47.128.110.85
IP Intelligence Briefing: 47.128.110.85
Date: 2026-06-10
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Amazon Data Services Singapore (ASN 16509)
- Geolocation: Singapore (1.35°N, 103.82°E), 150km accuracy radius
- Network Role: AWS Cloud Compute instance (Firewalled / No Services)
- Threat Indicators: Clean (no malware, spam, or known attacker associations)
---
**2. Observation History**
- Geo Validation: ICMP blocked, leading to inferred location in Singapore.
- Stability: Low stability score (0), with inconsistent route tracking.
- Historical Signals:
- 2026-06-01: Traceroute failed due to ICMP blocking.
- 2026-06-01: DNSSEC valid, but operator score labeled "Basic."
- 2026-06-01: No active threats or services detected.
---
**3. Relationships**
- DNS Associations:
- `ec2-47-128-110-85.ap-southeast-1.compute.amazonaws.com` (AWS EC2 instance).
- Network Links:
- Subnet: `AMAZON-SIN` (AWS Singapore region).
- No direct links to malicious domains or organizations.
---
**4. Neighborhood Analysis**
- Subnet: 47.128.110.85/24
- Abuse Density: 0.1667 (low risk).
- Neighbors:
- 15 IPs flagged as "low risk," 2 with medium risk (scores 25β50).
- No high-risk or malicious neighbors detected.
---
**5. Recommendations**
- Monitoring: Track subnet activity due to low stability and mixed neighbor risk.
- AWS Configuration: Verify AWS EC2 instance security groups and access controls.
- Geolocation Validation: Consider alternative methods to validate IP location due to ICMP blocking.
- Threat Hunting: Correlate with medium-risk neighbors for potential lateral movement.
Conclusion: The IP is a legitimate AWS cloud instance with no immediate threat indicators. Monitor for anomalies in the subnet and ensure AWS infrastructure compliance.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Data Services Singapore |
| ASN | AS16509 |
| Network Name | β |
| CIDR Block | 47.128.0.0/14 |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | ec2-47-128-110-85.ap-southeast-1.compute.amazonaws.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ec2-47-128-110-85.ap-southeast-1.compute.amazonaws.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 46% | 2 | 5 |
| routing | 24% | 2 | 3 |
| services | 15% | 2 | 2 |
| ownership | 35% | 3 | 6 |
| reputation | 22% | 1 | 2 |
| geolocation | 33% | 2 | 3 |
| Overall | 29% | 12 | 21 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-23 18:30:24 UTC |
| Last Seen | 2026-06-28 22:49:34 UTC |
| Profile Built | 2026-06-29 04:53:19 UTC |
| Data Freshness | Live |
| Signal Types | 24 |
| Total Observations | 29 |
Full dossier details are available via our API.