18.118.197.108
IP Intelligence Briefing: 18.118.197.108
*Generated via IPDebrief tools (Profile, History, Relationships, Neighbors)*
---
**1. Core Profile**
- Risk Rating: Low Risk (Risk Score: 25)
- Ownership: Owned by Amazon Technologies Inc. (AS16509), part of AWS infrastructure.
- Geolocation: Columbus, Ohio, US (latitude 39.96, longitude -83).
- Network Role:
- Cloud Compute (AWS EC2 instance).
- Hosting: Yes; Residential/VPN/Tor: No.
- Threat Indicators: No malicious activity detected.
---
**2. Observation History (Last 30 Days)**
- Geo Validation: Failed due to ICMP blocking (likely AWS firewall/security groups).
- DNSBL Listings:
- Listed in 8 DNSBLs (high severity), but no confirmed abuse.
- Possible false positive or benign service-related entry.
- Operator Score: "Basic" (low risk, standard AWS infrastructure).
- Network Stability:
- BGP route stability: Unstable (route changes detected).
- DNSSEC validation: Enabled.
---
**3. Relationships**
- Linked Entities:
- AWS EC2 Hostname: `ec2-18-118-197-108.us-east-2.compute.amazonaws.com`.
- Same Network: Subnet `AT-88-Z` (Amazon AWS infrastructure).
- No External Threat Associations: No linked campaigns, domains, or certificates.
---
**4. Neighborhood Analysis**
- Subnet: `18.118.197.108/24` (abuse density: 0).
- Neighbors: No active or malicious sibling IPs in the subnet.
- Isolation: The IP is isolated, typical for cloud-hosted services.
---
**5. Actionable Insights**
- No Immediate Threat: The IP is a legitimate AWS EC2 instance with no confirmed malicious activity.
- Monitor DNSBL Status: Investigate the 8 DNSBL listings to confirm if they are false positives or related to specific services.
- Network Stability: AWS infrastructure may experience route instability due to dynamic cloud configurations.
- Firewall Rules: Allow traffic to this IP if required for cloud services, but monitor for unexpected changes.
Conclusion: This IP is a standard AWS cloud compute instance with no current threat indicators. SOC teams should focus on validating DNSBL entries and monitoring for anomalies in AWS infrastructure.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Technologies Inc. |
| ASN | AS16509 |
| Network Name | AT-88-Z |
| CIDR Block | 18.32.0.0/11 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | ec2-18-118-197-108.us-east-2.compute.amazonaws.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ec2-18-118-197-108.us-east-2.compute.amazonaws.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 24% | 1 | 3 |
| geolocation | 35% | 2 | 3 |
| Overall | 23% | 9 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-01 11:44:04 UTC |
| Last Seen | 2026-06-21 07:25:50 UTC |
| Profile Built | 2026-06-21 07:28:54 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 22 |
Full dossier details are available via our API.