Daily Threat Intelligence Report

This report contains following information

  1. Overall statistics
    1. Number of domains detected
    2. Number of domains detected by Google Safe Browsing
    3. IP address behind entry-level domains
    4. date of collection
  2. Top 10 domain statistics
    1. count (number of redirection paths that contain this domain)
    2. tier (1 is entry-level domain, 2 is intermediate hop, 3 is final landing domain)
    3. registar
    4. organization
  3. Top 10 IP statistics
    1. count
    2. location (city, country, region)
    3. hostname
    4. organization
  4. Consolidated redirection path
    1. green: tier one domain
    2. yellow: tier two domain
    3. red: tier three domain
num_domainnum_linksnum_full_urlnum_safebrowsing_maliciousnum_vt_maliciousdateipuser_agent
01461443930122021-04-1764.32.8.68Chrome
tierdomaincountregistrarname_serversorg
0tier_1brasilonline.tv1Sterling Domains LLCNS1.DNSNUTS.COMNone
1tier_1duet-chehova.net1Afterdark Domains, IncorporatedNS1.DNSNUTS.COMNone
2tier_1crafthd.net1eNom413, IncorporatedNS1.DNSNUTS.COMNone
3tier_1beritatrendz.com1Nameselite, LLCNS1.DNSNUTS.COMNone
4tier_1erojii.net1Dropcatch Landing Spot LLCNS1.DNSNUTS.COMNone
5tier_1digitaldartsco.com1SNAPNAMES 90, LLCNS1.DNSNUTS.COMNone
6tier_1qsanguosha.org1BullRunDomains.com LLCNS1.DNSNUTS.COMThe Management Group II
7tier_1dentalmedya.com1EndeavourDomains, LLCNS1.DNSNUTS.COMNone
8tier_1kidsmovies.tv1Swordfish Domains LLCNS1.DNSNUTS.COMNone
9tier_1spotlist.tv1Blue Angel Domains LLCNS1.DNSNUTS.COMNone
10tier_2btpnav.com421API GmbHNS1.DNSIMPLE.COMRegistrant of btpnav.com
11tier_21496.rawlexi.com38GoDaddy Online Services Cayman Islands LTDNS-128.AWSDNS-16.COMNone
12tier_2americanlisted.com26ilait ABNS1.TELECOM3.NETIntegration 3 Group AB
13tier_2click.appcast.io21101Domain GRS LtdNS-85.AWSDNS-10.COMNone
14tier_2aristo-hag.com18Amazon Registrar, Inc.NS-1226.AWSDNS-25.ORGWhois Privacy Service
15tier_2track.vcdc.com16Key-Systems GmbHGUY.NS.CLOUDFLARE.COMc/o whoisproxy.com
16tier_2api.apptap.com7Amazon Registrar, Inc.NS-1256.AWSDNS-29.ORGWhois Privacy Service
17tier_2redirect.viglink.com6Amazon Registrar, Inc.NS1.VIGLINK.COMWhois Privacy Service
18tier_2melanthios-ana.com5Amazon Registrar, Inc.NS-1354.AWSDNS-41.ORGWhois Privacy Service
19tier_2click.expmediadirect.com5NAMECHEAP INCNS1.LINODE.COMPrivacy service provided by Withheld for Privacy ehf
20tier_2link.sylikes.com5MarkMonitor, Inc.NS-1063.AWSDNS-04.ORGConnexity, Inc.
21tier_2rd.bizrate.com4NoneNoneNone
22tier_2rd.connexity.net4NoneNoneNone
23tier_29nl.es4NoneNoneNone
24tier_2newre-conversions.clickmeter.com4REGISTER S.P.A.NS-1498.AWSDNS-59.ORGREDACTED FOR PRIVACY
25tier_2ring.joveo.com4Go Canada Domains, LLCNS-1256.AWSDNS-29.ORGDomains By Proxy, LLC
26tier_2v4.s.arclk.net3PSI-USA, Inc. dba Domain RobotA.NS14.NETNone
27tier_2api.mplayit.com3Amazon Registrar, Inc.NS-1236.AWSDNS-26.ORGNone
28tier_2clk.rtpdn12.com2NAMECHEAP INCDNS1.REGISTRAR-SERVERS.COMPrivacy service provided by Withheld for Privacy ehf
29tier_2ww2.siteplug.com2DOMAINPEOPLE, INC.NS-1263.AWSDNS-29.ORGREDACTED FOR PRIVACY
30tier_3irl.com18GoDaddy.com, LLCNS-106.AWSDNS-13.COMDomains By Proxy, LLC
31tier_3americanlisted.com12ilait ABNS1.TELECOM3.NETIntegration 3 Group AB
32tier_3click.appcast.io5101Domain GRS LtdNS-85.AWSDNS-10.COMNone
33tier_3loyality-program.com5Amazon Registrar, Inc.NS-108.AWSDNS-13.COMNone
34tier_3signup.finddreamjobs.com3GoDaddy.com, LLCALEXIS.NS.CLOUDFLARE.COMFind Dream Jobs
35tier_3healthcarejobsite.com2ENOM, INC.DNS1.NAME-SERVICES.COMREDACTED FOR PRIVACY
36tier_3manhattanjobs.com2ENOM, INC.DNS1.NAME-SERVICES.COMREDACTED FOR PRIVACY
37tier_3careerbuilder.com2CSC CORPORATE DOMAINS, INC.BROCK.CBJOBS.NETCareerBuilder, LLC
38tier_3ram21.proasdf.com2GoDaddy.com, LLCNS61.DOMAINCONTROL.COMDomains By Proxy, LLC
39tier_3rd.bizrate.com2MarkMonitor, Inc.NS-1189.AWSDNS-20.ORGMeredith Corporation
40tier_3belk.com1CSC CORPORATE DOMAINS, INC.DNS1.P08.NSONE.NETBelk Stores Services, Inc
