103.172.204.219
IP Intelligence Briefing: 103.172.204.219
Date: 2026-06-06
---
**1. Core Profile**
- Risk Score: Moderate (50/100)
- Ownership: Registered to IRT-IDNIC-ID (IDNIC-IDCLOUDHOST-AS-ID) under APNIC.
- Geolocation: Jakarta Selatan, Indonesia (latitude: -0.79, longitude: 113.92).
- Network Role: Cloud-hosted infrastructure (ColocationHosting).
- Threat Indicators: No malicious activity detected (no indicators, blacklists, or campaigns).
---
**2. Observation History**
- Recent Activity:
- 2026-06-06:
- DNS resolution linked to `ip103-172-204-219.cloudhost.web.id`.
- Subnet abuse density: 66.67% (mostly_clean classification).
- Operator risk score: 0.13 (Minimal).
- Historical data shows stable ownership and no persistent threats.
---
**3. Relationships**
- DNS Associations:
- Directly linked to `ip103-172-204-219.cloudhost.web.id` (PTR record).
- Network Context:
- Part of IANA-BLOCK (prefix: `103.172.204.0/24`).
- Subnet abuse density: 66.67%, with 2 out of 3 sibling IPs flagged as threats.
---
**4. Neighborhood Analysis**
- Subnet: `103.172.204.219/24`
- Neighbor IPs:
- 103.172.204.83 (Risk: 25/100, Authority: 50)
- 103.172.204.220 (Risk: 25/100, Authority: 50)
- Abuse Density: High (0.6667), suggesting potential for malicious activity within the subnet.
---
**5. Recommendations**
- Monitor Subnet: The subnet has a high abuse density; investigate neighboring IPs (e.g., 103.172.204.83, 103.172.204.220) for anomalies.
- Verify DNS: Analyze `ip103-172-204-219.cloudhost.web.id` for potential C2 servers or malicious campaigns.
- Check Provider: Confirm cloud hosting provider (IRT-IDNIC-ID) for any known security incidents or misconfigurations.
- Baseline Behavior: Track changes in risk scores or DNS associations over time, as the IPโs history shows minimal activity.
---
Note: While the IP itself is not currently malicious, its subnetโs abuse density warrants further scrutiny.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | IRT-IDNIC-ID |
| ASN | AS136052 |
| Network Name | IANA-BLOCK |
| CIDR Block | 0.0.0.0/0 |
| RIR | APNIC |
| Country | ID |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | ip103-172-204-219.cloudhost.web.id |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | ip103-172-204-219.cloudhost.web.id |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 2 | 2 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 19% | 2 | 2 |
| Overall | 17% | 9 | 11 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Fresh
| First Seen | 2026-05-12 21:53:23 UTC |
| Last Seen | 2026-06-25 07:54:12 UTC |
| Profile Built | 2026-06-18 22:50:26 UTC |
| Data Freshness | Fresh |
| Signal Types | 18 |
| Total Observations | 18 |
Full dossier details are available via our API.