DigitalOcean Referral Badge
cloud1
cloud2
cloud3
cloud4
cloud5
cloud6
← Back

REGION REPORT — Sofia-Capital - Bulgaria · sofia-capital - bulgaria

First sighted: June 13, 2023, 3 a.m. · Last sighted: March 2, 2026, 2 a.m.

Risk
99 (high)
Total hits
11770
Total errors
2415
Distinct IPs
3763
Distinct ASNs
112
Country
Bulgaria
Region
Sofia-Capital
Top Org
unknown
Top ASN
AS42555 • OPTICCOM- BULGARIA Ltd.
Risk Rank
#80 / 3208
Geo Coverage
100.0%
Confidence
90/100
Push Alert
Watch
Briefing Notes
  • Sofia-Capital - Bulgaria: risk 99 (high).
  • Risk rank #80 of 3208 regions.
  • Coverage 100.0% geolocated, confidence 90/100.
  • Top organization: unknown (1,219 hits).
  • Top ASN: AS42555 (358 hits).
  • Push alert posture: Watch (Moderate risk or recent activity).

Risk

Model: v1 Computed: 2026-03-05 10:52:45
Risk score
99
Risk gradient
Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.
Annotator influence radar
Rendering annotator influence profile…
Normalized contribution (0..1) per annotator versus robust per-code envelope.
Key drivers
Sensitive file probing
Requests target commonly sensitive files, configs, backups, or administrative resources.
sfp
Hits 1100
Points 7172.00
Command injection attempts
Request content resembles attempts to execute OS commands via an application.
cmdi
Hits 59
Points 1266.50
Header injection attempts
Input patterns suggest attempts to manipulate headers or downstream header parsing.
hdrinj
Hits 54
Points 1123.20
Credential brute forcing
Repeated authentication attempts consistent with password guessing or credential stuffing.
cred
Hits 330
Points 1075.80
Path traversal attempts
Request paths/parameters resemble attempts to access files outside intended directories.
trav
Hits 131
Points 937.56
Firewall probing
Traffic behavior suggests probing of access controls and protected surfaces.
fwprobe
Hits 22
Points 268.20
User-Agent anomaly
User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.
ua
Hits 1550
Points 265.16
Scan velocity
High request rate and broad endpoint coverage suggest scanning or automated enumeration.
scan_velocity
Hits 139
Points 187.92
Request size anomaly
Requests are unusually large or shaped in a way that suggests abuse or automation.
request_size
Hits 216
Points 62.88
Automated client behavior
Traffic patterns strongly suggest automation rather than a human-operated browser.
bot
Hits 18
Points 9.00
Protocol anomaly
Request structure or protocol-level signals deviate from typical browser HTTP traffic.
proto
Hits 5
Points 3.84
Referrer abuse
Referrer patterns look manipulated, irrelevant, or inconsistent with normal navigation.
ref
Hits 20
Points 3.60

Top Organizations Operating In The Region

Most-observed organizations in this region
unknown bulgarian telecommunications company plc. neterra ltd bulgarian telecommunications company plc solutions ltd gpon services truphone bulgaria yettel bulgaria - public mobile services a1 bulgaria ead telenor bulgaria ead ipxo btc plc vivacom bulgaria ead telenor bulgaria - public mobile services gprs mobile a1 bg dynamic pppoe bol bg gcl multimedia bg eood m247 ltd orbitel inc pon services telecom aset ltd mobiltel ead bulinfo eood worktitans b.v broadband services packethub s.a megalan network ltd. burgas 8000 ryvyl eu cdn77 sof mont 2009 inf spectrum btc broadband council of ministers google chrome prefetch proxy eurovdc pronet telecom ltd.

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this region.

Loading activity…
Daily activity (hits per day). Total in window: .
Traffic rollup
HTTP status classes, URL diversity, and totals.
2xx
5394
3xx
2883
4xx
2176
5xx
239
Unique URLs
0
Total hits
11770
First seen
June 13, 2023, 3 a.m.
Last seen
March 2, 2026, 2 a.m.

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Uses totals aggregation and renders a donut.

Loading status mix…
Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this region snapshot (peer IPs with coordinates).

Loading map…

Top Autonomous System Networks

Most-observed networks in this region
AS42555 OPTICCOM- BULGARIA Ltd. AS12829 Angel Soft OOD AS198482 Pernik Lan Ltd. AS57344 Telehouse EAD AS47402 Multimedia BG EOOD AS60656 BOL BG IZTOK LTD AS201005 IT Mania Ltd. AS199173 TechnoLux Ltd. AS16045 BULINFO HOSTING AS45007 VIPNET PRIM Ltd AS59729 GREEN FLOID LLC AS202737 RYVYL (EU) EAD AS44851 BG Retel AS AS12564 Council of Ministers AS44313 Set Service Ltd. AS42794 Ultracom Ltd. AS213514 EuroVDC EOOD AS204281 NETX - NG LTD AS50186 Pronet Telekom Ltd AS42431 BiConsult Eood AS197929 PRONET-COM LTD AS213640 Talido LTD AS60966 Nikem Net Ltd. AS42844 Kbrod.net Ltd. AS197304 Dilis Grup EOOD AS205129 I B Company Ltd. AS205343 GP-NET Ltd. AS197050 BORIANA-EOOD AS60447 I NET BULGARIA AS8431 TEA Ltd. AS41280 SKYNET BULGARIA Ltd. AS205331 Wi-Max Network Ltd. AS210154 GIGALAN EM Ltd. AS35654 Cores Networks EOOD AS201200 SuperHosting.BG Ltd. AS25211 Euro Crypt EOOD AS39135 Fiber 1 Ltd. AS211159 FIBER X Ltd. AS207144 SOFCOMPANY Ltd AS42410 Point To Point Ltd.

