Daily Threat Intelligence Report

This report contains following information. All tables and graphs are auto-generated.

  1. Overall statistics
    1. Number of domains detected
    2. Number of domains detected by Google Safe Browsing
    3. IP address behind entry-level domains
    4. date of collection
  2. Top 10 domain statistics
    1. count (number of redirection paths that contain this domain)
    2. tier (1 is entry-level domain, 2 is intermediate hop, 3 is final landing domain)
    3. registar
    4. organization
  3. Top 10 IP statistics
    1. count
    2. location (city, country, region)
    3. hostname
    4. organization
  4. Consolidated redirection path
    1. green: tier one domain
    2. yellow: tier two domain
    3. red: tier three domain

Content Warning: The following domain names and screenshots contain material that may be harmful or traumatizing to some audiences.

num_domain num_links num_full_url num_safebrowsing_malicious num_vt_malicious date ip user_agent
0 213 211 644 0 18 2021-05-25 64.32.8.68 Safari
tier domain count registrar name_servers org
0 tier_1 jrpgreview.com 1 SNAPNAMES 42, LLC NS1.DNSNUTS.COM None
1 tier_1 economictims.com 1 Domain Landing Zone LLC NS1.DNSNUTS.COM None
2 tier_1 iopy.net 1 Name Find Source LLC NS1.DNSNUTS.COM None
3 tier_1 duet-chehova.net 1 Afterdark Domains, LLC NS1.DNSNUTS.COM None
4 tier_1 dutopia.info 1 UDomainName.com LLC NS1.DNSNUTS.COM The Management Group II
5 tier_1 bttorrents.net 1 Fine Grain Domains, LLC NS1.DNSNUTS.COM None
6 tier_1 erojii.net 1 Dropcatch Landing Spot LLC NS1.DNSNUTS.COM None
7 tier_1 az-khaos.com 1 EUTurbo.com LLC NS1.DNSNUTS.COM None
8 tier_1 cash-crypto.com 1 Top Level Domains LLC NS1.DNSNUTS.COM None
9 tier_1 colrut.com 1 SNAPNAMES 65, LLC NS1.DNSNUTS.COM None
10 tier_2 1496.rebiraert.com 69 GoDaddy Online Services Cayman Islands Ltd. NS-1041.AWSDNS-02.ORG None
11 tier_2 americanlisted.com 65 ilait AB NS1.TELECOM3.NET Integration 3 Group AB
12 tier_2 melanthios-ana.com 33 Amazon Registrar, Inc. NS-1354.AWSDNS-41.ORG Whois Privacy Service
13 tier_2 click.appcast.io 33 None None None
14 tier_2 track.vcdc.com 26 Key-Systems GmbH GUY.NS.CLOUDFLARE.COM c/o whoisproxy.com
15 tier_2 steinn-nik.com 18 Amazon Registrar, Inc. NS-1082.AWSDNS-07.ORG Whois Privacy Service
16 tier_2 traffic.weareoffers.com 18 NAMECHEAP INC AJAY.NS.CLOUDFLARE.COM Privacy service provided by Withheld for Privacy ehf
17 tier_2 062kj.rdtk.io 18 GoDaddy.com, LLC NS-239.AWSDNS-29.COM None
18 tier_2 fisudauh.top 8 NameSilo, LLC ns1.selectel.org See PrivacyGuardian.org
19 tier_2 careerbliss.com 7 GoDaddy.com, LLC NS10.DNSMADEEASY.COM Domains By Proxy, LLC
20 tier_2 trk.careerbliss.com 7 GoDaddy.com, LLC NS10.DNSMADEEASY.COM Domains By Proxy, LLC
21 tier_2 click.expmediadirect1.com 6 None None None
22 tier_2 facebuo.ru 6 SALENAMES-RU ns1.nebula-dns.com. None
23 tier_2 komuxoe.ru 6 SALENAMES-RU ns1.nebula-dns.com. None
24 tier_2 click.appcast.io_LOOP_1 4 None None None
25 tier_2 click.junmediadirect.com 3 NAMECHEAP INC NS1.LINODE.COM Privacy service provided by Withheld for Privacy ehf
26 tier_2 btpnative.com 3 1API GmbH NS1.DNSIMPLE.COM Registrant of btpnative.com
27 tier_2 mybetterdl.com 3 NAMECHEAP INC NS0.DNSMADEEASY.COM Redacted for Privacy Purposes
28 tier_2 9nl.es 3 None None None
