20.65.193.191
IP Intelligence Dossier
Your IP: 216.73.216.123
π€ Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 20.65.193.191
Date: June 12, 2026
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Microsoft Corporation (ASN 8075)
- Geolocation: San Antonio, Texas, USA (29.43°N, -98.49°W)
- Network Role: Microsoft Azure cloud compute node (firewalled, no services exposed)
- Threat Indicators: No malicious activity detected (no indicators, blacklists, or campaigns).
---
**2. Observation History**
- Latest Scan: June 12, 2026 (no open ports, no TLS certificate, no HTTP/title).
- Geolocation Validation: ICMP blocked, leading to uncertainty in accuracy (8390 km estimated distance).
- Stability: BGP route stability unknown (route changes last 30 days: 0).
---
**3. Relationships**
- Network Links:
- Directly tied to Microsoftβs `MSFT` ASN (20.33.0.0/16).
- DNS-associated hostname: `azpdss44obes.stretchoid.com` (no further malicious ties).
- Subnet Context: Part of `20.65.193.191/24`, with 11 sibling IPs.
---
**4. Subnet Analysis**
- Abuse Density: 27.27% (moderate risk).
- Neighbor Risk Scores:
- 2 IPs with high risk (score 40+).
- 9 IPs with low risk (score 0β25).
- Notable Neighbors:
- `20.65.193.76` (risk 25), `20.65.193.108` (risk 40), `20.65.193.158` (risk 40).
---
**5. Recommendations**
- Monitor Subnet: The 20.65.193.0/24 subnet contains IPs with higher risk scores. Investigate potential lateral movement or shared infrastructure risks.
- Validate Geolocation: ICMP blocking may obscure true location; consider alternative methods for verification.
- Check DNS Hostname: Monitor `azpdss44obes.stretchoid.com` for suspicious activity or domain changes.
- Firewall Rules: No immediate action required for this IP, but consider logging traffic to the subnet for anomaly detection.
Conclusion: This IP is a legitimate Microsoft Azure resource with no direct threat indicators. However, the subnetβs moderate abuse density warrants closer scrutiny.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | MSFT |
| CIDR Block | 20.33.0.0/16 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | azpdss44obes.stretchoid.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | azpdss44obes.stretchoid.com |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
No certificate
Issued by β
N/A
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 43% | 2 | 5 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 30% | 2 | 3 |
| reputation | 31% | 1 | 4 |
| geolocation | 27% | 2 | 3 |
| Overall | 27% | 10 | 18 |
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-03 12:21:36 UTC |
| Last Seen | 2026-06-21 10:19:07 UTC |
| Profile Built | 2026-06-21 10:23:05 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 27 |
π 23 signal types Β· 27 observations collected
This report is generated from 23+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
βΉοΈ About This Report
All data shown is publicly available network metadata β IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.