62.210.208.90
# IP Intelligence Briefing: 62.210.208.90/32
Classification: LOW RISK / WEB SERVER INFRASTRUCTURE
Date: Current Analysis
Analyst: IPDebrief Intelligence Team
---
## EXECUTIVE SUMMARY
IP 62.210.208.90 operates as a low-risk web server hosted on Scaleway cloud infrastructure in Paris, France. The address carries a risk score of 25/100, shows no active threat indicators, and demonstrates stable infrastructure characteristics over the observation period. No immediate defensive action required, though routine monitoring recommended.
---
## INFRASTRUCTURE PROFILE
Network Ownership:
- ASN: 12876 (SCALEWAY)
- Organization: SCALEWAY-DEDIBOX
- CIDR Block: 62.210.128.0/17
- RIR: RIPE
- Geolocation: France (Île-de-France, Paris)
Service Classification:
- Infrastructure Type: Cloud hosting (Scaleway)
- Network Role: Web server
- Connection Type: Standard internet connectivity
- Not flagged as: CDN, VPN, proxy, Tor exit, mobile, or residential IP
---
## NETWORK SERVICES & PORTS
| Port | Protocol | Service | Status |
|---|---|---|---|
| 80 | TCP | HTTP | Open |
| 443 | TCP | HTTPS | Open |
| 22 | TCP | SSH | Open |
TLS Certificate Details:
- Issuer: CN=YR2, O=Let's Encrypt, C=US
- Subject CN: isi4.l759.com
- Certificate Type: Third-party CA (not self-signed)
- Server Software: nginx
---
## DNS ANALYSIS
| Field | Value |
|---|---|
| PTR Hostname | 62-210-208-90.rev.poneytelecom.eu |
| Forward Resolution | Confirmed |
| Domain | poneytelecom.eu |
| SPF Record | Not configured |
| DMARC Record | Not configured |
| TXT Records | 0 |
Note: Reverse DNS resolves to a Poney Telecom hostname, indicating potential hosting infrastructure association.
---
## THREAT INTELLIGENCE ASSESSMENT
Threat Indicators: None detected
- Blacklist Count: 0
- Known Attacker: No
- Spam Source: No
- Tor Exit Node: No
- Known Campaigns: None
Risk Breakdown:
- Overall Risk Score: 25/100 (Low)
- Provider Score: 0
- Authority Score: 0
- Stability Label: Not applicable
Control Plane:
- BGP Prefix: 62.210.0.0/16
- RPKI State: Not verified
- DNSSEC Valid: Yes
- DNSBL Listings: 1 of 8 lists
- Operator Score: 0.2609 (Basic)
---
## HISTORICAL ANALYSIS (25 OBSERVATIONS)
Temporal Consistency:
- Observation Period: Multiple signals from June 2026
- Geolocation Stability: Consistent France assignment across all observations
- Infrastructure Consistency: Scaleway provider maintained throughout observation period
- Signal Variance: Minor inconsistencies between cloud/hosting classifications across observation timestamps
Key Historical Signals:
- Cloud infrastructure classification confirmed in recent observations
- France geolocation consistently validated
- DNS records stable with poneytelecom.eu reverse resolution
- No emergence of threat indicators over observation window
---
## NEIGHBORHOOD ANALYSIS
Subnet: 62.210.208.90/24
- Abuse Density: 0.0 (No abuse activity detected in subnet)
- Classification: Mostly clean
- Active Siblings: 1
- Threat Siblings: 1 (single flagged IP in /24)
- Overall Risk: Inherited risk score of 2
Assessment: The /24 subnet demonstrates minimal abuse activity. Single threat sibling suggests isolated malicious activity rather than coordinated abuse.
---
## RELATIONSHIP GRAPH
Primary Associations:
- Network: SCALEWAY-DEDIBOX (multiple same-network relationships)
- DNS: 62-210-208-90.rev.poneytelecom.eu (multiple DNS associations)
- No certificate associations detected
Assessment: Limited relationship footprint indicates standalone infrastructure deployment without significant interdependencies.
---
## RECOMMENDED ACTIONS
Firewall/Security Recommendations: None (Low Risk Profile)
Standard SOC Guidance:
1. Monitor: Continue routine monitoring; no immediate blocking required
2. Verify: Standard web traffic expected on ports 80/443
3. SSH Consideration: Port 22 is open; ensure inbound SSH access is properly secured
4. Certificate Monitoring: TLS certificate issued by Let's Encrypt; monitor for expiration and renewal
Action Thresholds:
- Block if: Risk score increases above 75 or threat indicators emerge
- Investigate if: Unusual traffic patterns detected on port 22
- Monitor: DNS and certificate expiration dates
---
## CONCLUSION
IP 62.210.208.90 represents standard cloud web hosting infrastructure with low-risk characteristics. The address demonstrates stability across multiple observation periods, maintains clean threat posture, and shows no evidence of malicious activity. Recommended classification as LOW RISK with routine monitoring. No immediate defensive action required.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | SCALEWAY |
| ASN | AS12876 |
| Network Name | SCALEWAY-DEDIBOX |
| CIDR Block | 62.210.128.0/17 |
| RIR | RIPE |
| Country | FR |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 62-210-208-90.rev.poneytelecom.eu |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 62-210-208-90.rev.poneytelecom.eu |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | 0/2 domains |
| DMARC | 0/2 domains |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
| Domains Checked | 2 domains |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| 22 | ssh | tcp | |
| Closed Ports | 25, 3389, 8080, 8443 (3 open / 7 scanned) | ||
| Server | nginx |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u10 |
๐ TLS Certificate
| SANs | isi4.l759.com |
| Valid From | 2026-05-28T14:38:13+00:00 |
| Valid Until | 2026-08-26T14:38:12+00:00 |
| TLS Protocol | Tls12 |
| Cipher Suite | TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 |
| Signature Algorithm | sha256RSA |
| Validity Period | 89 days |
| Serial Number | 069D25DA16FD7D3818280491B02BE0C5AE56 |
| Thumbprint | 56AABC16EB46B699B2BC1ADB08B14FC0DD3DDEF0 |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 33% | 2 | 4 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 27% | 2 | 2 |
| Overall | 25% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-06-01 23:54:57 UTC |
| Last Seen | 2026-06-29 10:19:23 UTC |
| Profile Built | 2026-06-29 10:22:10 UTC |
| Data Freshness | Live |
| Signal Types | 24 |
| Total Observations | 25 |
Full dossier details are available via our API.