Malware Discoverer Github Homepage.

Daily Threat Intelligence Report

This report contains following information

1. Overall statistics
   1. Number of domains detected
   2. Number of domains detected by Google Safe Browsing
   3. IP address behind entry-level domains
   4. date of collection
2. Top 10 domain statistics
   1. count (number of redirection paths that contain this domain)
   2. tier (1 is entry-level domain, 2 is intermediate hop, 3 is final landing domain)
   3. registar
   4. organization
3. Top 10 IP statistics
   1. count
   2. location (city, country, region)
   3. hostname
   4. organization
4. Consolidated redirection path
   1. green: tier one domain
   2. yellow: tier two domain
   3. red: tier three domain

	num_domain	num_links	num_full_url	num_safebrowsing_malicious	num_vt_malicious	date	ip	user_agent
0	235	234	1051	2	13	2021-04-21	207.244.67.215	Chrome

	tier	domain	count	registrar	name_servers	org
0	tier_1	onewhiteweb.com	1	Ripcurl Domains, LLC	NS1.COMMONMX.COM	None
1	tier_1	namecoin-wallet.com	1	Domainnovations, LLC	NS1.COMMONMX.COM	None
2	tier_1	antonaberg.info	1	DYNADOT LLC	NS1.COMMONMX.COM	None
3	tier_1	my-movies.org	1	GoDaddy.com, LLC	NS1.COMMONMX.COM	None
4	tier_1	newmp4movies.in	1	Dynadot LLC	ns1.commonmx.com	None
5	tier_1	hisocraft.net	1	TUCOWS, INC.	NS1.COMMONMX.COM	Contact Privacy Inc. Customer 0159836646
6	tier_1	brawler.io	1	Dynadot, LLC	NS1.COMMONMX.COM	None
7	tier_1	jallo.pro	1	DYNADOT LLC	NS1.COMMONMX.COM	None
8	tier_1	endominicana.net	1	GoDaddy.com, LLC	NS1.COMMONMX.COM	None
9	tier_1	depedcebuprovince.ph	1	None	None	None
10	tier_2	1496.rawlexi.com	184	GoDaddy Online Services Cayman Islands LTD	NS-128.AWSDNS-16.COM	None
11	tier_2	americanlisted.com	175	ilait AB	NS1.TELECOM3.NET	Integration 3 Group AB
12	tier_2	9nl.es	50	None	None	None
13	tier_2	newre-conversions.clickmeter.com	50	REGISTER S.P.A.	NS-1498.AWSDNS-59.ORG	REDACTED FOR PRIVACY
14	tier_2	trk.jometer.com	50	Amazon Registrar, Inc.	NS-129.AWSDNS-16.COM	Whois Privacy Service
15	tier_2	api.l5srv.net	50	GoDaddy.com, LLC	NS53.DOMAINCONTROL.COM	Domains By Proxy, LLC
16	tier_2	click.appcast.io	26	101Domain GRS Ltd	NS-85.AWSDNS-10.COM	None
17	tier_2	careerbliss.com	16	GoDaddy.com, LLC	NS10.DNSMADEEASY.COM	Domains By Proxy, LLC
18	tier_2	trk.careerbliss.com	14	GoDaddy.com, LLC	NS10.DNSMADEEASY.COM	Domains By Proxy, LLC
