20.238.120.90
IP Intelligence Briefing: 20.238.120.90
Date: 2026-06-14
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Microsoft Corporation (ASN 8075)
- Geolocation: Ireland (Dublin), Latitude: 53.35, Longitude: -6.26
- Network Role: Microsoft Azure CloudCompute (Firewalled / No Services)
- Threat Indicators: No malicious activity, no abuse reports, no spam or campaign associations.
---
**2. Observation History**
- Latest Observation (2026-06-14): Confirmed as Microsoft Azure infrastructure (cloud-hosted, no residential/mobile indicators).
- Historical Data (2026-06-02):
- No threat signals detected.
- DNSSEC valid, no DNSBL listings.
- Stable routing (BGP prefix: 20.192.0.0/10, AS8075).
---
**3. Network Relationships**
- Linked Entities:
- Subnet: 20.238.120.0/24 (no active neighbors reported).
- Organizational ties: Microsoft Azure infrastructure.
- No Tor, CDN, or proxy associations.
---
**4. Neighborhood Analysis**
- Subnet (20.238.120.0/24):
- Abuse density: 0% (clean).
- No neighboring IPs reported in the dataset.
---
**5. Threat Context**
- No malicious indicators: No blacklists, honeypot hits, or WAF violations.
- Behavioral Flags:
- Honeypot/enum/waf violations: 0.
- No campaign correlations or certificate mismatches.
---
**6. Recommendations**
- Monitoring: Track for unusual DNS or geolocation changes (e.g., spoofed Dublin location).
- Firewall: Allow traffic as legitimate Microsoft Azure infrastructure.
- Investigation: Verify if the IP is part of a specific Azure service or tenant.
---
Conclusion: 20.238.120.90 is a low-risk, legitimate Microsoft Azure resource with no malicious activity. No immediate action required. Continue monitoring for anomalies.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 26% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 30% | 2 | 3 |
| Overall | 21% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:04:08 UTC |
| Last Seen | 2026-06-27 03:36:52 UTC |
| Profile Built | 2026-06-27 21:43:19 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 27 |
Full dossier details are available via our API.