34.207.206.236
# INTELLIGENCE BRIEFING: IP 34.207.206.236/32
## Executive Summary
IP address 34.207.206.236 is a low-risk Amazon Web Services (AWS) cloud compute instance located in Ashburn, Virginia. The IP exhibits standard cloud infrastructure characteristics with no active threat indicators, no open services, and consistent ownership history. Recommended classification: LOW RISK / MONITOR ONLY.
---
## Infrastructure Profile
Ownership & Provider:
- Organization: Amazon Technologies Inc.
- ASN: 14618 (AMAZON-AES)
- Network Block: 34.192.0.0/10 (AT-88-Z)
- RIR: ARIN
- Registration: 2016-09-12
Geolocation:
- Country: United States (US)
- Region: Virginia (VA)
- City: Ashburn
- Coordinates: 39.04°N, -77.49°W
- Timezone: America/New_York
- Geo Confidence: High (multiple sources, consensus verified)
Network Role:
- Infrastructure Type: Cloud Compute
- Classification: Cloud Provider (AWS EC2)
- Hosting: Yes
- Anycast: No
- Proxy/Tor/VPN: No
---
## DNS & Service Analysis
DNS Configuration:
- PTR Hostname: ec2-34-207-206-236.compute-1.amazonaws.com
- Forward Resolution: Confirmed (1 hostname)
- Domain: amazonaws.com
- Email Auth: SPF and DMARC configured
Service Exposure:
- Open Ports: None detected
- TLS Certificate: Not observed
- HTTP Services: None
- Status: Firewalled / No Services
Control Plane:
- Origin ASN: 14618
- BGP Prefix: 34.192.0.0/12
- Route Stability: Unstable (false)
- DNSSEC: Valid
- DNSBL Listings: 1/8 total lists
---
## Threat Assessment
Risk Score: 25/100 (LOW RISK)
Threat Indicators:
- Abuse Confidence Score: N/A
- Blacklist Count: 0
- Tor Exit Node: No
- Known Attacker: No
- Spam Source: No
- Known Campaigns: None
- Persistently Malicious: No
Campaign Analysis:
- Likelihood: None
- Certificate Matches: 0
- Correlated IPs: 0
---
## Neighborhood Analysis
Subnet: 34.207.206.236/24
Abuse Density: 1/5 (Low-Moderate)
Classification: Mostly Clean
Sibling Analysis:
- Total Siblings: 1
- Active Siblings: 1
- Threat Siblings: 1
Risk Distribution: High: 0, Medium: 0, Low: 0
*Note: Neighborhood data indicates minimal threat activity within the /24 subnet, consistent with AWS infrastructure patterns.*
---
## Observation History
Signal Count: 23 observations
Ownership Changes: 0 (Stable ownership)
Threat Persistence: 0 days
Recent Signals (2026-06-21):
- ASN 14618 consistently identified via team-cymru-dns
- Geolocation: Ashburn, VA (confidence 0.56)
- Subnet abuse density: 1 (mostly_clean classification)
- No attacker/Spam/Tor indicators
- No persistent malicious behavior detected
Temporal Analysis:
- Threat Observation Count: 1
- Ownership Stability: High (no changes)
- Persistence: No sustained malicious activity observed
---
## Relationships Graph
Total Relationships: 42
Key Associations:
- Same Network: AT-88-Z (multiple instances)
- DNS Association: ec2-34-207-206-236.compute-1.amazonaws.com (multiple entries)
---
## Security Recommendations
Classification: LOW RISK - Standard Cloud Infrastructure
Recommended Actions:
- No immediate blocking required
- Monitor as part of standard cloud provider baseline
- Verify if traffic originates from expected AWS service patterns
- Apply standard cloud provider egress/ingress filtering
Firewall Considerations:
- No specific rules required beyond standard AWS infrastructure policies
- Traffic should be evaluated based on expected cloud provider behavior
- Monitor for unusual outbound connections from EC2 instance
Investigation Triggers:
- Any deviation from expected AWS EC2 behavior patterns
- Unexpected inbound connection attempts
- Service discovery attempts on closed ports
---
## Conclusion
IP 34.207.206.236 represents a standard Amazon Web Services cloud compute instance with no active threat indicators. The IP demonstrates consistent infrastructure characteristics expected from AWS EC2 deployments. No immediate security action required; maintain standard cloud provider monitoring procedures.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Technologies Inc. |
| ASN | AS16509 |
| Network Name | AT-88-Z |
| CIDR Block | 34.192.0.0/10 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | ec2-34-207-206-236.compute-1.amazonaws.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ec2-34-207-206-236.compute-1.amazonaws.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 33% | 2 | 4 |
| Overall | 23% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-30 23:04:30 UTC |
| Last Seen | 2026-06-29 08:08:01 UTC |
| Profile Built | 2026-06-29 08:09:36 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 24 |
Full dossier details are available via our API.