IPDebrief

47.128.112.235

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

## IP INTELLIGENCE BRIEFING

Subject: 47.128.112.235/32

Classification: Moderate Risk Infrastructure

Date: Current Intelligence Cycle

Prepared By: IPDebrief Intelligence Division

---

EXECUTIVE SUMMARY

IP address 47.128.112.235 is identified as an Amazon Web Services (AWS) cloud compute instance deployed in the Singapore region (ap-southeast-1). The IP carries a moderate risk score of 40 and demonstrates no active threat indicators despite residing in a high-abuse density subnet. Infrastructure appears legitimate with stable ownership and routing characteristics.

---

INFRASTRUCTURE PROFILE

AttributeValue
**IP Address**47.128.112.235
**Risk Score**40/100 (Moderate)
**ASN**16509 (Amazon Data Services Singapore)
**Organization**Amazon Web Services
**Location**Singapore (1.35°N, 103.82°E)
**Infrastructure Type**CloudCompute
**DNS Alias**ec2-47-128-112-235.ap-southeast-1.compute.amazonaws.com
**Network Role**Hosting/Cloud Infrastructure

Control Plane: Route origin AS34549 β†’ AS2914 β†’ AS16509. BGP prefix 47.128.0.0/14 with stable routing. RPKI validation status available via RDAP.

---

THREAT ASSESSMENT

Active Indicators: None detected

DNS Security Posture:

Service Exposure: No open ports detected. Service banner analysis indicates firewall-protected or no active services.

---

NETWORK CONTEXT & NEIGHBORHOOD ANALYSIS

Subnet Profile: 47.128.112.0/24

The /24 subnet exhibits elevated abuse density typical of cloud provider allocations. While 69 of 82 active siblings show threat associations, the specific IP 47.128.112.235 demonstrates no direct threat correlation.

Risk Distribution in Neighborhood:

---

OBSERVATION HISTORY

Signal Count: 26 historical observations

Ownership Stability: 9,550+ days (established 2000-05-04)

Threat Persistence: None detected

Recent signal timeline indicates:

---

INTERCONNECTED ENTITIES

Relationship Count: 58 identified

---

SECURITY RECOMMENDATIONS

Action Status: No immediate blocking required

Rationale: IP demonstrates legitimate cloud infrastructure characteristics with no active threat indicators. However, subnet-level abuse density warrants monitoring.

Recommended Firewall Rules (if blocking required):

*iptables:*

```

iptables -A INPUT -s 47.128.112.235 -j DROP

```

*nftables:*

```

nft add rule inet filter input ip saddr 47.128.112.235 drop

```

*nginx:*

```

deny 47.128.112.235;

```

*Cloudflare WAF:*

```

{"description": "Block 47.128.112.235 β€” IPDebrief risk score 40", "action": "block", "filter": {"expression": "ip.src eq 47.128.112.235"}}

```

*AWS WAF:*

```

{"Addresses":["47.128.112.235/32"],"Description":"IPDebrief risk 40"}

```

---

INTELLIGENCE JUDGMENT

Threat Level: LOW/MONITOR

The IP address represents legitimate AWS cloud infrastructure in Singapore. While the /24 subnet exhibits elevated abuse density (0.69), the specific IP shows no active threat indicators. The absence of open services and proper DNS/security configurations supports benign classification.

Recommended Action: Monitor subnet-level activity. No immediate blocking advised unless additional context indicates suspicious traffic patterns.

---

*Intel generated by IPDebrief Intelligence Platform. All data sourced from active network intelligence feeds.*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡ΈπŸ‡¬ Singapore
RegionSG
CitySingapore
TimezoneAsia/Singapore
Latitude1.35
Longitude103.82

🏒 Ownership & Registration

OrganizationAmazon Data Services Singapore
ASNAS16509
Network Nameβ€”
CIDR Block47.128.0.0/14
RIRARIN
Countryβ€”
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTRec2-47-128-112-235.ap-southeast-1.compute.amazonaws.com
Forward ConfirmedYes β€” FCrDNS verified
Forward Hostnamesec2-47-128-112-235.ap-southeast-1.compute.amazonaws.com

πŸ” DNS Hygiene

Hygiene Score80% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAANot configured

☁️ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeFirewalled / No Services
Network TierHosting β€” Infrastructure provider without advanced routing
CloudHosting

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Serverβ€”
HTTP Titleβ€”

πŸ” TLS Certificate

πŸ”’
No certificate
Issued by β€”
N/A
SANsNone
Valid Fromβ€”
Valid Untilβ€”

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
30%
23
routing
26%
23
services
8%
11
ownership
35%
36
reputation
28%
13
geolocation
25%
22
Overall25%1118
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-05-09 17:41:38 UTC
Last Seen2026-06-27 16:21:40 UTC
Profile Built2026-06-28 10:27:31 UTC
Data FreshnessLive
Signal Types24
Total Observations30
πŸ” 24 signal types Β· 30 observations collected
This report is generated from 24+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.