## IP Intelligence Briefing: 3.137.192.223/32
Classification: Low Risk - Cloud Infrastructure
Report Date: Current
Risk Score: 25/100
Executive Summary
IP address 3.137.192.223 is an Amazon Web Services (AWS) EC2 instance deployed in the Columbus, OH region (us-east-2). The IP presents minimal threat indicators and is classified as cloud compute infrastructure. No malicious campaigns or known attacker indicators have been identified. The IP is currently listed on one DNS blackhole list out of eight checks performed.
Ownership and Infrastructure
| Attribute | Value |
|---|---|
| Organization | Amazon Technologies Inc. |
| ASN | 16509 |
| Network | AT-88-Z (3.128.0.0/9) |
| Location | Columbus, OH, US |
| Infrastructure Type | Cloud Compute (AWS EC2) |
| DNS Resolution | ec2-3-137-192-223.us-east-2.compute.amazonaws.com |
| PTR Record | ec2-3-137-192-223.us-east-2.compute.amazonaws.com |
Network Services and Signatures
The IP hosts two active services:
- TCP/80 (HTTP): Apache/2.4.58 server running on Ubuntu
- TCP/22 (SSH): OpenSSH_9.6p1 Ubuntu-3ubuntu13.16
Server banner indicates Apache/2.4.58 (Ubuntu). HTTP status code 200 confirmed.
Threat Intelligence Indicators
- Abuse Confidence Score: Not applicable
- Known Attacker: No
- Spam Source: No
- Tor Exit Node: No
- VPN/Proxy: No
- Known Campaigns: None detected
- Threat Feeds: No entries
Historical Observations
Analysis of 22 historical observations reveals:
- ASN confirmed as AMAZON-02 (Amazon.com, Inc., US) as of June 20, 2026
- Subnet classification remains "mostly_clean" with abuse density of 0.5
- Threat persistence days: 0
- Not flagged as persistently malicious
- No ownership changes detected
Neighborhood Assessment
Subnet: 3.137.192.223/24
- Abuse Density: 0.5 (classified as "mostly_clean")
- Risk Inheritance: 2
- Total Siblings: 2 (both active)
- Threat Siblings: 1
One neighboring IP (3.137.192.31) presents elevated risk with a score of 40 and authority score of 60. Risk distribution across the /24 subnet shows 1 medium-risk address.
Recommended Actions
Based on the current risk profile, standard operational monitoring is recommended. No blocking or filtering actions are currently warranted for this IP address.
Network Classification Flags:
- Cloud Infrastructure: Yes
- Hosting Service: Yes
- Anycast: No
- Bogon: No
- Residential: No
Conclusion
IP 3.137.192.223 represents legitimate AWS cloud infrastructure with no active malicious indicators. The associated subnet shows one neighboring IP with elevated risk that may warrant monitoring. No immediate defensive actions are required.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Technologies Inc. |
| ASN | AS16509 |
| Network Name | AT-88-Z |
| CIDR Block | 3.128.0.0/9 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | ec2-3-137-192-223.us-east-2.compute.amazonaws.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ec2-3-137-192-223.us-east-2.compute.amazonaws.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | Apache/2.4.58 |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 34% | 2 | 3 |
| routing | 47% | 1 | 6 |
| services | 30% | 2 | 3 |
| ownership | 27% | 2 | 3 |
| reputation | 23% | 1 | 2 |
| geolocation | 26% | 2 | 2 |
| Overall | 31% | 10 | 19 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-25 12:42:29 UTC |
| Last Seen | 2026-06-29 01:39:42 UTC |
| Profile Built | 2026-06-29 07:41:40 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 27 |
Full dossier details are available via our API.