DigitalOcean Referral Badge
cloud1
cloud2
cloud3
cloud4
cloud5
cloud6
← Back

ASN REPORT — AS3292 · TDC Holding A/S

First sighted: July 15, 2023, 3 a.m. · Last sighted: Sept. 7, 2025, 2:59 a.m.

Risk
4 (low)
Total hits
1656
Total errors
135
Observed IPs
28
Top country
N/A
Top city
N/A

Risk

Model: v1 Computed: 2026-01-18 11:55:14
Risk score
4
Low
Risk gradient
Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.
Key drivers
Scan velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
scan_velocity
Hits 63
Points 43.09
Request size anomaly
Requests are unusually large or shaped in a way that suggests abuse or automation.
request_size
Hits 87
Points 17.87
Credential brute forcing
Repeated authentication attempts consistent with password guessing or credential stuffing.
cred
Hits 6
Points 13.86
Sensitive file probing
Requests target commonly sensitive files, configs, backups, or administrative resources.
sfp
Hits 1
Points 8.10
User-Agent anomaly
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
ua
Hits 110
Points 7.98
Automated client behavior
Traffic patterns strongly suggest automation rather than a human-operated browser.
bot
Hits 8
Points 3.80
Referrer abuse
Referrer patterns look manipulated, irrelevant, or inconsistent with normal navigation.
ref
Hits 2
Points 0.25

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this ASN.

Loading activity…
Daily activity (hits per day). Total in window: .
Traffic rollup
HTTP status classes, URL diversity, and totals.
2xx
1124
3xx
45
4xx
32
5xx
103
Unique URLs
493
Total hits
1656
First seen
July 15, 2023, 3 a.m.
Last seen
Sept. 7, 2025, 2:59 a.m.

Annotators (All-time)

Heatmap of annotator × severity. Darker cells mean more volume in that band. Tip: switch to Weighted points to see what drives impact (not just noise).

Severity →
Low High
Scan velocity scan_velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
hits 63 pts 43.09
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
10 30 1 37.80 Nov. 7, 2024, 6:36 p.m. June 24, 2025, 4:13 a.m.
scan_velocity 30
16 1 1 2.02 Nov. 7, 2024, 6:37 p.m. Nov. 7, 2024, 6:37 p.m.
scan_velocity 1
14 1 1 1.76 Nov. 7, 2024, 6:37 p.m. Nov. 7, 2024, 6:37 p.m.
scan_velocity 1
12 1 1 1.51 Nov. 7, 2024, 6:37 p.m. Nov. 7, 2024, 6:37 p.m.
scan_velocity 1
0 30 1 0.00 Nov. 7, 2024, 6:36 p.m. June 24, 2025, 4:13 a.m.
scan_velocity 30
Request size anomaly request_size
Requests are unusually large or shaped in a way that suggests abuse or automation.
hits 87 pts 17.87
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
20 8 1 7.20 June 24, 2025, 4:10 a.m. June 24, 2025, 4:13 a.m.
request_size 8
12 14 1 6.55 Dec. 25, 2024, 5:01 a.m. June 24, 2025, 4:09 a.m.
request_size 14
14 7 1 4.12 June 24, 2025, 4:07 a.m. June 24, 2025, 4:09 a.m.
request_size 7
0 58 1 0.00 Dec. 25, 2024, 5:01 a.m. July 16, 2025, 12:06 p.m.
request_size 58
Credential brute forcing cred
Repeated authentication attempts consistent with password guessing or credential stuffing.
hits 6 pts 13.86
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
10 2 1 7.70 June 24, 2025, 4:13 a.m. June 24, 2025, 4:13 a.m.
cred 2
8 2 1 6.16 June 24, 2025, 4:13 a.m. June 24, 2025, 4:13 a.m.
cred 2
0 2 1 0.00 June 24, 2025, 4:13 a.m. June 24, 2025, 4:13 a.m.
cred 2
Sensitive file probing sfp
Requests target commonly sensitive files, configs, backups, or administrative resources.
hits 1 pts 8.10
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
40 1 1 8.10 July 15, 2023, 6:43 p.m. July 15, 2023, 6:43 p.m.
sensitive_file 1
User-Agent anomaly ua
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
hits 110 pts 7.98
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
6 108 1 7.78 Nov. 22, 2024, 12:44 p.m. June 24, 2025, 4:13 a.m.
ua 108
8 2 1 0.21 April 9, 2025, 7:35 a.m. Sept. 6, 2025, 1:10 p.m.
ua 2
Automated client behavior bot
Traffic patterns strongly suggest automation rather than a human-operated browser.
hits 8 pts 3.80
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
10 8 1 3.80 June 24, 2025, 4:10 a.m. July 3, 2025, 6:33 p.m.
bot 8
Referrer abuse ref
Referrer patterns look manipulated, irrelevant, or inconsistent with normal navigation.
hits 2 pts 0.25
Breakdown by severity band (all-time). “Weighted” reflects your weight configuration.
Severity Total Labels Weighted First seen Last seen Top labels
6 2 1 0.25 June 24, 2025, 4:13 a.m. June 24, 2025, 4:13 a.m.
ref 2

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Auto-loads a single aggregation and renders a donut.

Loading status mix…
Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this ASN snapshot (peer IPs with coordinates).

Loading map…

SUBNETS HELD BY THIS ISP

Derived from ISP snapshot peers (Option A). Grouped into IPv4 /24 and IPv6 /48 by default.
IPv4
IPv6
Limit
Loading subnets…

Interesting IPs

Top risky peers inside this ASN (latest snapshot). Sorted by risk score, then hits.

No peer rows available for this ASN snapshot.