44.220.188.221
IP Intelligence Briefing: 44.220.188.221
Last Updated: 2026-06-14
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Amazon Data Services (ASN 16509)
- Geolocation: Ashburn, VA, US (AWS data center)
- Network Role: AWS CloudCompute infrastructure (firewalled, no public services)
- Threat Indicators: No malicious activity, no blacklist entries, no DNS-based threats.
---
**2. Observation History**
- Recent Activity (2026-06-14):
- Subnet abuse density: 0.44 (moderate risk).
- No persistent malicious behavior detected.
- Longer-Term Trends (2026-06-05):
- Subnet abuse density: 0.37 (low risk).
- No significant changes in risk profile.
---
**3. Relationships**
- DNS Associations:
- Linked to `scanner-44-220-188-221.reposify.net` (potential monitoring/scan tool).
- Network Connections:
- Part of AWS network (`AMAZON-IAD`), indicating cloud infrastructure.
- Organizational Ties:
- Amazon Web Services (AWS) is the primary provider.
---
**4. Neighborhood Analysis**
- Subnet: 44.220.188.221/24
- Abuse Density: 0.37 (low-risk subnet).
- Neighbor IPs:
- 33 total IPs in subnet; 11 flagged as high/medium risk.
- Most IPs share similar risk scores (25), but 2 IPs have lower scores (0).
- Notable Neighbors:
- `44.220.188.3`, `44.220.188.21`, and `44.220.188.25` show consistent risk profiles.
---
**5. Threat Context**
- No Direct Threats: No malware, phishing, or exploit indicators.
- Subnet Risks: Moderate abuse density suggests potential for benign-to-malicious transitions.
- AWS Environment: Likely a legitimate cloud server; monitor for anomalous traffic.
---
**6. Recommendations**
- Monitor Subnet: Track changes in abuse density and neighbor activity.
- Verify DNS Associations: Investigate `reposify.net` for potential scan tools or misconfigurations.
- Ensure AWS Security: Confirm compliance with AWS security best practices for cloud infrastructure.
- Baseline Behavior: Use historical data to detect deviations in traffic patterns.
---
Conclusion: This IP is part of AWS infrastructure and shows no immediate threats. However, the subnetβs moderate abuse density warrants continued monitoring. No immediate mitigation actions required, but maintain vigilance for anomalies.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Data Services Northern Virginia |
| ASN | AS14618 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | scanner-44-220-188-221.reposify.net |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | scanner-44-220-188-221.reposify.net |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 44% | 2 | 5 |
| routing | 44% | 1 | 9 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 30% | 1 | 3 |
| geolocation | 31% | 2 | 3 |
| Overall | 31% | 10 | 25 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-10 16:14:35 UTC |
| Last Seen | 2026-06-27 18:01:09 UTC |
| Profile Built | 2026-06-28 12:06:48 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 36 |
Full dossier details are available via our API.