29 tier_2 newre-conversions.clickmeter.com 3 REGISTER S.P.A. NS-1498.AWSDNS-59.ORG REDACTED FOR PRIVACY
30 tier_3 google.com 32 MarkMonitor, Inc. NS1.GOOGLE.COM Google LLC
31 tier_3 careerbliss.com 26 GoDaddy.com, LLC NS10.DNSMADEEASY.COM Domains By Proxy, LLC
32 tier_3 pages-home.com 15 Name.com, Inc. NS1GLR.NAME.COM Domain Protection Services, Inc.
33 tier_3 seek.store.com 8 None None None
34 tier_3 americanlisted.com 4 ilait AB NS1.TELECOM3.NET Integration 3 Group AB
35 tier_3 watchadvanced-bestgreatlyfile.best 4 NAMECHEAP INC DNS1.REGISTRAR-SERVERS.COM Privacy service provided by Withheld for Privacy ehf
36 tier_3 watchlatest-bestgreatlyfile.best 4 NAMECHEAP INC DNS1.REGISTRAR-SERVERS.COM Privacy service provided by Withheld for Privacy ehf
37 tier_3 watchgreatly-bestcurrentfile.best 3 NAMECHEAP INC DNS1.REGISTRAR-SERVERS.COM Privacy service provided by Withheld for Privacy ehf
38 tier_3 pages-home.b-cdn.net 3 Name.com, Inc. NS1.BUNNYDNS.COM Domain Protection Services, Inc.
39 tier_3 xsportshd.com 2 Name.com, Inc. MARIO.NS.CLOUDFLARE.COM None
40 tier_3 top.faqtoids.com 2 MarkMonitor, Inc. DNS1.P01.NSONE.NET IAC Search & Media, Inc.
41 tier_3 dice.com 2 GoDaddy.com, LLC NS-1446.AWSDNS-52.ORG Dice Holdings, Inc.
42 tier_3 get-express-vpn.online 2 TLD Registrar Solutions Ltd. NS-409.AWSDNS-51.COM None
43 tier_3 click.joveo.com 2 Go Canada Domains, LLC NS-1256.AWSDNS-29.ORG Domains By Proxy, LLC
44 tier_3 loadfreeextremelyfile.digital 2 NAMECHEAP INC dns1.registrar-servers.com Privacy service provided by Withheld for Privacy ehf
45 tier_3 signupandturnyourscreenoffsafepowernow.date 2 NAMECHEAP INC ns1.fp261.parklogic.com Privacy service provided by Withheld for Privacy ehf
46 tier_3 watchgreatly-bestlatestfile.best 2 Namecheap DNS1.REGISTRAR-SERVERS.COM Privacy service provided by Withheld for Privacy ehf
47 tier_3 r.srvtrck.com 1 GoDaddy.com, LLC BEN.NS.CLOUDFLARE.COM Domains By Proxy, LLC
48 tier_3 wayfair.com 1 MarkMonitor, Inc. A1-100.AKAM.NET Wayfair, LLC
49 tier_3 volume.com 1 DYNADOT LLC A.NS.VOLUME.COM None
50 tier_3 dataprivacyadvocate.com 1 Amazon Registrar, Inc. NS-1519.AWSDNS-61.ORG Whois Privacy Service
51 tier_3 loadquickextremelyfile.digital 1 NAMECHEAP INC dns1.registrar-servers.com Privacy service provided by Withheld for Privacy ehf
52 tier_3 loadstrongextremelyfile.digital 1 None None None
53 tier_3 jobs.vioc.com 1 CSC CORPORATE DOMAINS, INC. DNS1.P06.NSONE.NET Valvoline Licensing and Intellectual Property LLC
54 tier_3 casinobonus4u.com 1 Domain.com, LLC NS104.WEBMASTERS.COM Domain Privacy Service FBO Registrant.
55 tier_3 luckywinnernow.com 1 Amazon Registrar, Inc. NS-1269.AWSDNS-30.ORG Whois Privacy Service
56 tier_3 robogarden.io 1 GoDaddy.com, LLC BECKY.NS.CLOUDFLARE.COM None
57 tier_3 bulksupplements.com_LOOP_1 1 None None None
58 tier_3 kbb.com 1 CSC CORPORATE DOMAINS, INC. PDNS164.ULTRADNS.BIZ Autotrader.com
59 tier_3 jobleads.com 1 united domains AG CRUZ.NS.CLOUDFLARE.COM None
ip hostname city region org postal country_name tier count anycast
0 64.32.8.70 customer.sharktech.net Los Angeles California AS46844 Sharktech 90009 United States tier_1 22 nan
1 185.107.56.59 nan Rotterdam South Holland AS43350 NForce Entertainment B.V. 3012 Netherlands tier_1 21 nan
2 64.32.8.67 customer.sharktech.net Los Angeles California AS46844 Sharktech 90009 United States tier_1 19 nan
