212.47.251.220
IP Intelligence Briefing: 212.47.251.220
Date: 2026-06-12
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Provider: Scaleway (Cloud Compute)
- Geolocation: Paris, France (FR)
- Network Role: Cloud-hosted infrastructure (no open services detected)
- Ownership: ASN 12876 (MNT-TISCALIFR), registered to Scaleway.
---
**2. Threat Indicators**
- No malicious indicators detected (no blacklists, campaigns, or spam sources).
- DNS Associations: Linked to `instances.scw.cloud` (Scalewayβs managed DNS).
- BGP Data: Subnet `212.47.224.0/19` with route stability issues.
---
**3. Observation History**
- June 12, 2026:
- Geolocation inferred with 0.85 confidence (Paris, FR).
- 2/8 DNSBL lists flagged (high severity).
- June 1, 2026:
- Low-confidence geolocation (46.23°N, 2.21°E).
- No active threats or ownership changes.
---
**4. Network Relationships**
- Same Network: Scalewayβs `SCALEWAY-PAR1` subnet.
- DNS Hostnames: `220-251-47-212.instances.scw.cloud` (Scaleway-managed).
- No known malicious relationships or certificate ties.
---
**5. Neighborhood Analysis**
- Subnet: `212.47.251.220/24`
- Abuse Density: 0.5 (mixed risk).
- Neighbors:
- 212.47.251.8: Risk score 59 (medium risk).
- Other IPs: No high-risk siblings.
---
**6. Recommendations**
1. Monitor Neighbor Risk: The subnet contains a medium-risk IP (212.47.251.8). Investigate potential lateral movement or compromised hosts.
2. Verify DNS Activity: Ensure DNS associations (`instances.scw.cloud`) are legitimate and not used for command-and-control.
3. Check Route Stability: BGP instability in the `212.47.224.0/19` subnet may indicate network misconfigurations or spoofing risks.
4. Maintain Segmentation: Isolate cloud-hosted workloads to limit exposure from neighboring subnets.
Conclusion: The IP is associated with legitimate Scaleway cloud infrastructure but resides in a subnet with mixed risk. Prioritize monitoring of neighboring IPs and DNS activity for potential threats.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | MNT-TISCALIFR |
| ASN | AS12876 |
| Network Name | SCALEWAY-PAR1 |
| CIDR Block | 212.47.240.0/20 |
| RIR | RIPE |
| Country | FR |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 220-251-47-212.instances.scw.cloud |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | 220-251-47-212.instances.scw.cloud |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 2 | 2 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 27% | 2 | 3 |
| Overall | 19% | 9 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-30 10:58:53 UTC |
| Last Seen | 2026-06-29 07:40:30 UTC |
| Profile Built | 2026-06-29 07:44:00 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 21 |
Full dossier details are available via our API.