41tier_3signup.careersandjobs.co1GoDaddy.com, LLCalexis.ns.cloudflare.comDomains By Proxy, LLC
42tier_3nextcareernow.com1GoDaddy.com, LLCNS53.DOMAINCONTROL.COMDomains By Proxy, LLC
43tier_3albeebaby.com_LOOP_11NoneNoneNone
44tier_3financialjobbank.com1ENOM, INC.DNS1.NAME-SERVICES.COMREDACTED FOR PRIVACY
45tier_3joblift.com_LOOP_11NoneNoneNone
46tier_3overstock.com1MarkMonitor, Inc.DNS1.P01.NSONE.NETOverstock.com, Inc - TMA606142
47tier_3aliexpress.com_LOOP_11NoneNoneNone
48tier_3dollargeneral.com1CSC CORPORATE DOMAINS, INC.A1-61.AKAM.NETDollar General Corporation
49tier_3nexxt.com1Network Solutions, LLCNS21.WORLDNIC.COMNone
50tier_3volume.com1DYNADOT LLCA.NS.VOLUME.COMNone
51tier_3roamans.com1CSC CORPORATE DOMAINS, INC.PDNS1.ULTRADNS.NETFullBeauty Brands Operations, LLC
52tier_3filter.onwardclick.com1NAMECHEAP INCNS1.ENCONTEXT.COMPrivacy service provided by Withheld for Privacy ehf
53tier_3michaelkors.com1NOM-IQ Ltd dba Com LaudeA1-111.AKAM.NETMichael Kors, L.L.C.
54tier_3logisticsjobsite.com1ENOM, INC.DNS1.NAME-SERVICES.COMREDACTED FOR PRIVACY
55tier_3jobleads.com1united domains AGCRUZ.NS.CLOUDFLARE.COMNone
56tier_3beyondsandiego.com1ENOM, INC.DNS1.NAME-SERVICES.COMREDACTED FOR PRIVACY
57tier_3retailgigs.com1ENOM, INC.DNS1.NAME-SERVICES.COMREDACTED FOR PRIVACY
58tier_3administrativejobs.com1NoneNoneNone
59tier_3techcareers.com1eNom, LLCDNS1.NAME-SERVICES.COMNone
ipcityregionorgpostalcountry_nametiercounthostnameanycast
0185.107.56.59RotterdamSouth HollandAS43350 NForce Entertainment B.V.3012Netherlandstier_116nannan
164.32.8.67Los AngelesCaliforniaAS46844 Sharktech90009United Statestier_113customer.sharktech.netnan
264.32.8.70Los AngelesCaliforniaAS46844 Sharktech90009United Statestier_111customer.sharktech.netnan
3185.107.56.57RotterdamSouth HollandAS43350 NForce Entertainment B.V.3012Netherlandstier_19nannan
4185.107.56.60RotterdamSouth HollandAS43350 NForce Entertainment B.V.3012Netherlandstier_18nannan
564.32.8.68Los AngelesCaliforniaAS46844 Sharktech90009United Statestier_17customer.sharktech.netnan
664.32.8.69Los AngelesCaliforniaAS46844 Sharktech90009United Statestier_16customer.sharktech.netnan
7185.107.56.58RotterdamSouth HollandAS43350 NForce Entertainment B.V.3012Netherlandstier_15nannan
8209.15.13.136TorontoOntarioAS13768 Aptum TechnologiesM5NCanadatier_243nannan
9198.54.112.216San JoseCaliforniaAS22612 Namecheap, Inc.95103United Statestier_238nannan
1035.209.61.240Council BluffsIowaAS15169 Google LLC51502United Statestier_312240.61.209.35.bc.googleusercontent.comnan
11167.233.8.197NürnbergBavariaAS24940 Hetzner Online GmbH90402Germanytier_216static.197.8.233.167.clients.your-server.denan
1252.3.4.129AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_32ec2-52-3-4-129.compute-1.amazonaws.comnan
13192.138.218.207SeattleWashingtonAS14332 Connexity, Inc.98111United Statestier_32rd.bizrate.comnan
1434.197.176.2AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_27ec2-34-197-176-2.compute-1.amazonaws.comnan
15100.25.52.1AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_32ec2-100-25-52-1.compute-1.amazonaws.comnan
1618.235.67.128AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_26ec2-18-235-67-128.compute-1.amazonaws.comnan
1754.84.4.127AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_25ec2-54-84-4-127.compute-1.amazonaws.comnan
1854.208.107.202AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_25ec2-54-208-107-202.compute-1.amazonaws.comnan
19198.134.116.30New York CityNew YorkAS27257 Webair Internet Development Company Inc.10013United Statestier_25nannan
2052.21.176.105AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_25ec2-52-21-176-105.compute-1.amazonaws.comnan
21178.62.225.201AmsterdamNorth HollandAS14061 DigitalOcean, LLC1012Netherlandstier_25nannan
2252.72.29.7AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_25ec2-52-72-29-7.compute-1.amazonaws.comnan
23192.138.218.139SeattleWashingtonAS14332 Connexity, Inc.98111United Statestier_24rd.connexity.netnan
243.226.191.120AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_23ec2-3-226-191-120.compute-1.amazonaws.comnan
