# IP Intelligence Briefing: 172.203.30.208/32
## Executive Summary
IP 172.203.30.208 presents a moderate risk profile (Risk Score: 50) associated with Microsoft Azure cloud infrastructure. The IP demonstrates no active malicious indicators, maintains a clean classification within its /24 subnet, and shows no evidence of persistent threat activity. No immediate blocking action is recommended, though standard cloud security monitoring protocols apply.
## Ownership and Network Classification
- ASN: 8075 (Microsoft Azure)
- Organization: Divya Quamara
- Network Block: 172.203.0.0/16
- Infrastructure Type: CloudCompute
- Geolocation: United States, Virginia (Boydton)
- Network Role: Cloud hosting with firewalled configuration
- DNS Resolution: No PTR hostnames or forward resolution records present
## Threat Intelligence Assessment
Current Risk Indicators:
- Risk Score: 50 (Moderate)
- Abuse Confidence Score: None reported
- Blacklist Count: 0
- Known Campaigns: None identified
- Tor Exit Node: No
- Known Attacker Status: No
- Spam Source Status: No
Control Plane Analysis:
- BGP Prefix: 172.200.0.0/13
- DNSSEC: Valid
- Operator Score: 0.1304 (Minimal)
- Route Stability: False
- DNSBL Listings: 2 out of 8 total lists
- RPKI State: Not reported
## Historical Observation Analysis
Temporal Profile:
- Total Observations: 13 (as of 2026-06-16)
- Ownership Changes: 0
- Threat Persistence Days: 0
- Threat Observation Count: 0
- Persistently Malicious Status: False
Recent Signal History:
- Subnet classification consistently reported as "clean" with 0 abuse density
- No changes in ownership or threat persistence metrics
- Geolocation signals indicate US presence with 3,750 km accuracy radius
- Operator classification maintained as "Minimal" risk
## Neighborhood Analysis
Subnet: 172.203.30.0/24
- Abuse Density: 0
- Classification: Clean
- Total Siblings: 3
- Active Siblings: 1
- Threat Siblings: 0
Neighbor IP Risk Distribution:
- 172.203.30.211: Risk Score 0, Authority Score 50
- 172.203.30.212: Risk Score 25, Authority Score 50
## Network Relationships
Three same-network relationships identified, all associated with network entity "cloud". No certificate, hostname, or organizational cross-references detected.
## Service and Port Analysis
- Open Ports: None detected
- TLS Certificate: Not present
- HTTP Title: Not detected
- Service Banner: Not detected
- Hosted Domains: 0
- Email Authentication (SPF/DMARC): Not configured
## Recommended Security Actions
No specific action recommendations were generated based on the risk profile. Standard cloud infrastructure monitoring and baseline traffic analysis procedures are applicable.
Firewall Rule Templates (if required by policy):
- iptables: `iptables -A INPUT -s 172.203.30.208 -j DROP`
- nftables: `nft add rule inet filter input ip saddr 172.203.30.208 drop`
- nginx: `deny 172.203.30.208;`
## Conclusion
IP 172.203.30.208 is a Microsoft Azure cloud compute resource with moderate risk scoring but no active malicious indicators. The subnet demonstrates clean classification with no threat siblings. No immediate defensive action is warranted beyond standard cloud security monitoring practices.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Divya Quamara |
| ASN | AS8075 |
| Network Name | cloud |
| CIDR Block | 172.203.0.0/16 |
| RIR | ARIN |
| Country | US |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 24% | 2 | 2 |
| routing | 17% | 1 | 1 |
| services | 17% | 1 | 1 |
| ownership | 35% | 2 | 3 |
| reputation | 17% | 1 | 2 |
| geolocation | 24% | 2 | 2 |
| Overall | 22% | 9 | 11 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-08 01:59:21 UTC |
| Last Seen | 2026-06-21 14:24:46 UTC |
| Profile Built | 2026-06-21 14:31:50 UTC |
| Data Freshness | Live |
| Signal Types | 15 |
| Total Observations | 17 |
Full dossier details are available via our API.