IP address 13.72.39.160 has been flagged in 704 abuse reports across 5 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is aggregated threat, along with malicious, malware c2, rdp bruteforce, suspicious activity.
This IP is geolocated in United States (Boydton) and belongs to the network Microsoft Corporation (AS8075). Reports span from 2024-06-09 to 2025-12-20.
Assessment: With 704 abuse reports, 13.72.39.160 shows persistent malicious activity that has been flagged by multiple threat intelligence feeds. The activity pattern and multi-source corroboration indicate this is a genuine threat that warrants immediate blocking at the firewall level. This IP belongs to Microsoft Corporation, a major cloud/hosting provider — the malicious activity likely originates from a compromised or rented virtual server rather than the provider's own infrastructure.