15.235.98.96
## IPDebrief Threat Intelligence Summary: 15.235.98.96/32
Subject: IP Address Analysis - 15.235.98.96/32
Date: 2023-10-27
Source Data: [List the specific tools and data sources used for this analysis, e.g., VirusTotal, Shodan, AbuseIPDB, etc.]
Intelligence Narrative:
The IP address 15.235.98.96 belongs to a single, static IPv4 address.
Observed Activity:
* [Date]: Recorded as malicious by VirusTotal based on [number] antivirus detections.
* [Date]: Identified by AbuseIPDB as potentially involved in [list specific malicious activities reported, e.g., spam, phishing, malware distribution] with a risk score of [score].
Relationships:
* No direct relationships with known malicious IP addresses or domains were identified.
Neighborhood Data:
* The IP address is located in [AS number] which is [AS organization name] based in [country].
* No other IPs within the same subnet ( /32 ) were observed in the analyzed data.
Recommendations:
* Consider blocking 15.235.98.96 at the network perimeter.
* Monitor network traffic for any connections originating from or destined for this IP address.
* Investigate any suspicious activity associated with this IP address further.
Disclaimer: This report is based solely on the data available at the time of analysis. The threat landscape is constantly evolving, and this information may become outdated. Continuous monitoring and updates are essential for maintaining accurate threat intelligence.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Dmytro, Ahrefs Pte Ltd |
| ASN | AS16276 |
| Network Name | OVH-CUST-281059698 |
| CIDR Block | 15.235.98.0/24 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | proxy-ca019-san96.ahrefs.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | proxy-ca019-san96.ahrefs.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 19% | 2 | 2 |
| reputation | 31% | 1 | 3 |
| geolocation | 23% | 2 | 2 |
| Overall | 21% | 10 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-10 22:17:13 UTC |
| Last Seen | 2026-06-27 18:20:38 UTC |
| Profile Built | 2026-06-28 12:24:13 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 26 |
Full dossier details are available via our API.