52.167.144.229
IP Intelligence Briefing: 52.167.144.229
*Generated via IPDebrief Threat Intelligence Platform*
---
**1. Core Profile**
- Risk Score: 0 (Low Risk)
- Ownership: Microsoft Corporation (ASN: MSFT, ARIN-registered)
- Geolocation: Boston, Massachusetts, US (GeoPlausible: False)
- Network Role: Cloud compute infrastructure (Bingbot, Microsoft-hosted)
- Threat Indicators: No malicious activity, no abuse confidence score, no blacklists.
---
**2. Observation History**
- Recent Activity:
- DNS records tied to msn.com (Microsoft domain).
- BGP prefix 52.160.0.0/11 linked to Microsoft's ASN (8075).
- Valid DNSSEC records for 229.144.167.52.in-addr.arpa.
- No observed scans, exploits, or spam sources.
- Trend: Stable, no significant changes in risk signals over time.
---
**3. Relationships**
- Linked Entities:
- Subnet: 52.167.144.0/24 (Microsoft-owned).
- Hostnames: No public PTR records.
- Certificates: No TLS/SSL certificates detected.
- No known connections to C2 servers, phishing domains, or malicious campaigns.
---
**4. Neighborhood Analysis**
- Subnet: 52.167.144.0/24 (82 total IPs).
- Risk Distribution:
- 62 IPs: Low risk (authority score 50β60).
- 20 IPs: Medium risk (authority score 25β40).
- 0 IPs: High risk.
- Abuse Density: 0% (no malicious activity in subnet).
---
**5. Recommendations**
- Monitoring: No immediate action required.
- Mitigation:
- No firewall rules or WAF configurations needed for this IP.
- Monitor for unexpected changes in subnet behavior or new threat indicators.
- Context: Likely a legitimate Microsoft cloud server (Bingbot or Azure).
---
Note: This IP is part of Microsoft's infrastructure. No evidence of malicious activity detected. SOC teams should focus on anomalies in network behavior or unexpected subnets.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | MSFT |
| CIDR Block | 52.145.0.0/16 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | msnbot-52-167-144-229.search.msn.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | msnbot-52-167-144-229.search.msn.com |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 3 |
| routing | 32% | 2 | 3 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 17% | 1 | 2 |
| geolocation | 27% | 2 | 3 |
| Overall | 25% | 11 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-02 12:04:28 UTC |
| Last Seen | 2026-06-21 08:50:36 UTC |
| Profile Built | 2026-06-21 09:00:08 UTC |
| Data Freshness | Live |
| Signal Types | 25 |
| Total Observations | 29 |
Full dossier details are available via our API.