IP Intelligence Briefing: 44.220.188.180
Date: June 11, 2026
---
**1. Overview**
- Risk Profile: Low risk (Risk Score: 25).
- Ownership: Owned by Amazon Data Services (AS14618), part of AWS infrastructure.
- Geolocation: Ashburn, VA, US (cloud data center).
- Network Role: Cloud compute instance (AWS VPC), no public services detected.
---
**2. Threat Indicators**
- Malicious Activity: No direct indicators of compromise (IOCs) or known campaigns.
- DNS Associations: Linked to `scanner-44-220-188-180.reposify.net` (PTR record). Investigate if this hostname is tied to scanning tools or legitimate services.
- Subnet Risk: Subnet `44.220.188.180/24` has moderate abuse density (0.45), with 15/33 sibling IPs flagged as threats.
---
**3. Historical Observations**
- Activity Trends: No significant changes in risk scores or threat signals over the last 30 days.
- Consistency: Stable geolocation and network ownership.
---
**4. Network Relationships**
- Shared Network: Part of AMAZON-IAD (AWS infrastructure).
- DNS Links: Associated with `reposify.net` (potential scanning or testing infrastructure).
- Neighbor Analysis: Subnet contains a mix of low/medium-risk IPs. Notable high-risk siblings: 15/33.
---
**5. Recommendations**
1. Monitor Subnet: Given the moderate abuse density, prioritize monitoring traffic from neighboring IPs in `44.220.188.180/24` for anomalies.
2. Verify DNS Hostname: Investigate `scanner-44-220-188-180.reposify.net` for legitimate use (e.g., CI/CD pipelines) or malicious scanning.
3. Cloud Security: Ensure AWS security groups and firewalls restrict unnecessary access to this compute instance.
4. Subnet Segmentation: Consider isolating high-risk siblings in the subnet to mitigate lateral movement risks.
---
Note: This IP is part of AWS infrastructure, but its subnet contains mixed-risk activity. SOC teams should correlate this data with internal logs and threat feeds for further analysis.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Data Services Northern Virginia |
| ASN | AS14618 |
| Network Name | AMAZON-IAD |
| CIDR Block | 44.192.0.0/11 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | scanner-44-220-188-180.reposify.net |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | scanner-44-220-188-180.reposify.net |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 2 | 2 |
| routing | 19% | 1 | 2 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 15% | 2 | 2 |
| Overall | 18% | 9 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-29 12:05:13 UTC |
| Last Seen | 2026-06-29 06:29:47 UTC |
| Profile Built | 2026-06-29 06:37:53 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 20 |
Full dossier details are available via our API.