IPDebrief

20.226.32.254

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 20.226.32.254/32

Classification: Low Risk

Analysis Date: Current

Data Sources: IPDebrief Intelligence Platform

---

## Executive Summary

IP address 20.226.32.254 is identified as Microsoft Corporation cloud infrastructure (Azure) located in São Paulo, Brazil. The asset presents a Low Risk profile (Risk Score: 25) with no malicious indicators detected. No security action recommendations are generated.

---

## Ownership & Network Classification

AttributeValue
OrganizationMicrosoft Corporation
ASN8075 (MSFT)
CIDR Block20.192.0.0/10
RIRARIN
Network RoleMicrosoft Azure (Cloud)
Infrastructure TypeCloudCompute

The IP is part of Microsoft's Azure cloud infrastructure, operating within the 20.192.0.0/10 address space. No residential, proxy, Tor, or hosting indicators are present.

---

## Geolocation

---

## Threat Indicators

IndicatorStatus
Blacklist Count0
Known AttackerFalse
Spam SourceFalse
Tor Exit NodeFalse
Abuse Confidence ScoreN/A
Threat FeedsNone
Known CampaignsNone

No threat indicators detected. The IP shows no association with malicious campaigns or threat actor activity.

---

## Network Services & DNS

The IP exhibits no active services and appears to be firewalled or in a non-public-facing cloud resource.

---

## Neighborhood Analysis (20.226.32.0/24)

MetricValue
Subnet ClassificationMostly Clean
Abuse Density0
Inherited Risk5
Total Siblings2
Active Siblings2
Threat Siblings2

Neighbor IPs:

The /24 subnet demonstrates minimal abuse activity with a "mostly clean" classification.

---

## Historical Observations (21 Total)

Recent observation history indicates:

No persistent malicious behavior observed. Threat observation count: 1.

---

## Security Recommendations

Action Status: No recommendations required

The IP address is classified as Microsoft Azure infrastructure with a low risk profile. No firewall rules or blocking actions are recommended. The asset should be permitted through standard cloud security policies.

---

## Intelligence Notes

Recommended Handling: Permit traffic according to organization's Microsoft Azure cloud access policies. Monitor for any changes in risk profile or service exposure.

---

*Generated by IPDebrief Intelligence Platform*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡ง๐Ÿ‡ท Brazil
RegionSP
CitySão Paulo
TimezoneAmerica/Sao_Paulo
Latitude-23.55
Longitude-46.63

๐Ÿข Ownership & Registration

OrganizationMicrosoft Corporation
ASNAS8075
Network NameMSFT
CIDR Block20.192.0.0/10
RIRARIN
CountryUnited States
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTR RecordNo PTR
Forward ConfirmedNo โ€” PTR hostname does not resolve back to this IP (weak signal)

๐Ÿ” DNS Hygiene

Hygiene Score20% (Poor)
SPFNot configured
DMARCNot configured
FCrDNSNot verified
DNSSECValid
CAANot configured

โ˜๏ธ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeFirewalled / No Services
Network TierHosting โ€” Infrastructure provider without advanced routing
CloudHosting

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Serverโ€”
HTTP Titleโ€”

๐Ÿ” TLS Certificate

๐Ÿ”’
No certificate
Issued by โ€”
N/A
SANsNone
Valid Fromโ€”
Valid Untilโ€”

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
27%
23
routing
8%
11
services
8%
11
ownership
27%
23
reputation
26%
13
geolocation
33%
23
Overall22%914
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (50%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-05-25 18:47:43 UTC
Last Seen2026-06-29 02:00:36 UTC
Profile Built2026-06-29 08:03:48 UTC
Data FreshnessLive
Signal Types19
Total Observations20
๐Ÿ” 19 signal types ยท 20 observations collected
This report is generated from 19+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.