Daily Threat Intelligence Report

This report contains following information

  1. Overall statistics
    1. Number of domains detected
    2. Number of domains detected by Google Safe Browsing
    3. IP address behind entry-level domains
    4. date of collection
  2. Top 10 domain statistics
    1. count (number of redirection paths that contain this domain)
    2. tier (1 is entry-level domain, 2 is intermediate hop, 3 is final landing domain)
    3. registar
    4. organization
  3. Top 10 IP statistics
    1. count
    2. location (city, country, region)
    3. hostname
    4. organization
  4. Consolidated redirection path
    1. green: tier one domain
    2. yellow: tier two domain
    3. red: tier three domain
num_domainnum_linksnum_full_urlnum_safebrowsing_maliciousnum_vt_maliciousdateipuser_agent
04814851792202020-10-12103.224.182.207Iphone
tierdomaincountregistrarname_serversorg
0tier_1puracandelatv.com1GoDaddy.com, LLCNS1.ABOVE.COMNone
1tier_1taglicapellicorti.net1GoDaddy.com, LLCNS1.ABOVE.COMNone
2tier_1codanova.com1GoDaddy.com, LLCNS1.ABOVE.COMNone
3tier_1planet-pulse.com1GoDaddy.com, LLCNS1.ABOVE.COMNone
4tier_1channelfilipino.net1GoDaddy.com, LLCNS1.ABOVE.COMNone
5tier_1secondnaturecd.com1GoDaddy.com, LLCNS1.ABOVE.COMNone
6tier_103calls.com1GoDaddy.com, LLCNS1.ABOVE.COMNone
7tier_1soal-psikotest.com1GoDaddy.com, LLCNS1.ABOVE.COMNone
8tier_1ohne-kohlenhydrate.net1GoDaddy.com, LLCNS1.ABOVE.COMNone
9tier_1ddiziizle.net1GoDaddy.com, LLCNS1.ABOVE.COMNone
10tier_2bidr.trellian.com392ABOVE.COM PTY LTD.NS1.TRELLIAN.COMREDACTED FOR PRIVACY
11tier_2changeslots.com283Instra Corporation Pty Ltd.CLEO.NS.CLOUDFLARE.COMREDACTED FOR PRIVACY
12tier_2go.trackinz.com87NAMECHEAP INCNS-1139.AWSDNS-14.ORGWhoisGuard, Inc.
13tier_20redira.com37ABOVE.COM PTY LTD.NS1.ABOVE.COMREDACTED FOR PRIVACY
14tier_2clk.rtpdn11.com16NAMECHEAP INCDNS1.REGISTRAR-SERVERS.COMWhoisGuard, Inc.
15tier_2cletrogen-daution.com13Amazon Registrar, Inc.NS-120.AWSDNS-15.COMWhois Privacy Service
16tier_211164440.searchiqnet.com12GoDaddy.com, LLCNS57.DOMAINCONTROL.COMDomains By Proxy, LLC
17tier_2myjaina.com10Internet Domain Service BS Corp.GORDON.NS.CLOUDFLARE.COMWhois Privacy Corp.
18tier_2bainushe.com10URL SOLUTIONS INC.NS-1108.AWSDNS-10.ORGGLOBAL DOMAIN PRIVACY SERVICES INC
19tier_2c.pageprotect.net10GoDaddy.com, LLCNS75.DOMAINCONTROL.COMDomains By Proxy, LLC
20tier_3theconnectvpn.com283DonDominio (SCIP)ARNOLD.NS.CLOUDFLARE.COMSoluciones Corporativas IP, c/o Whois Proxy
21tier_3clickitover.com87NAMECHEAP INCNS-1367.AWSDNS-42.ORGWhoisGuard, Inc.
22tier_3securecd-smrt.com13Amazon Registrar, Inc.NS-1447.AWSDNS-52.ORGWhois Privacy Service
23tier_3us.redirectbuzz.club11Gandi SASns-2.awsdns-00.comPPCBUZZ
24tier_3fourtrk.com10NAMECHEAP INCDNS1.REGISTRAR-SERVERS.COMWhoisGuard, Inc.
25tier_3amazon.com6MarkMonitor, Inc.NS1.P31.DYNECT.NETAmazon Technologies, Inc.
26tier_3samsung.com6NoneNoneNone
