151.115.167.155
THREAT INTELLIGENCE BRIEFING
Target IP: 151.115.167.155/32
Classification: Low Risk / Cloud Infrastructure
Date: 2026-06-14
---
EXECUTIVE SUMMARY
IP 151.115.167.155 is a Scaleway cloud infrastructure endpoint with a low-risk profile (score: 25/100). The IP operates as a firewalled cloud compute instance with no active services exposed. While the immediate IP shows minimal malicious activity, the /24 subnet exhibits elevated abuse density (60%), indicating potential collateral risk from neighboring addresses.
---
TECHNICAL PROFILE
Infrastructure Classification:
- Provider: Scaleway (ASN 12876, RIR: Ripe)
- Infrastructure Type: Cloud Compute
- Network Role: Hosting/Cloud Infrastructure
- Geolocation: IT (Italy), Paris region (500km accuracy radius)
- BGP Prefix: 151.115.160.0/19
- Route Stability: Unstable (isRouteStable: false)
DNS Analysis:
- PTR Hostname: 155-167-115-151.instance.scw.eu
- Forward Resolution: heliosaetonthorin.clisporanten.pro (unconfirmed)
- DNSSEC: Valid
- Forward Resolution Count: 1
Service Exposure:
- Open Ports: None detected
- HTTP/TLS: No services responding
- Certificate: None
- Banner: None
---
THREAT ASSESSMENT
Current Risk Indicators:
- Risk Score: 25 (Low Risk)
- Blacklist Status: Clean (0 lists)
- Abuse Confidence: Not applicable
- Known Campaigns: None
- Tor Exit/Proxy: Negative
- Spam Source: Negative
Control Plane Signals:
- DNSBL Listed: 1 of 8 total lists
- Operator Score: 0.1304 (Minimal threat)
- RPKI: State not validated
- IRR Consistency: Not assessed
---
NEIGHBORHOOD CONTEXT (151.115.167.0/24)
- Abuse Density: 60% (elevated)
- Subnet Classification: Mostly Clean
- Total Siblings: 5 IPs
- Active Siblings: 1
- Threat Siblings: 3
- Inherited Risk: 7
Neighbor Risk Scores:
| IP Address | Risk Score | Authority Score |
|---|---|---|
| 151.115.167.95 | 25 | 50 |
| 151.115.167.119 | 25 | 50 |
| 151.115.167.146 | 25 | 50 |
| 151.115.167.210 | 25 | 50 |
---
OBSERVATION HISTORY
- Total Observations: 24 signals
- Recent Activity: 2026-06-14 (DNS, ownership, subnet, threat list, provider signals)
- Persistence: No persistent malicious activity detected
- Threat Persistence Days: 0
- Ownership Changes: 0
---
RELATIONSHIP GRAPH
- Total Relationships: 63
- Primary Relationship Type: Same Network (SCALEWAY-MIL)
- Correlated Infrastructure: Scaleway cloud network infrastructure
---
RECOMMENDATIONS
1. Monitoring: Continue passive monitoring; no immediate blocking required
2. Firewall Rules: No specific firewall rules generated (low-risk profile)
3. Subnet Context: Monitor the /24 subnet for elevated abuse activity (60% density)
4. Forward Resolution: Investigate forward DNS record (heliosaetonthorin.clisporanten.pro) for potential misconfiguration or malicious activity
---
ASSESSMENT NOTES
This IP represents standard cloud infrastructure with no immediate threat indicators. The elevated neighborhood abuse density warrants awareness but does not indicate direct malicious activity from this specific endpoint. Scaleway cloud instances are frequently used for legitimate web hosting and development workloads.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | ONLINE-NET-MNT |
| ASN | AS12876 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 155-167-115-151.instance.scw.eu |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 155-167-115-151.rev.scw.cloud |
๐ DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 36% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 34% | 2 | 5 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 27% | 10 | 18 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-14 13:23:41 UTC |
| Last Seen | 2026-06-28 00:44:08 UTC |
| Profile Built | 2026-06-28 18:49:42 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 29 |
Full dossier details are available via our API.