68.220.60.229
IP Intelligence Briefing: 68.220.60.229
Date: 2026-06-14
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Microsoft Corporation (ASN 8075)
- Geolocation: San Francisco, CA, US (37.78°N, -122.42°W)
- Network Role: Microsoft Azure cloud infrastructure (firewalled, no public services)
- Threat Indicators: No malicious activity, no known campaigns, no blacklist entries
---
**2. Observation History**
- Recent Activity (2026-06-14):
- Minimal risk score (0.13 operator score).
- ICMP validation failed (ICMP blocked), but geolocation consistency confirmed.
- Historical Trends (2026-06-03):
- Similar low-risk profile; no persistent malicious behavior detected.
---
**3. Network Relationships**
- Linked Entities:
- Microsoft Azure infrastructure (same ASN, /15 prefix).
- Noε ³θ to Tor, CDN, or residential networks.
- Subnet: 68.220.60.229/24 (Microsoft-owned, no abuse reports).
---
**4. Neighborhood Analysis**
- Subnet Abuse Density: 0% (mostly clean).
- Neighbors (68.220.60.225/24):
- 68.220.60.225: Risk score 25 (low risk, authority score 50).
- 68.220.60.226: Risk score 0 (low risk, authority score 50).
---
**5. Recommendations**
- No immediate action required.
- Monitor: Track changes in subnet abuse density or unexpected service exposure.
- Context: Microsoft infrastructure IPs are generally low-risk, but ensure no unintended exposure of internal assets.
Conclusion: 68.220.60.229 is a legitimate Microsoft Azure IP with no indicators of malicious activity. Neighboring IPs are also benign. No security actions recommended at this time.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 26% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 30% | 2 | 3 |
| Overall | 21% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:04:33 UTC |
| Last Seen | 2026-06-27 09:13:48 UTC |
| Profile Built | 2026-06-28 03:20:44 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 25 |
Full dossier details are available via our API.