DigitalOcean Referral Badge
cloud1
cloud2
cloud3
cloud4
cloud5
cloud6
← Back

COUNTRY REPORT — Poland · poland

First sighted: April 30, 2023, 3 a.m. · Last sighted: March 2, 2026, 2 a.m.

Risk
100 (high)
Total hits
50192
Total errors
9628
Distinct IPs
11195
Distinct ASNs
669
Country
Poland
Top Org
ovh sp. z o. o
Top ASN
AS5617 • Orange Polska Spolka Akcyjna
Risk Rank
#37 / 208
Geo Coverage
100.0%
Confidence
100/100
Push Alert
Watch
Briefing Notes
  • Poland: risk 100 (high).
  • Risk rank #37 of 208 countries.
  • Coverage 100.0% geolocated, confidence 100/100.
  • Top organization: ovh sp. z o. o (7,143 hits).
  • Top ASN: AS5617 (4,288 hits).
  • Push alert posture: Watch (Moderate risk or recent activity).

Risk

Model: v1 Computed: 2026-03-05 19:30:11
Risk score
100
Risk gradient
Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.
Annotator influence radar
Rendering annotator influence profile…
Normalized contribution (0..1) per annotator versus robust per-code envelope.
Key drivers
Sensitive file probing
Requests target commonly sensitive files, configs, backups, or administrative resources.
sfp
Hits 1725
Points 14788.40
Command injection attempts
Request content resembles attempts to execute OS commands via an application.
cmdi
Hits 538
Points 12608.90
Automated client behavior
Traffic patterns strongly suggest automation rather than a human-operated browser.
bot
Hits 10441
Points 5220.00
Credential brute forcing
Repeated authentication attempts consistent with password guessing or credential stuffing.
cred
Hits 974
Points 3256.00
User-Agent anomaly
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
ua
Hits 11059
Points 1970.64
Scan velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
scan_velocity
Hits 983
Points 1422.36
Path traversal attempts
Request paths/parameters resemble attempts to access files outside intended directories.
trav
Hits 121
Points 885.04
SQL injection attempts
Input patterns resemble attempts to manipulate SQL queries via application parameters.
sqli
Hits 20
Points 452.00
HTTP method anomaly
Unusual or unexpected HTTP methods observed for the target endpoints.
method
Hits 470
Points 220.56
Request size anomaly
Requests are unusually large or shaped in a way that suggests abuse or automation.
request_size
Hits 478
Points 85.56
Protocol anomaly
Request structure or protocol-level signals deviate from typical browser HTTP traffic.
proto
Hits 10
Points 8.88
Referrer abuse
Referrer patterns look manipulated, irrelevant, or inconsistent with normal navigation.
ref
Hits 28
Points 5.04

Top Organizations Operating In The Country

Most-observed organizations in this country
ovh sp. z o. o mevspace sp. z o.o 1337 services gmbh microsoft azure cloud (polandcentral) orange polska s.a. unknown meverywhere sp.zo.o google cloud (europe-central2) ovh t-mobile polska s.a. polkomtel sp. z o.o play-internet meverywhere sp. z o.o p4 sp. z o.o. ptk centertel mobile data services eranet upc polska sp. z o.o. ptk-centertel netia cgnat p4 sp. z o.o vectra s.a toyanet tpnet polaczenia dla klient atm skytechnology cf vps gd mmp quadspark it solutions private limited scaleway shentel network sp. z o.o akasha.net sp. z o.o netia sa f-net sp. z o.o aster sp. z o.o. lunory cloud solutions ltd ajc inea sp. z o.o. icloud private relay inea sp z oo core net. broadband core v

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this country.

Loading activity…
Daily activity (hits per day). Total in window: .
Traffic rollup
HTTP status classes, URL diversity, and totals.
2xx
24573
3xx
14357
4xx
8310
5xx
1318
Unique URLs
0
Total hits
50192
First seen
April 30, 2023, 3 a.m.
Last seen
March 2, 2026, 2 a.m.

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Uses totals aggregation and renders a donut.

Loading status mix…
Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this country snapshot (peer IPs with coordinates).

Loading map…

Top Autonomous System Networks

Most-observed networks in this country
AS5617 Orange Polska Spolka Akcyjna AS9141 P4 Sp. z o.o. AS39603 P4 Sp. z o.o. AS12912 T-Mobile Polska S.A. AS8374 Polkomtel Sp. z o.o. AS29314 VECTRA S.A. AS12887 Netia SA AS13110 INEA sp. z o.o. AS29167 Netia SA AS16342 Toya sp.z.o.o AS29535 Orange Polska Spolka Akcyjna AS21021 Multimedia Polska Sp. z o.o. AS198414 Cyber_Folks S.A. AS197217 Shentel Sp. z o.o. AS51394 Akasha.net Sp. z o.o. AS35695 F-NET sp. z o.o. AS48014 AlbHost SH.P.K. AS201661 PRZEDSIEBIORSTWO AJC 2 S.C. OZGA ADAM, KUBALA JAROSLAW, OZGA KONRAD AS12741 Netia SA AS201019 P4 Sp. z o.o. AS44144 HostRoyale Technologies Pvt Ltd AS34525 KOBA Sp. z o.o. AS140952 Strong Technology, LLC AS51290 BARTOSZ WASZAK trading as HOSTEAM S.C. TOMASZ GROSZEWSKI BARTOSZ WASZAK LUKASZ GROSZEWSKI AS197667 Telekom System sp.z o.o. AS42739 Hawe Telekom S.A. in Restructuring AS205879 EKO-LINE Sp. z o.o. AS50467 Beskid Media Sp. z o.o. AS31423 Przedsiebiorstwo PROMAX Spolka Jawna Zofia Formanek-Okroj, Wieslaw Okroj AS35191 ASTA-NET S.A. AS51175 Multiplay Sp. z o.o. AS35063 Chopin Telewizja Kablowa spolka z ograniczona odpowiedzialnoscia AS35179 Korbank S. A. AS50767 FIBERLINK Sp. z o.o. AS20853 eTOP sp. z o.o. AS13000 Leon Sp. z o.o. AS44692 "Domtel Telecom" Dariusz Dombek AS203778 SPEED-NET Arkadiusz Broniecki AS39507 Biznes Swiatlowodem Sp. z o.o. AS31242 P4 Sp. z o.o.