40.112.183.29
IP Intelligence Briefing: 40.112.183.29
Date: 2026-06-14
---
**1. Core Profile**
- Risk Score: 50 (Moderate Risk)
- Ownership: Microsoft Corporation (ASN 8075)
- Geolocation: San Jose, CA, US (ARIN registered)
- Network Role: Microsoft Azure CloudCompute infrastructure
- Threat Indicators: No malicious activity detected (clean history, no abuse reports).
---
**2. Observation History**
- Last 30 Days:
- Confirmed as Microsoft Azure infrastructure (cloud host) with 0.90 confidence.
- Geolocation data consistent (US, San Jose) with 0.35 confidence.
- No changes in risk profile or network behavior.
---
**3. Relationships**
- Linked Entities:
- Directly tied to Microsoft (MSFT) network (repeated in relationships).
- No external domains, subnets, or certificates associated.
- Network Classification:
- Subnet 40.112.183.29/24 classified as mostly_clean with low abuse density.
---
**4. Neighborhood Analysis**
- Subnet: 40.112.183.29/24
- Neighbor Count: 0 (no sibling IPs returned).
- Abuse Density: 0 (no risky neighbors detected).
---
**5. Security Actions**
- Recommended Mitigation:
- No immediate action required (moderate risk, legitimate cloud host).
- Example firewall rules (iptables/nftables) provided for blocking if needed.
---
**6. Summary**
The IP 40.112.183.29 is a legitimate Microsoft Azure cloud host with no malicious activity detected. It has a stable history, consistent geolocation, and no ties to known threats. While its risk score is moderate, it is classified as benign infrastructure. Monitor for unexpected changes in behavior, but no action is required at this time.
SOC Analyst Note: Contextualize this data with additional indicators (e.g., traffic patterns, user activity) to confirm legitimacy in your environment.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.8 |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 26% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 27% | 2 | 3 |
| Overall | 21% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:04:19 UTC |
| Last Seen | 2026-06-27 05:26:31 UTC |
| Profile Built | 2026-06-27 23:32:55 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 26 |
Full dossier details are available via our API.