172.213.241.216
IP Intelligence Briefing: 172.213.241.216
*Generated via IPDebrief Analysis*
---
**Core Profile**
- Risk Score: 25 (Low Risk)
- Provider: Microsoft Azure (Cloud Compute)
- Geolocation: Milan, Italy (45.46°N, 9.19°E)
- Ownership: Divya Quamara (AS8075, ARIN-registed)
- Network Role: Cloud-hosted, no open services, firewalled
- Threat Indicators: None detected (no malware, phishing, or exploit activity)
---
**Observation History**
- Latest Signals (June 13, 2026):
- Minimal risk score (0.13 operator score).
- ICMP validation failed (ICMP blocked), limiting geo-verification accuracy.
- Historical Trends:
- Stable risk profile over 30 days.
- No persistent malicious activity or campaign correlations.
---
**Network Relationships**
- Linked Entities:
- Subnet: 172.213.241.216/24 (abuse density: 1/256 IPs).
- Azure cloud infrastructure (no CDN, VPN, or proxy activity).
- Neighbors:
- 172.213.241.91 (risk score: 25, same subnet).
- Subnet classification: "mostly_clean" with inherited risk of 5.
---
**Threat Context**
- No Malicious Activity: No DNS, TLS, or service anomalies detected.
- Neighbor Risk: One sibling IP (172.213.241.91) has a higher risk score, warranting closer scrutiny.
- Cloud Security: Azure-hosted, but no WAF or firewall rules applied to the IP.
---
**Recommended Actions**
1. Monitor Subnet: Track 172.213.241.91 for potential lateral movement or shared infrastructure risks.
2. Enhance Geo-Validation: Investigate ICMP blocking to improve IP authenticity verification.
3. Cloud Access Controls: Apply Azure Network Security Groups (NSGs) to restrict traffic to this IP.
4. Subnet Abuse Analysis: Review 172.213.241.0/24 for unusual activity using IPDebriefโs subnet abuse tools.
---
*End of Briefing*
*Generated by IPDebrief โ Threat Intelligence for SOC Analysts*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Divya Quamara |
| ASN | AS8075 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 22% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 30% | 2 | 3 |
| Overall | 20% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:03:54 UTC |
| Last Seen | 2026-06-27 02:02:14 UTC |
| Profile Built | 2026-06-27 20:08:35 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 26 |
Full dossier details are available via our API.