IPDebrief

54.238.98.106

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP Intelligence Briefing: 54.238.98.106

Date: 2026-06-13

---

**1. IP Profile**

- Overall Risk Score: 25 (Low Risk)

- Provider Score: 0 (No provider-related risks)

- Authority Score: 0 (No authoritative threats)

- Stability: Unstable (route stability flag not set).

- ASN: AS16509 (Amazon Data Services Japan)

- Organization: Amazon Web Services (AWS)

- Network Name: AMAZON-NRT

- Geolocation:

- Primary: Tokyo, Japan (latitude 35.6887, longitude 139.745)

- Secondary: Chicago, US (inferred from historical data).

- No malicious indicators (no blacklists, spam, or attack signatures).

- No known campaigns or DNS-based threats.

- Provider: AWS (cloud infrastructure)

- Services: No open ports, no TLS certificates, no HTTP services.

- Classification: Firewalled / No Services.

---

**2. Observation History**

- Stable ownership (consistent AWS attribution).

- Geolocation discrepancies (Japan vs. US).

- No spikes in threat activity or DNS anomalies.

- DNS Resolution: Linked to `ec2-54-238-98-106.ap-northeast-1.compute.amazonaws.com` (AWS EC2 instance).

---

**3. Relationships**

- Hostname: `ec2-54-238-98-106.ap-northeast-1.compute.amazonaws.com` (AWS infrastructure).

- Subnet: `54.238.0.0/16` (AMAZON-NRT).

- No direct ties to known malicious entities or campaigns.

---

**4. Neighborhood Analysis**

- Total Neighbors: 0 (no active IPs in subnet).

- Abuse Density: 0% (clean subnet).

---

**5. Recommendations**

- Track geolocation consistency (Japan vs. US) for potential routing anomalies.

- Monitor AWS infrastructure for unusual traffic patterns.

- No immediate mitigation required (low risk, no threats).

- Consider whitelisting AWS subnets if this IP is part of legitimate cloud operations.

Conclusion:

The IP is associated with AWS infrastructure in Japan and shows no signs of malicious activity. Historical data and relationships confirm its legitimacy as a cloud-hosted resource. No further action is needed, but continued monitoring is advised for anomalies.

---

*Generated by IPDebrief Threat Intelligence Platform*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡ฏ๐Ÿ‡ต Japan
Region13
CityTokyo
TimezoneAsia/Tokyo
Latitude35.68
Longitude139.69

๐Ÿข Ownership & Registration

OrganizationAmazon Data Services Japan
ASNAS16509
Network NameAMAZON-NRT
CIDR Block54.238.0.0/16
RIRARIN
CountryJapan
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTRec2-54-238-98-106.ap-northeast-1.compute.amazonaws.com
Forward ConfirmedYes โ€” FCrDNS verified
Forward Hostnamesec2-54-238-98-106.ap-northeast-1.compute.amazonaws.com

๐Ÿ” DNS Hygiene

Hygiene Score80% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAANot configured

โ˜๏ธ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeFirewalled / No Services
Network TierTier 3 โ€” Basic operator with some routing infrastructure
Cloud

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Closed Ports22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)
Serverโ€”
HTTP Titleโ€”

๐Ÿ” TLS Certificate

๐Ÿ”’
No certificate
Issued by โ€”
N/A
SANsNone
Valid Fromโ€”
Valid Untilโ€”

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
32%
23
routing
13%
11
services
13%
11
ownership
30%
23
reputation
28%
13
geolocation
19%
12
Overall22%813
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-06-06 13:36:25 UTC
Last Seen2026-06-21 13:17:36 UTC
Profile Built2026-06-21 14:02:53 UTC
Data FreshnessLive
Signal Types21
Total Observations22
๐Ÿ” 21 signal types ยท 22 observations collected
This report is generated from 21+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.