DigitalOcean Referral Badge
cloud1
cloud2
cloud3
cloud4
cloud5
cloud6
← Back

REGION REPORT — Ohio - United States · ohio - united states

First sighted: May 10, 2023, 3 a.m. · Last sighted: March 2, 2026, 2 a.m.

Risk
100 (high)
Total hits
4146543
Total errors
328917
Distinct IPs
16331
Distinct ASNs
120
Country
United States
Region
Ohio
Top Org
N/A
Top ASN
N/A
Risk Rank
#4 / 3208
Geo Coverage
100.0%
Confidence
92/100
Push Alert
Elevated
Briefing Notes
  • Ohio - United States: risk 100 (high).
  • Risk rank #4 of 3208 regions.
  • Coverage 100.0% geolocated, confidence 92/100.
  • Push alert posture: Elevated (Elevated risk and active traffic).

Risk

Model: v1 Computed: 2026-03-05 10:52:45
Risk score
100
Risk gradient
Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.
Annotator influence radar
Rendering annotator influence profile…
Normalized contribution (0..1) per annotator versus robust per-code envelope.
Key drivers
Automated client behavior
Traffic patterns strongly suggest automation rather than a human-operated browser.
bot
Hits 4012059
Points 2006024.10
Credential brute forcing
Repeated authentication attempts consistent with password guessing or credential stuffing.
cred
Hits 104044
Points 343416.70
Scan velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
scan_velocity
Hits 161351
Points 205112.88
Sensitive file probing
Requests target commonly sensitive files, configs, backups, or administrative resources.
sfp
Hits 1869
Points 14622.96
Request size anomaly
Requests are unusually large or shaped in a way that suggests abuse or automation.
request_size
Hits 8762
Points 6051.48
User-Agent anomaly
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
ua
Hits 35176
Points 4304.04
Path traversal attempts
Request paths/parameters resemble attempts to access files outside intended directories.
trav
Hits 117
Points 976.04
Command injection attempts
Request content resembles attempts to execute OS commands via an application.
cmdi
Hits 31
Points 712.30
Firewall probing
Traffic behavior suggests probing of access controls and protected surfaces.
fwprobe
Hits 29
Points 375.30
General injection attempts
Suspicious input patterns consistent with injection-like probing across multiple families.
injg
Hits 3
Points 75.60
Header injection attempts
Input patterns suggest attempts to manipulate headers or downstream header parsing.
hdrinj
Hits 3
Points 57.60
SQL injection attempts
Input patterns resemble attempts to manipulate SQL queries via application parameters.
sqli
Hits 1
Points 24.00

Top Organizations Operating In The Region

Most-observed organizations in this region
No org rollups available.

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this region.

Loading activity…
Daily activity (hits per day). Total in window: .
Traffic rollup
HTTP status classes, URL diversity, and totals.
2xx
2050000
3xx
1698702
4xx
316614
5xx
12303
Unique URLs
0
Total hits
4146543
First seen
May 10, 2023, 3 a.m.
Last seen
March 2, 2026, 2 a.m.

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Uses totals aggregation and renders a donut.

Loading status mix…
Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this region snapshot (peer IPs with coordinates).

Loading map…

Top Autonomous System Networks

Most-observed networks in this region
No ASN rollups available.