Daily Threat Intelligence Report

This report contains following information

  1. Overall statistics
    1. Number of domains detected
    2. Number of domains detected by Google Safe Browsing
    3. IP address behind entry-level domains
    4. date of collection
  2. Top 10 domain statistics
    1. count (number of redirection paths that contain this domain)
    2. tier (1 is entry-level domain, 2 is intermediate hop, 3 is final landing domain)
    3. registar
    4. organization
  3. Top 10 IP statistics
    1. count
    2. location (city, country, region)
    3. hostname
    4. organization
  4. Consolidated redirection path
    1. green: tier one domain
    2. yellow: tier two domain
    3. red: tier three domain
num_domain num_links num_full_url num_safebrowsing_malicious num_vt_malicious date ip user_agent
0 446 462 2160 2 0 2020-11-02 103.224.182.207 Android
tier domain count registrar name_servers org
0 tier_1 secondnaturecd.com 1 GoDaddy.com, LLC NS1.ABOVE.COM None
1 tier_1 03calls.com 1 GoDaddy.com, LLC NS1.ABOVE.COM None
2 tier_1 ohne-kohlenhydrate.net 1 GoDaddy.com, LLC NS1.ABOVE.COM None
3 tier_1 benstreaming.com 1 GoDaddy.com, LLC NS1.ABOVE.COM None
4 tier_1 ecatomb.net 1 GoDaddy.com, LLC NS1.ABOVE.COM None
5 tier_1 ptidico.com 1 GoDaddy.com, LLC NS1.ABOVE.COM None
6 tier_1 azmovielist.net 1 GoDaddy.com, LLC NS1.ABOVE.COM None
7 tier_1 okuloncesiegitimi.net 1 GoDaddy.com, LLC NS1.ABOVE.COM None
8 tier_1 123gmail.com 1 TLD Registrar Solutions Ltd. NS1.ABOVE.COM Whois Privacy Corp.
9 tier_1 naruto-mx.net 1 GoDaddy.com, LLC NS1.ABOVE.COM None
10 tier_2 bidr.trellian.com 217 ABOVE.COM PTY LTD. NS1.TRELLIAN.COM REDACTED FOR PRIVACY
11 tier_2 us.redirectbuzz.club 141 Gandi SAS ns-2.awsdns-00.com PPCBUZZ
12 tier_2 recode.pw 131 Gandi SAS NS-1611.AWSDNS-09.CO.UK None
13 tier_2 portablemusic.mobi 129 GoDaddy.com, LLC None None
14 tier_2 arloreed.com 97 Name.com, Inc. MARK.NS.CLOUDFLARE.COM Domain Protection Services, Inc.
15 tier_2 trk61.onnur.xyz 88 NameSilo, LLC PAITYN.NS.CLOUDFLARE.COM See PrivacyGuardian.org
16 tier_2 cmon.ueive.com 88 None None None
17 tier_2 go.doblevialatam.com 77 GoDaddy.com, LLC NS.RACKSPACE.COM Domains By Proxy, LLC
18 tier_2 sales.dvlatam.xyz 73 NAMECHEAP INC DNS1.REGISTRAR-SERVERS.COM WhoisGuard, Inc.
19 tier_2 google.com 72 MarkMonitor, Inc. NS1.GOOGLE.COM Google LLC
20 tier_3 google.com_LOOP_1 72 None None None
21 tier_3 admoustache.go2affise.com 29 GoDaddy.com, LLC NS-1529.AWSDNS-63.ORG Domains By Proxy, LLC
22 tier_3 for-ap.com 27 PDR Ltd. d/b/a PublicDomainRegistry.com ALEX.NS.CLOUDFLARE.COM Privacy Protect, LLC (PrivacyProtect.org)
23 tier_3 delightcmain.xyz 24 Epik LLC MARJORY.NS.CLOUDFLARE.COM Anonymize, Inc.
