Daily Threat Intelligence Report

This report contains following information. All tables and graphs are auto-generated.

  1. Overall statistics
    1. Number of domains detected
    2. Number of domains detected by Google Safe Browsing
    3. IP address behind entry-level domains
    4. date of collection
  2. Top 10 domain statistics
    1. count (number of redirection paths that contain this domain)
    2. tier (1 is entry-level domain, 2 is intermediate hop, 3 is final landing domain)
    3. registar
    4. organization
  3. Top 10 IP statistics
    1. count
    2. location (city, country, region)
    3. hostname
    4. organization
  4. Consolidated redirection path
    1. green: tier one domain
    2. yellow: tier two domain
    3. red: tier three domain

Content Warning: The following domain names and screenshots contain material that may be harmful or traumatizing to some audiences.

num_domain num_links num_full_url num_safebrowsing_malicious num_vt_malicious date ip user_agent
0 83 87 232 0 8 2021-08-07 74.63.241.23 Android
tier domain count registrar name_servers org
0 tier_1 seemagic.co 1 GoDaddy.com, LLC ns1.torresdns.com None
1 tier_1 phlick.co 1 GoDaddy.com, LLC ns1.torresdns.com None
2 tier_1 potlocker.digital 1 NAMECHEAP INC ns1.thednscloud.com Privacy service provided by Withheld for Privacy ehf
3 tier_1 rams.coach 1 None None None
4 tier_1 playerup.co 1 GoDaddy.com, LLC ns1.torresdns.com None
5 tier_1 liedstem.tech 1 NAMECHEAP INC NS1.NAMEDYNAMICS.NET Privacy service provided by Withheld for Privacy ehf
6 tier_1 prison.school 1 None None None
7 tier_1 mcworld.pro 1 DYNADOT LLC NS1.TORRESDNS.COM None
8 tier_1 appsvill.vip 1 None None None
9 tier_1 rockbros.co 1 GoDaddy.com, LLC ns1.torresdns.com None
10 tier_2 1496.rebiraert.com 43 GoDaddy Online Services Cayman Islands Ltd. NS11.CONSTELLIX.COM None
11 tier_2 americanlisted.com 42 ilait AB NS1.TELECOM3.NET Integration 3 Group AB
12 tier_2 click.appcast.io 11 101Domain GRS Ltd NS-85.AWSDNS-10.COM None
13 tier_2 click.appcast.io_LOOP_1 6 None None None
14 tier_2 careerbliss.com 5 GoDaddy.com, LLC NS10.DNSMADEEASY.COM Domains By Proxy, LLC
15 tier_2 lifeworq.com 4 united domains AG NS.UDAG.DE None
16 tier_2 joblift.com 3 INWX GmbH & Co. KG NS-CLOUD-E1.GOOGLEDOMAINS.COM REDACTED FOR PRIVACY
17 tier_2 cmp.jobs 3 None None None
18 tier_2 trk.careerbliss.com 3 GoDaddy.com, LLC NS10.DNSMADEEASY.COM Domains By Proxy, LLC
19 tier_2 us.expand-backend.mindmatch.ai 2 None None None
20 tier_2 healthcarejobsite.com 1 ENOM, INC. DNS1.NAME-SERVICES.COM REDACTED FOR PRIVACY
21 tier_2 p.nexxt.com 1 Network Solutions, LLC NS21.WORLDNIC.COM None
22 tier_2 apply.getwork.com 1 GoDaddy.com, LLC NS-1101.AWSDNS-09.ORG JobDig
23 tier_2 c.trafficcertify.com 1 GoDaddy.com, LLC NS75.DOMAINCONTROL.COM Domains By Proxy, LLC
24 tier_2 11165151.searchiqnet.com 1 GoDaddy.com, LLC NS57.DOMAINCONTROL.COM Domains By Proxy, LLC
25 tier_2 antig-hra.com 1 Amazon Registrar, Inc. NS-1005.AWSDNS-61.NET Whois Privacy Service
26 tier_2 noclick.connexity.com 1 MarkMonitor, Inc. NS-1235.AWSDNS-26.ORG Connexity, Inc.
27 tier_2 rd.bizrate.com 1 MarkMonitor, Inc. NS-1189.AWSDNS-20.ORG Meredith Corporation
28 tier_2 rd.connexity.net 1 None None None
29 tier_2 open.app.jobrapido.com 1 Marcaria.com International, Inc. NS-CLOUD-D1.GOOGLEDOMAINS.COM None
30 tier_3 google.com 24 MarkMonitor, Inc. NS1.GOOGLE.COM Google LLC
31 tier_3 dan.com 4 TUCOWS, INC. EMMA.NS.CLOUDFLARE.COM REDACTED FOR PRIVACY
32 tier_3 open.app.jobrapido.com 4 Marcaria.com International, Inc. NS-CLOUD-D1.GOOGLEDOMAINS.COM GDPR Masked
33 tier_3 trk.careerbliss.com 2 GoDaddy.com, LLC NS10.DNSMADEEASY.COM Domains By Proxy, LLC
34 tier_3 careerbuilder.com 2 CSC CORPORATE DOMAINS, INC. BROCK.CBJOBS.NET CareerBuilder, LLC
