New Threats
Automatically posted alerts for newly registered domains found to be suspicious or dangerous.
vidara.to has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 43 days
This video hosting site uses deceptive 'Download' buttons and pop-ups that may lead to unwanted software or advertisements.
Key findings:
- Page contains multiple deceptive 'Download' buttons labeled as advertisements
- A pop-up overlay encourages users to 'Tap to proceed' for a download
- The site hosts adult-oriented content which is often used as a lure for malware
thesignal.watch has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 39 days
This website is very new and requires you to sign in with a Google account before showing any content, which is a common tactic used to collect account credentials.
Key findings:
- The domain was registered only 39 days ago
- The page forces a Google sign-in without providing any information about the service
- No public-facing content or company information is available
xtza.top has been flagged as dangerous by an automated scan.
- Confidence: 91/100
- Domain age: 146 days
This page is a scam attempting to trick you into giving away your personal information by promising free mobile data. It uses social engineering tactics to appear legitimate.
Key findings:
- The page promises free 50GB mobile data for Eid al-Fitr.
- It asks for your phone number and other personal information.
- The domain is classified as a 'Mobile Data Scam' and uses a high-risk domain extension.
latienditadere.com has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 27 days
This website is newly registered and displays a high-pressure sales popup that is inconsistent with the memorial content shown in the background.
Key findings:
- Domain is less than one month old
- Aggressive '50% OFF' popup with a 24-hour countdown timer
- Conflicting content between a memorial page and a retail shop
shrinkme.click has been flagged as suspicious by an automated scan.
- Confidence: 76/100
- Domain age: 165 days
This page is a monetized link shortener that uses deceptive 'Download' and 'Play' buttons to trick users into clicking advertisements.
Key findings:
- Deceptive 'Download Now' and 'Play Now' buttons are actually advertisements
- Forces users through multiple ad-heavy steps to reach a destination
- Uses unrelated filler text about credit cards to appear legitimate to search engines
- The domain is a known monetized shortener with a high risk of malvertising
vidara.to has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 43 days
This video hosting site displays a deceptive advertisement that mimics a system notification to encourage users to download unknown files.
Key findings:
- The page displays a 'Download is ready' pop-up designed to look like a system alert.
- The domain is relatively new, having been registered only 43 days ago.
- The site uses deceptive advertising tactics commonly associated with the distribution of unwanted software.
692174.xin has been flagged as dangerous by an automated scan.
- Confidence: 85/100
- Domain age: 0 days
This website is impersonating Intelcom to steal personal information. It uses a fake delivery failure notice to create urgency and is hosted on a suspicious, newly registered domain.
Key findings:
- Impersonates the Intelcom brand on an unrelated domain
- Uses a fake 'Action Required' notice to create urgency
- Domain was registered less than 24 hours ago
- Hosted on a high-risk .xin domain extension
clk.st has been flagged as dangerous by an automated scan.
- Confidence: 89/100
- Domain age: 69 days
This page is impersonating a delivery service and asks for personal information to pay a VAT & Duty fee. This is a common tactic used by scammers to steal your credentials or money.
Key findings:
- The page impersonates a delivery service called 'BUFFALO'.
- It asks for a 'pin' and 'expressnumber' to pay a VAT & Duty fee.
- The page is hosted on a file storage service (Backblaze B2), which is unusual for a legitimate payment portal.
org-chcqu.bond has been flagged as suspicious by an automated scan.
- Confidence: 65/100
- Domain age: 0 days
This website is suspicious because it uses a newly registered domain with a high-risk extension and contains random characters, and it immediately tries to download a file.
Key findings:
- Domain registered 0 days ago
- Uses a high-risk .bond domain extension
- Domain name contains gibberish characters
- The website immediately tries to download a file
labiadecachorro.com has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 13 days
This website uses a very new domain and makes vague promises about an AI service to improve social interactions, which is a common tactic for low-quality subscriptions or data collection.
Key findings:
- The domain was registered only 13 days ago
- The page uses vague, high-pressure language to encourage clicks
- The site lacks clear information about the company or service provider
thugamb.cc has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 0 days
The website automatically redirects to the official Google Chrome download page, but it uses a very new and unrelated domain name.
