172.191.157.64
IP Intelligence Briefing: 172.191.157.64
Date: 2026-06-13
---
**1. Core Profile**
- Risk Score: Moderate (50/100)
- Provider: Microsoft Azure (CloudCompute)
- Ownership: Registered to "Divya Quamara" (ARIN).
- Geolocation: Washington, VA, USA (plausible via geo-inference).
- Network Role: Hosting infrastructure (firewalled, no public services).
- Threat Indicators: No malicious activity detected (no blacklists, spam, or known attacker associations).
---
**2. Observation History**
- Last 30 Days:
- 1 observation of geo-validation failure (ICMP blocked).
- 21 total observations, with mixed confidence (0.2β0.9).
- No persistent malicious behavior or campaign correlations.
- Key Findings:
- Minimal network instability (stability score: 0).
- No DNS or TLS anomalies.
---
**3. Relationships & Context**
- Linked Entities:
- Subnet: 172.191.157.64/24 (classified as "mostly_clean").
- Cloud provider: Microsoft Azure (infrastructure type: CloudCompute).
- No direct relationships to domains, certificates, or organizations.
- Neighbor Subnet Analysis:
- /24 subnet has 0 active IPs and 0 abuse density.
- No neighboring IPs with elevated risk.
---
**4. Threat & Risk Analysis**
- No Active Threats:
- No DNS, TLS, or service anomalies.
- No spam, phishing, or malware indicators.
- Inherited Risk:
- Subnet has 2 inherited risk points (likely from upstream routing).
- No malicious campaigns or honeypot interactions.
---
**5. Recommendations**
- Monitoring:
- Track subnet activity for unexpected changes (no current risks).
- Validate geolocation periodically due to ICMP blocking.
- Security Actions:
- No immediate firewall rules required (low-risk).
- Ensure Azure configuration enforces strict access controls.
Conclusion:
172.191.157.64 is a legitimate Microsoft Azure cloud resource with no active threats. Monitor for subtle changes in routing or subnet activity, but no urgent action is required.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Divya Quamara |
| ASN | AS8075 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 443 | https | tcp | β |
| Closed Ports | 22, 25, 80, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | 2026-04-01T01:23:27+00:00 |
| Valid Until | 2028-12-26T01:23:27+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha512RSA |
| Validity Period | 1000 days |
| Serial Number | 48A4E16321814215A87B959F6BA5FB77 |
| Thumbprint | 6CDB430260CA246B502614561D513EB90ADFE517 |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 35% | 2 | 3 |
| routing | 8% | 1 | 1 |
| services | 27% | 2 | 4 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 30% | 2 | 3 |
| Overall | 25% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:03:54 UTC |
| Last Seen | 2026-06-27 01:54:32 UTC |
| Profile Built | 2026-06-27 20:00:22 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 29 |
Full dossier details are available via our API.