15.235.98.214
IP Intelligence Briefing: 15.235.98.214
Date: 2026-06-12
---
**1. Core Profile**
- Risk Score: Moderate (50/100)
- Provider: OVH (ASN 16276)
- Organization: Ahrefs Pte Ltd (OVH-CUST-281059698)
- Geolocation:
- Country: Canada (CA)
- City: Singapore
- Geo Plausibility: Implausible (discrepancy between registered location and observed data).
- Network Role: CloudCompute (Hosting)
- Services: No open ports or TLS certificates detected.
---
**2. Threat Indicators**
- Malicious Activity: None detected (no indicators, blacklists, or campaigns).
- DNS Configuration:
- PTR hostname: `proxy-ca019-san214.ahrefs.net`
- Missing SPF/DMArc records (email security risk).
- BGP/Network:
- BGP prefix: `15.235.0.0/17`
- Route stability: Unstable (route changes in last 30 days).
---
**3. Observation History**
- Risk Trends: Stable minimal risk score (0.25) since 2026-06-01.
- Geo Validation: Persistent implausibility (distance/metrics inconsistent).
- Threat Signals: No significant changes in threat observability.
---
**4. Relationships**
- Linked Entities:
- Hostname: `proxy-ca019-san214.ahrefs.net` (Ahrefs infrastructure).
- Network: Subnet `15.235.98.0/24` (OVH customer network).
- DNS: No email authentication (SPF/DMArc) detected.
---
**5. Neighborhood Analysis**
- Subnet: `15.235.98.0/24` (253 IPs)
- Risk Distribution:
- Low Risk: 83 IPs
- Medium Risk: 17 IPs
- High Risk: 0 IPs
- Abuse Density: 39.13% (moderate risk concentration).
---
**6. Recommendations**
- DNS Security: Enforce SPF/DMArc records for `proxy-ca019-san214.ahrefs.net` to mitigate email spoofing risks.
- Geolocation Monitoring: Investigate geo plausibility discrepancy (Canada vs. Singapore).
- Network Segmentation: Monitor subnet `15.235.98.0/24` for abnormal activity due to moderate abuse density.
- BGP Stability: Validate route stability for `15.235.0.0/17` to prevent potential routing hijacks.
Conclusion: Legitimate cloud server with no active threats, but DNS misconfigurations and geo validation issues require further investigation.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Dmytro, Ahrefs Pte Ltd |
| ASN | AS16276 |
| Network Name | OVH-CUST-281059698 |
| CIDR Block | 15.235.98.0/24 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | proxy-ca019-san214.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-ca019-san214.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 22% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 19% | 9 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-31 05:07:44 UTC |
| Last Seen | 2026-06-29 08:13:55 UTC |
| Profile Built | 2026-06-29 08:35:14 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 19 |
Full dossier details are available via our API.