102.129.56.145
IP Intelligence Briefing: 102.129.56.145
Date: 2026-06-12
---
**1. Core Profile**
- Risk Score: 40 (Moderate Risk)
- Ownership:
- ASN: 327991
- Organization: Jacobus De Beer (Megasurf Wireless Internet CC)
- Network: 102.129.56.0/24
- Region: Gauteng, South Africa (Vanderbijlpark)
- Threat Indicators:
- No known malicious activity, spam, or attacker associations.
- No TLS certificates, open ports, or HTTP services detected.
- Network Role:
- Firewalled / No Services
- Not a CDN, VPN, proxy, or Tor node.
---
**2. Observation History (Last 30 Days)**
- Geo Validation:
- Plausible location in South Africa (claimed coordinates: -26.7005, 27.8179).
- Round-trip time (RTT): 252β266 ms, distance ~9,039 km.
- DNS Listings:
- Listed on 2/8 DNSBLs (high severity categories).
- Resolved DNS: `ms-56-145.megasurf.co.za` (SPF/DMARC configured).
- BGP Context:
- Prefix: `102.129.56.0/21` (Megasurf Wireless, registered 2018).
- DNSSEC valid, no RPKI violations.
---
**3. Relationships & Network Context**
- Linked Entities:
- Same Network: 102.129.56.0/24 (Megasurf Wireless).
- DNS Hostname: `ms-56-145.megasurf.co.za`.
- Subnet Neighbors (102.129.56.0/24):
- Abuse Density: 7.8% (4 high-risk, 38 medium-risk, 6 low-risk IPs).
- Notable neighbors:
- 102.129.56.2 (risk score: 55),
- 102.129.56.23 (risk score: 55),
- 102.129.56.8 (risk score: 25).
---
**4. Threat & Risk Assessment**
- No Direct Threats:
- No malware indicators, spam, or known attacker associations.
- Indirect Risks:
- Subnet contains 4 high-risk IPs; monitor for lateral movement or shared infrastructure compromises.
- DNSBL listings may indicate spam or abuse activity (investigate further).
---
**5. Recommended Actions**
1. Monitor Subnet Activity:
- Focus on high-risk neighbors (e.g., 102.129.56.2, 102.129.56.23).
2. Validate DNS Records:
- Confirm legitimacy of `ms-56-145.megasurf.co.za` and SPF/DMARC configurations.
3. Network Segmentation:
- Ensure 102.129.56.0/24 is isolated from critical assets to mitigate potential lateral movement.
4. Check for Anomalies:
- Investigate DNSBL listings and verify if the IP is part of a broader abuse pattern.
---
Source: IPDebrief Threat Intelligence Platform
Note: This IP shows no immediate active threats but requires ongoing monitoring due to subnet risk factors.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Jacobus De Beer |
| ASN | AS327991 |
| Network Name | 102.129.56.0 - 102.129.56.255 |
| CIDR Block | 102.129.56.0/24 |
| RIR | AFRINIC |
| Country | ZA |
| Abuse Contact | β |
π DNS Intelligence
| PTR | ms-56-145.megasurf.co.za |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ms-56-145.megasurf.co.za |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 0% | 0 | 0 |
| routing | 0% | 0 | 0 |
| services | 0% | 0 | 0 |
| ownership | 19% | 2 | 2 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 5% | 3 | 3 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-03 12:20:25 UTC |
| Last Seen | 2026-06-12 20:34:16 UTC |
| Profile Built | 2026-06-12 20:43:40 UTC |
| Data Freshness | Live |
| Signal Types | 17 |
| Total Observations | 17 |
Full dossier details are available via our API.