DigitalOcean Referral Badge
cloud1
cloud2
cloud3
cloud4
cloud5
cloud6
← Back

ORG REPORT — Sxczbas · sxczbas

First sighted: Jan. 11, 2025, 2 a.m. · Last sighted: April 7, 2025, 3 a.m.

Risk
2 (low)
Total hits
5
Total errors
1
Distinct IPs
4
Distinct ASNs
1
Top country
China
Top city
Taiyuan
Top region
Shanxi

Risk

Model: v1 Computed: 2026-01-29 19:10:08
Risk score
2
Low
Risk gradient
Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.
Key drivers
Command injection attempts
Request content resembles attempts to execute OS commands via an application.
cmdi
Hits 2
Points 49.30
Sensitive file probing
Requests target commonly sensitive files, configs, backups, or administrative resources.
sfp
Hits 1
Points 7.92
Automated client behavior
Traffic patterns strongly suggest automation rather than a human-operated browser.
bot
Hits 3
Points 1.50
User-Agent anomaly
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
ua
Hits 1
Points 0.16

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this organization.

Loading activity…
Daily activity (hits per day). Total in window: .
Traffic rollup
HTTP status classes, URL diversity, and totals.
2xx
0
3xx
2
4xx
0
5xx
1
Unique URLs
5
Total hits
5
First seen
Jan. 11, 2025, 2 a.m.
Last seen
April 7, 2025, 3 a.m.

Annotators (All-time)

Heatmap of annotator × severity. Darker cells mean more volume in that band. Tip: switch to Weighted points to see what drives impact (not just noise).

Severity →
Low High
Command injection attempts cmdi
Request content resembles attempts to execute OS commands via an application.
hits 2 pts 49.30
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
30 1 1 25.50 April 6, 2025, 7:22 a.m. April 6, 2025, 7:22 a.m.
cmdi 1
28 1 1 23.80 April 6, 2025, 7:22 a.m. April 6, 2025, 7:22 a.m.
cmdi 1
Sensitive file probing sfp
Requests target commonly sensitive files, configs, backups, or administrative resources.
hits 1 pts 7.92
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
36 1 1 7.92 April 6, 2025, 7:22 a.m. April 6, 2025, 7:22 a.m.
sensitive_file 1
Automated client behavior bot
Traffic patterns strongly suggest automation rather than a human-operated browser.
hits 3 pts 1.50
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
10 3 1 1.50 Jan. 11, 2025, 7:51 a.m. Jan. 11, 2025, 7:51 a.m.
bot 3
User-Agent anomaly ua
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
hits 1 pts 0.16
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
8 1 1 0.16 April 6, 2025, 7:22 a.m. April 6, 2025, 7:22 a.m.
ua 1

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Uses totals aggregation and renders a donut.

Loading status mix…
Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this Org snapshot (peer IPs with coordinates).

Loading map…

ASNs held by this org

Derived from IP rollups (IPReportTotal). Grouped by (asn, as_org_name).
Loading…

Interesting IPs

Top risky peers inside this org (latest snapshot). Sorted by risk score, then hits.

113.24.129.129 low
Open report
2 /100
Last seen 2025-04-07 03:00
Hits
2
Errors
0
Country
China
ASN
AS4134
AS Org
CHINANET-BACKBONE
113.24.224.99 low
Open report
0 /100
Last seen 2025-01-12 02:00
Hits
1
Errors
0
Country
China
ASN
AS4134
AS Org
CHINANET-BACKBONE
113.24.225.11 low
Open report
0 /100
Last seen 2025-01-12 02:00
Hits
1
Errors
1
Country
China
ASN
AS4134
AS Org
CHINANET-BACKBONE
113.24.225.139 low
Open report
0 /100
Last seen 2025-01-12 02:00
Hits
1
Errors
0
Country
China
ASN
AS4134
AS Org
CHINANET-BACKBONE