44.220.185.22
IP Intelligence Briefing: 44.220.185.22/32
Date: 2026-06-12
---
**1. Core Profile**
- Risk Score: 0 (Low Risk)
- Ownership: Amazon Data Services Northern Virginia (AS14618)
- Geolocation: Ashburn, VA, US (39.05°N, -77.49°E)
- Network Role: Cloud infrastructure (AWS) with no exposed services or open ports.
- Threat Indicators: No malicious activity detected (no blacklists, Tor, or spam sources).
---
**2. Observation History**
- Recent Activity (2026-06-12):
- Confirmed as AWS infrastructure (cloud-hosted, no residential/mobile traits).
- Mixed signals: Some sources flagged potential threats (pulse_count=40), but confidence levels are low (0.3β0.95).
- No persistent malicious behavior (threatObservationCount=0).
---
**3. Relationships**
- Linked Entities:
- Subnet: AMAZON-IAD (AWS network).
- No connections to known malicious organizations, domains, or certificates.
- No peer relationships detected.
---
**4. Neighborhood Analysis**
- Subnet: 44.220.185.22/24
- Abuse Density: 0% (low risk subnet).
- Neighboring IPs:
- 24/25 high-risk IPs (riskScore=25β65), including one critical neighbor (44.220.185.254, riskScore=65).
- 12 low-risk IPs (riskScore=0).
- 1 medium-risk IP (riskScore=50).
---
**5. Recommendations**
- Monitor Subnet: The high-risk neighbor (44.220.185.254) may require closer scrutiny.
- Verify Configuration: Ensure AWS infrastructure is not misconfigured or compromised.
- No Blocking Needed: Legitimate AWS IP with no active threats.
Conclusion: 44.220.185.22 is a low-risk AWS server. While the subnet contains some high-risk neighbors, the IP itself shows no malicious activity. Focus on monitoring the subnet for potential lateral movement or compromised hosts.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Data Services Northern Virginia |
| ASN | AS14618 |
| Network Name | AMAZON-IAD |
| CIDR Block | 44.192.0.0/11 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | scanner-44-220-185-22.reposify.net |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | scanner-44-220-185-22.reposify.net |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | β |
| Closed Ports | 22, 25, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | Reposify |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 21% | 2 | 2 |
| routing | 30% | 2 | 3 |
| services | 13% | 1 | 1 |
| ownership | 37% | 3 | 5 |
| reputation | 17% | 1 | 2 |
| geolocation | 30% | 2 | 3 |
| Overall | 25% | 11 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-02 12:04:18 UTC |
| Last Seen | 2026-06-21 08:47:55 UTC |
| Profile Built | 2026-06-21 09:12:46 UTC |
| Data Freshness | Live |
| Signal Types | 27 |
| Total Observations | 32 |
Full dossier details are available via our API.