47.128.122.130
IP Intelligence Briefing: 47.128.122.130
Date: 2026-06-10
---
**1. Core Profile**
- Risk Score: 40 (Moderate Risk)
- Provider: Amazon Web Services (AWS)
- Geolocation: Singapore (SG), Latitude 1.35, Longitude 103.82
- Ownership: Owned by *Amazon Data Services Singapore* (AS16509)
- Network Role: CloudCompute instance (AWS EC2)
- Threat Indicators: No active malware, phishing, or exploit activity detected.
---
**2. Observation History**
- Last 30 Days:
- No persistent malicious activity observed.
- Scanned for open ports/services (no vulnerabilities exposed).
- DNS resolution consistent with AWS infrastructure.
- Trend: Stable risk profile; no recent spikes in suspicious behavior.
---
**3. Network Relationships**
- DNS Associations:
- Resolves to `ec2-47-128-122-130.ap-southeast-1.compute.amazonaws.com` (AWS EC2).
- Subnet Context:
- Part of `47.128.122.130/24` subnet.
- Subnet abuse density: 0.5278 (high abuse classification).
- 21 inherited risk points from neighboring IPs.
- 19 threat siblings in the subnet (medium/high risk).
---
**4. Neighborhood Analysis**
- Subnet Overview:
- 36 total IPs, 19 active, 19 flagged as threats.
- Abuse density: 52.78% (high-risk subnet).
- Neighbor IPs: Mixed risk levels, with 28 medium-risk and 9 low-risk IPs.
---
**5. Recommended Actions**
- Monitor Subnet: High abuse density suggests potential for malicious activity in the subnet.
- Verify Legitimacy: Confirm AWS EC2 instance ownership via AWS console to rule out compromised resources.
- Block IP (if necessary):
- Use standard firewall rules (e.g., `iptables`, `nftables`) to block traffic from this IP.
- Consider broader subnet blocking if threat siblings persist.
- Enhance DNS Monitoring: Track DNS resolution patterns for anomalies.
---
Conclusion:
This IP is a legitimate AWS EC2 instance but resides in a subnet with elevated abuse risk. While no direct threats are detected, the subnetβs high abuse density warrants closer monitoring. Verify the IPβs legitimacy and consider blocking it if it does not align with known AWS assets.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Amazon Data Services Singapore |
| ASN | AS16509 |
| Network Name | AMAZON-SIN |
| CIDR Block | 47.128.0.0/14 |
| RIR | ARIN |
| Country | Singapore |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | ec2-47-128-122-130.ap-southeast-1.compute.amazonaws.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ec2-47-128-122-130.ap-southeast-1.compute.amazonaws.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 31% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 24% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-25 00:41:31 UTC |
| Last Seen | 2026-06-29 01:00:56 UTC |
| Profile Built | 2026-06-29 13:06:19 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 24 |
Full dossier details are available via our API.