24 tier_3 gladmpath.xyz 13 Epik LLC MARJORY.NS.CLOUDFLARE.COM Anonymize, Inc.
25 tier_3 blog.sfgate.com 11 CSC CORPORATE DOMAINS, INC. NS1.HEARSTNP.COM Hearst Communications, Inc.
26 tier_3 samsung.com 10 None None None
27 tier_3 amazon.com 5 MarkMonitor, Inc. NS1.P31.DYNECT.NET Amazon Technologies, Inc.
28 tier_3 trk2.multitax.xyz 4 Name.com, Inc. MACIEJ.NS.CLOUDFLARE.COM Domain Protection Services, Inc.
29 tier_3 clk.news-headlines.co 4 NAMECHEAP INC ns-1428.awsdns-50.org WhoisGuard, Inc.
ip hostname city region org postal country_name tier count
0 103.224.182.207 lb-182-207.above.com Caulfield South Victoria AS133618 Trellian Pty. Limited 3193 Australia tier_1 262
1 100.37.135.2 pool-100-37-135-2.nycmny.fios.verizon.net New York City New York AS701 MCI Communications Services, Inc. d/b/a Verizon Business 10004 United States tier_3 86
2 103.224.182.206 bidr.trellian.com Caulfield South Victoria AS133618 Trellian Pty. Limited 3193 Australia tier_2 217
3 162.242.198.222 nan Washington Washington, D.C. AS27357 Rackspace Hosting 20045 United States tier_2 77
4 184.154.10.251 server04.com-2.mobi Chicago Illinois AS32475 SingleHop LLC 60666 United States tier_2 73
5 165.22.162.145 nan Santa Clara California AS14061 DigitalOcean, LLC 95051 United States tier_2 71
6 100.37.135.2 pool-100-37-135-2.nycmny.fios.verizon.net New York City New York AS701 MCI Communications Services, Inc. d/b/a Verizon Business 10004 United States tier_3 86
7 172.64.197.11 nan New York City New York AS13335 Cloudflare, Inc. 10004 United States tier_2 55
8 172.67.196.134 nan New York City New York AS13335 Cloudflare, Inc. 10004 United States tier_2 52
9 172.64.196.11 nan New York City New York AS13335 Cloudflare, Inc. 10004 United States tier_2 41
10 209.132.243.15 nan Wyoming Michigan AS7296 Alchemy Communications, Inc. 49509 United States tier_2 37
11 213.32.106.139 ip139.ip-213-32-106.eu Amsterdam North Holland AS16276 OVH SAS 1012 Netherlands tier_2 36
12 100.37.135.2 pool-100-37-135-2.nycmny.fios.verizon.net New York City New York AS701 MCI Communications Services, Inc. d/b/a Verizon Business 10004 United States tier_3 86
13 104.18.79.149 nan New York City New York AS13335 Cloudflare, Inc. 10004 United States tier_3 18
14 213.227.134.196 nan The Hague South Holland AS60781 LeaseWeb Netherlands B.V. 2513 Netherlands tier_3 15
15 213.227.156.19 nan Amsterdam North Holland AS60781 LeaseWeb Netherlands B.V. 1012 Netherlands tier_3 14
16 151.101.0.200 nan San Francisco California AS54113 Fastly 94107 United States tier_3 11
17 104.18.45.36 nan New York City New York AS13335 Cloudflare, Inc. 10004 United States tier_3 11
18 104.18.44.36 nan New York City New York AS13335 Cloudflare, Inc. 10004 United States tier_3 9
19 23.38.172.65 a23-38-172-65.deploy.static.akamaitechnologies.com Newark New Jersey AS16625 Akamai Technologies, Inc. 07175 United States tier_3 9
20 104.18.82.149 nan New York City New York AS13335 Cloudflare, Inc. 10004 United States tier_3 8
21 104.18.81.149 nan New York City New York AS13335 Cloudflare, Inc. 10004 United States tier_3 7