18.144.3.82
IP Intelligence Briefing: 18.144.3.82
Date: 2026-06-12
---
**1. Core Profile**
- Reputation: Moderate Risk (Risk Score: 65)
- Ownership:
- Provider: Amazon.com, Inc. (ASN: 16509)
- Network: AMAZON-SFO (CIDR: 18.144.0.0/16)
- Geolocation:
- City: San Jose, CA, US (Latitude: 37.35, Longitude: -121.96)
- Accuracy: 150 km (inferred via multi-signal inference)
- Network Role:
- Cloud Infrastructure: AWS-hosted server (EC2 instance)
- Services: No open ports or TLS certificates detected
---
**2. Threat & Risk Analysis**
- Threat Indicators:
- No direct malicious activity or known campaigns detected.
- Inherited Risk: Subnet (18.144.3.82/24) has a low abuse density (score: 1), but 1 threat sibling IP observed.
- Historical Observations (30-day window):
- Stable ownership (Amazon AWS) with no ownership changes.
- No spikes in threat signals or DNS anomalies.
- DNS & Hosting:
- Resolves to `ec2-18-144-3-82.us-west-1.compute.amazonaws.com` (valid SPF/DMArC).
- No email-related risks or malicious domain associations.
---
**3. Network Relationships**
- Linked Entities:
- DNS: Direct association with AWS EC2 hostname.
- Network: Same subnet (18.144.3.82/24) linked to Amazon-SFO.
- Subnet Context:
- Total Siblings: 1 (no active neighbors detected).
- Classification: "Mostly Clean" with minimal inherited risk.
---
**4. Actionable Insights**
- No Immediate Threat: The IP is a legitimate AWS server with no direct malicious activity.
- Monitor Subnet: The subnet has a low abuse density, but the presence of 1 threat sibling warrants closer inspection of neighboring IPs (if available).
- Cloud Infrastructure: Likely a non-residential, non-malicious server. No firewall rules or security actions recommended unless additional context (e.g., unusual traffic) arises.
---
Conclusion:
18.144.3.82 is a standard AWS cloud infrastructure IP with moderate risk due to inherited subnet factors. No direct malicious indicators are present, but SOC teams should monitor for anomalies in traffic patterns or subnet-level threats.
Recommendation:
- Continue standard cloud security hygiene practices for AWS-hosted assets.
- Investigate the threat sibling in the subnet if further context or alerts emerge.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon.com, Inc. |
| ASN | AS16509 |
| Network Name | AMAZON-SFO |
| CIDR Block | 18.144.0.0/16 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | ec2-18-144-3-82.us-west-1.compute.amazonaws.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ec2-18-144-3-82.us-west-1.compute.amazonaws.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 24% | 1 | 3 |
| geolocation | 35% | 2 | 3 |
| Overall | 23% | 9 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-01 11:44:04 UTC |
| Last Seen | 2026-06-21 07:26:00 UTC |
| Profile Built | 2026-06-21 07:28:53 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 22 |
Full dossier details are available via our API.