2523.21.166.45AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_23ec2-23-21-166-45.compute-1.amazonaws.comnan
2623.21.53.13AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_23ec2-23-21-53-13.compute-1.amazonaws.comnan
273.234.0.165AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_23ec2-3-234-0-165.compute-1.amazonaws.comnan
2835.209.61.240Council BluffsIowaAS15169 Google LLC51502United Statestier_312240.61.209.35.bc.googleusercontent.comnan
2934.192.40.54AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_35ec2-34-192-40-54.compute-1.amazonaws.comnan
3064.227.12.111North BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_33nannan
3152.203.36.44AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_33ec2-52-203-36-44.compute-1.amazonaws.comnan
32104.17.48.14San FranciscoCaliforniaAS13335 Cloudflare, Inc.94107United Statestier_33nanTrue
33100.37.135.2New York CityNew YorkAS701 MCI Communications Services, Inc. d/b/a Verizon Business10004United Statestier_33pool-100-37-135-2.nycmny.fios.verizon.netnan
3454.205.240.192AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_33ec2-54-205-240-192.compute-1.amazonaws.comnan
35198.199.66.189North BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_33nannan
3652.3.4.129AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_32ec2-52-3-4-129.compute-1.amazonaws.comnan
3768.168.84.162NorristownPennsylvaniaAS17378 TierPoint, LLC19403United Statestier_32162.84.168.68.static.dbsintl.netnan
38100.25.52.1AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_32ec2-100-25-52-1.compute-1.amazonaws.comnan
3968.168.84.196NorristownPennsylvaniaAS17378 TierPoint, LLC19403United Statestier_32196.84.168.68.static.dbsintl.netnan
40162.243.10.151New York CityNew YorkAS14061 DigitalOcean, LLC10011United Statestier_32nannan
41192.138.218.207SeattleWashingtonAS14332 Connexity, Inc.98111United Statestier_32rd.bizrate.comnan
42151.101.1.131San FranciscoCaliforniaAS54113 Fastly94107United Statestier_31nanTrue
43104.21.10.65San FranciscoCaliforniaAS13335 Cloudflare, Inc.94107United Statestier_31nanTrue
4467.207.80.24North BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_31nannan
45216.239.32.21Mountain ViewCaliforniaAS15169 Google LLC94043United Statestier_31any-in-2015.1e100.netTrue
4668.168.84.172NorristownPennsylvaniaAS17378 TierPoint, LLC19403United Statestier_31172.84.168.68.static.dbsintl.netnan
47167.172.139.120North BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_31nannan
4899.84.47.93NewarkNew JerseyAS16509 Amazon.com, Inc.07175United Statestier_31server-99-84-47-93.ewr52.r.cloudfront.netnan
4923.41.189.213NewarkNew JerseyAS16625 Akamai Technologies, Inc.07175United Statestier_31a23-41-189-213.deploy.static.akamaitechnologies.comnan
50167.172.136.193North BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_31nannan
5199.84.47.14NewarkNew JerseyAS16509 Amazon.com, Inc.07175United Statestier_31server-99-84-47-14.ewr52.r.cloudfront.netnan
5220.44.80.191BoydtonVirginiaAS8075 Microsoft Corporation23917United Statestier_31nannan
5368.168.84.60NorristownPennsylvaniaAS17378 TierPoint, LLC19403United Statestier_3160.84.168.68.static.dbsintl.netnan
54104.22.71.250San FranciscoCaliforniaAS13335 Cloudflare, Inc.94107United Statestier_31nanTrue
55157.245.242.152North BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_31nannan
56204.141.88.99ChicagoIllinoisAS393259 Yottaa, Inc60666United Statestier_31nannan
5752.73.153.209AshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_31ec2-52-73-153-209.compute-1.amazonaws.comnan

Aggregated redirection graph of domains located on current IP address.

  • The redirection flows from left to right
  • Leftmost domains are initial domains hosted on current IP
  • Rightmost domains are final landing domains we were able to crawl

Screenshot of high-occurrence final landing domains

Have other ideas? / Want to subscribe to get threat intelligence report? / Contact

Zhouhan Chen, NYU Center for Data Science, zc1245@nyu.edu, Personal Website