19	tier_2	click.appcast.io_LOOP_1	13	None	None	None
20	tier_2	rd.bizrate.com	5	MarkMonitor, Inc.	NS-1189.AWSDNS-20.ORG	Meredith Corporation
21	tier_2	click.expmediadirect.com	4	NAMECHEAP INC	NS1.LINODE.COM	Privacy service provided by Withheld for Privacy ehf
22	tier_2	api.apptap.com	4	Amazon Registrar, Inc.	NS-1256.AWSDNS-29.ORG	Whois Privacy Service
23	tier_2	api.mplayit.com	4	Amazon Registrar, Inc.	NS-1236.AWSDNS-26.ORG	Whois Privacy Service
24	tier_2	redirect.viglink.com	4	Amazon Registrar, Inc.	NS1.VIGLINK.COM	Whois Privacy Service
25	tier_2	link.sylikes.com	4	MarkMonitor, Inc.	NS-1063.AWSDNS-04.ORG	Connexity, Inc.
26	tier_2	rd.connexity.net	4	None	None	None
27	tier_2	jsv3.recruitics.com	2	TUCOWS, INC.	NS-1237.AWSDNS-26.ORG	REDACTED FOR PRIVACY
28	tier_2	cmp.jobs	1	None	NS1.LINODE.COM	None
29	tier_2	aristo-hag.com	1	Amazon Registrar, Inc.	NS-1226.AWSDNS-25.ORG	None
30	tier_3	google.com	99	MarkMonitor, Inc.	NS1.GOOGLE.COM	Google LLC
31	tier_3	upward.careers	50	GoDaddy.com, LLC	ns21.domaincontrol.com	Domains By Proxy, LLC
32	tier_3	careerbliss.com	10	GoDaddy.com, LLC	NS10.DNSMADEEASY.COM	Domains By Proxy, LLC
33	tier_3	americanlisted.com	9	ilait AB	NS1.TELECOM3.NET	Integration 3 Group AB
34	tier_3	careerbuilder.com	3	CSC CORPORATE DOMAINS, INC.	BROCK.CBJOBS.NET	CareerBuilder, LLC
35	tier_3	linkedin.com	3	None	None	None
36	tier_3	nextcareernow.com	2	GoDaddy.com, LLC	NS53.DOMAINCONTROL.COM	Domains By Proxy, LLC
37	tier_3	trk.careerbliss.com	2	GoDaddy.com, LLC	NS10.DNSMADEEASY.COM	Domains By Proxy, LLC
38	tier_3	seattlejobs.com	1	None	None	None
39	tier_3	memorialplan.nolig.com	1	GoDaddy.com, LLC	NS1.DIGITALOCEAN.COM	Job Post Media
40	tier_3	thredup.com	1	GoDaddy.com, LLC	MATT.NS.CLOUDFLARE.COM	ThredUp Inc.
41	tier_3	wayfair.com	1	None	None	None
42	tier_3	ballarddesigns.com_LOOP_2	1	None	None	None
43	tier_3	skechers.com	1	None	None	None
44	tier_3	frontgate.com	1	Network Solutions, LLC	NS1.HSN.NET	None
45	tier_3	rd.bizrate.com	1	None	None	None
46	tier_3	feed.int.jobble.com	1	GoDaddy.com, LLC	NS-1238.AWSDNS-26.ORG	Domains By Proxy, LLC
47	tier_3	sanfranciscogigs.com	1	ENOM, INC.	DNS1.NAME-SERVICES.COM	REDACTED FOR PRIVACY
48	tier_3	jobs.bswhealth.com	1	Network Solutions, LLC	NS03.BAYLORHEALTHCARE.COM	None
49	tier_3	savatree.com	1	GoDaddy.com, LLC	AURORA.NS.CLOUDFLARE.COM	SavATree

