4.235.97.164
IP Intelligence Briefing: 4.235.97.164
Date: 2026-06-14
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Microsoft Corporation (ASN 8075)
- Geolocation: United States (OSLO, Norway) | Latitude: 39.83, Longitude: -98.58 | Accuracy: ±2500 km
- Network Role: Microsoft Azure CloudCompute (Firewalled / No Services)
- Threat Indicators: None detected (no malware, spam, or malicious campaigns linked).
- Control Plane: BGP prefix 4.224.0.0/12 (Microsoft), DNSSEC valid, no route instability.
---
**2. Observation History**
- Last 30 Days: 18 observations (14 unique signals).
- Key Trends:
- Minimal risk profile consistently observed.
- Geolocation validated as plausible (US) but ICMP blocked, limiting full verification.
- No persistent malicious activity or threat persistence.
---
**3. Relationships**
- Linked Entities:
- Microsoft Azure infrastructure (MSFT).
- No malicious campaigns, domains, or certificates associated.
- DNS: No public PTR records or email authentication (SPF/DKIM).
- Services: No open ports, TLS, or HTTP services detected.
---
**4. Neighborhood Analysis**
- Subnet: 4.235.97.164/24
- Abuse Density: 0% (mostly clean).
- Neighbors:
- 4.235.97.140 (risk score: 25, authority score: 50).
- Sibling IPs show minimal risk, but one neighbor has a moderate risk score.
---
**5. Recommendations**
- Monitor Neighbor: 4.235.97.140 shows slightly higher risk; investigate if itβs part of a broader network.
- No Action Needed: The IP itself is low risk and part of Microsoftβs infrastructure.
- Geolocation Verification: ICMP blocking limits full geo-validation; consider alternative methods for confirmation.
Conclusion: This IP is a legitimate Microsoft Azure cloud asset with no malicious activity detected. Focus on monitoring its subnet for anomalies.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 22% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 27% | 2 | 3 |
| Overall | 20% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:04:19 UTC |
| Last Seen | 2026-06-27 05:25:10 UTC |
| Profile Built | 2026-06-27 23:31:45 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 25 |
Full dossier details are available via our API.