IPDebrief

3.86.228.228

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP INTELLIGENCE BRIEFING: 3.86.228.228/32

Classification: Low Risk β€” AWS Infrastructure Instance

Date: Current Analysis

Analyst: IPDebrief Intelligence Team

---

EXECUTIVE SUMMARY

Target IP 3.86.228.228 is a legitimate Amazon Web Services (AWS) infrastructure instance located in Ashburn, Virginia. The asset presents a low-risk profile (risk score: 25/100) with no active threat indicators, open services, or malicious activity detected. The IP belongs to AWS's Northern Virginia region (AMAZON-IAD) and operates within the 3.80.0.0/12 CIDR block.

---

OWNERSHIP & GEOLOCATION

AttributeValue
**Organization**Amazon Data Services Northern Virginia
**ASN**14618
**Network**AMAZON-IAD (3.80.0.0/12)
**Location**Ashburn, VA, United States
**Coordinates**39.05°N, -77.49°W
**RIR**ARIN
**Registration**Commercial AWS Infrastructure

---

THREAT ASSESSMENT

Risk Score: 25 (Low)

Abuse Confidence: None

Blacklist Status: 1 DNSBL listing (non-blocking)

Known Campaigns: None

Threat Indicators:

Network Classification:

---

OBSERVATION HISTORY

Total Observations: 19

Latest Signal: 2026-06-21

Historical Trend: Consistent low-risk profile with no escalation patterns observed.

Temporal Indicators:

---

RELATIONSHIP MAPPING

DNS Associations:

Network Relationships:

No external threat correlations identified.

---

NEIGHBORHOOD ANALYSIS (3.86.228.0/24)

MetricValue
**Subnet Abuse Density**0%
**High-Risk Neighbors**0
**Medium-Risk Neighbors**0
**Low-Risk Neighbors**0
**Classification**Clean

Conclusion: The /24 subnet shows no abuse activity or malicious neighbors. This is consistent with AWS infrastructure hosting patterns.

---

OPERATIONAL INTELLIGENCE

DNS Resolution:

Email Reputation:

Control Plane:

---

RECOMMENDED ACTIONS

Classification: No Action Required β€” Legitimate Infrastructure

SystemRecommended Action
**Firewall**Allow (no blocking required)
**WAF**No rules needed
**SIEM**No correlation rules required
**Threat Intel**No enrichment needed

Rationale: This is a standard AWS EC2 instance with no malicious indicators. The IP is part of AWS's legitimate cloud infrastructure and presents no threat to defensive operations.

---

END OF BRIEFING

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡ΊπŸ‡Έ United States
RegionVA
CityAshburn
TimezoneAmerica/New_York
Latitude39.04
Longitude-77.49

🏒 Ownership & Registration

OrganizationAmazon Data Services Northern Virginia
ASNAS14618
Network NameAMAZON-IAD
CIDR Block3.80.0.0/12
RIRARIN
CountryUnited States
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTRec2-3-86-228-228.compute-1.amazonaws.com
Forward ConfirmedYes β€” FCrDNS verified
Forward Hostnamesec2-3-86-228-228.compute-1.amazonaws.com

πŸ” DNS Hygiene

Hygiene Score80% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAANot configured

☁️ Network Classification

InfrastructureUnknown
Service PurposeFirewalled / No Services
Network TierTier 3 β€” Basic operator with some routing infrastructure
No specific classification

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Closed Ports22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)
Serverβ€”
HTTP Titleβ€”

πŸ” TLS Certificate

πŸ”’
No certificate
Issued by β€”
N/A
SANsNone
Valid Fromβ€”
Valid Untilβ€”

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
24%
22
routing
17%
11
services
17%
11
ownership
35%
23
reputation
17%
12
geolocation
24%
22
Overall22%911
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-06-12 03:19:26 UTC
Last Seen2026-06-21 19:28:41 UTC
Profile Built2026-06-21 19:37:47 UTC
Data FreshnessLive
Signal Types21
Total Observations22
πŸ” 21 signal types Β· 22 observations collected
This report is generated from 21+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.