45.61.184.174

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

## Intelligence Briefing: IP 45.61.184.174/32

Classification: Low Risk Infrastructure IP | Report Date: 2026-06-25

---

Executive Summary

IP address 45.61.184.174 is a low-risk hosting infrastructure address operated by Frantech Solutions (BuyVM). The IP exhibits minimal threat indicators and no active malicious reputation. Current risk score is 25 (Low Risk), with no evidence of active exploitation or command-and-control activity. The IP belongs to a colocation hosting environment with no open services exposed.

---

Ownership and Geolocation

Organization: Frantech Solutions (BuyVM)
ASN: AS53667
Location: Miami, FL, US
Network Block: 45.61.184.0/22
Infrastructure Type: Colocation Hosting
BGP Prefix: 45.61.184.0/22

---

Threat Assessment

Risk Score: 25/100 (Low Risk)
Reputation: Low Risk
Blacklist Count: 0
Known Attacker: No
Tor Exit Node: No
Spam Source: No
Abuse Confidence Score: Not applicable
Threat Feeds: None detected
Campaign Correlation: 0 matches

Control Plane Indicators:

DNSBL Listed: 1 of 8 total lists
Operator Score: 0.1304 (Minimal)
Route Stability: Unstable
RPKI/IRR Status: Not verified

---

Network Services and DNS

Open Ports: None detected
DNS PTR Hostnames: None
Forward Resolution: Not confirmed
Hosted Domains: 0
TLS Certificates: None
HTTP Services: None detected
Service Classification: Firewalled / No Services

---

Neighborhood Analysis (45.61.184.0/24)

Subnet Classification: Mostly Clean
Abuse Density: 0.25 (25% of /24 flagged as suspicious)
Active Siblings: 3 out of 4 total IPs
Threat Siblings: 1

Notable Neighbor IPs:

IP Address	Risk Score	Authority Score
45.61.184.51	49	50
45.61.184.184	40	50
45.61.184.228	25	50

*Recommendation: Monitor neighbors 45.61.184.51 and 45.61.184.184 for elevated activity patterns.*

---

Historical Observations

Total Observations: 17 signals
Most Recent: 2026-06-25 09:38 UTC (Provider classification: Frantech/BuyVM)
Previous Observation: 2026-06-19 (AS53667 frantech solutions via AlienVault-OTX)
Threat Persistence: 0 days (no persistent malicious behavior observed)
Ownership Changes: 0
Behavioral Indicators:

- Honeypot Hits: 0

- Enumeration Strikes: 0

- WAF Violations: 0

---

Network Relationships

Related Network: PONYNET-15 (24 relationships)
Network Classification: Colocation hosting infrastructure

---

Recommended Security Actions

Based on current risk profile, the following actions are recommended:

1. Traffic Allowance: Permit traffic from this IP if legitimate business relationships exist with Frantech Solutions

2. Monitoring: Add to baseline monitoring profile for infrastructure hosting traffic

3. Neighbor Correlation: Monitor adjacent IPs 45.61.184.51 and 45.61.184.184 for coordinated malicious activity

4. DNSBL Check: Investigate reason for single DNSBL listing entry

Firewall Rule Consideration:

No immediate blocking recommended
Standard logging and monitoring sufficient for threat intelligence purposes

---

Conclusion

IP 45.61.184.174 represents low-risk hosting infrastructure from a legitimate colocation provider. No active threat indicators detected. The IP should be treated as benign infrastructure unless observed participating in malicious activity in future monitoring cycles.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇺🇸 United States
Region	FL
City	Miami
Timezone	—
Latitude	25.78
Longitude	-80.18

🏢 Ownership & Registration

Organization	FranTech Solutions
ASN	AS53667
Network Name	—
CIDR Block	—
RIR	ARIN
Country	—
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR Record	No PTR
Forward Confirmed	No — PTR hostname does not resolve back to this IP (weak signal)

🔐 DNS Hygiene

Hygiene Score	20% (Poor)
SPF	Not configured
DMARC	Not configured
FCrDNS	Not verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Firewalled / No Services
Network Tier	Hosting — Infrastructure provider without advanced routing

Hosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
No open ports detected

Server	—
HTTP Title	—

🔐 TLS Certificate

🔒

No certificate

Issued by —

N/A

SANs	None
Valid From	—
Valid Until	—

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	25%	2	3
routing	8%	1	1
services	8%	1	1
ownership	20%	2	3
reputation	27%	1	3
geolocation	27%	2	3
Overall	19%	9	14

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (50%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-08 17:18:05 UTC
Last Seen	2026-06-27 13:54:11 UTC
Profile Built	2026-06-28 07:59:00 UTC
Data Freshness	Live
Signal Types	17
Total Observations	22

🔍 17 signal types · 22 observations collected

This report is generated from 17+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

45.61.184.174📋 Copy