Malware Discoverer Github Homepage.

Daily Threat Intelligence Report

This report contains following information

1. Overall statistics
   1. Number of domains detected
   2. Number of domains detected by Google Safe Browsing
   3. IP address behind entry-level domains
   4. date of collection
2. Top 10 domain statistics
   1. count (number of redirection paths that contain this domain)
   2. tier (1 is entry-level domain, 2 is intermediate hop, 3 is final landing domain)
   3. registar
   4. organization
3. Top 10 IP statistics
   1. count
   2. location (city, country, region)
   3. hostname
   4. organization
4. Consolidated redirection path
   1. green: tier one domain
   2. yellow: tier two domain
   3. red: tier three domain

	num_domain	num_links	num_full_url	num_safebrowsing_malicious	num_vt_malicious	date	ip	user_agent
0	255	258	1087	0	25	2021-04-21	37.48.65.149	Safari

	tier	domain	count	registrar	name_servers	org
0	tier_1	jntukresultsdb.com	1	Domainsofcourse.com LLC	NS1.COMMONMX.COM	None
1	tier_1	fibroidclear.com	1	GoDaddy.com, LLC	NS1.COMMONMX.COM	None
2	tier_1	arconaitv.co	1	Communigal Communication Ltd	ns2.commonmx.com	None
3	tier_1	airtemail.in	1	Dynadot LLC	ns1.commonmx.com	None
4	tier_1	filmapik.tv	1	Domain Landing Zone LLC	NS1.COMMONMX.COM	None
5	tier_1	alriyadh.us	1	Communigal Communication Ltd	ns2.commonmx.com	None
6	tier_1	impotencemeds.info	1	DYNADOT LLC	NS1.COMMONMX.COM	None
7	tier_1	bezlohotrona.info	1	DYNADOT LLC	NS1.COMMONMX.COM	None
8	tier_1	haimatsu.info	1	DYNADOT LLC	NS1.COMMONMX.COM	None
9	tier_1	buysellads.ph	1	None	None	None
10	tier_2	1496.rawlexi.com	183	GoDaddy Online Services Cayman Islands LTD	NS-128.AWSDNS-16.COM	None
11	tier_2	americanlisted.com	182	ilait AB	NS1.TELECOM3.NET	Integration 3 Group AB
12	tier_2	9nl.es	46	None	None	None
13	tier_2	newre-conversions.clickmeter.com	46	None	None	None
14	tier_2	trk.jometer.com	44	Amazon Registrar, Inc.	NS-129.AWSDNS-16.COM	Whois Privacy Service
15	tier_2	api.l5srv.net	43	GoDaddy.com, LLC	NS53.DOMAINCONTROL.COM	Domains By Proxy, LLC
16	tier_2	click.appcast.io	34	101Domain GRS Ltd	NS-85.AWSDNS-10.COM	None
17	tier_2	careerbliss.com	23	GoDaddy.com, LLC	NS10.DNSMADEEASY.COM	Domains By Proxy, LLC
18	tier_2	trk.careerbliss.com	22	GoDaddy.com, LLC	NS10.DNSMADEEASY.COM	Domains By Proxy, LLC
19	tier_2	click.appcast.io_LOOP_1	16	None	None	None
20	tier_2	nizephoros-pom.com	6	Amazon Registrar, Inc.	NS-1192.AWSDNS-21.ORG	Whois Privacy Service
21	tier_2	managerformula.com	6	None	None	None
