Daily Threat Intelligence Report

This report contains following information

  1. Overall statistics
    1. Number of domains detected
    2. Number of domains detected by Google Safe Browsing
    3. IP address behind entry-level domains
    4. date of collection
  2. Top 10 domain statistics
    1. count (number of redirection paths that contain this domain)
    2. tier (1 is entry-level domain, 2 is intermediate hop, 3 is final landing domain)
    3. registar
    4. organization
  3. Top 10 IP statistics
    1. count
    2. location (city, country, region)
    3. hostname
    4. organization
  4. Consolidated redirection path
    1. green: tier one domain
    2. yellow: tier two domain
    3. red: tier three domain
num_domain num_links num_full_url num_safebrowsing_malicious num_vt_malicious date ip user_agent
0 330 353 1253 2 0 2020-10-25 103.224.182.207 Android
tier domain count registrar name_servers org
0 tier_1 secondnaturecd.com 1 GoDaddy.com, LLC NS1.ABOVE.COM None
1 tier_1 03calls.com 1 GoDaddy.com, LLC NS1.ABOVE.COM None
2 tier_1 benstreaming.com 1 GoDaddy.com, LLC NS1.ABOVE.COM None
3 tier_1 a-doctor-in-the-house.com 1 GoDaddy.com, LLC NS1.ABOVE.COM None
4 tier_1 ptidico.com 1 GoDaddy.com, LLC NS1.ABOVE.COM None
5 tier_1 yemekdol.com 1 GoDaddy.com, LLC NS1.ABOVE.COM None
6 tier_1 123gmail.com 1 TLD Registrar Solutions Ltd. NS1.ABOVE.COM Whois Privacy Corp.
7 tier_1 facebook-sex.com 1 Internet Domain Service BS Corp. NS1.ABOVE.COM Whois Privacy Corp.
8 tier_1 naruto-mx.net 1 GoDaddy.com, LLC NS1.ABOVE.COM None
9 tier_1 1-18-08.com 1 GoDaddy.com, LLC NS1.ABOVE.COM None
10 tier_2 bidr.trellian.com 131 ABOVE.COM PTY LTD. NS1.TRELLIAN.COM REDACTED FOR PRIVACY
11 tier_2 us.redirectbuzz.club 110 Gandi SAS ns-2.awsdns-00.com PPCBUZZ
12 tier_2 recode.pw 40 Gandi SAS NS-1611.AWSDNS-09.CO.UK None
13 tier_2 portablemusic.mobi 40 GoDaddy.com, LLC None None
14 tier_2 admoustache.go2affise.com 37 GoDaddy.com, LLC NS-1529.AWSDNS-63.ORG Domains By Proxy, LLC
15 tier_2 0redira.com 35 ABOVE.COM PTY LTD. NS1.ABOVE.COM REDACTED FOR PRIVACY
16 tier_2 paid.outbrain.com 27 Network Solutions, LLC DNS1.P07.NSONE.NET None
17 tier_2 rdr.ad-score.com 26 GoDaddy.com, LLC NS53.DOMAINCONTROL.COM Protected Media
18 tier_2 tendertouching.com 25 GANDI SAS NS-1127.AWSDNS-12.ORG PPCBUZZ
19 tier_2 technoblogs.net 23 GANDI SAS NS-1196.AWSDNS-21.ORG PPCBUZZ
20 tier_3 promotionsonlineus.com 19 GoDaddy.com, LLC ALEXIS.NS.CLOUDFLARE.COM None
21 tier_3 brainberries.co 16 GoDaddy.com, LLC chuck.ns.cloudflare.com Bedigital Corporation
22 tier_3 healthgrades.com 15 Amazon Registrar, Inc. NS-1102.AWSDNS-09.ORG Whois Privacy Service
23 tier_3 clk.news-headlines.co 13 NAMECHEAP INC ns-1428.awsdns-50.org WhoisGuard, Inc.
