Daily Threat Intelligence Report

This report contains following information

  1. Overall statistics
    1. Number of domains detected
    2. Number of domains detected by Google Safe Browsing
    3. IP address behind entry-level domains
    4. date of collection
  2. Top 10 domain statistics
    1. count (number of redirection paths that contain this domain)
    2. tier (1 is entry-level domain, 2 is intermediate hop, 3 is final landing domain)
    3. registar
    4. organization
  3. Top 10 IP statistics
    1. count
    2. location (city, country, region)
    3. hostname
    4. organization
  4. Consolidated redirection path
    1. green: tier one domain
    2. yellow: tier two domain
    3. red: tier three domain
num_domainnum_linksnum_full_urlnum_safebrowsing_maliciousnum_vt_maliciousdateipuser_agent
07269157002020-10-1064.32.8.67Iphone
tierdomaincountregistrarname_serversorg
0tier_1switech-hk.net1NamePal.com #8014 Inc.NS1.DNSNUTS.COMThe Management Group II
1tier_1chastnoevideo.net1eNomEU, Inc.NS1.DNSNUTS.COMNone
2tier_1serplifyapp.com1DomaintoOrder, LLCNS1.DNSNUTS.COMThe Management Group II
3tier_1colrut.com1eNom459, IncorporatedNS1.DNSNUTS.COMThe Management Group II
4tier_1zncili.com1Name Nelly CorporationNS1.DNSNUTS.COMThe Management Group II
5tier_1nexstage-solution.com1The Domains LLCNS1.DNSNUTS.COMNone
6tier_1jxieeducation.com1NamePal.com #8021 Inc.NS1.DNSNUTS.COMThe Management Group II
7tier_1bestones.net1Major League Domains, LLCNS1.DNSNUTS.COMThe Management Group II
8tier_1tt4you.com1SBSNames, IncorporatedNS1.DNSNUTS.COMThe Management Group II
9tier_1lovelyteenmovs.com1Names On The Drop LLCNS1.DNSNUTS.COMNone
10tier_2go.trackinz.com11NAMECHEAP INCNS-1139.AWSDNS-14.ORGWhoisGuard, Inc.
11tier_2click.expmediadirect.com9NAMECHEAP INCNS1.LINODE.COMWhoisGuard, Inc.
12tier_2r.ealeo.com8DYNADOT LLCNS-1186.AWSDNS-20.ORGNone
13tier_2rd.bizrate.com7MarkMonitor, Inc.NS-1189.AWSDNS-20.ORGMeredith Corporation
14tier_2rd.connexity.net7NoneNoneNone
15tier_2c.clickprotects.com6GoDaddy.com, LLCNS63.DOMAINCONTROL.COMDomains By Proxy, LLC
16tier_211165151.addotnet.com6GoDaddy.com, LLCNS75.DOMAINCONTROL.COMDomains By Proxy, LLC
17tier_2infopicked.com4NoneNoneNone
18tier_2btpnative.com3GoDaddy.com, LLCNS1.DNSIMPLE.COMDomains By Proxy, LLC
19tier_2p274639.infopicked.com3NAMECHEAP INCNS0.DNSMADEEASY.COMWhoisGuard, Inc.
20tier_3clickitover.com11NoneNoneNone
21tier_3btpnative.com4GoDaddy.com, LLCNS1.DNSIMPLE.COMDomains By Proxy, LLC
22tier_3apple.com3CSC CORPORATE DOMAINS, INC.A.NS.APPLE.COMApple Inc.
23tier_3music.apple.com3CSC CORPORATE DOMAINS, INC.A.NS.APPLE.COMApple Inc.
24tier_3samsclub.com2CSC CORPORATE DOMAINS, INC.ASIA1.AKAM.NETNot Disclosed
25tier_3theconnectvpn.com2DonDominio (SCIP)ARNOLD.NS.CLOUDFLARE.COMSoluciones Corporativas IP, c/o Whois Proxy
26tier_3m.albeebaby.com1Network Solutions, LLCYNS1.YAHOO.COMNone
27tier_3r.ealeo.com1DYNADOT LLCNS-1186.AWSDNS-20.ORGNone
28tier_3rd.bizrate.com1MarkMonitor, Inc.NS-1189.AWSDNS-20.ORGMeredith Corporation
29tier_3samsclub.com_LOOP_11NoneNoneNone
ipcityregionorgpostalcountry_nametiercounthostname
0207.244.67.215ManassasVirginiaAS30633 Leaseweb USA, Inc.20108United Statestier_111nan
1207.244.67.216ManassasVirginiaAS30633 Leaseweb USA, Inc.20108United Statestier_17nan
