102.64.39.15
IP Intelligence Briefing: 102.64.39.15
Date: 2026-06-10
---
**1. Core Profile**
- Risk Score: 80/100 (High Risk)
- Ownership: Registered to Jacobus De Beer (Megasurf Wireless Internet CC), South Africa (ZA).
- Geolocation: Vanderbijlpark, Gauteng, South Africa (Lat: -26.7, Lon: 27.82).
- Network Role: Unknown; no public services (HTTP/TLS) or cloud/CDN indicators.
- DNS: Resolves to ms-39-15.megasurf.co.za (PTR confirmed).
---
**2. Threat & Behavior**
- Threat Indicators: No direct malicious indicators (no malware, phishing, or exploit campaigns).
- Network Activity:
- Subnet 102.64.39.0/24 has 39 neighbors, with 10 high-risk (80/100) and 18 medium-risk (40/60) IPs.
- Abuse Density: 25.6% of subnet IPs show elevated risk (high/medium).
- Historical Signals:
- Recent DNS observations (2026-06-10) and routing data (ASN 327991).
- No persistent malicious activity detected.
---
**3. Relationships & Context**
- DNS Associations: Linked to ms-39-15.megasurf.co.za (4x).
- Network Peers: Shares subnet with Megasurf Wireless Internet CC (ASN 327991).
- Routing: BGP prefix 102.64.32.0/21 (operator score: 0.26).
---
**4. Recommended Actions**
- Monitoring: Increase logging verbosity for traffic from this IP.
- Blocking:
- Firewall Rules:
- `iptables -A INPUT -s 102.64.39.15 -j DROP`
- `nft add rule inet filter input ip saddr 102.64.39.15 drop`
- Cloudflare/AWS WAF rules provided in tool response.
- Investigation: Validate DNS and routing anomalies in the 102.64.39.0/24 subnet.
---
Summary: This IP is part of a South African ISP network with a high risk score. While no direct malicious activity is observed, its subnet contains multiple high-risk neighbors. Monitor closely and consider blocking to mitigate potential threats.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Jacobus De Beer |
| ASN | AS327991 |
| Network Name | 102.64.39.0 - 102.64.39.255 |
| CIDR Block | 102.64.39.0/24 |
| RIR | AFRINIC |
| Country | ZA |
| Abuse Contact | β |
π DNS Intelligence
| PTR | ms-39-15.megasurf.co.za |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | ms-39-15.megasurf.co.za |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 21% | 2 | 2 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 12% | 6 | 6 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-23 06:20:22 UTC |
| Last Seen | 2026-06-10 04:50:58 UTC |
| Profile Built | 2026-06-10 04:59:00 UTC |
| Data Freshness | Live |
| Signal Types | 16 |
| Total Observations | 18 |
Full dossier details are available via our API.