Daily Threat Intelligence Report

This report contains following information

  1. Overall statistics
    1. Number of domains detected
    2. Number of domains detected by Google Safe Browsing
    3. IP address behind entry-level domains
    4. date of collection
  2. Top 10 domain statistics
    1. count (number of redirection paths that contain this domain)
    2. tier (1 is entry-level domain, 2 is intermediate hop, 3 is final landing domain)
    3. registar
    4. organization
  3. Top 10 IP statistics
    1. count
    2. location (city, country, region)
    3. hostname
    4. organization
  4. Consolidated redirection path
    1. green: tier one domain
    2. yellow: tier two domain
    3. red: tier three domain
num_domainnum_linksnum_full_urlnum_safebrowsing_maliciousnum_vt_maliciousdateipuser_agent
0464594002020-10-1164.32.8.68Chrome
tierdomaincountregistrarname_serversorg
0tier_1kayforsenate.com1Deep Water Domains LLCNS1.DNSNUTS.COMNone
1tier_1lovelyteenmovs.com1Names On The Drop LLCNS1.DNSNUTS.COMNone
2tier_1egiv.net1GoServeYourDomain.com LLCNS1.DNSNUTS.COMNone
3tier_1hotfilesearch.com1Allworldnames.com LLCNS1.DNSNUTS.COMNone
4tier_1hqoboi.com1NamePal.com #8009, LLCNS1.DNSNUTS.COMNone
5tier_1ggpia.com1Namearsenal.com LLCNS1.DNSNUTS.COMNone
6tier_1ndlomovies-91.com1Backstop Names LLCNS1.DNSNUTS.COMNone
7tier_1meijiri.com1DropWeek.com, LLCNS1.DNSNUTS.COMNone
8tier_1ashonfire.com1Domain Stopover LLCNS1.DNSNUTS.COMNone
9tier_1goldenchase.net1Rally Cry Domains, LLCNS1.DNSNUTS.COMNone
10tier_2dprtb.com7GoDaddy.com, LLCNS1.DNSIMPLE.COMDomains By Proxy, LLC
11tier_21496.wcitianka.com7UNIREGISTRAR CORPNS-1096.AWSDNS-09.ORGNone
12tier_2americanlisted.com7ilait ABNS1.TELECOM3.NETIntegration 3 Group AB
13tier_2btpnative.com4GoDaddy.com, LLCNS1.DNSIMPLE.COMDomains By Proxy, LLC
14tier_2infopicked.com4NoneNoneNone
15tier_2p274639.infopicked.com4NoneNoneNone
16tier_210.trackints.com4NoneNoneNone
17tier_2click.appcast.io4101Domain GRS LtdNS-85.AWSDNS-10.COMNone
18tier_2careerbliss.com3GoDaddy.com, LLCNS10.DNSMADEEASY.COMDomains By Proxy, LLC
19tier_2trk.careerbliss.com3GoDaddy.com, LLCNS10.DNSMADEEASY.COMDomains By Proxy, LLC
20tier_3wix.com4GoDaddy.com, LLCNS1.P14.DYNECT.NETWix.com, LTD.
21tier_3s3.amazonaws.com2MarkMonitor, Inc.R1.AMAZONAWS.COMAmazon.com, Inc.
22tier_3us.sercanto.com1OVH, SASDNS20.OVH.NETWickedin s.r.l.
23tier_3click.appcast.io1101Domain GRS LtdNS-85.AWSDNS-10.COMNone
24tier_3careerbliss.com1GoDaddy.com, LLCNS10.DNSMADEEASY.COMDomains By Proxy, LLC
25tier_3click.appcast.io_LOOP_21NoneNoneNone
26tier_3fleet.postmates.com1Cloudflare, Inc.ALBERT.NS.CLOUDFLARE.COMDATA REDACTED
27tier_3work.fountain.com1GoDaddy.com, LLCDEE.NS.CLOUDFLARE.COMDomains By Proxy, LLC
28tier_3chrome.en.softonic.com1Network Solutions, LLCNS-CLOUD-D1.GOOGLEDOMAINS.COMNone
29tier_3us.tideri.com1united domains AGNS.UDAG.DENone
ipcityregionorgpostalcountry_nametiercounthostname
