← Back

COUNTRY REPORT — Germany · germany

First sighted: April 30, 2023, 3 a.m. · Last sighted: March 2, 2026, 2 a.m.

Risk

100 (high)

Total hits

1734679

Total errors

159021

Distinct IPs

31653

Distinct ASNs

408

Country

Germany

Top Org

dataforseo ou

Top ASN

AS3209 • Vodafone GmbH

Risk Rank

#4 / 208

Geo Coverage

100.0%

Confidence

100/100

Push Alert

Escalate

Briefing Notes

Germany: risk 100 (high).
Risk rank #4 of 208 countries.
Coverage 100.0% geolocated, confidence 100/100.
Top organization: dataforseo ou (1,144,368 hits).
Top ASN: AS3209 (31,838 hits).
Push alert posture: Escalate (High risk with fresh growth).

Risk

Model: v1 Computed: 2026-03-05 19:30:11

Risk score

100

Risk gradient

Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.

Annotator influence radar

Rendering annotator influence profile…

Normalized contribution (0..1) per annotator versus robust per-code envelope.

Key drivers

Automated client behavior

Traffic patterns strongly suggest automation rather than a human-operated browser.

bot

Points 518334.90

Sensitive file probing

Requests target commonly sensitive files, configs, backups, or administrative resources.

sfp

Points 297376.20

Scan velocity

High request rate and broad endpoint coverage suggest scanning or automated enumeration.

scan_velocity

Points 57290.04

Credential brute forcing

Repeated authentication attempts consistent with password guessing or credential stuffing.

cred

Points 46993.10

Path traversal attempts

Request paths/parameters resemble attempts to access files outside intended directories.

trav

Points 31633.68

User-Agent anomaly

User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.

Points 11977.52

Command injection attempts

Request content resembles attempts to execute OS commands via an application.

cmdi

Points 11369.60

HTTP method anomaly

Unusual or unexpected HTTP methods observed for the target endpoints.

method

Points 1669.44

Request size anomaly

Requests are unusually large or shaped in a way that suggests abuse or automation.

request_size

Points 1057.44

Protocol anomaly

Request structure or protocol-level signals deviate from typical browser HTTP traffic.

proto

Points 1016.80

Firewall probing

Traffic behavior suggests probing of access controls and protected surfaces.

fwprobe

Points 963.00

SQL injection attempts

Input patterns resemble attempts to manipulate SQL queries via application parameters.

sqli

Points 216.00

Top Organizations Operating In The Country

Most-observed organizations in this country

dataforseo ou hetzner aws cloudfront origin facing (global) hetzner online gmbh contabo gmbh ovh gmbh unknown vodafone kabel deutschland gmbh deutsche telekom ag digitalocean llc ibraheem massalha aws ec2 (eu-central-1) ipxo llc code200 m247 ltd frankfurt telefonica germany gmbh co. thueringer netkom gmbh ll boullioun aviation services global connections network llc tesonet ltd vodafone nrw gmbh arcor-ip censys inc. netcup gmbh netestate gmbh artikel10 e.v digital ocean xantho uab oracle cloud infrastructure (eu-frankfurt-1) cia triad security llc linode vodafone gmbh fiberpower llc cdn77 frankfurt tencent cloud computing gsl networks 3xk tech gmbh uab code200 pfcloud ug digitalcourage e.v

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this country.

Loading activity…

Daily activity (hits per day). Total in window: —.

Traffic rollup

HTTP status classes, URL diversity, and totals.

2xx

1164364

3xx

393167

4xx

141584

5xx

17437

Unique URLs

Total hits

1734679

First seen

April 30, 2023, 3 a.m.

Last seen

March 2, 2026, 2 a.m.

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Uses totals aggregation and renders a donut.

Loading status mix…

Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this country snapshot (peer IPs with coordinates).

Loading map…

Top Autonomous System Networks

Most-observed networks in this country

AS3209 Vodafone GmbH AS42366 TerraTransit AG AS3320 Deutsche Telekom AG AS12816 Leibniz-Rechenzentrum AS60729 Stiftung Erneuerbare Freiheit AS6805 Telefonica Germany GmbH & Co.OHG AS8881 1&1 Versatel GmbH AS199284 Thueringer Netkom GmbH AS207223 Global Connections Network LLC AS35042 Layer7 Networks GmbH AS213200 Ferdinand Zink trading as Tube-Hosting AS15943 wilhelm.tel GmbH AS680 Verein zur Foerderung eines Deutschen Forschungsnetzes e.V. AS21499 Host Europe GmbH AS60294 Deutsche Glasfaser Wholesale GmbH AS9145 EWE TEL GmbH AS8422 NetCologne Gesellschaft fur Telekommunikation mbH AS50436 Tele Columbus AG AS8767 M-net Telekommunikations GmbH AS24961 WIIT AG AS205100 F3 Netze e.V. AS29484 Ruhr-Universitaet Bochum AS16202 Tele Columbus AG AS204548 Kamatera Inc AS58087 Florian Kolb AS553 BelWue-Koordination AS35244 Tele Columbus AG AS58212 dataforest GmbH AS30823 aurologic GmbH AS48284 SWU TeleNet GmbH AS44066 firstcolo GmbH AS44486 synlinq.de AS215787 TELE90 Telecom GmbH AS214243 Marc Fischer AS45062 Netease-Network AS62336 PURtel.com GmbH AS42652 inexio Informationstechnologie und Telekommunikation Gmbh AS215590 DpkgSoft International Limited AS2857 Johannes Gutenberg-Universitaet Mainz AS20880 Tele Columbus AG

COUNTRY REPORT — Germany · germany

Risk

Top Organizations Operating In The Country

Traffic

HTTP Status Breakdown

Geolocation

Top Autonomous System Networks

Confirm Action