Malware Discoverer Github Homepage.

Daily Threat Intelligence Report

This report contains following information

  1. Overall statistics
    1. Number of domains detected
    2. Number of domains detected by Google Safe Browsing
    3. IP address behind entry-level domains
    4. date of collection
  2. Top 10 domain statistics
    1. count (number of redirection paths that contain this domain)
    2. tier (1 is entry-level domain, 2 is intermediate hop, 3 is final landing domain)
    3. registar
    4. organization
  3. Top 10 IP statistics
    1. count
    2. location (city, country, region)
    3. hostname
    4. organization
  4. Consolidated redirection path
    1. green: tier one domain
    2. yellow: tier two domain
    3. red: tier three domain
num_domainnum_linksnum_full_urlnum_safebrowsing_maliciousnum_vt_maliciousdateipuser_agent
01461484690132021-04-1964.32.8.68Safari
tierdomaincountregistrarname_serversorg
0tier_1bugpoint.net1SNAPNAMES 42, LLCNS1.DNSNUTS.COMNone
1tier_1garden-variety.net1EUNameFlood.com LLCNS1.DNSNUTS.COMNone
2tier_1ciliguai.com1SNAPNAMES 54, LLCNS1.DNSNUTS.COMNone
3tier_1aharonic.net1Gradeadomainnames.com LLCNS1.DNSNUTS.COMNone
4tier_1albumkings.net1Snoqulamiedomains.com LLCNS1.DNSNUTS.COMNone
5tier_1bagustekno.net1Zone of Domains LLCNS1.DNSNUTS.COMNone
6tier_1aiss.cc1Top Shelf Domains LLCNS1.DNSNUTS.COMNone
7tier_1dashitz.com1Name Nelly, LLCNS1.DNSNUTS.COMNone
8tier_1babierus.com1NameSilo, LLCNS1.DNSNUTS.COMSee PrivacyGuardian.org
9tier_1discover-prism.com1Goto Domains LLCNS1.DNSNUTS.COMNone
10tier_2btpnav.com561API GmbHNS1.DNSIMPLE.COMRegistrant of btpnav.com
11tier_21496.rawlexi.com42NoneNoneNone
12tier_2americanlisted.com33ilait ABNS1.TELECOM3.NETIntegration 3 Group AB
13tier_2click.appcast.io27101Domain GRS LtdNS-85.AWSDNS-10.COMNone
14tier_2aristo-hag.com14Amazon Registrar, Inc.NS-1226.AWSDNS-25.ORGWhois Privacy Service
15tier_2nizephoros-pom.com12Amazon Registrar, Inc.NS-1192.AWSDNS-21.ORGWhois Privacy Service
16tier_29nl.es10NoneNoneNone
17tier_2newre-conversions.clickmeter.com10REGISTER S.P.A.NS-1498.AWSDNS-59.ORGREDACTED FOR PRIVACY
18tier_2ring.joveo.com10Go Canada Domains, LLCNS-1256.AWSDNS-29.ORGDomains By Proxy, LLC
19tier_2track.vcdc.com10Key-Systems GmbHGUY.NS.CLOUDFLARE.COMc/o whoisproxy.com
20tier_2api.apptap.com7Amazon Registrar, Inc.NS-1256.AWSDNS-29.ORGWhois Privacy Service
21tier_2api.mplayit.com7Amazon Registrar, Inc.NS-1236.AWSDNS-26.ORGWhois Privacy Service
22tier_2redirect.viglink.com7Amazon Registrar, Inc.NS1.VIGLINK.COMWhois Privacy Service
23tier_2link.sylikes.com7MarkMonitor, Inc.NS-1063.AWSDNS-04.ORGConnexity, Inc.
24tier_2click.appcast.io_LOOP_16NoneNoneNone
25tier_2click.junmediadirect.com6NAMECHEAP INCNS1.LINODE.COMPrivacy service provided by Withheld for Privacy ehf
26tier_2rd.bizrate.com5NoneNoneNone
27tier_2rd.connexity.net5NoneNoneNone
28tier_2joblift.com5INWX GmbH & Co. KGNS-CLOUD-E1.GOOGLEDOMAINS.COMREDACTED FOR PRIVACY
29tier_2click.expmediadirect.com3NAMECHEAP INCNS1.LINODE.COMPrivacy service provided by Withheld for Privacy ehf
30tier_3irl.com14GoDaddy.com, LLCNS-106.AWSDNS-13.COMDomains By Proxy, LLC
31tier_3managerformula.com11NAMECHEAP INCDNS1.REGISTRAR-SERVERS.COMPrivacy service provided by Withheld for Privacy ehf
32tier_3americanlisted.com9ilait ABNS1.TELECOM3.NETIntegration 3 Group AB
33tier_3signup.finddreamjobs.com7GoDaddy.com, LLCALEXIS.NS.CLOUDFLARE.COMFind Dream Jobs
34tier_3click.appcast.io6101Domain GRS LtdNS-85.AWSDNS-10.COMNone
35tier_3fanatics.com4MarkMonitor, Inc.A1-147.AKAM.NETFanatics Inc.
36tier_3careerbuilder.com3CSC CORPORATE DOMAINS, INC.BROCK.CBJOBS.NETCareerBuilder, LLC
37tier_3signup.careersandjobs.co3GoDaddy.com, LLCalexis.ns.cloudflare.comDomains By Proxy, LLC
38tier_3rd.bizrate.com2NoneNoneNone
39tier_3nextcareernow.com2GoDaddy.com, LLCNS53.DOMAINCONTROL.COMDomains By Proxy, LLC
40tier_3joblift.com_LOOP_12NoneNoneNone
41tier_3amazon.com1NoneNoneNone