27tier_3linzess.com3Network Solutions, LLCHA1.MARKMONITOR.ZONENone
28tier_3shopdisney.com2CSC CORPORATE DOMAINS, INC.A1-127.AKAM.NETDisney Enterprises, Inc.
29tier_3tracktingtalk.com1NoneNoneNone
iphostnamecityregionorgpostalcountry_nametiercount
0103.224.182.207lb-182-207.above.comCaulfield SouthVictoriaAS133618 Trellian Pty. Limited3193Australiatier_1431
1100.37.135.2pool-100-37-135-2.nycmny.fios.verizon.netNew York CityNew YorkAS701 MCI Communications Services, Inc. d/b/a Verizon Business10004United Statestier_11
2103.224.182.206bidr.trellian.comCaulfield SouthVictoriaAS133618 Trellian Pty. Limited3193Australiatier_2392
334.207.32.33ec2-34-207-32-33.compute-1.amazonaws.comVirginia BeachVirginiaAS14618 Amazon.com, Inc.23471United Statestier_2283
434.226.252.28ec2-34-226-252-28.compute-1.amazonaws.comVirginia BeachVirginiaAS14618 Amazon.com, Inc.23471United Statestier_287
5103.224.212.241lb-212-241.above.comCaulfield SouthVictoriaAS133618 Trellian Pty. Limited3193Australiatier_237
6209.132.243.15nanLos AngelesCaliforniaAS7296 Alchemy Communications, Inc.90009United Statestier_231
7173.239.53.32nanNew York CityNew YorkAS27257 Webair Internet Development Company Inc.10013United Statestier_217
818.233.68.85ec2-18-233-68-85.compute-1.amazonaws.comVirginia BeachVirginiaAS14618 Amazon.com, Inc.23471United Statestier_213
9148.72.169.119nanSt. LouisMissouriAS30083 GoDaddy.com, LLC63150United Statestier_210
1054.70.216.196ec2-54-70-216-196.us-west-2.compute.amazonaws.comPortlandOregonAS16509 Amazon.com, Inc.97220United Statestier_25
1167.199.248.12cname.bitly.comLos AngelesCaliforniaAS396982 Google LLC90009United Statestier_24
12172.67.181.234nanNew York CityNew YorkAS13335 Cloudflare, Inc.10004United Statestier_3113
13104.27.186.165nanAtlantic CityNew JerseyAS13335 Cloudflare, Inc.08404United Statestier_389
14157.245.227.32nanSanta ClaraCaliforniaAS14061 DigitalOcean, LLC95051United Statestier_387
15104.27.187.165nanAtlantic CityNew JerseyAS13335 Cloudflare, Inc.08404United Statestier_381
1645.33.26.84li980-84.members.linode.comRichardsonTexasAS63949 Linode, LLC75080United Statestier_310
173.95.110.253ec2-3-95-110-253.compute-1.amazonaws.comVirginia BeachVirginiaAS14618 Amazon.com, Inc.23471United Statestier_39
1823.38.172.65a23-38-172-65.deploy.static.akamaitechnologies.comNewarkNew JerseyAS16625 Akamai Technologies, Inc.07175United Statestier_35
1952.7.246.21ec2-52-7-246-21.compute-1.amazonaws.comVirginia BeachVirginiaAS14618 Amazon.com, Inc.23471United Statestier_34
2096.6.24.144a96-6-24-144.deploy.static.akamaitechnologies.comSentinelOklahomaAS16625 Akamai Technologies, Inc.73664United Statestier_33
2166.232.112.7266-232-112-72.static.hvvc.usTampaFloridaAS29802 HIVELOCITY, Inc.33606United Statestier_33

Have other ideas? / Want to subscribe to get threat intelligence report? / Contact

Zhouhan Chen, NYU Center for Data Science, zc1245@nyu.edu, Personal Website