3.91.60.82
THREAT INTELLIGENCE BRIEFING
Target IP: 3.91.60.82/32
Date of Analysis: Current
Classification: Cloud Infrastructure (AWS)
Risk Assessment: LOW RISK
---
EXECUTIVE SUMMARY
Target 3.91.60.82 is a legitimate Amazon Web Services (AWS) cloud compute instance located in Ashburn, Virginia (Northern Virginia Region). The IP presents a low risk profile (Risk Score: 25) with no active threat indicators. Analysis indicates this is a standard AWS EC2 instance (ec2-3-91-60-82.compute-1.amazonaws.com) with appropriate security controls in place. No immediate blocking or mitigation actions are recommended.
---
OWNERSHIP & INFRASTRUCTURE
| Attribute | Value |
|---|---|
| ASN | 14618 |
| Organization | Amazon Data Services Northern Virginia |
| Network | AMAZON-IAD (3.80.0.0/12) |
| Infrastructure Type | CloudCompute |
| Provider | Amazon Web Services |
| CIDR Block | 3.80.0.0/12 |
Geolocation: Ashburn, VA, US (39.04°N, 77.49°W)
---
THREAT INDICATORS
| Indicator | Status | Details |
|---|---|---|
| Blacklist Status | Clean | 0 blacklist listings |
| Tor Exit Node | False | Not identified |
| Known Attacker | False | Not in threat databases |
| Spam Source | False | Not flagged |
| Abuse Confidence Score | N/A | No active abuse signals |
| Threat Persistence | 0 days | No persistent malicious activity |
Threat Observations: 0 historical threat observations recorded.
---
NETWORK CLASSIFICATION & SERVICES
- Infrastructure Type: CloudCompute (AWS EC2)
- Connection Type: Firewalled / No Services
- Open Ports: None detected
- DNS Hostname: ec2-3-91-60-82.compute-1.amazonaws.com
- Forward Resolution: Confirmed (1 resolution)
- Email Authentication: SPF and DMARC records present
- HTTP Services: None exposed
---
NEIGHBORHOOD ANALYSIS
- Subnet: 3.91.60.82/24
- Abuse Density: 0.0
- Risk Distribution: Clean
- Active Siblings: 1
- Threat Siblings: 0
- Classification: Clean subnet
No neighboring IPs in the /24 subnet show elevated risk scores.
---
RELATIONSHIP MAPPING
32 relationships identified:
- Network Associations: Multiple entries linking to AMAZON-IAD
- DNS Associations: ec2-3-91-60-82.compute-1.amazonaws.com
- Campaign Correlations: 0
All relationships confirm AWS infrastructure connectivity with no malicious entity associations.
---
HISTORICAL OBSERVATION TRENDS
Total Observations: 22 signals
Key Historical Signals:
- June 21, 2026: ASN 14618 (AMAZON-AES) resolution, US geolocation confirmed
- June 21, 2026: DNSSEC and routing signals detected
- Ownership Stability: No ownership changes recorded
The IP has demonstrated consistent ownership within AWS infrastructure with no escalation in risk signals over the observation period.
---
RECOMMENDED ACTIONS
Firewall/Network Controls:
- No immediate blocking recommended
- Monitor for unexpected service exposure if previously firewalled
- Standard cloud security policies apply
Investigation Guidance:
- No suspicious activity detected
- Traffic patterns consistent with legitimate cloud infrastructure
- No correlation with known malicious campaigns
---
RISK VERDICT: APPROVED FOR TRAFFIC
This IP address represents standard AWS cloud infrastructure with no malicious indicators. No defensive actions required. Continue monitoring for any changes in service exposure or threat indicators.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Data Services Northern Virginia |
| ASN | AS16509 |
| Network Name | AMAZON-IAD |
| CIDR Block | 3.80.0.0/12 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | ec2-3-91-60-82.compute-1.amazonaws.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ec2-3-91-60-82.compute-1.amazonaws.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 19% | 2 | 2 |
| Overall | 20% | 10 | 13 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-31 11:14:36 UTC |
| Last Seen | 2026-06-29 08:35:39 UTC |
| Profile Built | 2026-06-29 08:52:51 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 29 |
Full dossier details are available via our API.