Interesting IPs

Top risky peers inside this region (latest snapshot). Sorted by risk score, then hits.

91.92.249.164 high
Open report
100 /100
Last seen 2024-06-09 03:00
Hits
367
Errors
153
Country
Bulgaria
ASN
AS-1
AS Org
87.120.125.13 high
Open report
93 /100
Last seen 2025-01-16 02:00
Hits
33
Errors
2
Country
Bulgaria
ASN
AS16045
AS Org
BULINFO HOSTING
91.92.247.121 high
Open report
88 /100
Last seen 2024-09-22 03:00
Hits
178
Errors
65
Country
Bulgaria
ASN
AS-1
AS Org
87.120.125.126 high
Open report
86 /100
Last seen 2025-01-24 02:00
Hits
56
Errors
40
Country
Bulgaria
ASN
AS16045
AS Org
BULINFO HOSTING
91.92.247.64 med
Open report
70 /100
Last seen 2024-09-28 03:00
Hits
200
Errors
82
Country
Bulgaria
ASN
AS-1
AS Org
91.92.247.105 med
Open report
64 /100
Last seen 2024-06-15 03:00
Hits
98
Errors
41
Country
Bulgaria
ASN
AS-1
AS Org
91.92.249.4 low
Open report
39 /100
Last seen 2024-09-29 03:00
Hits
60
Errors
49
Country
Bulgaria
ASN
AS-1
AS Org
185.82.219.179 low
Open report
36 /100
Last seen 2024-12-09 02:00
Hits
21
Errors
0
Country
Bulgaria
ASN
AS59729
AS Org
GREEN FLOID LLC
91.92.249.23 low
Open report
32 /100
Last seen 2024-06-05 03:00
Hits
46
Errors
15
Country
Bulgaria
ASN
AS-1
AS Org
91.92.247.109 low
Open report
30 /100
Last seen 2024-06-14 03:00
Hits
139
Errors
54
Country
Bulgaria
ASN
AS-1
AS Org
45.12.253.48 low
Open report
16 /100
Last seen 2023-09-22 03:00
Hits
27
Errors
15
Country
Bulgaria
ASN
AS202737
AS Org
RYVYL (EU) EAD
185.82.219.124 low
Open report
9 /100
Last seen 2025-01-22 02:00
Hits
9
Errors
0
Country
Bulgaria
ASN
AS59729
AS Org
GREEN FLOID LLC
45.12.253.248 low
Open report
8 /100
Last seen 2023-08-06 03:00
Hits
16
Errors
8
Country
Bulgaria
ASN
AS202737
AS Org
RYVYL (EU) EAD
109.121.200.187 low
Open report
8 /100
Last seen 2024-01-30 02:00
Hits
3
Errors
0
Country
Bulgaria
ASN
AS43205
AS Org
Vivacom Bulgaria EAD
195.80.151.242 low
Open report
5 /100
Last seen 2025-05-27 03:00
Hits
26
Errors
12
Country
Bulgaria
ASN
AS206804
AS Org
EstNOC OU
91.92.254.204 low
Open report
4 /100
Last seen 2024-05-08 03:00
Hits
54
Errors
39
Country
Bulgaria
ASN
AS-1
AS Org
85.11.167.3 low
Open report
3 /100
Last seen 2026-01-25 02:00
Hits
9
Errors
7
Country
Bulgaria
ASN
AS213438
AS Org
ColocaTel Inc.
45.12.253.27 low
Open report
3 /100
Last seen 2023-10-24 03:00
Hits
8
Errors
4
Country
Bulgaria
ASN
AS202737
AS Org
RYVYL (EU) EAD
94.156.104.115 low
Open report
3 /100
Last seen 2024-10-15 03:00
Hits
3
Errors
0
Country
Bulgaria
ASN
AS216194
AS Org
Navid Emrozian trading as 'Emrozian International Trading'
94.156.6.197 low
Open report
2 /100
Last seen 2023-08-18 03:00
Hits
10
Errors
0
Country
Bulgaria
ASN
AS213514
AS Org
EuroVDC EOOD
185.82.219.136 low
Open report
2 /100
Last seen 2024-09-19 03:00
Hits
6
Errors
0
Country
Bulgaria
ASN
AS59729
AS Org
GREEN FLOID LLC
23.137.251.61 low
Open report
2 /100
Last seen 2023-08-08 03:00
Hits
4
Errors
2
Country
Bulgaria
ASN
AS40663
AS Org
IncogNet LLC
185.99.26.216 low
Open report
1 /100
Last seen 2025-08-27 03:00
Hits
198
Errors
3
Country
Bulgaria
ASN
AS30967
AS Org
TP Global Operations Limited
185.99.24.216 low
Open report
1 /100
Last seen 2025-08-19 03:00
Hits
126
Errors
1
Country
Bulgaria
ASN
AS30967
AS Org
TP Global Operations Limited