148.113.130.45
IP Intelligence Briefing: 148.113.130.45
Date: 2026-06-09
---
**1. Risk Profile**
- Risk Score: 25 (Low Risk)
- Provider: OVH (ASN 16276)
- Ownership: Registered to Ahrefs Pte Ltd (OVH-CUST-281059688).
- Geolocation:
- Country: Canada (CA)
- City: Singapore
- Geo-Plausibility: False (RTT discrepancy: 22ms vs. expected 121.6ms for 6082km).
- Network Role: CloudCompute (OVH-hosted, no residential/mobile traffic).
---
**2. Threat Indicators**
- No Malicious Activity: No indicators of spam, attacks, or known malicious campaigns.
- DNS Associations: Linked to proxy-ca009-san45.ahrefs.net (Ahrefs domain).
- TLS/Services: No open ports, TLS certificates, or HTTP services detected.
---
**3. Historical Observations**
- Single Observation:
- Date: 2026-06-01
- Signal: CloudCompute (OVH), no CDN/VPN/Tor.
- Geo-Validation: RTT anomaly (22ms) suggests potential misrouting or proxy.
---
**4. Network Relationships**
- Subnet: 148.113.130.0/24 (OVH-owned).
- Neighbors:
- Total Siblings: 252 IPs.
- Abuse Density: 28% (mixed risk, 71 threat siblings).
- High-Risk Neighbors: 0 (low-risk subnet overall).
- Shared Network: OVH-CUST-281059688 (Ahrefs Pte Ltd).
---
**5. Actionable Intelligence**
- No Firewall Rules: No immediate action required based on risk profile.
- Monitor Geo-Discrepancies: Investigate RTT anomaly for potential misrouting or proxy behavior.
- Subnet Monitoring: Track neighbors for emerging threats (28% abuse density).
---
**6. Summary**
The IP 148.113.130.45 is a legitimate OVH-hosted cloud instance associated with Ahrefs Pte Ltd. While geolocation data shows inconsistencies (RTT anomaly), no malicious activity or threat indicators are detected. The subnet has a moderate abuse density, so ongoing monitoring of neighbors is recommended. No immediate defensive action is required, but anomalies in routing or DNS behavior should be investigated.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Dmytro, Ahrefs Pte Ltd |
| ASN | AS16276 |
| Network Name | OVH-CUST-281059688 |
| CIDR Block | 148.113.130.0/24 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | proxy-ca009-san45.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-ca009-san45.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 15% | 2 | 2 |
| reputation | 22% | 1 | 2 |
| geolocation | 33% | 2 | 3 |
| Overall | 21% | 10 | 13 |
| Data Coherence | Mostly Consistent (80%) โ 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-21 14:56:15 UTC |
| Last Seen | 2026-06-28 13:40:29 UTC |
| Profile Built | 2026-06-29 07:45:07 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 24 |
Full dossier details are available via our API.