198.244.240.227
IP Intelligence Briefing: 198.244.240.227
Date: 2026-06-09
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Ahrefs Pte Ltd (ASN 16276, OVH provider)
- Geolocation: London, England, GB (inferred via DNS signals; coordinates missing)
- Network Role: CloudCompute infrastructure (OVH-hosted, no public services)
- Threat Indicators: No malicious activity detected (no blacklists, campaigns, or DNS-based threats).
---
**2. Observation History**
- Recent Activity (2026-06-09):
- Geolocation inferred via DNS signals (accuracy ±750km).
- Network classification confirmed as OVH CloudCompute.
- No significant changes in risk scores or threat signals.
- Historical Context (2026-05-31):
- Same network and infrastructure type observed.
- Low-risk DNS associations persist.
---
**3. Relationships**
- DNS Associations:
- Linked to `proxy-uk006-san227.ahrefs.net` (likely Ahrefs internal proxy).
- Network Relationships:
- Part of OVH network `OVH_282347342` (198.244.128.0/17).
- No External Threat Links:
- No connections to known malicious entities, campaigns, or C2 servers.
---
**4. Neighborhood Analysis**
- Subnet: 198.244.240.0/24 (100 IPs).
- Risk Distribution:
- 80% low-risk IPs, 20% medium-risk (no abuse detected).
- Notable Neighbors:
- IPs with risk scores 25โ50 (primarily OVH CloudCompute infrastructure).
---
**5. Actionable Intelligence**
- No Immediate Threat:
- IP is part of a legitimate cloud infrastructure with no malicious signals.
- Monitor for Changes:
- Track geolocation accuracy and network classification (OVH CloudCompute).
- DNS Context:
- Investigate Ahrefs proxy hostname (`proxy-uk006-san227.ahrefs.net`) for internal network mapping.
---
Conclusion:
This IP is a low-risk, legitimate cloud asset owned by Ahrefs. No threat indicators detected, but ongoing monitoring is recommended for any shifts in network behavior or DNS associations. No immediate defensive action required.
Tools Used: `ipdebrief_profile`, `ipdebrief_history`, `ipdebrief_relationships`, `ipdebrief_neighbors`.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Ahrefs Pte Ltd Dmytro |
| ASN | AS16276 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | proxy-uk006-san227.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-uk006-san227.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 35% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 23% | 9 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-20 05:44:21 UTC |
| Last Seen | 2026-06-28 11:04:43 UTC |
| Profile Built | 2026-06-29 05:09:47 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 24 |
Full dossier details are available via our API.