198.244.183.46
IP Intelligence Briefing: 198.244.183.46
*Generated via IPDebrief tools: Profile, History, Relationships, Neighbors*
---
**1. Core Profile**
- Risk Score: 40 (Moderate Risk)
- Ownership:
- AS: AS16276 (OVH)
- Organization: Ahrefs Pte Ltd (SEO services)
- Geolocation: London, England, UK
- Network Role:
- Hosting provider (OVH infrastructure)
- No public services (open ports, TLS, or HTTP detected)
- Threat Indicators:
- No malicious indicators, spam, or known attacker associations
- DNS: PTR record points to `proxy-uk004-san46.ahrefs.net`
---
**2. Observation History**
- 30-Day Trends:
- Stable risk profile with no significant changes
- Subnet abuse density: 0.5 (high risk for the /24 network)
- No spikes in DNS, geolocation, or threat signals
---
**3. Relationships**
- Network Associations:
- Linked to OVH network (AS16276)
- DNS: Resolves to `ahrefs.net` (legitimate domain)
- Subnet Context:
- Part of `198.244.183.46/24` with 100 sibling IPs
- 130 of 256 IPs in subnet flagged as high-risk
---
**4. Neighborhood Analysis**
- Subnet Risk:
- Abuse density: 50.78% (high_abuse classification)
- 85 active IPs in subnet, 130 marked as threats
- Inherited Risk:
- IP inherits 20% risk from subnet activity
- No direct malicious associations
---
**5. Recommendations**
- Monitor Subnet: High abuse density in the /24 network warrants closer scrutiny of traffic patterns.
- Verify DNS: Confirm legitimacy of `ahrefs.net` and associated proxies.
- Baseline Behavior: No immediate action required for the IP itself, but continuous monitoring is advised due to subnet risk.
Conclusion: The IP is part of a hosting providerβs network associated with a legitimate SEO firm. While no direct threats are detected, the subnetβs high abuse density suggests potential indirect risks. SOC teams should prioritize monitoring the subnet for lateral movements or anomalous activity.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Ahrefs Pte Ltd Dmytro |
| ASN | AS16276 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | proxy-uk004-san46.ahrefs.net |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-uk004-san46.ahrefs.net |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 22% | 1 | 2 |
| geolocation | 25% | 2 | 2 |
| Overall | 20% | 10 | 13 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-19 15:38:28 UTC |
| Last Seen | 2026-06-28 09:08:24 UTC |
| Profile Built | 2026-06-29 03:12:46 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 24 |
Full dossier details are available via our API.