13.115.250.234
# IP Intelligence Briefing: 13.115.250.234/32
## Executive Summary
The IP address 13.115.250.234/32 is identified as a legitimate Amazon Web Services (AWS) cloud compute infrastructure resource with a low-risk profile. The address is associated with Amazon Data Services Japan (ASN 16509) and is located in the Tokyo region (ap-northeast-1). No malicious activity, threat indicators, or abuse signatures were detected across all intelligence sources.
## Infrastructure Profile
| Attribute | Value |
|---|---|
| **IP Address** | 13.115.250.234 |
| **Risk Score** | 25 (Low Risk) |
| **Provider** | Amazon Web Services |
| **Organization** | Amazon Data Services Japan |
| **ASN** | 16509 (AMAZON-NRT) |
| **CIDR Block** | 13.112.0.0/14 |
| **Location** | Tokyo, Japan (35.68°N, 139.69°E) |
| **Infrastructure Type** | Cloud Compute |
| **Classification** | Hosted / Cloud Infrastructure |
## DNS & Hostname Analysis
The IP resolves to: `ec2-13-115-250-234.ap-northeast-1.compute.amazonaws.com`
- Forward resolution: Confirmed (1 hostname)
- PTR record: ec2-13-115-250-234.ap-northeast-1.compute.amazonaws.com
- Domain: amazonaws.com
- DNSSEC: Valid
## Service & Port State
No open ports were detected. The infrastructure is configured with a firewalled/no-services posture, consistent with AWS cloud instance default configurations.
## Threat Intelligence Assessment
| Indicator | Status |
|---|---|
| Is Tor Exit Node | No |
| Is Known Attacker | No |
| Is Spam Source | No |
| Blacklist Count | 0 |
| Threat Feeds | None |
| Known Campaigns | None |
| Abuse Confidence Score | Not applicable |
## Network Neighborhood Analysis
The /24 subnet (13.115.250.0/24) shows:
- Abuse Density: 0 (clean)
- Classification: Mostly Clean
- Total Siblings: 1
- Active Siblings: 1
- Threat Siblings: 1
The neighborhood demonstrates minimal abuse activity, with the target IP being the only active sibling in the subnet.
## Observation History
The IP has been observed 19 times in the intelligence dataset. The most recent observations (June 2026) confirm:
- Consistent cloud infrastructure classification
- Stable geolocation data (Tokyo, Japan)
- No changes in ownership or network role
- No emergence of threat indicators
The temporal analysis indicates no persistent malicious behavior, with 0 threat persistence days and 1 threat observation count (routine infrastructure detection, not malicious).
## Relationships Graph
The IP maintains 33 relationships, primarily:
- DNS associations to EC2 hostname (4+ instances)
- Same network associations (AMAZON-NRT)
- Provider infrastructure links
All relationships align with legitimate AWS cloud infrastructure patterns.
## Recommended Actions
Based on the risk profile and threat intelligence:
- No blocking required: The IP is a legitimate AWS cloud resource
- No firewall rules needed: No malicious activity detected
- Standard logging: Monitor for unusual outbound connections if this IP is an internal-facing resource
- Acceptable for inbound traffic: No security concerns identified
## Conclusion
IP 13.115.250.234 is a benign AWS EC2 instance in the Tokyo region. The low risk score (25), absence of threat indicators, and clean neighborhood classification support treating this as legitimate cloud infrastructure. No defensive action is recommended based on current intelligence.
---
*Intelligence compiled from IPDebrief platform. Data current as of analysis timestamp.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Amazon Data Services Japan |
| ASN | AS16509 |
| Network Name | AMAZON-NRT |
| CIDR Block | 13.112.0.0/14 |
| RIR | ARIN |
| Country | Japan |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | ec2-13-115-250-234.ap-northeast-1.compute.amazonaws.com |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | ec2-13-115-250-234.ap-northeast-1.compute.amazonaws.com |
๐ DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 21% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-25 00:40:06 UTC |
| Last Seen | 2026-06-29 00:44:51 UTC |
| Profile Built | 2026-06-29 06:48:27 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 23 |
Full dossier details are available via our API.