47.128.110.68
IP Intelligence Briefing: 47.128.110.68
*Last Updated: 2026-06-09*
---
**1. Core Profile**
- Risk Score: Low (25/100)
- Provider: Amazon Web Services (AWS)
- Geolocation: Singapore (SG), APAC region
- Ownership: Owned by Amazon Data Services Singapore (ASN 16509)
- Network Role: Cloud compute infrastructure (AWS EC2 instance)
- Threat Status: No malicious indicators (no blacklists, campaigns, or Tor associations)
---
**2. Observation History**
- Recent Activity (2026-06-09):
- Listed in 8 threat feeds with high confidence (categories unspecified).
- Confirmed as AWS infrastructure (not CDN, Tor, or residential).
- Historical Data (2026-06-01):
- No spam or attacker associations.
- No service banners or TLS certificates detected.
---
**3. Network Relationships**
- DNS Associations:
- Resolves to `ec2-47-128-110-68.ap-southeast-1.compute.amazonaws.com` (AWS).
- Network Context:
- Subnet: `47.128.110.0/24` (part of AWS infrastructure).
- Linked to network `AMAZON-SIN` (Singapore AWS region).
---
**4. Neighborhood Analysis**
- Subnet Abuse Density: 28.57% (moderate risk).
- Neighbor Risk Distribution:
- Low Risk: 16 IPs (e.g., 47.128.110.9, 47.128.110.84).
- Medium Risk: 1 IP (47.128.110.69).
- High Risk: 0 IPs.
- Notable Neighbors:
- 47.128.110.69 (risk 25), 47.128.110.72 (risk 50) β monitor for anomalies.
---
**5. Recommendations**
- SOC Actions:
- Validate threat feed listings (confirm false positives or misconfigurations).
- Monitor subnet for lateral movement or unusual traffic patterns.
- Ensure AWS security groups/firewalls restrict unnecessary access.
- Firewall Rules:
- Allow traffic only from trusted sources (e.g., internal networks, known partners).
- Block unsolicited inbound connections to the EC2 instance.
---
Conclusion: This IP is a legitimate AWS cloud instance with no current malicious activity. However, the presence of threat feed listings requires further investigation to rule out false positives or misconfigurations. Monitor the subnet for changes in risk levels, especially given the moderate abuse density.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Data Services Singapore |
| ASN | AS16509 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | ec2-47-128-110-68.ap-southeast-1.compute.amazonaws.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ec2-47-128-110-68.ap-southeast-1.compute.amazonaws.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 31% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 24% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-21 08:55:45 UTC |
| Last Seen | 2026-06-28 13:16:41 UTC |
| Profile Built | 2026-06-29 07:20:32 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 26 |
Full dossier details are available via our API.