51.161.37.80
IP Intelligence Briefing: 51.161.37.80
Date: 2026-06-10
---
**1. Risk Profile**
- Risk Score: 50 (Moderate Risk)
- Provider: OVH (ASN 16276)
- Organization: Ahrefs Pte Ltd (OVH-CUST-281059684)
- Geolocation:
- Country: Canada (CA)
- City: Singapore (discrepancy noted; may indicate misconfiguration or spoofing)
- Coordinates: Latitude 56.13, Longitude -106.35 (3000km accuracy radius)
- Network Role: Cloud compute infrastructure (OVH-hosted, no public services detected)
---
**2. Threat Indicators**
- No malicious indicators detected (no blacklists, spam, or known attacker associations).
- DNS Associations: Linked to `proxy-ca005-san80.ahrefs.net` (Ahrefs Pte Ltd).
- BGP/Network:
- Subnet: `51.161.37.0/24`
- Abuse density: 43.25% (mixed classification: 17 inherited risk, 109 threat siblings).
---
**3. Observation History**
- Recent Activity (2026-06-10):
- Geolocation signal with 35% confidence.
- DNS listings (8 total lists, 1 listed; no high-severity threats).
- Subnet abuse density analysis (mixed risk).
- Stability: No persistent malicious activity; ownership unchanged.
---
**4. Network Relationships**
- Neighbors (51.161.37.0/24):
- Risk Distribution: 79 medium-risk IPs, 21 low-risk IPs.
- Notable Neighbors:
- `51.161.37.0` (50/50 risk/authority score)
- `51.161.37.1` (25/50)
- `51.161.37.2` (40/50)
- Abuse Density: 43.25% (substantial risk in subnet).
---
**5. Recommendations**
- Monitor Subnet: Elevated risk in `51.161.37.0/24` (43.25% abuse density).
- Verify Geolocation: Investigate Singapore/Canada discrepancy; potential spoofing or misconfig.
- Check DNS Hostnames: Scrutinize `proxy-ca005-san80.ahrefs.net` for anomalous behavior.
- Network Segmentation: Ensure isolation of cloud-hosted infrastructure to prevent lateral movement.
---
Source: IPDebrief Threat Intelligence Platform
Note: No immediate action required, but ongoing monitoring is advised due to subnet risk and unclear geolocation data.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Dmytro, Ahrefs Pte Ltd |
| ASN | AS16276 |
| Network Name | OVH-CUST-281059684 |
| CIDR Block | 51.161.37.0/24 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | proxy-ca005-san80.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-ca005-san80.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 32% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 19% | 2 | 2 |
| reputation | 32% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 22% | 10 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-25 00:41:36 UTC |
| Last Seen | 2026-06-29 01:01:57 UTC |
| Profile Built | 2026-06-29 07:04:26 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 25 |
Full dossier details are available via our API.