24 tier_3 playgames-win.com 9 Arsys Internet, S.L. dba NICLINE.COM NS23.PIENSASOLUTIONS.COM luis martinez agullo
25 tier_3 play.leadzuaf.com 9 ENOM, INC. NS10.DNSMADEEASY.COM REDACTED FOR PRIVACY
26 tier_3 encryptalert.com 8 NAMECHEAP INC DNS1.REGISTRAR-SERVERS.COM WhoisGuard, Inc.
27 tier_3 trustedpush.com 7 None None None
28 tier_3 win1.trustedpush.com 5 NAMECHEAP INC NS-1142.AWSDNS-14.ORG WhoisGuard, Inc.
29 tier_3 aarp.org 4 MarkMonitor, Inc. PDNS83.ULTRADNS.ORG AARP
ip hostname city region org postal country_name tier count
0 103.224.182.207 lb-182-207.above.com Caulfield South Victoria AS133618 Trellian Pty. Limited 3193 Australia tier_1 175
1 103.224.182.206 bidr.trellian.com Caulfield South Victoria AS133618 Trellian Pty. Limited 3193 Australia tier_2 131
2 103.224.212.241 lb-212-241.above.com Caulfield South Victoria AS133618 Trellian Pty. Limited 3193 Australia tier_2 35
3 34.199.180.187 ec2-34-199-180-187.compute-1.amazonaws.com Virginia Beach Virginia AS14618 Amazon.com, Inc. 23471 United States tier_2 34
4 130.211.115.4 4.115.211.130.bc.googleusercontent.com Council Bluffs Iowa AS15169 Google LLC 51502 United States tier_2 26
5 151.101.2.132 nan San Francisco California AS54113 Fastly 94107 United States tier_2 25
6 66.232.112.76 66-232-112-76.static.hvvc.us Tampa Florida AS29802 HIVELOCITY, Inc. 33606 United States tier_2 24
7 209.132.243.15 nan Los Angeles California AS7296 Alchemy Communications, Inc. 90009 United States tier_2 24
8 213.227.134.196 nan Amsterdam North Holland AS60781 LeaseWeb Netherlands B.V. 1012 Netherlands tier_2 21
9 157.230.125.44 offerz4.me Frankfurt am Main Hesse AS14061 DigitalOcean, LLC 60311 Germany tier_2 21
10 34.199.107.160 ec2-34-199-107-160.compute-1.amazonaws.com Virginia Beach Virginia AS14618 Amazon.com, Inc. 23471 United States tier_2 20
11 100.37.135.2 pool-100-37-135-2.nycmny.fios.verizon.net New York City New York AS701 MCI Communications Services, Inc. d/b/a Verizon Business 10004 United States tier_3 14
12 172.64.204.25 nan New York City New York AS13335 Cloudflare, Inc. 10004 United States tier_3 12
13 66.228.63.84 nb-66-228-63-84.atlanta.nodebalancer.linode.com Atlanta Georgia AS63949 Linode, LLC 30302 United States tier_3 9
14 104.26.4.153 nan Washington Washington, D.C. AS13335 Cloudflare, Inc. 20045 United States tier_3 8
15 144.202.107.3 144.202.107.3.vultr.com Live Oak California AS20473 Choopa, LLC 95953 United States tier_3 8
16 172.64.205.25 nan New York City New York AS13335 Cloudflare, Inc. 10004 United States tier_3 7
17 104.26.5.153 nan San Francisco California AS13335 Cloudflare, Inc. 94107 United States tier_3 7
18 54.172.16.98 ec2-54-172-16-98.compute-1.amazonaws.com Virginia Beach Virginia AS14618 Amazon.com, Inc. 23471 United States tier_3 7
19 13.226.36.24 server-13-226-36-24.ewr53.r.cloudfront.net Newark New Jersey AS16509 Amazon.com, Inc. 07175 United States tier_3 6
20 13.225.65.6 server-13-225-65-6.ewr53.r.cloudfront.net Newark New Jersey AS16509 Amazon.com, Inc. 07175 United States tier_3 5