35 tier_3 click.appcast.io_LOOP_1 2 None None None
36 tier_3 lifeworq.com 1 united domains AG NS.UDAG.DE None
37 tier_3 everyjobforme.com 1 GoDaddy.com, LLC NS-1009.AWSDNS-62.NET Percipio Holdings, Inc.
38 tier_3 careers.hcahealthcare.com 1 MarkMonitor, Inc. NS1.MEDCITY.NET HCA - Information Technology & Services, Inc.
39 tier_3 us.jobtome.com 1 GoDaddy.com, LLC CHRIS.NS.CLOUDFLARE.COM Jobtome Internantional SA
40 tier_3 americanlisted.com 1 ilait AB NS1.TELECOM3.NET Integration 3 Group AB
41 tier_3 chewy.com 1 Moniker Online Services LLC NS1.P02.DYNECT.NET Chewy, Inc.
42 tier_3 nextcareernow.com 1 GoDaddy.com, LLC NS53.DOMAINCONTROL.COM None
43 tier_3 ads.midwayusa.com 1 GoDaddy.com, LLC NS-1486.AWSDNS-57.ORG None
44 tier_3 click.thejobnetwork.com 1 GoDaddy.com, LLC NS-1356.AWSDNS-41.ORG None
45 tier_3 open.app.jobrapido.com_LOOP_1 1 None None None
46 tier_3 linkedin.com 1 MarkMonitor, Inc. DNS1.P09.NSONE.NET LinkedIn Corporation
ip hostname city region org postal country_name tier count anycast
0 209.126.123.11 static-ip-209-126-123-11.inaddr.ip-pool.com St. Louis Missouri AS30083 GoDaddy.com, LLC 63150 United States tier_1 6 nan
1 209.126.123.13 static-ip-209-126-123-13.inaddr.ip-pool.com St. Louis Missouri AS30083 GoDaddy.com, LLC 63150 United States tier_1 4 nan
2 23.82.12.29 nan Washington Washington, D.C. AS30633 Leaseweb USA, Inc. 20045 United States tier_1 4 nan
3 209.126.123.12 static-ip-209-126-123-12.inaddr.ip-pool.com St. Louis Missouri AS30083 GoDaddy.com, LLC 63150 United States tier_1 4 nan
4 78.41.204.34 server368.snel.com Lopik Utrecht AS62370 Snel.com B.V. 3411 Netherlands tier_1 3 nan
5 212.32.237.101 nan Amsterdam North Holland AS60781 LeaseWeb Netherlands B.V. 1012 Netherlands tier_1 3 nan
6 23.82.12.32 nan Washington Washington, D.C. AS30633 Leaseweb USA, Inc. 20045 United States tier_1 2 nan
7 78.41.204.29 server368.snel.com Lopik Utrecht AS62370 Snel.com B.V. 3411 Netherlands tier_1 2 nan
8 212.32.237.90 nan Amsterdam North Holland AS60781 LeaseWeb Netherlands B.V. 1012 Netherlands tier_1 2 nan
9 212.32.237.92 nan Amsterdam North Holland AS60781 LeaseWeb Netherlands B.V. 1012 Netherlands tier_1 2 nan
10 198.54.112.216 nan Los Angeles California AS22612 Namecheap, Inc. 90009 United States tier_2 43 nan
11 35.209.61.240 240.61.209.35.bc.googleusercontent.com Council Bluffs Iowa AS15169 Google LLC 51502 United States tier_3 1 nan
12 207.38.44.116 cbsmtp1.careerbliss.com Los Angeles California AS5693 Latisys-Irvine, LLC 90009 United States tier_3 2 nan
13 100.37.135.2 pool-100-37-135-2.nycmny.fios.verizon.net New York City New York AS701 MCI Communications Services, Inc. d/b/a Verizon Business 10004 United States tier_3 3 nan
14 34.107.113.45 45.113.107.34.bc.googleusercontent.com Frankfurt am Main Hesse AS15169 Google LLC 60311 Germany tier_3 1 nan
15 3.232.183.77 ec2-3-232-183-77.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_2 4 nan
16 52.2.188.203 ec2-52-2-188-203.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_2 3 nan
17 34.117.159.76 76.159.117.34.bc.googleusercontent.com Kansas City Missouri AS15169 Google LLC 64121 United States tier_2 3 True
18 45.33.72.236 nan Morris Plains New Jersey AS63949 Linode, LLC 07927 United States tier_2 3 nan
19 52.204.63.126 ec2-52-204-63-126.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_2 2 nan
20 34.120.235.106 106.235.120.34.bc.googleusercontent.com Mountain View California AS15169 Google LLC 94043 United States tier_2 2 True
21 68.168.84.60 60.84.168.68.static.dbsintl.net Norristown Pennsylvania AS17378 TierPoint, LLC 19403 United States tier_2 2 nan
22 209.132.243.15 nan Los Angeles California AS7296 Alchemy Communications, Inc. 90009 United States tier_2 2 nan
23 68.168.84.162 162.84.168.68.static.dbsintl.net Norristown Pennsylvania AS17378 TierPoint, LLC 19403 United States tier_2 1 nan
