54.38.147.135
IP Intelligence Briefing: 54.38.147.135
Date: 2026-06-15
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Ahrefs Pte Ltd (OVH ASN 16276)
- Geolocation: London, England, GB (inferred via DNS and BGP data)
- Network Role: Hosting provider (OVH infrastructure, CloudCompute)
- Threat Indicators: No malicious activity detected (no spam, attacks, or blacklists).
---
**2. Observation History**
- Recent Activity:
- 2026-06-15: Low-risk BGP prefix (54.38.0.0/16) with no attacker indicators.
- 2026-06-01: DNSSEC-valid domain (`ahrefs.net`) with CAA records.
- 2026-06-01: Subnet `54.38.147.135/24` shows moderate abuse density (0.3789) with 97 threat-siblings.
- Stability: No ownership or threat persistence detected.
---
**3. Relationships & Network**
- Linked Entities:
- BGP prefix `54.38.0.0/16` (OVH infrastructure).
- DNS: `proxy-uk005-san135.ahrefs.net` (hosted by `ahrefs.net`).
- Subnet Neighbors:
- 100 IPs in `54.38.147.135/24` (256 total).
- Risk Distribution: 63 medium-risk, 37 low-risk IPs.
- Abuse Density: 0.3789 (mixed classification, 97 threat-siblings).
---
**4. Actionable Insights**
- No Immediate Threat: The IP is associated with a legitimate hosting provider and shows no malicious signals.
- Monitor Subnet: The subnet has moderate abuse density; investigate neighboring IPs for potential risks.
- Verify DNS: Confirm `ahrefs.net` is a legitimate domain (no DNSBL listings).
- Security Recommendations:
- Allow traffic unless specific threats are detected.
- Monitor subnet for unusual activity due to mixed risk profile.
Conclusion: 54.38.147.135 is a low-risk IP associated with a legitimate hosting provider. While its subnet has moderate abuse density, no direct threats are indicated. Continue monitoring for anomalies.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Ahrefs Pte Ltd Dmytro |
| ASN | AS16276 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | proxy-uk005-san135.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-uk005-san135.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 31% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 39% | 2 | 3 |
| Overall | 26% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-20 05:45:08 UTC |
| Last Seen | 2026-06-28 11:28:01 UTC |
| Profile Built | 2026-06-29 05:32:35 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 26 |
Full dossier details are available via our API.