DigitalOcean Referral Badge
cloud1
cloud2
cloud3
cloud4
cloud5
cloud6
← Back

ASN REPORT — AS17858 · LG POWERCOMM

First sighted: May 8, 2023, 3 a.m. · Last sighted: Nov. 16, 2025, 1:59 a.m.

Risk
14 (low)
Total hits
456
Total errors
63
Observed IPs
42
Top country
N/A
Top city
N/A

Risk

Model: v1 Computed: 2026-01-18 11:55:26
Risk score
14
Low
Risk gradient
Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.
Key drivers
Command injection attempts
Request content resembles attempts to execute OS commands via an application.
cmdi
Hits 7
Points 146.61
Path traversal attempts
Request paths/parameters resemble attempts to access files outside intended directories.
trav
Hits 22
Points 145.93
Sensitive file probing
Requests target commonly sensitive files, configs, backups, or administrative resources.
sfp
Hits 8
Points 51.46
Credential brute forcing
Repeated authentication attempts consistent with password guessing or credential stuffing.
cred
Hits 7
Points 21.56
Scan velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
scan_velocity
Hits 5
Points 5.42
User-Agent anomaly
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
ua
Hits 33
Points 3.10
Protocol anomaly
Request structure or protocol-level signals deviate from typical browser HTTP traffic.
proto
Hits 6
Points 3.03
Request size anomaly
Requests are unusually large or shaped in a way that suggests abuse or automation.
request_size
Hits 23
Points 0.94

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this ASN.

Loading activity…
Daily activity (hits per day). Total in window: .
Traffic rollup
HTTP status classes, URL diversity, and totals.
2xx
221
3xx
35
4xx
54
5xx
9
Unique URLs
198
Total hits
456
First seen
May 8, 2023, 3 a.m.
Last seen
Nov. 16, 2025, 1:59 a.m.

Annotators (All-time)

Heatmap of annotator × severity. Darker cells mean more volume in that band. Tip: switch to Weighted points to see what drives impact (not just noise).

Severity →
Low High
Command injection attempts cmdi
Request content resembles attempts to execute OS commands via an application.
hits 7 pts 146.61
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
28 7 1 146.61 July 2, 2023, 1:26 p.m. Feb. 15, 2024, 6:51 p.m.
cmdi 7
Path traversal attempts trav
Request paths/parameters resemble attempts to access files outside intended directories.
hits 22 pts 145.93
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
28 8 1 53.58 May 24, 2025, 3:14 p.m. May 24, 2025, 3:14 p.m.
trav 8
26 8 1 48.67 May 24, 2025, 3:14 p.m. May 24, 2025, 3:14 p.m.
trav 8
30 6 1 43.68 May 24, 2025, 3:14 p.m. May 24, 2025, 3:14 p.m.
trav 6
Sensitive file probing sfp
Requests target commonly sensitive files, configs, backups, or administrative resources.
hits 8 pts 51.46
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
34 8 1 51.46 May 24, 2025, 3:14 p.m. May 24, 2025, 3:14 p.m.
sensitive_file 8
Credential brute forcing cred
Repeated authentication attempts consistent with password guessing or credential stuffing.
hits 7 pts 21.56
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
10 3 1 11.66 Dec. 20, 2023, 3:26 p.m. Dec. 20, 2023, 3:26 p.m.
cred 3
12 2 1 9.90 Dec. 20, 2023, 3:26 p.m. Dec. 20, 2023, 3:26 p.m.
cred 2
0 2 1 0.00 Dec. 20, 2023, 3:26 p.m. Dec. 20, 2023, 3:26 p.m.
cred 2
Scan velocity scan_velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
hits 5 pts 5.42
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
12 2 1 3.89 May 24, 2025, 3:14 p.m. May 24, 2025, 3:14 p.m.
scan_velocity 2
10 1 1 1.53 May 24, 2025, 3:14 p.m. May 24, 2025, 3:14 p.m.
scan_velocity 1
0 2 1 0.00 May 24, 2025, 3:14 p.m. May 24, 2025, 3:14 p.m.
scan_velocity 2
User-Agent anomaly ua
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
hits 33 pts 3.10
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
6 23 1 1.66 May 8, 2023, 10:51 a.m. July 12, 2025, 3:16 a.m.
ua 23
14 3 1 0.67 Jan. 10, 2025, 6:40 a.m. April 28, 2025, 8:36 p.m.
ua 3
8 6 1 0.62 July 10, 2023, 7:08 p.m. May 24, 2025, 3:14 p.m.
ua 6
10 1 1 0.14 Sept. 7, 2023, 10:30 a.m. Sept. 7, 2023, 10:30 a.m.
ua 1
Protocol anomaly proto
Request structure or protocol-level signals deviate from typical browser HTTP traffic.
hits 6 pts 3.03
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
12 4 1 2.76 May 24, 2025, 3:14 p.m. May 24, 2025, 3:14 p.m.
proto 4
3 2 1 0.26 May 24, 2025, 3:14 p.m. May 24, 2025, 3:14 p.m.
proto 2
Request size anomaly request_size
Requests are unusually large or shaped in a way that suggests abuse or automation.
hits 23 pts 0.94
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
12 2 1 0.94 Jan. 11, 2025, 12:54 a.m. Jan. 11, 2025, 12:54 a.m.
request_size 2
0 21 1 0.00 Jan. 11, 2025, 12:54 a.m. May 7, 2025, 9:57 a.m.
request_size 21

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Auto-loads a single aggregation and renders a donut.

Loading status mix…
Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this ASN snapshot (peer IPs with coordinates).

Loading map…

SUBNETS HELD BY THIS ISP

Derived from ISP snapshot peers (Option A). Grouped into IPv4 /24 and IPv6 /48 by default.
IPv4
IPv6
Limit
Loading subnets…

Interesting IPs

Top risky peers inside this ASN (latest snapshot). Sorted by risk score, then hits.

No peer rows available for this ASN snapshot.