← Back

COUNTRY REPORT — Andorra · andorra

First sighted: Sept. 5, 2024, 3 a.m. · Last sighted: March 2, 2026, 2 a.m.

Risk

100 (high)

Total hits

25021

Total errors

10454

Distinct IPs

134

Distinct ASNs

Country

Andorra

Top Org

techoff srv limited

Top ASN

AS6752 • Andorra Telecom

Risk Rank

#42 / 208

Geo Coverage

100.0%

Confidence

71/100

Push Alert

Watch

Briefing Notes

Andorra: risk 100 (high).
Risk rank #42 of 208 countries.
Coverage 100.0% geolocated, confidence 71/100.
Top organization: techoff srv limited (24,937 hits).
Top ASN: AS6752 (31 hits).
Push alert posture: Watch (Moderate risk or recent activity).

Risk

Model: v1 Computed: 2026-03-05 19:30:11

Risk score

100

Risk gradient

Key drivers are enriched against the published annotator catalog when available; otherwise sensible defaults are used.

Annotator influence radar

Rendering annotator influence profile…

Normalized contribution (0..1) per annotator versus robust per-code envelope.

Key drivers

Sensitive file probing

Requests target commonly sensitive files, configs, backups, or administrative resources.

sfp

Points 118183.12

Path traversal attempts

Request paths/parameters resemble attempts to access files outside intended directories.

trav

Points 7654.92

Scan velocity

High request rate and broad endpoint coverage suggest scanning or automated enumeration.

scan_velocity

Points 3092.04

Credential brute forcing

Repeated authentication attempts consistent with password guessing or credential stuffing.

cred

Points 2241.80

User-Agent anomaly

User-Agent signals look missing, inconsistent, or indicative of non-browser tooling.

Points 321.52

HTTP method anomaly

Unusual or unexpected HTTP methods observed for the target endpoints.

method

Points 134.28

SQL injection attempts

Input patterns resemble attempts to manipulate SQL queries via application parameters.

sqli

Points 90.00

Request size anomaly

Requests are unusually large or shaped in a way that suggests abuse or automation.

request_size

Points 73.92

Command injection attempts

Request content resembles attempts to execute OS commands via an application.

cmdi

Points 73.10

Firewall probing

Traffic behavior suggests probing of access controls and protected surfaces.

fwprobe

Points 25.20

Referrer abuse

Referrer patterns look manipulated, irrelevant, or inconsistent with normal navigation.

ref

Points 5.58

Automated client behavior

Traffic patterns strongly suggest automation rather than a human-operated browser.

bot

Points 4.00

Top Organizations Operating In The Country

Most-observed organizations in this country

techoff srv limited cyberzon s.a (andorra) andorra telecom s.a.u andorra telecom sau unknown burnaby mountain housing co-op netpr and dp packethub s.a logicweb inc

Traffic

Rollup

Daily activity (hits per day) and basic HTTP rollup counters for this country.

Loading activity…

Daily activity (hits per day). Total in window: —.

Traffic rollup

HTTP status classes, URL diversity, and totals.

2xx

1383

3xx

13001

4xx

10418

5xx

Unique URLs

Total hits

25021

First seen

Sept. 5, 2024, 3 a.m.

Last seen

March 2, 2026, 2 a.m.

HTTP Status Breakdown

Response mix grouped by status class (2xx/3xx/4xx/5xx). Uses totals aggregation and renders a donut.

Loading status mix…

Running one aggregation and rendering the chart.

Geolocation

Live geolocation and map tiles auto-load for this country snapshot (peer IPs with coordinates).

Loading map…

Top Autonomous System Networks

Most-observed networks in this country

AS6752 Andorra Telecom

COUNTRY REPORT — Andorra · andorra

Risk

Top Organizations Operating In The Country

Traffic

HTTP Status Breakdown

Geolocation

Top Autonomous System Networks

Confirm Action