DigitalOcean Referral Badge
cloud1
cloud2
cloud3
cloud4
cloud5
cloud6
← Back

ASN REPORT — AS215787 · TELE90 Telecom GmbH

First sighted: June 5, 2024, 3 a.m. · Last sighted: Dec. 23, 2024, 1:59 a.m.

Risk
10 (low)
Total hits
275
Total errors
116
Observed IPs
44
Top country
N/A
Top city
N/A

Risk

Model: v1 Computed: 2026-01-18 11:54:12
Risk score
10
Low
Risk gradient
Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.
Key drivers
Command injection attempts
Request content resembles attempts to execute OS commands via an application.
cmdi
Hits 12
Points 233.72
User-Agent anomaly
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
ua
Hits 122
Points 17.09
Sensitive file probing
Requests target commonly sensitive files, configs, backups, or administrative resources.
sfp
Hits 1
Points 8.10
HTTP method anomaly
Unusual or unexpected HTTP methods observed for the target endpoints.
method
Hits 4
Points 1.63

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this ASN.

Loading activity…
Daily activity (hits per day). Total in window: .
Traffic rollup
HTTP status classes, URL diversity, and totals.
2xx
2
3xx
83
4xx
116
5xx
0
Unique URLs
37
Total hits
275
First seen
June 5, 2024, 3 a.m.
Last seen
Dec. 23, 2024, 1:59 a.m.

Annotators (All-time)

Heatmap of annotator × severity. Darker cells mean more volume in that band. Tip: switch to Weighted points to see what drives impact (not just noise).

Severity →
Low High
Command injection attempts cmdi
Request content resembles attempts to execute OS commands via an application.
hits 12 pts 233.72
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
30 4 1 93.84 Sept. 23, 2024, 4:51 p.m. Sept. 23, 2024, 4:51 p.m.
cmdi 4
28 4 1 83.78 Sept. 23, 2024, 4:51 p.m. Sept. 23, 2024, 4:51 p.m.
cmdi 4
22 4 1 56.10 Sept. 23, 2024, 4:51 p.m. Sept. 23, 2024, 4:51 p.m.
cmdi 4
User-Agent anomaly ua
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
hits 122 pts 17.09
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
14 48 1 10.75 Oct. 2, 2024, 8:56 p.m. Dec. 10, 2024, 11:16 p.m.
ua 48
6 50 1 3.60 June 8, 2024, 5:05 p.m. Dec. 10, 2024, 11:16 p.m.
ua 50
8 18 1 1.87 June 5, 2024, 2:13 p.m. Oct. 28, 2024, 11:45 p.m.
ua 18
10 6 1 0.86 Sept. 21, 2024, 5:26 a.m. Sept. 23, 2024, 4:51 p.m.
ua 6
Sensitive file probing sfp
Requests target commonly sensitive files, configs, backups, or administrative resources.
hits 1 pts 8.10
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
40 1 1 8.10 Nov. 10, 2024, 10:45 p.m. Nov. 10, 2024, 10:45 p.m.
sensitive_file 1
HTTP method anomaly method
Unusual or unexpected HTTP methods observed for the target endpoints.
hits 4 pts 1.63
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
8 4 1 1.63 June 8, 2024, 5:05 p.m. June 8, 2024, 5:49 p.m.
method 4

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Auto-loads a single aggregation and renders a donut.

Loading status mix…
Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this ASN snapshot (peer IPs with coordinates).

Loading map…

SUBNETS HELD BY THIS ISP

Derived from ISP snapshot peers (Option A). Grouped into IPv4 /24 and IPv6 /48 by default.
IPv4
IPv6
Limit
Loading subnets…

Interesting IPs

Top risky peers inside this ASN (latest snapshot). Sorted by risk score, then hits.

No peer rows available for this ASN snapshot.