proxy-ca000-san114.ahrefs.net` (linked to Ahrefs).
- DNS Security:
- Valid DNSSEC, CAA records present.
- No email authentication (SPF/DKIM/DMArC not configured).
---
**3. Observation History**
- Recent Signals (2026-06-09):
- Proxy activity flagged (VPN type).
- Moderate risk score (50) with 80% confidence.
- Geolocation inferred with 3000km accuracy radius.
- Subnet abuse density: 0.6667 (high abuse classification).
---
**4. Network Relationships**
- Subnet: 167.114.139.0/24
- Neighbors:
- 255 total IPs in subnet.
- 202 active IPs, 170 flagged as threats (72 medium-risk, 28 low-risk).
- Inherited risk: 26 (subnet-wide abuse).
---
**5. Recommendations**
- Monitor Subnet: High abuse density (0.6667) suggests potential lateral movement or shared infrastructure risks.
- Block Proxy Traffic: Consider firewall rules to restrict traffic from this subnet if proxy activity is undesirable.
- Verify DNS Configuration: Ensure SPF/DKIM/DMArC are implemented for email security.
- Check for Anomalies: Monitor for unexpected outbound connections or DNS queries from this subnet.
Note: This IP is associated with a hosting provider, but its subnet shows significant abuse. SOC teams should correlate this with internal network traffic to identify potential risks.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Dmytro, Ahrefs Pte Ltd |
| ASN | AS16276 |
| Network Name | OVH-CUST-281059679 |
| CIDR Block | 167.114.139.0/24 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | proxy-ca000-san114.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-ca000-san114.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 19% | 2 | 2 |
| reputation | 31% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 23% | 10 | 15 |
| Data Coherence | Mostly Consistent (80%) โ 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-21 20:59:28 UTC |
| Last Seen | 2026-06-28 15:34:42 UTC |
| Profile Built | 2026-06-29 03:40:04 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 25 |
Full dossier details are available via our API.