3 185.107.56.58 nan Rotterdam South Holland AS43350 NForce Entertainment B.V. 3012 Netherlands tier_1 16 nan
4 64.32.8.68 customer.sharktech.net Los Angeles California AS46844 Sharktech 90009 United States tier_1 15 nan
5 64.32.8.69 customer.sharktech.net Los Angeles California AS46844 Sharktech 90009 United States tier_1 15 nan
6 185.107.56.57 nan Rotterdam South Holland AS43350 NForce Entertainment B.V. 3012 Netherlands tier_1 14 nan
7 185.107.56.60 nan Rotterdam South Holland AS43350 NForce Entertainment B.V. 3012 Netherlands tier_1 8 nan
8 198.54.112.216 nan San Jose California AS22612 Namecheap, Inc. 95103 United States tier_2 70 nan
9 35.209.61.240 240.61.209.35.bc.googleusercontent.com Council Bluffs Iowa AS15169 Google LLC 51502 United States tier_3 4 nan
10 54.174.112.67 ec2-54-174-112-67.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_2 31 nan
11 167.233.8.197 static.197.8.233.167.clients.your-server.de Nürnberg Bavaria AS24940 Hetzner Online GmbH 90402 Germany tier_2 26 nan
12 52.7.145.236 ec2-52-7-145-236.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_2 20 nan
13 23.105.36.164 nan Washington Washington, D.C. AS30633 Leaseweb USA, Inc. 20045 United States tier_2 18 nan
14 52.207.132.139 ec2-52-207-132-139.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_2 15 nan
15 207.38.44.116 cbsmtp1.careerbliss.com Los Angeles California AS5693 Latisys-Irvine, LLC 90009 United States tier_3 26 nan
16 104.21.48.137 nan San Francisco California AS13335 Cloudflare, Inc. 94107 United States tier_2 12 True
17 34.197.35.212 ec2-34-197-35-212.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_2 11 nan
18 185.233.2.13 nan Pushkin St.-Petersburg AS48096 Enterprise Cloud Ltd. 196621 Russia tier_2 8 nan
19 3.224.107.254 ec2-3-224-107-254.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_2 7 nan
20 198.134.116.30 nan New York City New York AS27257 Webair Internet Development Company Inc. 10013 United States tier_2 6 nan
21 88.85.75.116 1d2-03-d8489-116.webazilla.com Amsterdam North Holland AS35415 Webzilla B.V. 1012 Netherlands tier_2 6 nan
22 209.15.13.136 nan Toronto Ontario AS13768 Aptum Technologies M5N Canada tier_2 6 nan
23 172.67.152.39 nan San Francisco California AS13335 Cloudflare, Inc. 94107 United States tier_2 6 True
24 100.37.135.2 pool-100-37-135-2.nycmny.fios.verizon.net New York City New York AS701 MCI Communications Services, Inc. d/b/a Verizon Business 10004 United States tier_3 4 nan
25 34.196.13.28 ec2-34-196-13-28.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_2 4 nan
26 198.134.116.18 nan New York City New York AS27257 Webair Internet Development Company Inc. 10013 United States tier_2 3 nan
27 173.192.101.24 18.65.c0ad.ip4.static.sl-reverse.com Dallas Texas AS36351 SoftLayer Technologies Inc. 75270 United States tier_2 3 nan
28 207.38.44.116 cbsmtp1.careerbliss.com Los Angeles California AS5693 Latisys-Irvine, LLC 90009 United States tier_3 26 nan
29 172.106.13.38 unassigned.psychz.net Washington Washington, D.C. AS40676 Psychz Networks 20045 United States tier_3 18 nan
30 3.226.146.143 ec2-3-226-146-143.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_3 13 nan
31 172.217.9.228 lga34s11-in-f4.1e100.net Ann Arbor Michigan AS15169 Google LLC 48109 United States tier_3 9 nan
32 158.69.125.9 ns521759.ip-158-69-125.net Montréal Quebec AS16276 OVH SAS H2W Canada tier_3 8 nan
