142.44.233.118
IP Intelligence Briefing: 142.44.233.118
Date: 2026-06-16
---
**1. Core Profile**
- Risk Score: 40 (Moderate Risk)
- Ownership: Registered to Ahrefs Pte Ltd (OVH ASN 16276).
- Geolocation: Canada (QC, Montreal), but coordinates and timezone are unverified.
- Network Role: CloudCompute infrastructure (OVH-hosted).
- Threat Indicators: No malicious activity detected (no indicators, blacklists, or campaigns).
---
**2. Network & Subnet Analysis**
- Subnet: 142.44.233.0/24 (OVH network).
- Abuse Density: 58.04% (high abuse classification).
- Neighbor Risk:
- Total Siblings: 255 IPs in subnet.
- Threat Siblings: 148 IPs flagged as risky.
- Active Siblings: 184 IPs.
- Subnet Stability: Route instability detected (58% abuse density).
---
**3. DNS & Hosting**
- PTR Record: `proxy-ca003-san118.ahrefs.net` (linked to ahrefs.net).
- Hosting: Likely a proxy or CDN node for Ahrefs, a legitimate SEO tool.
- DNSSEC: Validated.
- CAA Records: Present, indicating domain validation.
---
**4. Observation History**
- Latest Signals (June 16):
- Minimal operator risk score (0.2174).
- DNS and routing signals flagged for further analysis.
- Historical Activity (June 11):
- Subnet abuse density confirmed.
- No open ports or TLS services detected.
---
**5. Relationships**
- Linked Entities:
- DNS: `proxy-ca003-san118.ahrefs.net` (ahrefs.net).
- Network: OVH-CUST-281059682 (same subnet).
---
**6. Recommendations**
1. Monitor Subnet: High abuse density in 142.44.233.0/24 warrants closer scrutiny.
2. Verify Geolocation: Missing coordinates and timezone may indicate spoofing.
3. Check Hosting Provider: Confirm OVHβs security measures for cloud infrastructure.
4. Block Subnet (if applicable): Consider mitigating risks from the high-abuse subnet.
5. Validate DNS: Ensure `ahrefs.net` is not being used for malicious redirection.
---
Conclusion: While the IP itself is not malicious, its subnet exhibits high abuse activity. The association with Ahrefs suggests legitimate hosting, but the networkβs risk profile necessitates proactive monitoring and potential mitigation strategies.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Dmytro, Ahrefs Pte Ltd |
| ASN | AS16276 |
| Network Name | OVH-CUST-281059682 |
| CIDR Block | 142.44.233.0/24 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | β |
π DNS Intelligence
| PTR | proxy-ca003-san118.ahrefs.net |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-ca003-san118.ahrefs.net |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 33% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 26% | 1 | 4 |
| geolocation | 15% | 2 | 2 |
| Overall | 18% | 9 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-26 06:50:07 UTC |
| Last Seen | 2026-06-29 02:41:22 UTC |
| Profile Built | 2026-06-29 02:43:09 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 18 |
Full dossier details are available via our API.