42tier_3btpnav.com11API GmbHNS1.DNSIMPLE.COMRegistrant of btpnav.com
43tier_3customerservicejobs.com1ENOM, INC.DNS1.NAME-SERVICES.COMREDACTED FOR PRIVACY
44tier_3livetrucking.com1GoDaddy.com, LLCAMY.NS.CLOUDFLARE.COMDomains By Proxy, LLC
45tier_3austinjobsite.com1ENOM, INC.DNS1.NAME-SERVICES.COMREDACTED FOR PRIVACY
46tier_3phoenixjobs.com1ENOM, INC.DNS1.NAME-SERVICES.COMREDACTED FOR PRIVACY
47tier_3upward.careers1GoDaddy.com, LLCns21.domaincontrol.comDomains By Proxy, LLC
48tier_3mactoolsfranchises.com1GoDaddy.com, LLCNS21.DOMAINCONTROL.COMus media digital
49tier_3ballarddesigns.com_LOOP_11NoneNoneNone
50tier_3orvis.com1CSC CORPORATE DOMAINS, INC.EVAN.NS.CLOUDFLARE.COMThe Orvis Company, Inc
51tier_3getstarjobs.getitcorporate.com1GoDaddy.com, LLCNS-CLOUD-E1.GOOGLEDOMAINS.COMGet It LLC
52tier_3medicreed.club1NAMECHEAP INCmolly.ns.cloudflare.comPrivacy service provided by Withheld for Privacy ehf
53tier_3brinker.taleo.net1TUCOWS, INC.NS1.P10.DYNECT.NETREDACTED FOR PRIVACY
54tier_3healthcarejobsite.com1ENOM, INC.DNS1.NAME-SERVICES.COMREDACTED FOR PRIVACY
55tier_3manufacturingworkers.com1ENOM, INC.DNS1.NAME-SERVICES.COMREDACTED FOR PRIVACY
56tier_3s3.amazonaws.com1MarkMonitor, Inc.R1.AMAZONAWS.COMAmazon.com, Inc.
iphostnamecityregionorgpostalcountry_nametiercountanycast
064.32.8.68customer.sharktech.netLos AngelesCaliforniaAS46844 Sharktech90009United Statestier_115nan
1185.107.56.60nanRotterdamSouth HollandAS43350 NForce Entertainment B.V.3012Netherlandstier_114nan
264.32.8.69customer.sharktech.netLos AngelesCaliforniaAS46844 Sharktech90009United Statestier_112nan
364.32.8.70customer.sharktech.netLos AngelesCaliforniaAS46844 Sharktech90009United Statestier_112nan
4185.107.56.58nanRotterdamSouth HollandAS43350 NForce Entertainment B.V.3012Netherlandstier_110nan
564.32.8.67customer.sharktech.netLos AngelesCaliforniaAS46844 Sharktech90009United Statestier_16nan
6185.107.56.57nanRotterdamSouth HollandAS43350 NForce Entertainment B.V.3012Netherlandstier_16nan
7185.107.56.59nanRotterdamSouth HollandAS43350 NForce Entertainment B.V.3012Netherlandstier_14nan
8209.15.13.136nanTorontoOntarioAS13768 Aptum TechnologiesM5NCanadatier_31nan
9198.54.112.216nanSan JoseCaliforniaAS22612 Namecheap, Inc.95103United Statestier_242nan
1035.209.61.240240.61.209.35.bc.googleusercontent.comCouncil BluffsIowaAS15169 Google LLC51502United Statestier_39nan
113.234.0.165ec2-3-234-0-165.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_212nan
12192.138.218.207rd.bizrate.comSeattleWashingtonAS14332 Connexity, Inc.98111United Statestier_32nan
1334.197.176.2ec2-34-197-176-2.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_210nan
14167.233.8.197static.197.8.233.167.clients.your-server.deNürnbergBavariaAS24940 Hetzner Online GmbH90402Germanytier_210nan
1552.3.4.129ec2-52-3-4-129.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_33nan
16100.37.135.2pool-100-37-135-2.nycmny.fios.verizon.netNew York CityNew YorkAS701 MCI Communications Services, Inc. d/b/a Verizon Business10004United Statestier_35nan
173.224.109.140ec2-3-224-109-140.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_28nan
1852.72.29.7ec2-52-72-29-7.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_27nan
1954.235.205.204ec2-54-235-205-204.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_27nan
2054.197.247.190ec2-54-197-247-190.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_26nan
21100.25.52.1ec2-100-25-52-1.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_33nan
22198.134.116.18nanNew York CityNew YorkAS27257 Webair Internet Development Company Inc.10013United Statestier_26nan
23192.138.218.139rd.connexity.netSeattleWashingtonAS14332 Connexity, Inc.98111United Statestier_25nan
2435.190.64.2222.64.190.35.bc.googleusercontent.comKansas CityMissouriAS15169 Google LLC64121United Statestier_25True
2518.235.67.128ec2-18-235-67-128.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_25nan