0207.244.67.215ManassasVirginiaAS30633 Leaseweb USA, Inc.20108United Statestier_14nan
1207.244.67.216ManassasVirginiaAS30633 Leaseweb USA, Inc.20108United Statestier_13nan
2207.244.67.214ManassasVirginiaAS30633 Leaseweb USA, Inc.20108United Statestier_12nan
337.48.65.149AmsterdamNorth HollandAS60781 LeaseWeb Netherlands B.V.1012Netherlandstier_12nan
446.166.182.110AmsterdamNorth HollandAS43350 NForce Entertainment B.V.1012Netherlandstier_11nan
564.32.8.70Los AngelesCaliforniaAS46844 Sharktech90009United Statestier_11customer.sharktech.net
6207.244.67.218ManassasVirginiaAS30633 Leaseweb USA, Inc.20108United Statestier_11nan
7209.15.13.136TorontoOntarioAS13768 Aptum TechnologiesM5NCanadatier_211nan
8173.192.101.24DallasTexasAS36351 SoftLayer Technologies Inc.75270United Statestier_2818.65.c0ad.ip4.static.sl-reverse.com
9198.54.112.216San JoseCaliforniaAS22612 Namecheap, Inc.95103United Statestier_27nan
1035.209.61.240ChicagoIllinoisAS15169 Google LLC60666United Statestier_27240.61.209.35.bc.googleusercontent.com
11207.38.44.116IrvineCaliforniaAS5693 Latisys-Irvine, LLC92618United Statestier_31cbsmtp1.careerbliss.com
12108.168.193.185DallasTexasAS36351 SoftLayer Technologies Inc.75270United Statestier_24b9.c1.a86c.ip4.static.sl-reverse.com
1352.21.128.178Virginia BeachVirginiaAS14618 Amazon.com, Inc.23471United Statestier_23ec2-52-21-128-178.compute-1.amazonaws.com
14104.27.130.2Atlantic CityNew JerseyAS13335 Cloudflare, Inc.08404United Statestier_22nan
15100.37.135.2New York CityNew YorkAS701 MCI Communications Services, Inc. d/b/a Verizon Business10004United Statestier_32pool-100-37-135-2.nycmny.fios.verizon.net
1634.198.123.194Virginia BeachVirginiaAS14618 Amazon.com, Inc.23471United Statestier_22ec2-34-198-123-194.compute-1.amazonaws.com
17185.230.61.163San JoseCaliforniaAS58182 Wix.com Ltd.95119United Statestier_33nan
18100.37.135.2New York CityNew YorkAS701 MCI Communications Services, Inc. d/b/a Verizon Business10004United Statestier_32pool-100-37-135-2.nycmny.fios.verizon.net
1934.90.160.43GroningenGroningenAS15169 Google LLC9711Netherlandstier_3143.160.90.34.bc.googleusercontent.com
20185.230.61.98San JoseCaliforniaAS58182 Wix.com Ltd.95119United Statestier_31nan
2152.217.15.14Virginia BeachVirginiaAS16509 Amazon.com, Inc.23471United Statestier_31s3-1.amazonaws.com
22207.38.44.116IrvineCaliforniaAS5693 Latisys-Irvine, LLC92618United Statestier_31cbsmtp1.careerbliss.com
23104.16.218.98New York CityNew YorkAS13335 Cloudflare, Inc.10004United Statestier_31nan
2452.216.88.165Virginia BeachVirginiaAS16509 Amazon.com, Inc.23471United Statestier_31s3-1.amazonaws.com
25172.67.0.71San FranciscoCaliforniaAS13335 Cloudflare, Inc.94107United Statestier_31nan
2635.227.233.104Kansas CityMissouriAS15169 Google LLC64121United Statestier_31104.233.227.35.bc.googleusercontent.com

Have other ideas? / Want to subscribe to get threat intelligence report? / Contact

Zhouhan Chen, NYU Center for Data Science, zc1245@nyu.edu, Personal Website