22	tier_2	btpnav.com	5	1API GmbH	NS1.DNSIMPLE.COM	Registrant of btpnav.com
23	tier_2	linkup.com	3	GoDaddy.com, LLC	NS-102.AWSDNS-12.COM	JobDig
24	tier_2	jsv3.recruitics.com	3	TUCOWS, INC.	NS-1237.AWSDNS-26.ORG	REDACTED FOR PRIVACY
25	tier_2	p.nexxt.com	3	Network Solutions, LLC	NS21.WORLDNIC.COM	None
26	tier_2	linkup.com_LOOP_1	2	None	None	None
27	tier_2	linkup.com_LOOP_2	2	None	None	None
28	tier_2	sanfranciscogigs.com	2	None	None	None
29	tier_2	job-openings.monster.com	2	CSC CORPORATE DOMAINS, INC.	NS1.TMPW.NET	Monster Worldwide, Inc.
30	tier_3	google.com	102	MarkMonitor, Inc.	NS1.GOOGLE.COM	Google LLC
31	tier_3	upward.careers	43	GoDaddy.com, LLC	ns21.domaincontrol.com	Domains By Proxy, LLC
32	tier_3	careerbliss.com	11	GoDaddy.com, LLC	NS10.DNSMADEEASY.COM	Domains By Proxy, LLC
33	tier_3	s3.amazonaws.com	6	MarkMonitor Inc.	R1.AMAZONAWS.COM	None
34	tier_3	careerbuilder.com	3	CSC CORPORATE DOMAINS, INC.	BROCK.CBJOBS.NET	CareerBuilder, LLC
35	tier_3	jobs.bswhealth.com	3	Network Solutions, LLC	NS03.BAYLORHEALTHCARE.COM	None
36	tier_3	feed.int.jobble.com	3	GoDaddy.com, LLC	NS-1238.AWSDNS-26.ORG	Domains By Proxy, LLC
37	tier_3	click.appcast.io_LOOP_2	2	None	None	None
38	tier_3	sanfranciscogigs.com	2	ENOM, INC.	DNS1.NAME-SERVICES.COM	REDACTED FOR PRIVACY
39	tier_3	juju.com	2	Network Solutions, LLC	NS-1111.AWSDNS-10.ORG	None
40	tier_3	monster.com	2	CSC CORPORATE DOMAINS, INC.	NS1.TMPW.NET	Monster Worldwide, Inc.
41	tier_3	click.appcast.io_LOOP_1	2	None	None	None
42	tier_3	us.tideri.com	1	united domains AG	NS.UDAG.DE	None
43	tier_3	neuvoo.com	1	MarkMonitor, Inc.	NS-1302.AWSDNS-34.ORG	Talent.com
44	tier_3	americanlisted.com	1	ilait AB	NS1.TELECOM3.NET	Integration 3 Group AB
45	tier_3	linkup.com_LOOP_1	1	None	None	None
46	tier_3	irl.com	1	GoDaddy.com, LLC	NS-106.AWSDNS-13.COM	Domains By Proxy, LLC
47	tier_3	click.joveo.com	1	Go Canada Domains, LLC	NS-1256.AWSDNS-29.ORG	Domains By Proxy, LLC
48	tier_3	uber.com	1	MarkMonitor Inc.	EDNS126.ULTRADNS.BIZ	None
49	tier_3	toryburch.com	1	CSC CORPORATE DOMAINS, INC.	DNS1.CSCDNS.NET	River Light V, L.P.
50	tier_3	us.allthetopbananas.com	1	ENOM, INC.	DANE.NS.CLOUDFLARE.COM	REDACTED FOR PRIVACY
51	tier_3	trk.careerbliss.com	1	GoDaddy.com, LLC	NS10.DNSMADEEASY.COM	Domains By Proxy, LLC
52	tier_3	profoundnaturalsuccess.com	1	TUCOWS, INC.	AMY.NS.CLOUDFLARE.COM	Contact Privacy Inc. Customer 0160302410
53	tier_3	godaddy.com	1	GoDaddy.com, LLC	A1-245.AKAM.NET	Go Daddy Operating Company, LLC