	ip	city	region	org	postal	country_name	tier	count	hostname	anycast
0	207.244.67.218	Washington	Washington, D.C.	AS30633 Leaseweb USA, Inc.	20045	United States	tier_1	34	nan	nan
1	207.244.67.214	Washington	Washington, D.C.	AS30633 Leaseweb USA, Inc.	20045	United States	tier_1	30	nan	nan
2	207.244.67.216	Washington	Washington, D.C.	AS30633 Leaseweb USA, Inc.	20045	United States	tier_1	27	nan	nan
3	207.244.67.215	Washington	Washington, D.C.	AS30633 Leaseweb USA, Inc.	20045	United States	tier_1	20	nan	nan
4	206.221.176.184	New York City	New York	AS23470 ReliableSite.Net LLC	10004	United States	tier_1	12	nan	nan
5	104.243.45.190	New York City	New York	AS23470 ReliableSite.Net LLC	10004	United States	tier_1	10	nan	nan
6	104.243.45.179	New York City	New York	AS23470 ReliableSite.Net LLC	10004	United States	tier_1	10	nan	nan
7	104.243.45.178	New York City	New York	AS23470 ReliableSite.Net LLC	10004	United States	tier_1	6	nan	nan
8	74.63.241.22	Dallas	Texas	AS46475 Limestone Networks, Inc.	75270	United States	tier_1	4	22-241-63-74.static.reverse.lstn.net	nan
9	185.107.56.197	Rotterdam	South Holland	AS43350 NForce Entertainment B.V.	3012	Netherlands	tier_1	4	nan	nan
10	198.54.112.216	San Jose	California	AS22612 Namecheap, Inc.	95103	United States	tier_2	184	nan	nan
11	35.209.61.240	Council Bluffs	Iowa	AS15169 Google LLC	51502	United States	tier_3	9	240.61.209.35.bc.googleusercontent.com	nan
12	67.227.173.37	Lansing	Michigan	AS32244 Liquid Web, L.L.C	48901	United States	tier_2	50	nan	nan
13	207.38.44.116	Los Angeles	California	AS5693 Latisys-Irvine, LLC	90009	United States	tier_3	12	cbsmtp1.careerbliss.com	nan
14	23.21.53.13	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	26	ec2-23-21-53-13.compute-1.amazonaws.com	nan
15	23.21.166.45	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	25	ec2-23-21-166-45.compute-1.amazonaws.com	nan
16	54.197.247.190	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	25	ec2-54-197-247-190.compute-1.amazonaws.com	nan
17	54.235.205.204	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	24	ec2-54-235-205-204.compute-1.amazonaws.com	nan
18	99.84.114.65	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_2	16	server-99-84-114-65.ewr52.r.cloudfront.net	nan
19	99.84.114.25	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_2	16	server-99-84-114-25.ewr52.r.cloudfront.net	nan
20	100.37.135.2	New York City	New York	AS701 MCI Communications Services, Inc. d/b/a Verizon Business	10004	United States	tier_3	1	pool-100-37-135-2.nycmny.fios.verizon.net	nan
21	99.84.114.53	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_2	10	server-99-84-114-53.ewr52.r.cloudfront.net	nan
22	100.25.52.1	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	10	ec2-100-25-52-1.compute-1.amazonaws.com	nan
23	3.234.0.165	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	9	ec2-3-234-0-165.compute-1.amazonaws.com	nan
24	192.138.218.207	Seattle	Washington	AS14332 Connexity, Inc.	98111	United States	tier_3	1	rd.bizrate.com	nan
25	99.84.114.17	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_2	8	server-99-84-114-17.ewr52.r.cloudfront.net	nan
26	52.3.4.129	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	7	ec2-52-3-4-129.compute-1.amazonaws.com	nan
27	54.225.125.240	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	7	ec2-54-225-125-240.compute-1.amazonaws.com	nan
28	198.134.116.30	New York City	New York	AS27257 Webair Internet Development Company Inc.	10013	United States	tier_2	4	nan	nan
29	192.138.218.139	Seattle	Washington	AS14332 Connexity, Inc.	98111	United States	tier_2	4	rd.connexity.net	nan
