43.157.240.204
IP Intelligence Briefing: 43.157.240.204
Date: 2026-06-12
---
**1. Core Profile**
- Risk Score: 80 (High Risk)
- Provider: ASN 132203 (IRT-ACEVILLEPTELTD-SG, APNIC)
- Geolocation: Jakarta, Indonesia (ID)
- Network Role: Firewalled / No Services
- Threat Indicators:
- Listed in 4 DNSBLs (abuse confidence score: N/A)
- No open ports, no TLS/HTTP services, no DNS records resolved
- BGP prefix: 43.157.224.0/19 (Tencent Network, Singapore)
---
**2. Observation History**
- Recent Activity (Last 24h):
- 14 observations:
- 4 DNSBL listings (high-severity threats)
- 2 DNS queries (no PTR/DNSSEC validation)
- 1 minimal risk score (no malicious signals)
- No recent scans, scans, or traffic anomalies detected.
---
**3. Relationships**
- Linked Entities:
- Same network: ASN 132203 (ACEVILLEPTELTD-SG)
- No hostnames, domains, or certificates associated
- No known campaigns or threat feeds matching
---
**4. Neighborhood Analysis**
- Subnet: 43.157.240.204/24
- Neighbor Count: 0 (no sibling IPs detected)
- Subnet Abuse Density: 0% (no malicious activity in the subnet)
---
**5. Recommendations**
- Monitor DNSBL Listings: Investigate why this IP is flagged by 4 DNSBLs.
- Check for DNS Configuration: Validate DNSSEC and PTR records for 43.157.240.204.
- Network Segmentation: Ensure firewalled subnets are isolated from critical assets.
- Behavioral Analysis: No recent traffic anomalies, but high-risk score warrants closer scrutiny.
Conclusion: This IP is flagged as high risk due to DNSBL listings but shows no active malicious behavior. Further investigation into DNS configuration and network segmentation is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | IRT-ACEVILLEPTELTD-SG |
| ASN | AS132203 |
| Network Name | ACEVILLEPTELTD-SG |
| CIDR Block | 43.157.192.0/18 |
| RIR | APNIC |
| Country | ID |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Single-Service Host |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.14 |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 0% | 0 | 0 |
| routing | 0% | 0 | 0 |
| services | 0% | 0 | 0 |
| ownership | 27% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 21% | 2 | 2 |
| Overall | 8% | 4 | 5 |
| Data Coherence | Mostly Consistent (80%) โ 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Fresh
| First Seen | 2026-06-04 00:32:31 UTC |
| Last Seen | 2026-06-26 18:11:18 UTC |
| Profile Built | 2026-06-25 15:21:44 UTC |
| Data Freshness | Fresh |
| Signal Types | 19 |
| Total Observations | 19 |
Full dossier details are available via our API.