51.159.160.135
## IP Intelligence Briefing: 51.159.160.135/32
Classification: Moderate Risk Cloud Infrastructure
Report Date: Current analysis based on IPDebrief intelligence platform data
---
EXECUTIVE SUMMARY
IP address 51.159.160.135 is a dedicated cloud server hosted on Scaleway infrastructure in Paris, France. The IP presents a moderate risk profile (65/100) with no active threat indicators. The subnet shows clean classification with zero abuse density. This appears to be legitimate hosting infrastructure, though the moderate risk score warrants continued monitoring.
---
OWNERSHIP AND NETWORK PROFILE
| Attribute | Value |
|---|---|
| **Organization** | Mickael Marchand |
| **Network Name** | ONLINENET_DEDICATED_SERVERS |
| **ASN** | 12876 |
| **CIDR Block** | 51.159.0.0/16 |
| **RIR** | ARIN |
| **Provider** | Scaleway |
| **Infrastructure Type** | CloudCompute |
| **Geolocation** | Paris, Île-de-France, France |
| **Country Code** | FR |
| **Reverse DNS** | 135-160-159-51.instances.scw.cloud |
---
THREAT ASSESSMENT
Overall Risk Score: 65/100 (Moderate Risk)
Threat Indicators:
- Blacklist Count: 0
- DNSBL Listed: 3 of 8 total lists
- Known Campaigns: None identified
- Known Attacker: No
- Spam Source: No
- Tor Exit Node: No
Risk Breakdown:
- Provider Score: 0
- Authority Score: 0
- Stability Score: 0
Control Plane:
- Operator Score: 0.1304 (Minimal)
- Route Changes (30d): 0
- Route Stability: False
- DNSSEC: Valid
- RPKI State: Unknown
---
NETWORK NEIGHBORHOOD ANALYSIS
Subnet: 51.159.160.135/24
| Metric | Value |
|---|---|
| **Abuse Density** | 0% |
| **Classification** | Clean |
| **Total Siblings** | 1 |
| **Active Siblings** | 0 |
| **Threat Siblings** | 0 |
Risk Distribution: High: 0, Medium: 0, Low: 0
No neighboring IPs show malicious activity in the immediate /24 subnet.
---
SERVICE AND PORT ANALYSIS
Open Ports: None detected
Service Purpose: Firewalled / No Services
HTTP Title: None
Server Banner: None
TLS Certificate: None
The IP has no active services exposed, indicating it is either properly firewalled or represents infrastructure without public-facing services.
---
OBSERVATION HISTORY
Recent signal observations indicate:
- Ownership Changes: 0
- Threat Persistence Days: 0
- Threat Observation Count: 0
- Persistently Malicious: No
The IP has demonstrated consistent ownership with no observed escalation in threat activity. Recent observations (June 22, 2026) confirm stable operational characteristics.
---
RELATIONSHIP MAPPING
Identified relationships:
- Same Network: ONLINENET_DEDICATED_SERVERS
- DNS Association: 135-160-159-51.instances.scw.cloud (multiple DNS records)
No certificate matches or correlated IPs detected in the relationship graph.
---
RECOMMENDED ACTIONS
For SOC Analysts:
- Priority: Medium
- Action: Monitor but no immediate mitigation required
- Rationale: Moderate risk score driven by DNSBL listings (3 of 8 lists) with no active threat indicators. The IP represents legitimate cloud infrastructure.
Firewall Rules: No specific blocking recommended. Allow monitoring for traffic patterns that may indicate compromise.
Investigation Triggers:
- Any connection attempts to this IP from known malicious sources
- Traffic anomalies in associated DNS records
- Unexpected service activation on this IP
---
INTELLIGENCE JUDGMENT
This IP address represents Scaleway cloud infrastructure in a Paris datacenter. The moderate risk classification stems from DNSBL presence rather than active malicious behavior. The clean subnet environment and lack of threat indicators support a conclusion of legitimate hosting. Continue standard monitoring protocols and investigate any unusual traffic patterns associated with this infrastructure.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Mickael Marchand |
| ASN | AS12876 |
| Network Name | ONLINENET_DEDICATED_SERVERS |
| CIDR Block | 51.159.0.0/16 |
| RIR | ARIN |
| Country | FR |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 135-160-159-51.instances.scw.cloud |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | 135-160-159-51.instances.scw.cloud |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 41% | 2 | 4 |
| routing | 17% | 1 | 1 |
| services | 28% | 2 | 2 |
| ownership | 45% | 2 | 4 |
| reputation | 34% | 1 | 3 |
| geolocation | 39% | 2 | 3 |
| Overall | 34% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-06-16 12:27:29 UTC |
| Last Seen | 2026-06-22 00:34:18 UTC |
| Profile Built | 2026-06-22 06:37:46 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 27 |
Full dossier details are available via our API.