102.64.33.1
IP Intelligence Briefing: 102.64.33.1/32
*Generated via IPDebrief tools: Profile, History, Relationships, Neighbors*
---
**1. IP Profile**
- Risk Score: 55 (Moderate Risk)
- Ownership:
- ASN: 327991
- Organization: Megasurf Wireless Internet CC (South Africa)
- CIDR Block: 102.64.33.0/24
- Geolocation:
- Country: South Africa (ZA)
- City: Vanderbijlpark, Gauteng
- Timezone: Africa/Johannesburg
- Threat Indicators:
- No known malicious activity, spam, or attack campaigns.
- Not listed on DNSBLs or threat feeds.
- Network Role:
- Firewalled with no open services or TLS certificates detected.
- BGP prefix: 102.64.32.0/20 (Megasurf).
---
**2. Observation History**
- First Observed: May 30, 2026
- Consistency: Stable geolocation in South Africa.
- Risk Trends: No significant changes in risk scores or threat signals.
- DNS Validation: Valid PTR record for `ms-33-1.megasurf.co.za`.
---
**3. Relationships**
- DNS Associations:
- Linked to `ms-33-1.megasurf.co.za` (same hostname repeated).
- Network Context:
- Same subnet: 102.64.33.0/24.
- No direct ties to known malicious organizations or subnets.
---
**4. Subnet Neighborhood**
- Abuse Density: 14.29% (mostly clean).
- Neighbor Risk:
- High Risk: 5 IPs (e.g., 102.64.33.29, 102.64.33.73).
- Medium Risk: 26 IPs.
- Low Risk: 7 IPs.
- Notable IPs:
- 102.64.33.29 (risk score 80), 102.64.33.73 (risk score 80).
- 102.64.33.55, 102.64.33.105, and 102.64.33.203 (risk score 55).
---
**5. Recommendations**
- Monitor Neighbors: Focus on high-risk neighbors (e.g., 102.64.33.29, 102.64.33.73) for potential lateral movement.
- Check Subnet Activity: Investigate if the 102.64.33.0/24 subnet is associated with broader malicious campaigns.
- Validate DNS: Confirm `ms-33-1.megasurf.co.za` is legitimate and not a spoofed domain.
- Network Segmentation: Consider isolating this subnet if it connects to internal resources.
---
*No direct threat detected, but subnet-level risks warrant closer scrutiny.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Jacobus De Beer |
| ASN | AS327991 |
| Network Name | 102.64.33.0 - 102.64.33.255 |
| CIDR Block | 102.64.33.0/24 |
| RIR | AFRINIC |
| Country | ZA |
| Abuse Contact | β |
π DNS Intelligence
| PTR | ms-33-1.megasurf.co.za |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ms-33-1.megasurf.co.za |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 2 | 2 |
| routing | 25% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 13% | 1 | 2 |
| geolocation | 27% | 2 | 3 |
| Overall | 19% | 9 | 11 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-15 08:42:36 UTC |
| Last Seen | 2026-06-07 11:38:21 UTC |
| Profile Built | 2026-06-07 11:43:45 UTC |
| Data Freshness | Live |
| Signal Types | 17 |
| Total Observations | 17 |
Full dossier details are available via our API.