IPDebrief

20.197.232.217

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP Intelligence Briefing: 20.197.232.217

Date: June 10, 2026

---

**1. Core Profile**

- Overall Risk: Moderate (65/100)

- Provider: Microsoft Corporation (ASN 8075)

- Network Role: Cloud compute infrastructure (Microsoft Azure)

- Geolocation: Brazil (São Paulo, Campinas), latitude -22.9035, longitude -47.0565

- Threat Indicators: No malicious activity detected (no spam, attacks, or known campaigns).

---

**2. Network Behavior**

- No open ports or TLS services detected in recent scans.

- No HTTP server banners or TLS certificates observed.

- Part of Microsoft Azure's 20.192.0.0/10 prefix.

- Likely a virtual machine or cloud-hosted service.

- BGP prefix: 20.192.0.0/10 (Microsoft-owned).

- Route stability: Unstable (recent route changes).

---

**3. Historical Observations**

- Geolocation confirmed as Brazil (São Paulo).

- Low-confidence TLS scan detected (no actionable data).

- No persistent malicious activity or threat persistence.

---

**4. Relationships & Neighbors**

- Subnet: 20.197.232.217/24 (Microsoft-owned).

- No external hostnames, domains, or certificates associated.

- Subnet abuse density: 0% (clean).

- No neighboring IPs reported (likely a /24 with no active hosts or limited data).

---

**5. Recommendations**

Conclusion: This IP is a Microsoft Azure server in Brazil with no malicious indicators. Moderate risk due to cloud infrastructure exposure but no active threats detected. No action required unless new anomalies emerge.

---

*Generated via IPDebrief intelligence tools. All data reflects observations as of June 10, 2026.*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡ง๐Ÿ‡ท Brazil
RegionSP
CitySão Paulo
TimezoneAmerica/Sao_Paulo
Latitude-23.55
Longitude-46.63

๐Ÿข Ownership & Registration

OrganizationMicrosoft Corporation
ASNAS8075
Network NameMSFT
CIDR Block20.192.0.0/10
RIRARIN
CountryUnited States
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTR RecordNo PTR
Forward ConfirmedNo โ€” PTR hostname does not resolve back to this IP (weak signal)

๐Ÿ” DNS Hygiene

Hygiene Score60% (Good)
SPFPresent
DMARCPresent
FCrDNSNot verified
DNSSECValid
CAANot configured

โ˜๏ธ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeWeb Server
Network TierHosting โ€” Infrastructure provider without advanced routing
CloudHosting

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
443httpstcpโ€”
Closed Ports22, 25, 80, 3389, 8080, 8443 (1 open / 7 scanned)
Serverโ€”
HTTP Titleโ€”

๐Ÿ” TLS Certificate

๐Ÿ”’
CN=brazilsouth.compute.inference.ml.azure.com
Issued by CN=CCME G1 TLS RSA 2048 SHA256 2049 WUS2 CA 01
Self-signed: No
SANsdd1085ed-490d-4171-93c6-1320dd8bbec1.brs.ml.azure.com
Valid From2026-06-10T20:06:19+00:00
Valid Until2026-12-06T02:06:19+00:00
TLS ProtocolTls13
Cipher SuiteTLS_AES_256_GCM_SHA384
Signature Algorithmsha256RSA
Validity Period178 days
Serial Number71790AE8237E565F1D25B6AD4A9FEACE
Thumbprint2D1B0317DF796DDE22219E8BF82600C666CEA938

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
32%
24
routing
8%
11
services
30%
23
ownership
27%
23
reputation
32%
13
geolocation
26%
22
Overall26%1016
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (50%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-05-25 12:42:12 UTC
Last Seen2026-06-29 01:37:25 UTC
Profile Built2026-06-29 07:41:40 UTC
Data FreshnessLive
Signal Types23
Total Observations24
๐Ÿ” 23 signal types ยท 24 observations collected
This report is generated from 23+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.