15.235.98.27
IP Intelligence Briefing: 15.235.98.27
*Generated via IPDebrief tools: Profile, History, Relationships, Neighbors*
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership:
- ASN: AS16276 (OVH)
- Organization: Dmytro, Ahrefs Pte Ltd
- CIDR: 15.235.98.0/24
- Geolocation:
- Country: Canada (CA)
- City: Singapore (geo-plausibility flagged due to RTT inconsistencies)
- Latitude/Longitude: Unresolved (potential spoofing or misconfiguration)
- Network Role:
- CloudCompute infrastructure (OVH-hosted)
- No public services (open ports, TLS, or HTTP indicators)
---
**2. Threat & Behavior**
- Threat Indicators:
- No malicious activity, spam, or known attacker associations.
- No DNS-based threats or blacklisted IPs in the subnet.
- Geolocation Anomalies:
- RTT (28ms) inconsistent with claimed 6,082km distance (minimum possible RTT: 121.6ms).
- Possible spoofed location or hybrid cloud infrastructure.
---
**3. Relationships & DNS**
- Linked Hostnames:
- `proxy-ca019-san27.ahrefs.net` (Ahrefs proxy service)
- DNS Records:
- PTR hostname confirmed; no email authentication (SPF/DKIM) detected.
- Network Associations:
- Part of OVHโs `OVH-CUST-281059698` subnet (cloud customer).
---
**4. Subnet & Neighborhood**
- Subnet: 15.235.98.0/24
- Neighbor Risk:
- 76 low-risk IPs, 24 medium-risk IPs (abuse density: 0%).
- No high-risk or malicious neighbors detected.
- Subnet Classification:
- Low abuse density; no peer-to-peer or botnet activity observed.
---
**5. Observational Trends**
- Stability:
- No ownership changes or threat persistence over 30 days.
- Consistent classification as a cloud-hosted service.
- Historical Data:
- Last observed: June 2026 (no recent suspicious activity).
---
**6. Recommendations**
- Monitoring: Track geolocation anomalies and subnet activity for irregularities.
- Firewall: Allow traffic unless explicitly blocked (no high-risk indicators).
- Investigation: Verify geolocation accuracy, as discrepancies may indicate misconfiguration or spoofing.
Conclusion: 15.235.98.27 is a low-risk cloud-hosted proxy service by Ahrefs. No immediate threat detected, but geolocation inconsistencies warrant further scrutiny.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Dmytro, Ahrefs Pte Ltd |
| ASN | AS16276 |
| Network Name | OVH-CUST-281059698 |
| CIDR Block | 15.235.98.0/24 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | proxy-ca019-san27.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-ca019-san27.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 41% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 19% | 2 | 2 |
| reputation | 31% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 25% | 10 | 15 |
| Data Coherence | Mostly Consistent (80%) โ 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-24 06:32:31 UTC |
| Last Seen | 2026-06-28 23:39:53 UTC |
| Profile Built | 2026-06-29 05:42:42 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 22 |
Full dossier details are available via our API.