Key findings:
- The domain was registered very recently
- The website automatically redirects to a different service
- An unexpected 'Integrity error' alert was detected during loading
pl-38g1z.cfd has been flagged as dangerous by an automated scan.
- Confidence: 90/100
- Domain age: 0 days
This website is impersonating a known brand, OLX, by using a very similar web address. It was also registered very recently and uses a suspicious domain extension.
Key findings:
- Impersonates the brand 'olx'
- Domain registered today
- Uses a high-risk domain extension (.cfd)
maddixi.me has been flagged as dangerous by an automated scan.
- Confidence: 90/100
- Domain age: 111 days
This domain is being used for malicious purposes, specifically to redirect users to phishing sites and aggressive marketing pages through deceptive social media campaigns.
Key findings:
- Domain classified as potentially malicious for phishing and redirection.
- Admin note explicitly warns of confirmed malicious cloaking and phishing.
- Used in deceptive social media campaigns to hide malicious destinations.
- Exhibits characteristics of a 'throwaway' domain for scam operations.
thepufftray.com has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 30 days
This website is very new and uses aggressive sales tactics like 'HOT PRODUCT | LOW STOCK' and '100+ orders in the last 24 hours' to pressure visitors into buying products quickly.
Key findings:
- The website domain was registered only 30 days ago.
- The page uses high-pressure sales tactics like 'HOT PRODUCT | LOW STOCK' and '100+ orders in the last 24 hours'.
- The page offers significant discounts like 'SAVE 57%' and 'Buy 1 You save $40' on a new website.
e-commerce-isp.com has been flagged as dangerous by an automated scan.
- Confidence: 93/100
- Domain age: 153 days
This website is a fraudulent task-based scam that tricks users into paying 'upgrade fees' for fake earning opportunities.
Key findings:
- Promotes a 'VIP4 Upgrade' requiring a 5000 Rand fee
- Uses classic task-scam language like 'daily task commissions' and 'exclusive VIP benefits'
- Domain is specifically classified as an E-commerce Task Scam platform
- Visual layout mimics a mobile app designed to harvest payments from users
kexart.com has been flagged as suspicious by an automated scan.
- Confidence: 63/100
- Domain age: 151 days
This site is known for playing extremely loud and explicit audio without warning, and although it currently shows a 'Deployment Paused' message, it is still associated with a harmful prank.
Key findings:
- The domain is classified as a viral prank/shock site.
- The site is known to play loud, explicit audio that is difficult to stop.
- The page currently states 'Deployment Paused', but the domain remains active and the content could return.
gov-gnw.cc has been flagged as dangerous by an automated scan.
- Confidence: 94/100
- Domain age: 0 days
This website is a fake government page designed to steal your personal and financial information by claiming you have an unpaid toll charge.
Key findings:
- Impersonates the Michigan Department of State and Secretary of State
- Uses a deceptive web address that is not an official government domain
- Creates a false sense of urgency by demanding payment within 12 hours
clearwindridge.com has been flagged as suspicious by an automated scan.
- Confidence: 68/100
- Domain age: 38 days
This website is using cloaking techniques to hide its content from automated security scanners.
Key findings:
- The page displays a message indicating it has detected a proxy or scanner
- The website is hiding its actual content from review
- The domain was registered very recently (38 days ago)
rewardtime.us has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 20 days
This website is very new and offers a free gift card, which is a common tactic used in scams to trick people into giving away personal information.
Key findings:
- The website is only 20 days old.
- The page title offers a free $100 Sephora gift card.
ytcams.com has been flagged as suspicious by an automated scan.
- Confidence: 65/100
- Domain age: 121 days
This website uses deceptive tactics and adult-themed content to lure users into a series of questions, which is a common pattern for scams or unwanted subscriptions.
Key findings:
- The site uses a 'survey' or 'questionnaire' layout to create a false sense of exclusivity.
- The initial domain name appears to be automatically generated, which is often linked to malicious activity.
- The page uses suggestive imagery and claims of 'local' users to encourage clicks.