35.88.64.194

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP INTELLIGENCE BRIEFING

Target: 35.88.64.194/32

Classification: Low Risk / Legitimate Cloud Infrastructure

Date: 2026-06-20

Prepared For: SOC Operations Team

---

## EXECUTIVE SUMMARY

IP 35.88.64.194 is a low-risk Amazon Web Services (AWS) EC2 instance with no indicators of malicious activity. The IP demonstrates stable cloud infrastructure characteristics with zero blacklist listings and no active threat campaigns. Recommended classification: Monitor as benign cloud infrastructure.

---

## INFRASTRUCTURE PROFILE

Attribute	Value
Risk Score	25/100 (Low)
Organization	Amazon.com, Inc.
ASN	16509 (Amazon)
Location	Portland, Oregon, US (us-west-2)
Infrastructure Type	Cloud Compute (AWS EC2)
Service Status	Firewalled / No Open Services
Blacklist Status	Clean (0 listings)

---

## TECHNICAL OBSERVATIONS

Network Role: Cloud hosting provider infrastructure with standard AWS security controls. No open ports, TLS certificates, or HTTP services detected. The IP resolves to `ec2-35-88-64-194.us-west-2.compute.amazonaws.com`.

DNS Configuration: Valid forward resolution with SPF and DMARC records in place for the amazonaws.com domain.

Control Plane: BGP prefix 35.80.0.0/12 with stable routing. RPKI validation status unknown. DNSSEC valid.

---

## THREAT INDICATORS ANALYSIS

Active Threat Indicators: None

Campaign Affiliation: None detected

Abuse Confidence Score: Not applicable (legitimate cloud infrastructure)

Known Attacker Status: Negative

Spam Source Status: Negative

Tor Exit Node: Negative

Historical Persistence: 22 observations recorded over the monitoring period. No escalation in risk profile detected. Stability score indicates consistent behavior patterns.

---

## NEIGHBORHOOD CONTEXT

Subnet Analysis: 35.88.64.194/24

Abuse Density: 1 (Low)

Classification: Mostly Clean

Threat Siblings: 1 identified within /24

Risk Distribution: No high-risk neighbors detected

The IP resides within a clean cloud subnet with minimal abuse activity. The single threat sibling appears isolated and does not indicate coordinated malicious infrastructure.

---

## RELATIONSHIP MAPPING

Total Relationships: 42

Primary Associations:

Multiple network relationships to AMAZON-ZPDX (AWS infrastructure)
DNS hostname: ec2-35-88-64-194.us-west-2.compute.amazonaws.com
No malicious certificate or campaign correlations

No relationships indicate command-and-control infrastructure, botnet participation, or data exfiltration channels.

---

## SECURITY ACTIONS RECOMMENDATION

Current Risk Level: Monitor (No immediate action required)

Recommended Actions:

Continue passive monitoring
No firewall blocking required
No WAF rules necessary
No takedown procedures indicated

Justification: This IP represents legitimate AWS cloud infrastructure with no evidence of abuse. The low risk score (25/100), zero blacklist presence, and clean threat indicators support continued operation without intervention.

---

## INTELLIGENCE CONCLUSION

IP 35.88.64.194 is classified as legitimate cloud infrastructure with no actionable threat indicators. The IP demonstrates standard AWS security posture with proper DNS authentication and no malicious network behavior. SOC analysts should treat this IP as benign infrastructure and focus resources on IPs demonstrating elevated risk scores or active threat indicator matches.

---

*Intelligence compiled from IPDebrief threat intelligence platform. All data sourced from real-time network observation and historical signal analysis.*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇺🇸 United States
Region	OR
City	Portland
Timezone	America/Los_Angeles
Latitude	45.59
Longitude	-122.60

🏢 Ownership & Registration

Organization	Amazon.com, Inc.
ASN	AS16509
Network Name	—
CIDR Block	—
RIR	ARIN
Country	—
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR	ec2-35-88-64-194.us-west-2.compute.amazonaws.com
Forward Confirmed	Yes — FCrDNS verified
Forward Hostnames	`ec2-35-88-64-194.us-west-2.compute.amazonaws.com`

🔐 DNS Hygiene

Hygiene Score	80% (Excellent)
SPF	Present
DMARC	Present
FCrDNS	Verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Firewalled / No Services
Network Tier	Hosting — Infrastructure provider without advanced routing

CloudHosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
No open ports detected
Closed Ports	22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)

Server	—
HTTP Title	—

🔐 TLS Certificate

🔒

No certificate

Issued by —

N/A

SANs	None
Valid From	—
Valid Until	—

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	29%	2	4
routing	8%	1	1
services	15%	2	2
ownership	20%	2	3
reputation	28%	1	3
geolocation	33%	2	3
Overall	22%	10	16

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (70%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-15 14:46:14 UTC
Last Seen	2026-06-28 02:32:09 UTC
Profile Built	2026-06-28 20:37:51 UTC
Data Freshness	Live
Signal Types	23
Total Observations	26

🔍 23 signal types · 26 observations collected

This report is generated from 23+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

35.88.64.194📋 Copy