	ip	city	region	org	postal	country_name	tier	count	hostname
0	207.244.67.214	Washington	Washington, D.C.	AS30633 Leaseweb USA, Inc.	20045	United States	tier_1	28	nan
1	207.244.67.218	Washington	Washington, D.C.	AS30633 Leaseweb USA, Inc.	20045	United States	tier_1	27	nan
2	207.244.67.216	Washington	Washington, D.C.	AS30633 Leaseweb USA, Inc.	20045	United States	tier_1	25	nan
3	207.244.67.215	Washington	Washington, D.C.	AS30633 Leaseweb USA, Inc.	20045	United States	tier_1	25	nan
4	104.243.45.190	New York City	New York	AS23470 ReliableSite.Net LLC	10004	United States	tier_1	16	nan
5	104.243.45.178	New York City	New York	AS23470 ReliableSite.Net LLC	10004	United States	tier_1	11	nan
6	104.243.45.179	New York City	New York	AS23470 ReliableSite.Net LLC	10004	United States	tier_1	10	nan
7	37.48.65.149	Amsterdam	North Holland	AS60781 LeaseWeb Netherlands B.V.	1012	Netherlands	tier_1	8	nan
8	206.221.176.184	New York City	New York	AS23470 ReliableSite.Net LLC	10004	United States	tier_1	7	nan
9	82.192.82.227	Amsterdam	North Holland	AS60781 LeaseWeb Netherlands B.V.	1012	Netherlands	tier_1	4	nan
10	198.54.112.216	San Jose	California	AS22612 Namecheap, Inc.	95103	United States	tier_2	183	nan
11	35.209.61.240	Council Bluffs	Iowa	AS15169 Google LLC	51502	United States	tier_3	1	240.61.209.35.bc.googleusercontent.com
12	207.38.44.116	Los Angeles	California	AS5693 Latisys-Irvine, LLC	90009	United States	tier_3	12	cbsmtp1.careerbliss.com
13	67.227.173.37	Lansing	Michigan	AS32244 Liquid Web, L.L.C	48901	United States	tier_2	43	nan
14	54.197.247.190	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	25	ec2-54-197-247-190.compute-1.amazonaws.com
15	54.235.205.204	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	25	ec2-54-235-205-204.compute-1.amazonaws.com
16	100.37.135.2	New York City	New York	AS701 MCI Communications Services, Inc. d/b/a Verizon Business	10004	United States	tier_3	6	pool-100-37-135-2.nycmny.fios.verizon.net
17	23.21.166.45	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	21	ec2-23-21-166-45.compute-1.amazonaws.com
18	23.21.53.13	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	21	ec2-23-21-53-13.compute-1.amazonaws.com
19	52.3.4.129	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	17	ec2-52-3-4-129.compute-1.amazonaws.com
20	99.84.114.25	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_2	14	server-99-84-114-25.ewr52.r.cloudfront.net
21	99.84.114.65	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_2	13	server-99-84-114-65.ewr52.r.cloudfront.net
22	99.84.114.17	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_2	11	server-99-84-114-17.ewr52.r.cloudfront.net
23	100.25.52.1	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	10	ec2-100-25-52-1.compute-1.amazonaws.com
24	3.234.0.165	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	7	ec2-3-234-0-165.compute-1.amazonaws.com
25	99.84.114.53	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_2	6	server-99-84-114-53.ewr52.r.cloudfront.net
26	209.15.13.136	Toronto	Ontario	AS13768 Aptum Technologies	M5N	Canada	tier_2	5	nan
27	209.236.97.200	Minneapolis	Minnesota	AS13649 Flexential Colorado Corp.	55440	United States	tier_2	3	nan
28	52.2.164.72	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_2	3	ec2-52-2-164-72.compute-1.amazonaws.com
29	68.168.84.60	Norristown	Pennsylvania	AS17378 TierPoint, LLC	19403	United States	tier_2	3	60.84.168.68.static.dbsintl.net
30	67.227.172.40	Lansing	Michigan	AS32244 Liquid Web, L.L.C	48901	United States	tier_3	43	nan
31	172.217.12.164	Clifton	New Jersey	AS15169 Google LLC	07015	United States	tier_3	22	lga25s62-in-f4.1e100.net
32	172.217.10.100	Clifton	New Jersey	AS15169 Google LLC	07015	United States	tier_3	18	lga34s15-in-f4.1e100.net
