cloud1

cloud2

cloud3

cloud4

cloud5

cloud6

← Back

ASN REPORT — AS41798 · JSC Transtelecom

First sighted: June 25, 2023, 3 a.m. · Last sighted: Jan. 11, 2026, 1:59 a.m.

Risk

16 (low)

Total hits

339

Total errors

92

Observed IPs

109

Top country

N/A

Top city

N/A

Risk

Model: v1 Computed: 2026-01-18 11:55:17

Risk score

16

Low

Risk gradient

Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.

Key drivers

Path traversal attempts

Request paths/parameters resemble attempts to access files outside intended directories.

trav

Hits 40

Points 255.63

Sensitive file probing

Requests target commonly sensitive files, configs, backups, or administrative resources.

sfp

Hits 24

Points 157.27

Credential brute forcing

Repeated authentication attempts consistent with password guessing or credential stuffing.

cred

Hits 6

Points 13.86

User-Agent anomaly

User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.

ua

Hits 52

Points 5.09

HTTP method anomaly

Unusual or unexpected HTTP methods observed for the target endpoints.

method

Hits 11

Points 4.49

Protocol anomaly

Request structure or protocol-level signals deviate from typical browser HTTP traffic.

proto

Hits 6

Points 2.24

Referrer abuse

Referrer patterns look manipulated, irrelevant, or inconsistent with normal navigation.

ref

Hits 2

Points 0.25

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this ASN.

Loading activity…

Daily activity (hits per day). Total in window: —.

Traffic rollup

HTTP status classes, URL diversity, and totals.

2xx

37

3xx

127

4xx

92

5xx

0

Unique URLs

112

Total hits

339

First seen

June 25, 2023, 3 a.m.

Last seen

Jan. 11, 2026, 1:59 a.m.

Annotators (All-time)

Heatmap of annotator × severity. Darker cells mean more volume in that band. Tip: switch to Weighted points to see what drives impact (not just noise).

Severity →

Low High

Path traversal attempts trav

Request paths/parameters resemble attempts to access files outside intended directories.

hits 40 pts 255.63

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
28	20	1	133.95	Oct. 2, 2023, 3:52 a.m.	Oct. 11, 2023, 4:54 a.m.	trav 20
26	20	1	121.68	Oct. 2, 2023, 3:52 a.m.	Oct. 11, 2023, 4:54 a.m.	trav 20

Sensitive file probing sfp

Requests target commonly sensitive files, configs, backups, or administrative resources.

hits 24 pts 157.27

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
34	20	1	128.66	Oct. 2, 2023, 3:52 a.m.	Oct. 11, 2023, 4:54 a.m.	sensitive_file 20
40	3	1	24.29	Aug. 4, 2023, 10:26 p.m.	April 19, 2024, 2:32 p.m.	sensitive_file 3
24	1	1	4.33	June 6, 2024, 8:53 p.m.	June 6, 2024, 8:53 p.m.	sensitive_file 1

Credential brute forcing cred

Repeated authentication attempts consistent with password guessing or credential stuffing.

hits 6 pts 13.86

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
10	2	1	7.70	Nov. 15, 2023, 4:09 p.m.	Nov. 15, 2023, 11:29 p.m.	cred 2
8	2	1	6.16	Nov. 15, 2023, 4:09 p.m.	Nov. 15, 2023, 11:29 p.m.	cred 2
0	2	1	0.00	Nov. 15, 2023, 4:09 p.m.	Nov. 15, 2023, 11:29 p.m.	cred 2

User-Agent anomaly ua

User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.

hits 52 pts 5.09

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
8	24	1	2.50	July 8, 2023, 9:02 p.m.	Oct. 11, 2023, 4:54 a.m.	ua 24
6	20	1	1.44	June 25, 2023, 11 p.m.	Oct. 11, 2023, 4:54 a.m.	ua 20
10	8	1	1.15	July 16, 2023, 4:57 a.m.	April 19, 2024, 2:32 p.m.	ua 8

HTTP method anomaly method

Unusual or unexpected HTTP methods observed for the target endpoints.

hits 11 pts 4.49

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
8	11	1	4.49	June 25, 2023, 11 p.m.	Sept. 21, 2023, 7:35 p.m.	method 11

Protocol anomaly proto

Request structure or protocol-level signals deviate from typical browser HTTP traffic.

hits 6 pts 2.24

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
11	3	1	1.85	June 26, 2023, 4:41 a.m.	June 29, 2023, 7:56 a.m.	proto 3
3	3	1	0.40	June 26, 2023, 4:41 a.m.	June 29, 2023, 7:56 a.m.	proto 3

Referrer abuse ref

Referrer patterns look manipulated, irrelevant, or inconsistent with normal navigation.

hits 2 pts 0.25

Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.

Severity	Total	Labels	Weighted	First seen	Last seen	Top labels
6	2	1	0.25	Nov. 15, 2023, 4:09 p.m.	Nov. 15, 2023, 11:29 p.m.	ref 2

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Auto-loads a single aggregation and renders a donut.

Loading status mix…

Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this ASN snapshot (peer IPs with coordinates).

Loading map…

SUBNETS HELD BY THIS ISP

Derived from ISP snapshot peers (Option A). Grouped into IPv4 /24 and IPv6 /48 by default.

IPv4

IPv6

Limit

Loading subnets…

Interesting IPs

Top risky peers inside this ASN (latest snapshot). Sorted by risk score, then hits.

Bucket

Limit

Filter

No peer rows available for this ASN snapshot.

Syndu