IPDebrief

172.212.160.76

IP Intelligence Dossier
Your IP: 216.73.217.135
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP INTELLIGENCE BRIEFING

Target: 172.212.160.76/32

Date: 2026-06-29

Classification: MODERATE RISK

---

## EXECUTIVE SUMMARY

IP 172.212.160.76 is a Microsoft Azure cloud infrastructure endpoint assigned to organization Divya Quamara (ASN 8075). The IP presents moderate risk (score: 50) with no active threat indicators, no open ports, and no services exposed. The subnet maintains low abuse density with two low-risk sibling IPs. No malicious campaigns, blacklists, or persistent threat behavior detected.

---

## OWNERSHIP & INFRASTRUCTURE

AttributeValue
**ASN**8075 (Microsoft Azure)
**Organization**Divya Quamara
**Network**172.212.0.0/16
**Country**GB (United Kingdom)
**Infrastructure Type**CloudCompute
**ISP/Provider**Microsoft Azure

The IP operates within Microsoft Azure cloud infrastructure. No residential, mobile, proxy, or hosting characteristics detected.

---

## RISK PROFILE

The IP shows no evidence of active exploitation or malicious use. Risk profile is consistent with legitimate cloud infrastructure operations.

---

## NETWORK SERVICES & DNS

No public-facing services or DNS records associated with this IP address.

---

## TEMPORAL ANALYSIS

Historical data indicates stable ownership and no persistent malicious behavior. Most recent observations recorded 2026-06-29.

---

## SUBNET ANALYSIS (172.212.160.0/24)

Neighboring IPs:

The subnet exhibits low abuse density with minimal threat correlation.

---

## RELATIONSHIPS

Six relationships detected, all classified as "Same Network" type pointing to cloud infrastructure. No external entity associations, hostnames, or certificate links identified.

---

## CONTROL PLANE

---

## RECOMMENDED ACTIONS

For SOC Analysts:

1. No blocking required โ€“ No active threats or malicious indicators

2. Monitor for service exposure โ€“ Current state shows no open ports; verify if this is expected behavior

3. Review DNSBL listings โ€“ IP appears on 2 of 8 DNSBL lists; investigate if these are false positives

4. Standard cloud traffic logging โ€“ Apply normal Azure traffic monitoring procedures

Firewall Rules (if required):

---

## CONCLUSION

IP 172.212.160.76 is classified as Microsoft Azure cloud infrastructure with moderate risk scoring due to DNSBL listings and control plane instability. No active threat indicators, open services, or malicious behavior detected. The subnet maintains low abuse density with no significant threat correlation. Recommended for standard cloud traffic monitoring without additional blocking or restrictive measures.

---

Report Generated: 2026-06-29

Source: IPDebrief Intelligence Platform

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡ฌ๐Ÿ‡ง United Kingdom
RegionIowa
CityDes Moines
TimezoneEurope/London
Latitude41.60
Longitude-93.61

๐Ÿข Ownership & Registration

OrganizationDivya Quamara
ASNAS8075
Network Namecloud
CIDR Block172.212.0.0/16
RIRARIN
CountryUS
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTR RecordNo PTR
Forward ConfirmedNo โ€” PTR hostname does not resolve back to this IP (weak signal)

๐Ÿ” DNS Hygiene

Hygiene Score20% (Poor)
SPFNot configured
DMARCNot configured
FCrDNSNot verified
DNSSECValid
CAANot configured

โ˜๏ธ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeFirewalled / No Services
Network TierHosting โ€” Infrastructure provider without advanced routing
CloudHosting

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Closed Ports22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)
Serverโ€”
HTTP Titleโ€”

๐Ÿ” TLS Certificate

๐Ÿ”’
No certificate
Issued by โ€”
N/A
SANsNone
Valid Fromโ€”
Valid Untilโ€”

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
27%
24
routing
13%
11
services
19%
22
ownership
27%
23
reputation
22%
13
geolocation
13%
11
Overall20%914
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceMostly Consistent (80%) โ€” 1 contradiction(s)
AttributionLow (35%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid
โš  Geo sources disagree on country: US, GB

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-06-09 14:17:41 UTC
Last Seen2026-06-29 18:29:01 UTC
Profile Built2026-06-29 18:30:57 UTC
Data FreshnessLive
Signal Types20
Total Observations20
๐Ÿ” 20 signal types ยท 20 observations collected
This report is generated from 20+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.