33	172.217.3.100	Westbury	New York	AS15169 Google LLC	11590	United States	tier_3	16	lga34s18-in-f4.1e100.net
34	172.217.11.4	New York City	New York	AS15169 Google LLC	10004	United States	tier_3	15	lga25s60-in-f4.1e100.net
35	172.217.10.132	Clifton	New Jersey	AS15169 Google LLC	07015	United States	tier_3	13	lga34s16-in-f4.1e100.net
36	172.217.12.132	Clifton	New Jersey	AS15169 Google LLC	07015	United States	tier_3	12	lga34s19-in-f4.1e100.net
37	207.38.44.116	Los Angeles	California	AS5693 Latisys-Irvine, LLC	90009	United States	tier_3	12	cbsmtp1.careerbliss.com
38	100.37.135.2	New York City	New York	AS701 MCI Communications Services, Inc. d/b/a Verizon Business	10004	United States	tier_3	6	pool-100-37-135-2.nycmny.fios.verizon.net
39	142.250.64.100	Westbury	New York	AS15169 Google LLC	11590	United States	tier_3	5	lga34s31-in-f4.1e100.net
40	99.84.47.93	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_3	3	server-99-84-47-93.ewr52.r.cloudfront.net
41	52.216.9.221	Ashburn	Virginia	AS16509 Amazon.com, Inc.	20149	United States	tier_3	2	s3-1.amazonaws.com
42	52.216.142.222	Ashburn	Virginia	AS16509 Amazon.com, Inc.	20149	United States	tier_3	2	s3-1.amazonaws.com
43	52.70.5.225	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_3	2	ec2-52-70-5-225.compute-1.amazonaws.com
44	54.234.245.31	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_3	2	ec2-54-234-245-31.compute-1.amazonaws.com
45	52.217.0.166	Ashburn	Virginia	AS16509 Amazon.com, Inc.	20149	United States	tier_3	1	s3-1.amazonaws.com
46	35.246.171.123	Frankfurt am Main	Hesse	AS15169 Google LLC	60311	Germany	tier_3	1	123.171.246.35.bc.googleusercontent.com
47	54.211.44.127	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_3	1	ec2-54-211-44-127.compute-1.amazonaws.com
48	35.209.61.240	Council Bluffs	Iowa	AS15169 Google LLC	51502	United States	tier_3	1	240.61.209.35.bc.googleusercontent.com
49	52.216.26.78	Ashburn	Virginia	AS16509 Amazon.com, Inc.	20149	United States	tier_3	1	s3-1.amazonaws.com
50	34.193.246.88	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_3	1	ec2-34-193-246-88.compute-1.amazonaws.com
51	68.168.84.133	Norristown	Pennsylvania	AS17378 TierPoint, LLC	19403	United States	tier_3	1	133.84.168.68.static.dbsintl.net
52	172.217.6.228	Westbury	New York	AS15169 Google LLC	11590	United States	tier_3	1	lga25s55-in-f228.1e100.net
53	54.205.240.192	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_3	1	ec2-54-205-240-192.compute-1.amazonaws.com
54	54.165.163.115	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_3	1	ec2-54-165-163-115.compute-1.amazonaws.com
55	99.84.114.4	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_3	1	server-99-84-114-4.ewr52.r.cloudfront.net
56	99.84.47.94	Newark	New Jersey	AS16509 Amazon.com, Inc.	07175	United States	tier_3	1	server-99-84-47-94.ewr52.r.cloudfront.net
57	104.36.195.150	Washington	Washington, D.C.	AS63086 Uber Technologies, Inc	20045	United States	tier_3	1	nan
58	104.126.116.88	New York City	New York	AS20940 Akamai International B.V.	10004	United States	tier_3	1	a104-126-116-88.deploy.static.akamaitechnologies.com
59	52.206.97.121	Ashburn	Virginia	AS14618 Amazon.com, Inc.	20149	United States	tier_3	1	ec2-52-206-97-121.compute-1.amazonaws.com

Aggregated redirection graph of domains located on current IP address.

• The redirection flows from left to right
• Leftmost domains are initial domains hosted on current IP
• Rightmost domains are final landing domains we were able to crawl

Screenshot of high-occurrence final landing domains

Have other ideas? / Want to subscribe to get threat intelligence report? / Contact

Zhouhan Chen, NYU Center for Data Science, zc1245@nyu.edu, Personal Website