198.244.183.144
# IP INTELLIGENCE BRIEFING: 198.244.183.144
Classification: LOW RISK
Date: 2026-06-25
Analyst: IPDebrief Intelligence Service
Status: Active Monitoring
---
## EXECUTIVE SUMMARY
IP 198.244.183.144 is a low-risk cloud infrastructure endpoint associated with Ahrefs Pte Ltd (ASN 16276) located in London, England. The address resolves to aresolves to aresolves to aresolves to aresolves to proxy-uk004-san144.ahrefs.net with no active service exposure. Current risk score is 25/100 (Low Risk) with no known threat campaign associations or malicious activity indicators.
---
## INFRASTRUCTURE PROFILE
| Attribute | Value |
|---|---|
| **IP Address** | 198.244.183.144/32 |
| **Organization** | Ahrefs Pte Ltd Dmytro |
| **ASN** | 16276 (OVH) |
| **Country/Region** | GB / England / London |
| **Infrastructure Type** | CloudCompute / Hosting |
| **DNS Target** | proxy-uk004-san144.ahrefs.net |
| **BGP Prefix** | 198.244.128.0/17 |
| **ISP** | OVH |
---
## THREAT ASSESSMENT
Risk Score: 25 (Low Risk)
Reputation Status: Low Risk
Known Threats: None Detected
Threat Indicators:
- Not classified as known attacker
- Not a spam source
- Not a Tor exit node or proxy
- No blacklisting evidence in active threat feeds
- No associated malware campaigns
Control Plane Analysis:
- Route stability: Stable (0 route changes in 30 days)
- DNSSEC Valid: Yes
- DNSBL Listed: 1 of 8 total lists
- Operator Score: 0.2174 (Minimal)
---
## NEIGHBORHOOD ANALYSIS
Subnet: 198.244.183.0/24
Abuse Density: 0.4258 (Mixed Classification)
Total Siblings: 256
Active Siblings: 212
Threat Siblings: 109
Inherited Risk Score: 17
Risk Distribution in Subnet:
- High Risk: 0 IPs
- Medium Risk: 76 IPs
- Low Risk: 24 IPs
*Note: The target IP resides in a subnet with elevated abuse density. While this specific endpoint shows no malicious behavior, the neighborhood context warrants monitoring for lateral threat migration.*
---
## OBSERVATION HISTORY
Total Observations: 31 signals tracked
Recent Signal Activity:
- 2026-06-25T11:47:09Z: Subnet abuse density analysis (confidence: 0.75)
- 2026-06-25T11:41:38Z: DNS CAA record verification (confidence: 0.80)
- 2026-06-25T11:41:23Z: Geolocation inference - GB/London (confidence: 0.28)
- 2026-06-25T11:39:53Z: Network classification - OVH Hosting (confidence: 0.85)
Temporal Analysis:
- No ownership changes detected
- Threat persistence days: 0
- Is persistently malicious: No
- Threat observation count: 1
---
## NETWORK RELATIONSHIPS
Total Relationships: 86 identified
Primary Association: OVH Network (OVH_282347340)
Connection Type: Cloud hosting infrastructure
---
## SERVICE EXPOSURE ANALYSIS
Open Ports: None detected
Services: Firewalled / No Services
TLS Certificate: None
HTTP Banner: None
*The endpoint appears to be firewalled with no publicly accessible services, reducing surface attack vectors.*
---
## RECOMMENDED ACTIONS
Current Security Recommendations: None Required
Firewall Rules: Not applicable
Monitoring Guidance:
1. Monitor subnet-level activity for lateral threat migration
2. Track DNS resolution patterns for ahrefs.net
3. Watch for any service exposure changes
4. Review neighborhood threat indicators periodically
---
## INTELLIGENCE CONCLUSION
IP 198.244.183.144 represents a benign cloud infrastructure endpoint for Ahrefs with no direct threat indicators. The low risk score and absence of malicious activity support continued monitoring without immediate blocking action. However, the subnet's elevated abuse density (0.4258) and presence of 109 threat-sibling IPs suggest the operational environment warrants periodic reassessment. No immediate security action recommended; maintain standard monitoring protocols.
---
*Intel Briefing generated by IPDebrief Intelligence Platform. Data accuracy subject to verification against multiple sources.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Ahrefs Pte Ltd Dmytro |
| ASN | AS16276 |
| Network Name | โ |
| CIDR Block | 198.244.128.0/17 |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | proxy-uk004-san144.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-uk004-san144.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 20% | 2 | 3 |
| services | 15% | 2 | 2 |
| ownership | 19% | 3 | 4 |
| reputation | 28% | 1 | 3 |
| geolocation | 31% | 2 | 3 |
| Overall | 24% | 12 | 19 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-08 23:18:23 UTC |
| Last Seen | 2026-06-27 14:28:13 UTC |
| Profile Built | 2026-06-28 08:33:22 UTC |
| Data Freshness | Live |
| Signal Types | 30 |
| Total Observations | 36 |
Full dossier details are available via our API.