209.141.37.7
IP INTELLIGENCE BRIEFING: 209.141.37.7
EXECUTIVE SUMMARY
IP 209.141.37.7 is a low-risk (score: 25) colocation hosting endpoint operated by FranTech Solutions (ASN 53667) in Las Vegas, NV. The IP demonstrates minimal threat activity and belongs to a mostly clean subnet environment.
OWNERSHIP & GEOLOCATION
- Organization: FranTech Solutions
- ASN: 53667 (Frantech/BuyVM)
- Network: 209.141.32.0/19 (BGP prefix)
- Location: Las Vegas, NV, US
- Infrastructure: Colocation Hosting facility
THREAT ASSESSMENT
- Risk Score: 25 (Low Risk)
- Abuse Confidence: Not elevated
- Blacklist Status: 0 blacklists
- Known Campaigns: None identified
- Tor/VPN/Proxy Activity: None detected
- Is Hosting: Yes
- Is Cloud: No
NETWORK SERVICES & EXPOSURE
- Open Ports: 3389/TCP (RDP)
- DNS Resolution: s24-lu.servers.rs (servers.rs domain)
- Email Authentication: SPF enabled, DMARC not configured
- DNSBL Status: Listed on 1 of 8 threat feeds
NEIGHBORHOOD ANALYSIS (209.141.37.0/24)
- Abuse Density: 0
- Risk Distribution: Low risk
- Sibling IPs: 194 (risk score: 25)
- Subnet Classification: Mostly clean
- Threat Siblings: 2 identified within /24
RELATIONSHIP GRAPH
- DNS Associations: s24-lu.servers.rs (primary hostname)
- Network Relationships: PONYNET-04
- Certificate Evidence: 18 certificates associated
HISTORICAL OBSERVATIONS
- Threat Persistence Days: 0
- Ownership Changes: 0
- Recent Signal Types: Routing analysis, DNS certificate data, network classification
- Route Stability: Unstable (route changes observed in 30-day window)
RECOMMENDED ACTIONS
1. Monitor RDP port 3389 exposure on colocation infrastructure
2. Investigate DNSBL listing context for 209.141.37.7
3. Consider DMARC configuration for servers.rs domain
4. Review routing stability implications for network operations
5. No immediate blocking recommended; maintain observation status
RISK CONCLUSION
This IP represents a standard colocation hosting endpoint with low-risk characteristics. Primary concerns are RDP service exposure and DNSBL listing requiring contextual investigation. No active malicious indicators detected.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | FranTech Solutions |
| ASN | AS53667 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | s24-lu.servers.rs |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | s24-lu.servers.rs |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 3389 | rdp | tcp | β |
| Closed Ports | 22, 25, 80, 443, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 20% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-24 18:40:47 UTC |
| Last Seen | 2026-06-29 00:29:04 UTC |
| Profile Built | 2026-06-29 06:32:02 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 24 |
Full dossier details are available via our API.