Sh4mefulIP Address: 40.107.94.93 ⚠ IP Confounder
Outbound; PTR: *.outbound.protection.outlook.com
Differentiating between Office 365, including email protection services, and Azure (public cloud) when diagnosing incidents is challenging because they utilize shared Microsoft-owned IP ranges. Most of this is probably O365/Outlook or Defender protection breaking DKIM and SPF authentication. Disambiguation is a work-in-progress.
This page shows DMARC authentication failure data for this IP address. Learn more about this data.
Geolocation Information
- Country:
- US United States
- Region:
- Washington
- Coordinates:
- 47.6109, -122.3303
WHOIS Information
- Network Name:
- MSFT
- CIDR:
40.76.0.0/14, 40.112.0.0/13, 40.124.0.0/16, 40.125.0.0/17, 40.120.0.0/14, 40.80.0.0/12, 40.96.0.0/12, 40.74.0.0/15- Owner:
- Microsoft Corporation
- Org ID:
MSFT- Address:
- One Microsoft Way, Redmond, WA 98052
- Reverse DNS:
-
mail-mw2nam10on2093.outbound.protection.outlook.com
Last updated: 2/5/2026
Analysis
This IP was first observed on March 13, 2024 and most recently on February 26, 2025. It has been associated with 3 failed authentication events affecting 3 messages, representing low but recurring activity. The IP belongs to MSFT (Microsoft Corporation), a network with activity associated with United States. 8 other IPs in the same /24 subnet (40.107.94.*) also appear in this dataset.
Network Topology
External Reputation Lookups
Look up this IP in external threat intelligence and reputation databases (opens in new tab):
Nearby IPs
Other IPs in the 40.107.94.0/24 range observed failing DMARC:
40.107.94.139 (6 failures), 40.107.94.114 (5 failures), 40.107.94.122 (5 failures), 40.107.94.117 (4 failures), 40.107.94.105 (4 failures), 40.107.94.116 (4 failures), 40.107.94.108 (4 failures), 40.107.94.100 (4 failures)