103.13.207.164
IP Intelligence Dossier
Your IP: 216.73.216.123
๐ค Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 103.13.207.164
*Generated via IPDebrief Analysis*
---
**1. Profile Summary**
- Risk Score: 65 (Moderate Risk)
- Ownership: Owned by IRT-IDNIC-ID (ASN 138608, Cloud Host Pte Ltd, Indonesia).
- Geolocation: Jakarta Selatan, Indonesia (IANA-BLOCK, no precise coordinates).
- Network Role: Firewalled / No Services (no open ports, no TLS/HTTP services).
- Threat Indicators: No active threats, spam, or known attacker associations.
- DNS: Resolves to `ip103-13-207-164.cloudhost.web.id` (no email auth records).
---
**2. Observation History (Last 30 Days)**
- DNSBL Listings: 2 out of 8 DNSBL lists (high-severity flags, but no specific list names provided).
- Geolocation Consensus: Confirmed as Indonesia (MaxMind geolite2).
- Routing Stability: BGP prefix `103.13.207.0/24` is stable, with no recent route changes.
- Behavioral Signals: No honeypot or suspicious traffic detected.
---
**3. Network Relationships**
- Subnet: `103.13.207.0/24` (abuse density: 0, classified as "clean").
- Neighbors:
- 4 sibling IPs in subnet (1 active, 3 inactive).
- Risk scores: 65 (self), 40, 0, 40 (no malicious activity detected).
- DNS Associations: Linked to `cloudhost.web.id` (no domain hosting or email auth).
---
**4. Threat & Risk Analysis**
- No Direct Threats: No malware, phishing, or campaign associations.
- DNSBL Context: Minor risk from 2 DNSBL listings (potential false positives or low-severity abuse).
- Provider Context: Cloud hosting ASN (138608) with no known malicious activity.
---
**5. Recommendations**
- Monitor DNS: Investigate DNSBL listings (e.g., Spamhaus, SURBL) for context.
- Subnet Surveillance: Track `103.13.207.0/24` for emerging threats (abuse density remains low).
- Verify Ownership: Confirm Cloud Host Pte Ltdโs compliance practices, given the DNSBL flags.
- Firewall Rules: Consider allowing traffic if this IP is a legitimate cloud-hosted asset.
---
*End of Briefing*
*Generated by IPDebrief โ Threat Intelligence for SOC Teams*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | IRT-IDNIC-ID |
| ASN | AS138608 |
| Network Name | IANA-BLOCK |
| CIDR Block | 0.0.0.0/0 |
| RIR | APNIC |
| Country | ID |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | ip103-13-207-164.cloudhost.web.id |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | ip103-13-207-164.cloudhost.web.id |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
No certificate
Issued by โ
N/A
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 2 | 2 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 23% | 2 | 2 |
| Overall | 18% | 9 | 11 |
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-12 21:53:21 UTC |
| Last Seen | 2026-06-06 14:20:13 UTC |
| Profile Built | 2026-06-06 14:26:46 UTC |
| Data Freshness | Live |
| Signal Types | 17 |
| Total Observations | 17 |
๐ 17 signal types ยท 17 observations collected
This report is generated from 17+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
โน๏ธ About This Report
All data shown is publicly available network metadata โ IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.