33 172.217.10.100 lga34s15-in-f4.1e100.net New York City New York AS15169 Google LLC 10004 United States tier_3 7 nan
34 172.217.11.4 lga25s60-in-f4.1e100.net Westbury New York AS15169 Google LLC 11590 United States tier_3 5 nan
35 18.235.125.136 ec2-18-235-125-136.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_3 5 nan
36 35.209.61.240 240.61.209.35.bc.googleusercontent.com Council Bluffs Iowa AS15169 Google LLC 51502 United States tier_3 4 nan
37 100.37.135.2 pool-100-37-135-2.nycmny.fios.verizon.net New York City New York AS701 MCI Communications Services, Inc. d/b/a Verizon Business 10004 United States tier_3 4 nan
38 172.217.3.100 lga34s18-in-f4.1e100.net Westbury New York AS15169 Google LLC 11590 United States tier_3 3 nan
39 104.21.67.38 nan San Francisco California AS13335 Cloudflare, Inc. 94107 United States tier_3 2 True
40 51.91.200.241 ip241.ip-51-91-200.eu Péronne Hauts-de-France AS16276 OVH SAS 80200 France tier_3 2 nan
41 172.217.10.4 lga34s12-in-f4.1e100.net New York City New York AS15169 Google LLC 10004 United States tier_3 2 nan
42 172.217.6.196 lga25s54-in-f4.1e100.net Westbury New York AS15169 Google LLC 11590 United States tier_3 2 nan
43 172.217.12.196 lga25s63-in-f4.1e100.net Westbury New York AS15169 Google LLC 11590 United States tier_3 2 nan
44 172.217.10.68 lga34s14-in-f4.1e100.net New York City New York AS15169 Google LLC 10004 United States tier_3 2 nan
45 104.19.168.96 nan San Francisco California AS13335 Cloudflare, Inc. 94107 United States tier_3 1 True
46 3.220.104.3 ec2-3-220-104-3.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_3 1 nan
47 3.216.164.241 ec2-3-216-164-241.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_3 1 nan
48 23.64.60.211 a23-64-60-211.deploy.static.akamaitechnologies.com Edison New Jersey AS16625 Akamai Technologies, Inc. 08817 United States tier_3 1 nan
49 172.67.26.187 nan San Francisco California AS13335 Cloudflare, Inc. 94107 United States tier_3 1 True
50 52.85.61.100 server-52-85-61-100.ewr53.r.cloudfront.net Newark New Jersey AS16509 Amazon.com, Inc. 07175 United States tier_3 1 nan
51 52.85.61.90 server-52-85-61-90.ewr53.r.cloudfront.net Newark New Jersey AS16509 Amazon.com, Inc. 07175 United States tier_3 1 nan
52 52.85.61.46 server-52-85-61-46.ewr53.r.cloudfront.net Newark New Jersey AS16509 Amazon.com, Inc. 07175 United States tier_3 1 nan
53 20.45.1.53 nan San Antonio Texas AS8075 Microsoft Corporation 78295 United States tier_3 1 nan
54 52.85.61.67 server-52-85-61-67.ewr53.r.cloudfront.net Newark New Jersey AS16509 Amazon.com, Inc. 07175 United States tier_3 1 nan
55 209.216.87.128 nan Tampa Florida AS398779 Ace Host, LLC 33606 United States tier_3 1 nan
56 34.192.40.54 ec2-34-192-40-54.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_3 1 nan
57 54.230.48.111 server-54-230-48-111.yul62.r.cloudfront.net Montréal Quebec AS16509 Amazon.com, Inc. H2W Canada tier_3 1 nan

Aggregated redirection graph of domains located on current IP address.

  • The redirection flows from left to right
  • Leftmost domains are initial domains hosted on current IP
  • Rightmost domains are final landing domains we were able to crawl

Screenshot of high-occurrence final landing domains

Have other ideas? / Want to subscribe to get threat intelligence report? / Contact

Zhouhan Chen, NYU Center for Data Science, zc1245@nyu.edu, Personal Website