74.248.131.114
IP Intelligence Briefing: 74.248.131.114
Date: 2026-06-14
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Microsoft Azure (ASN 8075, BHM ADSL CBB)
- Geolocation: Warsaw, Poland (52.23°N, 21.01°E)
- Network Role: CloudCompute (Azure infrastructure)
- Threat Indicators: No malicious activity detected (clean subnet, no abuse reports).
---
**2. Observation History**
- Latest Signal: June 14, 2026 (07:20:55 UTC)
- Key Trends:
- Subnet (74.248.131.114/24) classified as mostly clean with 1/20 IPs showing risk.
- No persistent malicious behavior or ownership changes.
- Low threat observation count (1) with no campaign correlation.
---
**3. Relationships**
- Network: Linked to ARIN-registered subnet 74.248.128.0/18 (BLS-74-248-128-0-1003020949).
- Providers: Microsoft Azure (cloud infrastructure).
- No DNS or certificate relationships detected.
---
**4. Neighborhood Analysis**
- Subnet: 74.248.131.114/24
- Abuse Density: 1/20 IPs flagged (low risk).
- Neighbors:
- 74.248.131.183 (riskScore: 25, authorityScore: 50) โ monitor for potential anomalies.
---
**5. Recommendations**
- No immediate action required for 74.248.131.114 (low risk, Azure infrastructure).
- Monitor subnet: Track 74.248.131.183 for unusual activity.
- Verify necessity: Confirm if this IP is part of critical cloud services (e.g., Azure VMs).
---
Conclusion: The IP is associated with Microsoft Azure and shows no signs of malicious activity. However, the subnet contains one higher-risk neighbor (74.248.131.183), warranting further investigation. No firewall rules or mitigation actions are recommended for this IP.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | BHM ADSL CBB |
| ASN | AS8075 |
| Network Name | BLS-74-248-128-0-1003020949 |
| CIDR Block | 74.248.128.0/18 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 25% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 19% | 2 | 2 |
| reputation | 26% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 20% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:04:34 UTC |
| Last Seen | 2026-06-27 09:22:21 UTC |
| Profile Built | 2026-06-28 03:28:45 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 25 |
Full dossier details are available via our API.