30	67.227.172.40	Lansing	Michigan	AS32244 Liquid Web, L.L.C	48901	United States	tier_3	50	nan	nan
31	172.217.7.4	Clinton Corners	New York	AS15169 Google LLC	12514	United States	tier_3	29	lga25s56-in-f4.1e100.net	nan
32	172.217.10.100	Clifton	New Jersey	AS15169 Google LLC	07015	United States	tier_3	23	lga34s15-in-f4.1e100.net	nan
33	142.250.64.68	Westbury	New York	AS15169 Google LLC	11590	United States	tier_3	16	lga34s30-in-f4.1e100.net	nan
34	172.217.10.228	Clifton	New Jersey	AS15169 Google LLC	07015	United States	tier_3	15	lga25s59-in-f4.1e100.net	nan
35	172.217.165.132	Los Angeles	California	AS15169 Google LLC	90009	United States	tier_3	15	lax30s03-in-f4.1e100.net	nan
36	207.38.44.116	Los Angeles	California	AS5693 Latisys-Irvine, LLC	90009	United States	tier_3	12	cbsmtp1.careerbliss.com	nan
37	35.209.61.240	Council Bluffs	Iowa	AS15169 Google LLC	51502	United States	tier_3	9	240.61.209.35.bc.googleusercontent.com	nan
38	13.107.42.14	Redmond	Washington	AS8068 Microsoft Corporation	98052	United States	tier_3	3	nan	True
39	216.239.32.21	Mountain View	California	AS15169 Google LLC	94043	United States	tier_3	2	any-in-2015.1e100.net	True
40	68.168.84.129	Norristown	Pennsylvania	AS17378 TierPoint, LLC	19403	United States	tier_3	1	129.84.168.68.static.dbsintl.net	nan
41	138.197.61.36	Clifton	New Jersey	AS14061 DigitalOcean, LLC	07014	United States	tier_3	1	nan	nan
42	99.84.47.93	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_3	1	server-99-84-47-93.ewr52.r.cloudfront.net	nan
43	104.18.22.236	San Francisco	California	AS13335 Cloudflare, Inc.	94107	United States	tier_3	1	nan	True
44	23.41.189.99	Newark	New Jersey	AS16625 Akamai Technologies, Inc.	07175	United States	tier_3	1	a23-41-189-99.deploy.static.akamaitechnologies.com	nan
45	100.37.135.2	New York City	New York	AS701 MCI Communications Services, Inc. d/b/a Verizon Business	10004	United States	tier_3	1	pool-100-37-135-2.nycmny.fios.verizon.net	nan
46	104.16.189.137	San Francisco	California	AS13335 Cloudflare, Inc.	94107	United States	tier_3	1	nan	True
47	99.84.47.14	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_3	1	server-99-84-47-14.ewr52.r.cloudfront.net	nan
48	142.250.80.4	New York City	New York	AS15169 Google LLC	10004	United States	tier_3	1	lga34s33-in-f4.1e100.net	nan
49	104.64.218.125	New York City	New York	AS16625 Akamai Technologies, Inc.	10004	United States	tier_3	1	a104-64-218-125.deploy.static.akamaitechnologies.com	nan
50	99.84.47.36	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_3	1	server-99-84-47-36.ewr52.r.cloudfront.net	nan
51	192.138.218.207	Seattle	Washington	AS14332 Connexity, Inc.	98111	United States	tier_3	1	rd.bizrate.com	nan
52	54.234.245.31	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_3	1	ec2-54-234-245-31.compute-1.amazonaws.com	nan
53	68.168.84.133	Norristown	Pennsylvania	AS17378 TierPoint, LLC	19403	United States	tier_3	1	133.84.168.68.static.dbsintl.net	nan
54	52.70.5.225	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_3	1	ec2-52-70-5-225.compute-1.amazonaws.com	nan
55	141.193.213.20	Austin	Texas	AS209242 Cloudflare London, LLC	78701	United States	tier_3	1	nan	True

Aggregated redirection graph of domains located on current IP address.

• The redirection flows from left to right
• Leftmost domains are initial domains hosted on current IP
• Rightmost domains are final landing domains we were able to crawl

Screenshot of high-occurrence final landing domains

Have other ideas? / Want to subscribe to get threat intelligence report? / Contact

Zhouhan Chen, NYU Center for Data Science, zc1245@nyu.edu, Personal Website