52.167.144.21
IP Intelligence Briefing: 52.167.144.21
*Generated via IPDebrief Analysis*
---
**1. Core Profile**
- Risk Assessment: Low Risk (Risk Score: 25/100)
- Ownership: Microsoft Corporation (ASN 8075)
- Geolocation: Madison, WI, US (Multi-signal inferred, accuracy ~866km)
- Network Role: Microsoft Bingbot crawler (CloudCompute, Firewalled / No Services)
- DNS: Linked to `msnbot-52-167-144-21.search.msn.com` (Microsoft domain)
---
**2. Threat & Activity**
- Threat Indicators: No malicious activity detected (no blacklists, spam, or campaigns).
- Observation History (30d):
- Stable geolocation and DNS records.
- No significant changes in risk signals.
- Network Behavior:
- Subnet `52.167.144.21/24` has mixed risk (abuse density: 46.25%).
- 34 active IPs in subnet, 37 flagged as potentially malicious.
---
**3. Relationships & Neighborhood**
- Key Associations:
- DNS: `msnbot-52-167-144-21.search.msn.com` (Microsoft botnet).
- Same network: Microsoft infrastructure (`MSFT` subnet).
- Subnet Neighbors:
- 83 IPs in `/24` range; 58 low-risk, 25 medium-risk.
- Notable neighbors:
- `52.167.144.16` (Risk: 25), `52.167.144.20` (Risk: 40).
- Subnet abuse density: 46.25% (moderate risk).
---
**4. Recommendations**
- Monitoring: Track subnet for emerging threats, especially given mixed risk density.
- Firewall: Consider allowlisting Microsoft infrastructure (ASN 8075) for critical services.
- DNS: Verify DNSSEC and CAA records for `msn.com` to mitigate spoofing risks.
---
*No immediate action required for this IP, but monitor subnet activity for anomalies.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | msnbot-52-167-144-21.search.msn.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | msnbot-52-167-144-21.search.msn.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 26% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 27% | 2 | 3 |
| Overall | 21% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-17 21:15:52 UTC |
| Last Seen | 2026-06-28 05:55:11 UTC |
| Profile Built | 2026-06-29 00:00:19 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 26 |
Full dossier details are available via our API.