DigitalOcean Referral Badge
cloud1
cloud2
cloud3
cloud4
cloud5
cloud6
← Back

ASN REPORT — AS137517 · FLAMEHOSTING INC

First sighted: Nov. 14, 2024, 2 a.m. · Last sighted: March 21, 2025, 2 a.m.

Risk
24 (low)
Total hits
164
Total errors
36
Observed IPs
3
Top country
United States
Top city
New York
Top region
New York

Risk

Model: v1 Computed: 2026-02-27 17:09:49
Risk score
24
Low
Risk gradient
Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.
Key drivers
Sensitive file probing
Requests target commonly sensitive files, configs, backups, or administrative resources.
sfp
Hits 61
Points 523.60
Path traversal attempts
Request paths/parameters resemble attempts to access files outside intended directories.
trav
Hits 7
Points 54.60
Command injection attempts
Request content resembles attempts to execute OS commands via an application.
cmdi
Hits 2
Points 51.00
User-Agent anomaly
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
ua
Hits 164
Points 26.40
Credential brute forcing
Repeated authentication attempts consistent with password guessing or credential stuffing.
cred
Hits 6
Points 19.80
Scan velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
scan_velocity
Hits 4
Points 3.60
Protocol anomaly
Request structure or protocol-level signals deviate from typical browser HTTP traffic.
proto
Hits 1
Points 0.88

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this ASN.

Loading activity…
Daily activity (hits per day). Total in window: .
Traffic rollup
HTTP status classes, URL diversity, and totals.
2xx
128
3xx
0
4xx
36
5xx
0
Unique URLs
0
Total hits
164
First seen
Nov. 14, 2024, 2 a.m.
Last seen
March 21, 2025, 2 a.m.

Annotators (All-time)

Heatmap of annotator × severity. Darker cells mean more volume in that band. Tip: switch to Weighted points to see what drives impact (not just noise).

Severity →
Low High
Sensitive file probing sfp
Requests target commonly sensitive files, configs, backups, or administrative resources.
hits 61 pts 523.60
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
40 53 3 466.40 Nov. 14, 2024, 11:20 a.m. March 20, 2025, 10:06 p.m.
36 4 1 31.68 March 20, 2025, 10:05 p.m. March 20, 2025, 10:05 p.m.
34 2 1 14.96 March 20, 2025, 10:05 p.m. March 20, 2025, 10:05 p.m.
24 2 1 10.56 March 20, 2025, 10:05 p.m. March 20, 2025, 10:05 p.m.
Path traversal attempts trav
Request paths/parameters resemble attempts to access files outside intended directories.
hits 7 pts 54.60
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
34 3 2 26.52 Feb. 24, 2025, 11:16 a.m. March 20, 2025, 10:05 p.m.
28 2 1 14.56 March 20, 2025, 10:05 p.m. March 20, 2025, 10:05 p.m.
26 2 1 13.52 March 20, 2025, 10:05 p.m. March 20, 2025, 10:05 p.m.
Command injection attempts cmdi
Request content resembles attempts to execute OS commands via an application.
hits 2 pts 51.00
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
30 2 1 51.00 March 20, 2025, 10:05 p.m. March 20, 2025, 10:05 p.m.
User-Agent anomaly ua
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
hits 164 pts 26.40
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
8 160 3 25.60 Dec. 2, 2024, 2:27 p.m. March 20, 2025, 10:06 p.m.
10 4 1 0.80 Nov. 14, 2024, 11:20 a.m. Nov. 14, 2024, 11:20 a.m.
Credential brute forcing cred
Repeated authentication attempts consistent with password guessing or credential stuffing.
hits 6 pts 19.80
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
10 2 1 11.00 March 20, 2025, 10:05 p.m. March 20, 2025, 10:05 p.m.
8 2 1 8.80 March 20, 2025, 10:05 p.m. March 20, 2025, 10:05 p.m.
0 2 1 0.00 March 20, 2025, 10:05 p.m. March 20, 2025, 10:05 p.m.
Scan velocity scan_velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
hits 4 pts 3.60
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
10 2 1 3.60 March 20, 2025, 10:05 p.m. March 20, 2025, 10:05 p.m.
0 2 1 0.00 March 20, 2025, 10:05 p.m. March 20, 2025, 10:05 p.m.
Protocol anomaly proto
Request structure or protocol-level signals deviate from typical browser HTTP traffic.
hits 1 pts 0.88
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
11 1 1 0.88 Dec. 2, 2024, 2:27 p.m. Dec. 2, 2024, 2:27 p.m.

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Auto-loads a single aggregation and renders a donut.

Loading status mix…
Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this ASN snapshot (peer IPs with coordinates).

Loading map…

SUBNETS HELD BY THIS ISP

Derived from ISP snapshot peers (Option A). Grouped into IPv4 /24 and IPv6 /48 by default.
IPv4
IPv6
Limit
Loading subnets…

Interesting IPs

Top risky peers inside this ASN (latest snapshot). Sorted by risk score, then hits.

31.57.159.26 low
Open report
32 /100
Last seen 2025-03-21 02:00
Hits
111
Errors
21
Country
United States
ASN
AS137517
AS Org
FLAMEHOSTING INC
31.57.159.126 low
Open report
6 /100
Last seen 2025-02-25 02:00
Hits
49
Errors
13
Country
United States
ASN
AS137517
AS Org
FLAMEHOSTING INC
31.57.159.25 low
Open report
1 /100
Last seen 2024-11-15 02:00
Hits
4
Errors
2
Country
United States
ASN
AS137517
AS Org
FLAMEHOSTING INC