2207.244.67.214ManassasVirginiaAS30633 Leaseweb USA, Inc.20108United Statestier_16nan
3207.244.67.218ManassasVirginiaAS30633 Leaseweb USA, Inc.20108United Statestier_13nan
464.32.8.70Los AngelesCaliforniaAS46844 Sharktech90009United Statestier_12customer.sharktech.net
564.32.8.67Los AngelesCaliforniaAS46844 Sharktech90009United Statestier_11customer.sharktech.net
646.166.182.114AmsterdamNorth HollandAS43350 NForce Entertainment B.V.1012Netherlandstier_11nan
764.32.8.68Los AngelesCaliforniaAS46844 Sharktech90009United Statestier_11customer.sharktech.net
846.166.182.115AmsterdamNorth HollandAS43350 NForce Entertainment B.V.1012Netherlandstier_11nan
946.166.182.116AmsterdamNorth HollandAS43350 NForce Entertainment B.V.1012Netherlandstier_11nan
1034.226.252.28Virginia BeachVirginiaAS14618 Amazon.com, Inc.23471United Statestier_213ec2-34-226-252-28.compute-1.amazonaws.com
11209.132.243.15Los AngelesCaliforniaAS7296 Alchemy Communications, Inc.90009United Statestier_212nan
12198.134.116.30New York CityNew YorkAS27257 Webair Internet Development Company Inc.10013United Statestier_29nan
1366.165.243.151TampaFloridaAS29802 HIVELOCITY, Inc.33606United Statestier_3166-165-243-151.static.hvvc.us
14173.192.101.24DallasTexasAS36351 SoftLayer Technologies Inc.75270United Statestier_2818.65.c0ad.ip4.static.sl-reverse.com
15192.138.218.207SeattleWashingtonAS14332 Connexity, Inc.98111United Statestier_31rd.bizrate.com
16192.138.218.139SeattleWashingtonAS14332 Connexity, Inc.98111United Statestier_27rd.connexity.net
17209.15.13.136TorontoOntarioAS13768 Aptum TechnologiesM5NCanadatier_34nan
1817.56.48.13PrinevilleOregonAS714 Apple Inc.97754United Statestier_23kjkzopkv.apple.com
19100.37.135.2New York CityNew YorkAS701 MCI Communications Services, Inc. d/b/a Verizon Business10004United Statestier_34pool-100-37-135-2.nycmny.fios.verizon.net
20157.245.227.32Santa ClaraCaliforniaAS14061 DigitalOcean, LLC95051United Statestier_311nan
21209.15.13.136TorontoOntarioAS13768 Aptum TechnologiesM5NCanadatier_34nan
22100.37.135.2New York CityNew YorkAS701 MCI Communications Services, Inc. d/b/a Verizon Business10004United Statestier_34pool-100-37-135-2.nycmny.fios.verizon.net
2323.43.253.169NewarkNew JerseyAS16625 Akamai Technologies, Inc.07175United Statestier_33a23-43-253-169.deploy.static.akamaitechnologies.com
24184.87.74.45NewarkNew JerseyAS16625 Akamai Technologies, Inc.07175United Statestier_32a184-87-74-45.deploy.static.akamaitechnologies.com
25185.59.223.26OssiningNew YorkAS60068 Datacamp Limited10562United Statestier_31new-york-20.cdn77.com
2666.165.243.151TampaFloridaAS29802 HIVELOCITY, Inc.33606United Statestier_3166-165-243-151.static.hvvc.us
27192.138.218.207SeattleWashingtonAS14332 Connexity, Inc.98111United Statestier_31rd.bizrate.com
28104.77.220.103NewarkNew JerseyAS16625 Akamai Technologies, Inc.07175United Statestier_31a104-77-220-103.deploy.static.akamaitechnologies.com
2934.194.9.105Virginia BeachVirginiaAS14618 Amazon.com, Inc.23471United Statestier_31ec2-34-194-9-105.compute-1.amazonaws.com

Have other ideas? / Want to subscribe to get threat intelligence report? / Contact

Zhouhan Chen, NYU Center for Data Science, zc1245@nyu.edu, Personal Website