24 45.60.240.250 nan Redwood City California AS19551 Incapsula Inc 94065 United States tier_2 1 True
25 23.44.129.151 a23-44-129-151.deploy.static.akamaitechnologies.com Piscataway New Jersey AS20940 Akamai International B.V. 08854 United States tier_2 1 nan
26 34.194.124.180 ec2-34-194-124-180.compute-1.amazonaws.com Ashburn Virginia AS14618 Amazon.com, Inc. 20149 United States tier_2 1 nan
27 34.98.123.249 249.123.98.34.bc.googleusercontent.com Mountain View California AS15169 Google LLC 94043 United States tier_2 1 True
28 192.138.218.207 rd.bizrate.com Seattle Washington AS14332 Connexity, Inc. 98111 United States tier_2 1 nan
29 192.138.218.139 rd.connexity.net Seattle Washington AS14332 Connexity, Inc. 98111 United States tier_2 1 nan
30 142.250.80.68 lga34s35-in-f4.1e100.net New York City New York AS15169 Google LLC 10004 United States tier_3 10 nan
31 142.250.80.4 lga34s33-in-f4.1e100.net New York City New York AS15169 Google LLC 10004 United States tier_3 9 nan
32 172.217.11.4 lga25s60-in-f4.1e100.net Westbury New York AS15169 Google LLC 11590 United States tier_3 5 nan
33 52.28.84.253 ec2-52-28-84-253.eu-central-1.compute.amazonaws.com Frankfurt am Main Hesse AS16509 Amazon.com, Inc. 60311 Germany tier_3 4 nan
34 100.37.135.2 pool-100-37-135-2.nycmny.fios.verizon.net New York City New York AS701 MCI Communications Services, Inc. d/b/a Verizon Business 10004 United States tier_3 3 nan
35 207.38.44.116 cbsmtp1.careerbliss.com Los Angeles California AS5693 Latisys-Irvine, LLC 90009 United States tier_3 2 nan
36 176.31.237.74 ns325147.ip-176-31-237.eu Roubaix Hauts-de-France AS16276 OVH SAS 59051 CEDEX 1 France tier_3 2 nan
37 13.225.229.65 server-13-225-229-65.jfk51.r.cloudfront.net New York City New York AS16509 Amazon.com, Inc. 10004 United States tier_3 2 nan
38 34.107.113.45 45.113.107.34.bc.googleusercontent.com Frankfurt am Main Hesse AS15169 Google LLC 60311 Germany tier_3 1 nan
39 104.18.28.118 nan San Francisco California AS13335 Cloudflare, Inc. 94107 United States tier_3 1 True
40 104.17.77.7 nan San Francisco California AS13335 Cloudflare, Inc. 94107 United States tier_3 1 True
41 130.211.38.206 206.38.211.130.bc.googleusercontent.com Mountain View California AS15169 Google LLC 94043 United States tier_3 1 True
42 35.209.61.240 240.61.209.35.bc.googleusercontent.com Council Bluffs Iowa AS15169 Google LLC 51502 United States tier_3 1 nan
43 23.4.234.14 a23-4-234-14.deploy.static.akamaitechnologies.com Piscataway New Jersey AS16625 Akamai Technologies, Inc. 08854 United States tier_3 1 nan
44 178.33.233.91 ns338135.ip-178-33-233.eu Paris Île-de-France AS16276 OVH SAS 75000 France tier_3 1 nan
45 51.91.64.195 ns31189212.ip-51-91-64.eu Roubaix Hauts-de-France AS16276 OVH SAS 59051 CEDEX 1 France tier_3 1 nan
46 216.239.32.21 any-in-2015.1e100.net Mountain View California AS15169 Google LLC 94043 United States tier_3 1 True
47 184.29.189.107 a184-29-189-107.deploy.static.akamaitechnologies.com Piscataway New Jersey AS16625 Akamai Technologies, Inc. 08854 United States tier_3 1 nan
48 199.83.128.213 199.83.128.213.ip.incapdns.net Redwood City California AS19551 Incapsula Inc 94065 United States tier_3 1 True
49 13.107.42.14 nan Redmond Washington AS8068 Microsoft Corporation 98052 United States tier_3 1 True

Aggregated redirection graph of domains located on current IP address.

  • The redirection flows from left to right
  • Leftmost domains are initial domains hosted on current IP
  • Rightmost domains are final landing domains we were able to crawl

Screenshot of high-occurrence final landing domains

Have other ideas? / Want to subscribe to get threat intelligence report? / Contact

Zhouhan Chen, NYU Center for Data Science, zc1245@nyu.edu, Personal Website