2613.33.46.15server-13-33-46-15.ewr52.r.cloudfront.netNewarkNew JerseyAS16509 Amazon.com, Inc.07175United Statestier_24nan
2723.21.166.45ec2-23-21-166-45.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_24nan
2835.209.61.240240.61.209.35.bc.googleusercontent.comCouncil BluffsIowaAS15169 Google LLC51502United Statestier_39nan
2923.38.167.202a23-38-167-202.deploy.static.akamaitechnologies.comPhiladelphiaPennsylvaniaAS20940 Akamai International B.V.19099United Statestier_38nan
30100.37.135.2pool-100-37-135-2.nycmny.fios.verizon.netNew York CityNew YorkAS701 MCI Communications Services, Inc. d/b/a Verizon Business10004United Statestier_35nan
31184.87.65.240a184-87-65-240.deploy.static.akamaitechnologies.comNewarkNew JerseyAS16625 Akamai Technologies, Inc.07175United Statestier_34nan
32104.17.47.14nanSan FranciscoCaliforniaAS13335 Cloudflare, Inc.94107United Statestier_34True
3367.207.80.24nanNorth BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_34nan
34104.17.48.14nanSan FranciscoCaliforniaAS13335 Cloudflare, Inc.94107United Statestier_33True
3523.38.167.227a23-38-167-227.deploy.static.akamaitechnologies.comPhiladelphiaPennsylvaniaAS20940 Akamai International B.V.19099United Statestier_33nan
3652.3.4.129ec2-52-3-4-129.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_33nan
37100.25.52.1ec2-100-25-52-1.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_33nan
38104.21.10.65nanSan FranciscoCaliforniaAS13335 Cloudflare, Inc.94107United Statestier_33True
3999.84.114.91server-99-84-114-91.ewr52.r.cloudfront.netNewarkNew JerseyAS16509 Amazon.com, Inc.07175United Statestier_32nan
40192.138.218.207rd.bizrate.comSeattleWashingtonAS14332 Connexity, Inc.98111United Statestier_32nan
4152.73.87.228ec2-52-73-87-228.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_32nan
4264.227.12.111nanNorth BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_32nan
43143.204.142.6server-143-204-142-6.ewr52.r.cloudfront.netNewarkNew JerseyAS16509 Amazon.com, Inc.07175United Statestier_31nan
44157.245.242.152nanNorth BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_31nan
45209.15.13.136nanTorontoOntarioAS13768 Aptum TechnologiesM5NCanadatier_31nan
4668.168.84.164164.84.168.68.static.dbsintl.netNorristownPennsylvaniaAS17378 TierPoint, LLC19403United Statestier_31nan
4768.168.84.190190.84.168.68.static.dbsintl.netNorristownPennsylvaniaAS17378 TierPoint, LLC19403United Statestier_31nan
4868.168.84.131131.84.168.68.static.dbsintl.netNorristownPennsylvaniaAS17378 TierPoint, LLC19403United Statestier_31nan
4967.227.172.40nanLansingMichiganAS32244 Liquid Web, L.L.C48901United Statestier_31nan
50142.93.2.250usmedia.holbihost.comNorth BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_31nan
51161.35.60.200nanNorth BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_31nan
52157.245.84.7nanNorth BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_31nan
53104.16.28.86nanSan FranciscoCaliforniaAS13335 Cloudflare, Inc.94107United Statestier_31True
54167.172.139.120nanNorth BergenNew JerseyAS14061 DigitalOcean, LLC07047United Statestier_31nan
5552.73.153.209ec2-52-73-153-209.compute-1.amazonaws.comAshburnVirginiaAS14618 Amazon.com, Inc.20149United Statestier_31nan
5699.84.114.74server-99-84-114-74.ewr52.r.cloudfront.netNewarkNew JerseyAS16509 Amazon.com, Inc.07175United Statestier_31nan
5735.241.55.5151.55.241.35.bc.googleusercontent.comKansas CityMissouriAS15169 Google LLC64121United Statestier_31True

Aggregated redirection graph of domains located on current IP address.

  • The redirection flows from left to right
  • Leftmost domains are initial domains hosted on current IP
  • Rightmost domains are final landing domains we were able to crawl

Screenshot of high-occurrence final landing domains

Have other ideas? / Want to subscribe to get threat intelligence report? / Contact

Zhouhan Chen, NYU Center for Data Science, zc1245@nyu.edu, Personal Website