54.39.136.218
IP Intelligence Dossier
Your IP: 216.73.216.123
๐ค Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 54.39.136.218/32
Date: 2026-06-15
---
**1. IP Profile**
- Risk Score: Moderate (50/100)
- Ownership: Owned by OVH (ASN 16276), registered to "Dmytro, Ahrefs Pte Ltd" (ARIN).
- Geolocation: Canada (QC, Beauharnois).
- Network Role: Cloud compute infrastructure (OVH-hosted).
- Threat Indicators: No malicious activity detected (no indicators, blacklists, or campaigns).
- Services: No open ports or TLS certificates identified.
---
**2. Observation History**
- Recent Signals:
- Stable network classification (OVH, cloud hosting).
- Operator score: "Minimal" (0.2174).
- No persistent threats or abuse observed.
- Temporal Trends: No significant changes in risk or ownership over the past 30 days.
---
**3. Relationships**
- Network Associations:
- Linked to subnet `54.39.136.0/24` (OVH-CUST-281059681).
- DNS PTR record: `proxy-ca002-san218.ahrefs.net` (Ahrefs-related).
- No Malicious Linkage: No connections to known malicious domains, organizations, or campaigns.
---
**4. Neighborhood Analysis**
- Subnet: `54.39.136.0/24` (OVH-managed).
- Abuse Density: Moderate (42.68% of neighbors flagged as risky).
- Neighbor Risk Distribution:
- High Risk: 0 IPs
- Medium Risk: 89 IPs
- Low Risk: 11 IPs
- Notable: 105 neighbors flagged as "threat siblings" (potential compromised hosts).
---
**5. Recommendations**
- Monitor Subnet: The subnet has a moderate abuse density; investigate high-risk neighbors for potential lateral movement or compromised hosts.
- Validate DNS: Verify the legitimacy of `proxy-ca002-san218.ahrefs.net` and ensure no DNS hijacking or spoofing.
- Network Segmentation: Consider isolating this subnet if it hosts sensitive assets, given the mixed-risk environment.
- Baseline Observations: No immediate action required for the IP itself, but continuous monitoring is advised.
---
Source: IPDebrief Threat Intelligence Platform.
Classification: Moderate Risk (Non-Emergent).
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Dmytro, Ahrefs Pte Ltd |
| ASN | AS16276 |
| Network Name | OVH-CUST-281059681 |
| CIDR Block | 54.39.136.0/24 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | proxy-ca002-san218.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-ca002-san218.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
No certificate
Issued by โ
N/A
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 33% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 31% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 21% | 9 | 12 |
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-23 12:24:24 UTC |
| Last Seen | 2026-06-28 21:50:43 UTC |
| Profile Built | 2026-06-29 09:55:44 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 21 |
๐ 18 signal types ยท 21 observations collected
This report is generated from 18+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
โน๏ธ About This Report
All data shown is publicly available network metadata โ IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.