3.238.17.211
IP Intelligence Briefing: 3.238.17.211
Date: 2026-06-16
---
**1. Risk Profile**
- Risk Score: 25 (Low Risk)
- Provider Score: 0 (No provider-specific risk)
- Authority Score: 0 (No authoritative threat indicators)
- Stability: Stable (no recent anomalies)
- Threat Indicators: None detected (no malware, spam, or attack signatures).
---
**2. Ownership & Network Context**
- ISP/Provider: Amazon Data Services (ASN 14618)
- Organization: Amazon Web Services (AWS)
- Geolocation: Ashburn, VA, US (data center location).
- Network Role: AWS CloudCompute instance (firewalled, no public services).
- Subnet: 3.238.17.211/24 (clean, zero abuse density).
---
**3. Observation History**
- Recent Activity (2026-06-11 to 2026-06-16):
- Consistently classified as AWS infrastructure.
- No DNS or network anomalies.
- No threat feeds or blacklists flagged.
- Stability score remains neutral.
---
**4. Relationships & Dependencies**
- DNS Associations:
- Resolves to `ec2-3-238-17-211.compute-1.amazonaws.com` (AWS EC2 instance).
- Network Links:
- Part of the "AMAZON-IAD" network (AWS data center in Ashburn).
- No Known Malicious Relationships:
- No linked campaigns, spam, or malicious domains.
---
**5. Subnet & Neighborhood Analysis**
- Subnet: 3.238.17.211/24
- Neighbor Count: 0 (single-host subnet).
- Abuse Density: 0% (clean subnet).
---
**6. Recommendations**
- No Immediate Action Required:
- Legitimate AWS infrastructure with no malicious indicators.
- Monitor for Anomalies:
- Track changes in network behavior or DNS resolution.
- Firewall Rules (if needed):
- Allow traffic from trusted AWS subnets (e.g., 3.224.0.0/12) if blocking cloud traffic.
---
Conclusion: This IP is a benign AWS EC2 instance with no threat activity. No action required unless targeting AWS infrastructure for specific security testing.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Data Services Northern Virginia |
| ASN | AS16509 |
| Network Name | AMAZON-IAD |
| CIDR Block | 3.224.0.0/12 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | ec2-3-238-17-211.compute-1.amazonaws.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ec2-3-238-17-211.compute-1.amazonaws.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 19% | 1 | 2 |
| services | 15% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 21% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-26 18:57:45 UTC |
| Last Seen | 2026-06-29 03:20:34 UTC |
| Profile Built | 2026-06-29 03:24:05 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 24 |
Full dossier details are available via our API.