54.39.210.30
IP Intelligence Briefing: 54.39.210.30
*Generated via IPDebrief Analysis*
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Owned by OVH (AS16276) under Dmytro, Ahrefs Pte Ltd.
- Geolocation: Canada (QC, Beauharnois).
- Network Role: CloudCompute hosting infrastructure (OVH).
- Threat Indicators: No malicious activity, no blacklists, no known campaigns.
---
**2. Observation History**
- Recent Activity: Observed as a cloud-hosted IP with stable ownership (no changes in 30 days).
- Threat Trends: No persistent malicious behavior; last threat observation in June 2026.
- Subnet Context: Part of 54.39.210.0/24, with abuse density of 49.6% (moderate risk).
---
**3. Relationships & Dependencies**
- DNS Associations: Linked to proxy-ca007-san30.ahrefs.net (Ahrefs Pte Ltd).
- Network Connections: No direct ties to Tor, CDN, or mobile carriers.
- Subnet Neighbors:
- 130 active IPs in the subnet.
- 125 threat-scorched siblings (medium/high risk).
- Inherited risk: 19 (moderate).
---
**4. Neighborhood Analysis**
- Subnet Risk: Mixed (49.6% abuse density).
- Neighbor Risks:
- 78 IPs flagged as medium risk.
- 21 IPs flagged as low risk.
- Notable: IP itself is low risk, but subnet contains a significant number of potentially malicious IPs.
---
**5. Recommended Actions**
- Firewall Rules: No specific rules required for this IP.
- Monitoring:
- Monitor the 54.39.210.0/24 subnet for suspicious activity due to high neighbor risk.
- Validate DNS associations (e.g., `proxy-ca007-san30.ahrefs.net`) for potential compromise.
---
Conclusion:
54.39.210.30 is a low-risk cloud-hosted IP associated with Ahrefs, but its subnet contains a moderate risk of malicious activity. No immediate action is required for this IP, but broader monitoring of the subnet is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Dmytro, Ahrefs Pte Ltd |
| ASN | AS16276 |
| Network Name | OVH-CUST-281059686 |
| CIDR Block | 54.39.210.0/24 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | proxy-ca007-san30.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-ca007-san30.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 19% | 2 | 2 |
| reputation | 31% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 21% | 10 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-23 12:24:27 UTC |
| Last Seen | 2026-06-28 21:59:56 UTC |
| Profile Built | 2026-06-29 04:01:53 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 21 |
Full dossier details are available via our API.