New Threats
Automatically posted alerts for newly registered domains found to be suspicious or dangerous.
mrbeastsgifts.com has been flagged as dangerous by an automated scan.
- Confidence: 95/100
- Domain age: 26 days
This website is a confirmed scam impersonating MrBeast, designed to trick people into giving away their personal information through fake giveaways.
Key findings:
- Confirmed impersonation of MrBeast
- Classified as a fraudulent giveaway scam
- Admin note warns of high-risk phishing and lead-generation fraud
- Domain is very new (26 days old)
kexart.com has been flagged as suspicious by an automated scan.
- Confidence: 68/100
- Domain age: 149 days
This website is known as a "shock site" that plays extremely loud and explicit audio, making it difficult to close the browser tab. While not directly malicious, it is designed to cause distress and embarrassment.
Key findings:
- Domain classified as adult_content and Viral Prank / Shock Site
- Admin note describes the site as a "screamer" or nuisance prank site
- Site uses scripts to make the browser tab difficult to close or audio difficult to stop
conflrmsecurity.com has been flagged as dangerous by an automated scan.
- Confidence: 75/100
- Domain age: 14 days
This site is impersonating Bitcoin.com and instructing visitors to run a suspicious command in their terminal to "verify their device and prove ownership of the wallet." This command is likely malicious.
Key findings:
- The page title and content impersonate "Bitcoin.com" but the domain is "conflrmsecurity.com".
- The page instructs users to copy and paste a command into their terminal to "verify their device."
- The command provided is an obfuscated shell script that attempts to download and execute content from an external IP address.
lfi9d.vip has been flagged as dangerous by an automated scan.
- Confidence: 93/100
- Domain age: 67 days
This website is a fraudulent cryptocurrency platform that uses a random domain name and requires users to pay a deposit to access services.
Key findings:
- The site requires a 'deposit' to use its services, a common tactic in investment scams
- The domain name is a random string of characters (lfi9d.vip)
- The page uses vague language and immediate prompts to log in or pay fees
rippleplays.shop has been flagged as suspicious by an automated scan.
- Confidence: 65/100
- Domain age: 23 days
This website appears to be an unauthorized sports streaming site, which often carries risks of malicious advertisements or deceptive links.
Key findings:
- The domain is very new, registered only 23 days ago
- Uses a high-risk '.shop' domain for a video streaming page
- Displays a live sports broadcast from an unofficial source
- Contains technical errors and mixed content typical of low-quality streaming sites
john-mary-jewelry.com has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 16 days
This website is offering all its jewelry for free, which is a common tactic used in scams to collect personal information or shipping fees without delivering any products.
Key findings:
- The website claims to be giving away all its products for free due to a 'closure sale'.
- The domain is very new, registered only 16 days ago, which is often seen with scam websites.
yz8.game has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 11 days
- Submitted domain: bit.ly
Redirect chain:
- bit.ly
- yz8.game
This website is a newly registered gambling platform that uses aggressive financial incentives and referral bonuses to attract users.
Key findings:
- The website was registered only 11 days ago
- Uses a URL shortener to hide the final destination
- Promotes high cash rewards for inviting new users
- Displays typical patterns of high-risk unregulated gambling sites
kexart.com has been flagged as suspicious by an automated scan.
- Confidence: 68/100
- Domain age: 149 days
This website is known as a viral prank or shock site that plays extremely loud and explicit audio. Although the site currently shows a "Deployment Paused" message, its history and classification indicate a high potential for disruptive content.
Key findings:
- Classified as a viral prank/shock site
- Known to play loud, sexually explicit audio
- Admin note warns of significant risk in public or professional settings
- Site currently shows a "Deployment Paused" message
vireora.com has been flagged as suspicious by an automated scan.
- Confidence: 65/100
- Domain age: 57 days
This website is very new and asks for personal information, which is a common tactic used by scammers. It's best to avoid entering any details here.
Key findings:
- The website is only 57 days old.
- The page contains a form that asks for credentials.
kexart.com has been flagged as suspicious by an automated scan.
- Confidence: 68/100
- Domain age: 149 days
This website is known as a "shock site" that plays extremely loud and explicit audio, making it difficult to close the browser tab. While the content is currently paused, the domain itself is classified as a viral prank site.
Key findings:
- Domain classified as a Viral Prank / Shock Site
- Admin note describes the site as a "screamer" or nuisance prank site
- Site uses scripts to make the browser tab difficult to close or audio difficult to stop (though currently paused)
vik1ngfile.site has been flagged as dangerous by an automated scan.
