IPDebrief

18.189.43.56

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IPDEBRIEF INTELLIGENCE BRIEFING

## Target: 18.189.43.56/32

Classification: LOW RISK – Legitimate Cloud Infrastructure

Date: Intelligence compiled from IPDebrief analysis

---

EXECUTIVE SUMMARY

IP 18.189.43.56 is a low-risk Amazon Web Services (AWS) EC2 instance located in the Columbus, Ohio region. No malicious indicators, abuse activity, or threat signals were detected. The IP operates within a clean subnet with no neighboring abuse activity. No defensive actions are recommended at this time.

---

INFRASTRUCTURE PROFILE

AttributeValue
**Risk Score**25 (Low Risk)
**ASN**16509 (Amazon Technologies Inc.)
**Organization**Amazon Technologies Inc.
**Network Block**18.32.0.0/11 (AT-88-Z)
**Location**Columbus, OH, US (39.96°N, -83°W)
**Infrastructure Type**Cloud Compute (AWS EC2)
**Service Status**Firewalled / No Open Services

DNS Resolution: ec2-18-189-43-56.us-east-2.compute.amazonaws.com

PTR Record: Valid and forward-resolved

---

THREAT INTELLIGENCE

IndicatorStatusDetails
**Threat Indicators**NoneNo malicious activity detected
**Blacklist Status**Clean0 blacklist entries
**Abuse Confidence**N/ANo abuse signals observed
**Known Attacker**NoNot associated with attack campaigns
**Spam Source**NoNot flagged as spam origin
**Tor Exit Node**NoNot a Tor exit node
**Known Campaigns**NoneZero campaign associations

Campaign Analysis: No active or historical campaign involvement. Cert matches: 0, correlated IPs: 0, banner matches: 0.

---

OBSERVATION HISTORY

Total Observations: 23 signals over monitoring period

DateSignal TypeClassificationNotes
2026-06-21Routing/NetworkBasicNormal operation
2026-06-16Subnet AnalysisCleanAbuse density: 0
2026-06-16TracerouteValidatedGeo-plausible (6,580km from probe)

Temporal Trends:

---

NETWORK NEIGHBORHOOD ANALYSIS

Subnet: 18.189.43.56/24

MetricValue
**Abuse Density**0 (Clean)
**Classification**Clean
**Total Siblings**1
**Active Siblings**1
**Threat Siblings**0
**Risk Distribution**High: 0, Medium: 0, Low: 0

Assessment: The /24 subnet exhibits no abuse activity. The target IP is the only active endpoint in the subnet with a clean security posture.

---

RELATIONSHIP GRAPH

Relationship TypeTargetStatus
DNS Associationec2-18-189-43-56.us-east-2.compute.amazonaws.comValid
Same NetworkAT-88-Z (18.32.0.0/11)Legitimate

External Correlations: None detected. No suspicious third-party associations or command-and-control relationships.

---

SECURITY RECOMMENDATIONS

Action: NO ACTION REQUIRED

Rationale:

If Traffic Observed:

---

CONCLUSION

IP 18.189.43.56 represents legitimate Amazon Web Services cloud infrastructure with no security concerns. The IP is properly registered, geolocation-validated, and operates within a clean network environment. Standard monitoring practices are recommended; no defensive blocking or alerting actions are warranted based on current intelligence.

---

Data Sources: IPDebrief Intelligence Platform

Analysis Methodology: Multi-source correlation including DNS, geolocation, threat feeds, routing data, and historical observation

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡ΊπŸ‡Έ United States
RegionOH
CityColumbus
TimezoneAmerica/New_York
Latitude39.96
Longitude-83.00

🏒 Ownership & Registration

OrganizationAmazon Technologies Inc.
ASNAS16509
Network NameAT-88-Z
CIDR Block18.32.0.0/11
RIRARIN
CountryUnited States
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTRec2-18-189-43-56.us-east-2.compute.amazonaws.com
Forward ConfirmedYes β€” FCrDNS verified
Forward Hostnamesec2-18-189-43-56.us-east-2.compute.amazonaws.com

πŸ” DNS Hygiene

Hygiene Score80% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAANot configured

☁️ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeFirewalled / No Services
Network TierTier 3 β€” Basic operator with some routing infrastructure
CloudHosting

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Closed Ports22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)
Serverβ€”
HTTP Titleβ€”

πŸ” TLS Certificate

πŸ”’
No certificate
Issued by β€”
N/A
SANsNone
Valid Fromβ€”
Valid Untilβ€”

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
32%
23
routing
13%
11
services
19%
22
ownership
27%
23
reputation
17%
12
geolocation
30%
23
Overall23%1014
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-06-02 18:12:46 UTC
Last Seen2026-06-21 09:03:12 UTC
Profile Built2026-06-21 09:13:55 UTC
Data FreshnessLive
Signal Types23
Total Observations26
πŸ” 23 signal types Β· 26 observations collected
This report is generated from 23+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.