52.190.183.85
IP Intelligence Briefing: 52.190.183.85
*Generated via IPDebrief tools: Profile, History, Relationships, & Neighborhood Analysis*
---
**1. Core Profile**
- Ownership:
- AS: AS8075 (Microsoft Corporation)
- ISP: Microsoft Azure (Cloud Compute)
- Geolocation: San Jose, CA, US (geo-plausible via ICMP validation)
- Risk Assessment:
- Overall Risk Score: 50 (Moderate Risk)
- Threat Indicators: No malicious campaigns, spam, or blacklisted activity detected.
- Network Role: Cloud infrastructure (Azure-hosted, no public services or residential attributes).
---
**2. Observation History**
- Risk Trends:
- Minimal risk scores (0.13β0.25) observed over the last 5 days.
- No persistent malicious activity or threat persistence detected.
- Key Findings:
- DNSSEC Valid: True.
- Route Stability: Unstable (BGP route changes detected).
- DNSBL Listings: 2 out of 8 DNSBLs (low-severity).
---
**3. Relationships & Network Context**
- Linked Entities:
- Subnet: `52.190.183.85/24` (Microsoft-owned, no abuse density).
- AS Relationships: BGP prefix `52.160.0.0/11` (Microsoft AS8075).
- Cloud Infrastructure:
- Likely Azure VM or service (firewalled, no open ports/services).
---
**4. Neighborhood Analysis**
- Subnet: `52.190.183.85/24`
- Abuse Density: 0% (clean subnet).
- Neighbors: No active sibling IPs detected (possible data gap or sparse subnet).
---
**5. Recommendations**
- Monitoring:
- Track BGP route stability and DNSBL listings for potential changes.
- Monitor Azure tenant activity if this IP is part of a larger cloud environment.
- Firewall:
- No immediate blocking required; isolate if suspicious behavior emerges.
Note: This IP is associated with Microsoft Azure, which is generally trusted, but its route instability and sparse subnet data warrant closer observation.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | MSFT |
| CIDR Block | 52.145.0.0/16 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 33% | 2 | 4 |
| Overall | 23% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-30 10:59:37 UTC |
| Last Seen | 2026-06-29 07:47:02 UTC |
| Profile Built | 2026-06-29 07:49:47 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 21 |
Full dossier details are available via our API.