- Confidence: 85/100
- Domain age: 118 days
This website, which appears to be a file-sharing service, has been flagged by our security team for suspicious activity, including being promoted through spam and lacking basic security measures for uploaded files. It is highly recommended to avoid downloading anything from this site.
Key findings:
- The domain uses a high-risk top-level domain (.site).
- Our security team has issued a DANGER-level alert due to suspicious engagement patterns and promotion via spam.
- The site lacks security features like file sandboxing or malware scanning.
- The service operates with anonymous hosting, meaning there is no clear accountability.
kexart.com has been flagged as suspicious by an automated scan.
- Confidence: 68/100
- Domain age: 149 days
This website is known as a "shock site" that plays extremely loud and explicit audio, which can be disruptive and embarrassing, especially in public or professional settings. Although the site currently shows a "Deployment Paused" message, its history and classification indicate it is designed for harmful pranks.
Key findings:
- Domain is classified as an adult content and viral prank/shock site.
- Admin notes warn of loud, sexually explicit audio and browser persistence issues.
- The site is designed to cause social embarrassment or distress.
- Current page states "Deployment Paused", but the domain remains active and content may be restored.
org-bcsdf.bond has been flagged as suspicious by an automated scan.
- Confidence: 65/100
- Domain age: 0 days
This website was registered very recently and failed to load any content, which is often a sign of a temporary or deceptive link used in scams.
Key findings:
- The domain was registered less than 24 hours ago
- The website uses a high-risk '.bond' web address
- The page failed to display any legitimate content or information
shrinkme.click has been flagged as suspicious by an automated scan.
- Confidence: 76/100
- Domain age: 163 days
This page is a monetized link shortener that uses deceptive 'Download' and 'Play' buttons to trick users into clicking advertisements before reaching their destination.
Key findings:
- Uses deceptive 'Download Now' and 'Play Now' buttons that are likely advertisements
- Forces users to interact with a captcha and multiple ads to proceed
- Domain is known for aggressive advertising and potential malvertising
- The URL path suggests adult content, which is often used as clickbait for scams
strokovagalleryandart.online has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 52 days
This website, despite appearing to be an art gallery, is hosted on a very new domain with a high-risk extension and asks for personal information through multiple forms.
Key findings:
- The website is only 52 days old and uses a high-risk domain extension (.online).
- The page contains multiple forms that ask for personal information like email and name.
- The content mentions a gallery founded in 1965, but the domain is very new, which is a contradiction.
myinvestor-portalclientes.com has been flagged as suspicious by an automated scan.
- Confidence: 65/100
- Domain age: 0 days
This website was registered very recently and uses a name that looks like it's trying to imitate a legitimate financial institution. The page content also suggests a verification process, which is often used in phishing scams.
Key findings:
- Domain registered 0 days ago
- Domain name contains 'myinvestor-portalclientes'
- Page title is 'Verificación'
- Page text mentions 'procesando tu acceso de forma segura' and 'Estableciendo conexión segura'
retratosluna.site has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 178 days
This page, hosted on a relatively new and high-risk domain, promises a 'Soulmate Portrait' and prompts for a download, which is a common tactic used in scams.
Key findings:
- The domain is new and uses a high-risk TLD (.site).
- The page offers a 'Soulmate Portrait' and prompts for a download.
- The content suggests a social engineering tactic to induce a download.
org-qwmbky.life has been flagged as suspicious by an automated scan.
- Confidence: 65/100
- Domain age: 0 days
This website address appears to be randomly generated and was registered very recently, which are common characteristics of malicious sites. Additionally, it immediately attempts to download a file.
Key findings:
- The website address 'org-qwmbky.life' looks like random characters.
- The website was registered today.
- The page immediately tries to download a file.
shrinkme.click has been flagged as suspicious by an automated scan.
- Confidence: 76/100
- Domain age: 163 days
This page is a monetized link shortener that uses deceptive 'Download' and 'Play' buttons to trick you into clicking advertisements before reaching your destination.
Key findings:
- Uses fake 'Download Now' and 'Play Now' buttons to serve ads
- Forces users through multiple redirects and captchas
- Domain is flagged for aggressive malvertising and poor user safety
- The link path suggests adult content which is often used as clickbait for scams
roblox.com.gl has been flagged as dangerous by an automated scan.
- Confidence: 95/100
- Domain age: 25 days
This website is impersonating Roblox, a popular gaming platform, to trick users. It is likely used for scams and to redirect people to harmful content.
Key findings:
- Impersonates 'roblox' using a similar web address.
- Classified as potentially malicious for phishing and impersonation.
- The domain is very new, registered only 25 days ago.