IPDebrief

20.78.150.122

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 20.78.150.122/32

Classification: Microsoft Azure Cloud Infrastructure | Risk Level: Low | Date: 2026-06-20

## Executive Summary

IP 20.78.150.122 is identified as Microsoft Corporation infrastructure operating within Azure cloud compute services. The IP presents a low-risk profile with a score of 25/100. No active threat indicators, blacklist entries, or malicious behavior detected. The address is part of Microsoft's legitimate cloud service infrastructure.

## Ownership and Network Classification

AttributeValue
**Organization**Microsoft Corporation
**ASN**8075
**RIR**ARIN
**Geolocation**Osaka, Japan (JP)
**Network Role**Microsoft Azure Cloud Compute
**Infrastructure Type**Cloud
**CIDR Block**20.64.0.0/10 (BGP Prefix)

The IP resolves to Microsoft's enterprise cloud infrastructure. The geolocation indicates placement in Osaka, Japan, consistent with Azure's regional data center deployment strategy.

## Threat Assessment

IndicatorStatus
**Risk Score**25 (Low Risk)
**Blacklist Count**0
**DNSBL Listings**1 of 8 lists
**Known Attacker**No
**Tor Exit Node**No
**Spam Source**No
**Abuse Confidence**Not applicable
**Threat Persistence**0 days
**Campaign Association**None

No threat indicators were observed. The single DNSBL listing does not correlate with active abuse indicators. The IP shows no persistence in malicious activity patterns.

## Network Behavior and Services

The absence of open ports and services is consistent with cloud compute infrastructure that typically operates behind enterprise firewall rules.

## Neighborhood Analysis

MetricValue
**Subnet**20.78.150.122/24
**Abuse Density**0
**Classification**Mostly Clean
**Threat Siblings**1
**Active Siblings**1
**Total Siblings**1

The /24 subnet exhibits minimal abuse density. One threat sibling was identified within the subnet neighborhood, but the target IP itself maintains a clean profile.

## Historical Observations

Total Observations: 16 signals over the observation period

Key historical patterns:

The historical trajectory indicates stable, low-risk behavior consistent with legitimate cloud infrastructure.

## Relationships

The IP maintains 18 network-level relationships, all classified as "Same Network" with target value "MSFT" (Microsoft). These relationships confirm the IP's integration within Microsoft's broader infrastructure ecosystem.

## Recommended Actions

Current Status: No immediate security actions required

Based on the risk profile and threat indicators:

Note: The IP represents Microsoft's public cloud infrastructure. Blocking may impact legitimate traffic. Allowlist consideration for Microsoft Azure services if traffic filtering is applied.

## Analyst Notes

This IP address is part of Microsoft's Azure cloud service infrastructure. The low-risk score, legitimate ownership, and absence of threat indicators indicate this is not a malicious source. Security teams should treat this as trusted infrastructure. The single DNSBL listing does not correlate with active abuse and may represent historical or false-positive data. No blocking or mitigation actions are warranted.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡ฏ๐Ÿ‡ต Japan
Region27
CityOsaka
TimezoneAsia/Tokyo
Latitude34.69
Longitude135.50

๐Ÿข Ownership & Registration

OrganizationMicrosoft Corporation
ASNAS8075
Network Nameโ€”
CIDR Blockโ€”
RIRARIN
Countryโ€”
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTR RecordNo PTR
Forward ConfirmedNo โ€” PTR hostname does not resolve back to this IP (weak signal)

๐Ÿ” DNS Hygiene

Hygiene Score20% (Poor)
SPFNot configured
DMARCNot configured
FCrDNSNot verified
DNSSECValid
CAANot configured

โ˜๏ธ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeFirewalled / No Services
Network TierHosting โ€” Infrastructure provider without advanced routing
CloudHosting

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Closed Ports22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)
Serverโ€”
HTTP Titleโ€”

๐Ÿ” TLS Certificate

๐Ÿ”’
No certificate
Issued by โ€”
N/A
SANsNone
Valid Fromโ€”
Valid Untilโ€”

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
25%
24
routing
8%
11
services
12%
22
ownership
24%
23
reputation
26%
13
geolocation
25%
22
Overall20%1015
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (50%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-05-18 21:28:02 UTC
Last Seen2026-06-28 07:56:34 UTC
Profile Built2026-06-29 02:02:10 UTC
Data FreshnessLive
Signal Types17
Total Observations21
๐Ÿ” 17 signal types ยท 21 observations collected
This report is generated from 17+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.