IP Intelligence Briefing: 142.44.233.46/32
*Generated via IPDebrief Analysis*
---
**1. Core Profile**
- Risk Score: 40 (Moderate Risk)
- Provider: OVH (AS16276)
- Organization: Dmytro, Ahrefs Pte Ltd (OVH-CUST-281059682)
- Geolocation:
- Country: Canada (CA)
- City: Singapore (geo-plausibility violation due to RTT mismatch)
- Network Role: Cloud compute instance (OVH infrastructure, no services exposed)
---
**2. Threat Indicators**
- Malicious Activity: No direct indicators (no malware, spam, or known attacker associations).
- Subnet Risk:
- /24 Subnet: 256 IPs, 148 flagged as threats (abuse density: 57.81%).
- Inherited Risk: 23 (high abuse classification).
- DNS:
- PTR hostname: `proxy-ca003-san46.ahrefs.net` (linked to Ahrefs, no abuse flags).
---
**3. Historical Observations**
- Recent Activity:
- Geo validation violation (RTT 26ms vs. expected 112ms for 5,598km distance).
- Subnet abuse density increased from 0.5781 to 0.7539 in 30 days.
- Ownership Stability: Stable (no recent transfers).
---
**4. Network Relationships**
- Connected Entities:
- BGP prefix: `142.44.128.0/17` (AS16276, OVH).
- DNS: `proxy-ca003-san46.ahrefs.net` (no abuse indicators).
- Subnet Neighbors:
- 184 active IPs in the `/24` subnet.
- 148 IPs flagged as threats (high-risk cluster).
---
**5. Actionable Insights**
- Risk Mitigation:
- Monitor traffic from this subnet due to high abuse density.
- Verify geolocation spoofing (RTT anomaly suggests potential IP masking).
- Network Segmentation:
- Consider isolating this IP if itβs not critical, given the subnetβs risk profile.
- DNS Monitoring:
- Track `proxy-ca003-san46.ahrefs.net` for unexpected behavior, though no abuse flags are present.
---
Conclusion:
The IP is part of a high-risk subnet with significant malicious activity in its neighborhood. While the IP itself shows no direct threats, its association with a compromised subnet and geo-plausibility issues warrants close monitoring. SOC teams should prioritize isolating or blocking traffic from this subnet if not required.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Dmytro, Ahrefs Pte Ltd |
| ASN | AS16276 |
| Network Name | OVH-CUST-281059682 |
| CIDR Block | 142.44.233.0/24 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | β |
π DNS Intelligence
| PTR | proxy-ca003-san46.ahrefs.net |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-ca003-san46.ahrefs.net |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 21% | 2 | 2 |
| routing | 27% | 2 | 3 |
| services | 13% | 1 | 1 |
| ownership | 30% | 3 | 3 |
| reputation | 17% | 1 | 2 |
| geolocation | 27% | 2 | 3 |
| Overall | 23% | 11 | 14 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-11 03:51:21 UTC |
| Last Seen | 2026-06-21 18:32:28 UTC |
| Profile Built | 2026-06-21 18:46:50 UTC |
| Data Freshness | Live |
| Signal Types | 24 |
| Total Observations | 28 |
Full dossier details are available via our API.