61.51.111.26
IP Intelligence Briefing: 61.51.111.26/32
Date: 2026-06-18
---
**1. Risk Profile**
- Risk Score: 40 (Moderate Risk)
- Threat Indicators: No known malicious activity, no DNS/IP blacklists, no campaign associations.
- Network Classification: Firewalled / No Services (no open ports, no TLS/HTTP services detected).
- Ownership: Registered to "sun ying" (ASN 4808, APNIC).
- Geolocation: China (CN), but no city/region specified.
---
**2. Observation History**
- Recent Activity:
- Observed on 2026-06-18 with "Minimal" risk assessment (operator score 0.2174).
- Historical data shows no persistent malicious behavior (threat persistence days = 0).
- Stability: Route stability flagged as unstable (BGP route changes in 30d = 0, but "isRouteStable" = false).
---
**3. Network Relationships**
- Linked Entities:
- Strong ties to the "UNICOM-BJ" network (repeated in relationships).
- No direct links to known malicious organizations, campaigns, or subnets.
- Subnet: 61.51.111.26/24, classified as "mostly_clean" with low abuse density.
---
**4. Neighborhood Analysis**
- Subnet Analysis:
- No neighboring IPs detected (neighborCount = 0).
- Subnet abuse density: 0% (low risk).
- Potential Context: Isolated IP with no sibling activity, suggesting limited network scope.
---
**5. Recommended Actions**
- Monitoring: Continue baseline monitoring for unexpected service changes or new threat indicators.
- Firewall: No immediate blocking required; ensure existing rules align with network segmentation policies.
- Investigation: Verify "sun ying" ownership legitimacy and confirm "UNICOM-BJ" network context (e.g., ISP/enterprise).
---
Conclusion:
The IP exhibits no active malicious behavior, but its isolated nature and lack of geolocation precision warrant further validation. No urgent action is required, but sustained monitoring is advised.
Tools Used: `ipdebrief_profile`, `ipdebrief_history`, `ipdebrief_relationships`, `ipdebrief_neighbors`.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | sun ying |
| ASN | AS4808 |
| Network Name | โ |
| CIDR Block | 61.51.64.0/18 |
| RIR | APNIC |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 25% | 2 | 4 |
| routing | 32% | 2 | 3 |
| services | 24% | 2 | 3 |
| ownership | 26% | 3 | 4 |
| reputation | 21% | 1 | 3 |
| geolocation | 32% | 2 | 3 |
| Overall | 27% | 12 | 20 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:04:31 UTC |
| Last Seen | 2026-06-23 19:29:14 UTC |
| Profile Built | 2026-06-23 19:34:04 UTC |
| Data Freshness | Live |
| Signal Types | 25 |
| Total Observations | 28 |
Full dossier details are available via our API.