15.235.96.11
IP Intelligence Briefing: 15.235.96.11
Date: 2026-06-13
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Provider: OVH (CloudCompute)
- Geolocation:
- Country: Singapore (geoPlausible: False)
- Region/City: Singapore
- ASN: AS16276 (OVH)
- Ownership:
- Organization: Ahrefs Pte Ltd (linked via DNS)
- Subnet: 15.235.96.0/24 (OVH CIDR)
- Threat Indicators:
- No malicious indicators, spam, or known attacker associations.
- No DNSBL listings or threat feeds.
---
**2. Network Behavior**
- Services:
- No open ports or TLS certificates detected.
- No HTTP server banners or active services.
- Control Plane:
- BGP Prefix: 15.235.0.0/17
- Route Stability: Unstable (routeChanges30d: 0, isRouteStable: False)
- DNSSEC: Valid,CAA records present.
- Hosting Role: CloudCompute infrastructure (OVH), likely a firewalled/secure environment.
---
**3. Observation History**
- Recent Activity (Last 30 Days):
- 15 observations, with geolocation data showing mixed results (Singapore/US).
- Operator Score: Minimal (0.2174).
- Threat Persistence: No persistent malicious activity.
- Geolocation Discrepancy:
- Confirmed Singaporean IP but some sources flag it as US (latitude: 37.751, longitude: -97.822).
---
**4. Relationships & Neighbors**
- DNS Associations:
- Linked to `proxy-ca015-san11.ahrefs.net` (Ahrefs Pte Ltd).
- No email authentication (SPF/DKIM) detected.
- Subnet Neighbors (15.235.96.0/24):
- Abuse Density: 0% (low-risk subnet).
- Neighbor Risk: 58% Low Risk, 40% Medium Risk (no malicious IPs identified).
---
**5. Actionable Insights**
- SOC Recommendations:
- Monitor for unexpected service exposure or port openings.
- Validate geolocation anomalies (Singapore vs. US) via additional probes.
- Investigate Ahrefs DNS associations to confirm legitimacy.
- Threat Context:
- No immediate threats detected, but the IPโs cloud hosting role may require ongoing scrutiny for unauthorized access.
---
Conclusion: 15.235.96.11 is a low-risk OVH CloudCompute instance associated with Ahrefs. While no malicious activity is observed, the geolocation inconsistency and DNS ties warrant further validation. No urgent mitigation required.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Dmytro, Ahrefs Pte Ltd |
| ASN | AS16276 |
| Network Name | OVH-CUST-281059694 |
| CIDR Block | 15.235.96.0/24 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | proxy-ca015-san11.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-ca015-san11.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 2 | 2 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 15% | 1 | 2 |
| geolocation | 13% | 1 | 1 |
| Overall | 15% | 8 | 9 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-06-05 13:13:41 UTC |
| Last Seen | 2026-06-21 12:17:24 UTC |
| Profile Built | 2026-06-21 12:21:39 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 20 |
Full dossier details are available via our API.