New Threats

tsk.re has been flagged as suspicious by an automated scan.

• Confidence: 69/100
• Domain age: 35 days

This website is impersonating Nextcloud, a legitimate file hosting service, and is asking for login credentials on a newly registered domain that is not associated with Nextcloud.

Key findings:

• The page title and visible text claim to be 'Nextcloud'.
• The page contains a login form asking for username and password.
• The domain 'nc.tsk.re' is newly registered (35 days old) and is not the official Nextcloud domain.

influencerplatform.app has been flagged as suspicious by an automated scan.

• Confidence: 60/100
• Domain age: 17 days

This page asks for extensive personal information on a very new domain that is not officially associated with the brand it claims to represent.

Key findings:

• The page asks for your first name, last name, email, phone, date of birth, and full address.
• The website domain is only 17 days old.
• The domain 'influencerplatform.app' is not the official website for SKIMS, despite the page mentioning 'SKIMS Partner Community'.

effectivegatecpm.com has been flagged as dangerous by an automated scan.

• Confidence: 90/100
• Domain age: 160 days

This domain is being used for malicious redirects and phishing, often trying to trick security systems by redirecting to legitimate sites or showing different content to scanners than to real users.

Key findings:

• Domain is classified as potentially malicious with a DANGER-level admin note.
• Confirmed use of redirect cloaking to bypass security scanners.
• Reports of phishing content hosted on sub-paths of this domain.
• High traffic rank for a very young domain, which is typical for large-scale malicious schemes.

flaxmovies.online has been flagged as suspicious by an automated scan.

• Confidence: 60/100
• Domain age: 98 days

This website offers free streaming of copyrighted movies and TV shows, which is a common tactic used to lure users into clicking malicious advertisements or downloading harmful software.

Key findings:

• Offers free streaming of copyrighted content without authorization
• Uses a newly registered domain with a high-risk extension
• Potential for deceptive advertisements or malicious redirects when interacting with the player

canadianbreadsettlement.top has been flagged as suspicious by an automated scan.

• Confidence: 65/100
• Domain age: 1 days

This website was registered very recently and failed to load any content, which is often a sign of a temporary or deceptive site.

Key findings:

• The domain was registered only 1 day ago
• Uses a high-risk .top domain extension
• The page failed to display any content or information

gov-sjc.life has been flagged as dangerous by an automated scan.

• Confidence: 80/100
• Domain age: 0 days

This website impersonates the Florida Department of Highway Safety and Motor Vehicles to collect personal information through a form, despite being hosted on a newly registered, suspicious domain.

Key findings:

• The website's title and content impersonate the Florida Department of Highway Safety and Motor Vehicles.
• The domain is newly registered and appears to be a random string of characters, which is highly suspicious.
• The page contains a form that could be used to collect personal information.

vaultixglobal.com has been flagged as dangerous by an automated scan.

• Confidence: 95/100
• Domain age: 167 days

This website is impersonating a banking platform and asks for your login credentials on a domain that has been classified as potentially malicious.

Key findings:

• The website is classified as potentially malicious.
• The page title and content claim to be a 'Secure Banking Platform' named 'Vaultix Group'.
• The page asks for your email and password.
• The domain 'vaultixglobal.com' is not associated with a legitimate banking institution.

spotisaver.net has been flagged as suspicious by an automated scan.

• Confidence: 60/100
• Domain age: 174 days

This website claims to download music from Spotify but asks for your email address, which is unusual for a simple download service and could be used for unwanted marketing or phishing.

Key findings:

• The website is only 174 days old, which is relatively new.
• It claims to be a "Spotify to MP3 Downloader" but is not affiliated with Spotify.
• The site asks for your email address in a form, which is not necessary for a music download service.

maddixi.me has been flagged as dangerous by an automated scan.

• Confidence: 90/100
• Domain age: 108 days

This domain is confirmed to be used for malicious redirection and phishing, often cloaking dangerous links in social media scams.

Key findings:

• Domain classified as potentially malicious for phishing and redirection.
• Admin note confirms active involvement in deceptive social media campaigns.
• Functions as a malicious bridge to cloak final destinations of links.
• Exhibits characteristics of a 'throwaway' domain used for short-term scam operations.

cartaooocontinenteie.cyou has been flagged as dangerous by an automated scan.

• Confidence: 85/100
• Domain age: 66 days

This website is impersonating the Portuguese 'Cartão Continente' loyalty program to steal personal information.

Key findings:

• The domain name 'cartaooocontinenteie.cyou' is a clear imitation of the official brand
• The page uses the official 'Cartão Continente' logo and branding without authorization
• The site asks for your phone number to 'check points' on a non-official, recently registered domain

bookingil.com has been flagged as dangerous by an automated scan.

• Confidence: 90/100
• Domain age: 120 days

This website is impersonating 'booking.com' by using a similar-looking web address to trick visitors.

Key findings:

• Impersonates 'booking.com'
• Uses a deceptive web address (combosquatting)

googglemeetts.live has been flagged as dangerous by an automated scan.

• Confidence: 90/100
• Domain age: 34 days

This website is impersonating Google Meet by using a very similar web address. It was also registered very recently, which is a common tactic for scam sites.

Key findings:

• Impersonates Google Meet
• Domain registered only 34 days ago
• Uses a high-risk domain extension (.live)

stradaitalia.ink has been flagged as suspicious by an automated scan.

• Confidence: 60/100
• Domain age: 1 days

This website was registered very recently and failed to load any content, which is often a sign of a temporary or malicious setup.

Key findings:

• The domain was registered only 1 day ago
• The website returned a 404 error and failed to display any content
• The server attempted to trigger a file download instead of showing a webpage

org-rgt.life has been flagged as suspicious by an automated scan.

• Confidence: 74/100
• Domain age: 0 days

This website was just registered and its address looks like a random jumble of letters combined with a legitimate abbreviation. The page returned an error, which is unusual for a legitimate site.

Key findings:

• Domain registered 0 days ago
• Domain name contains a random jumble of letters
• Domain name contains a legitimate abbreviation
• The page returned an error (404 Not Found)

myaadepay.vip has been flagged as suspicious by an automated scan.

• Confidence: 60/100
• Domain age: 0 days

This website is very new and immediately tries to download a file when visited, which is unusual for a legitimate site.

Key findings:

• The website is only 0 days old.
• Visiting the site automatically triggers a download.
• The downloaded file is a plain text file, which is unexpected.

roblox.com.ly has been flagged as dangerous by an automated scan.

• Confidence: 95/100
• Domain age: 126 days

This domain is impersonating a well-known brand by using a similar name with a different country code, which is a common tactic for malicious websites.

Key findings:

• Confirmed impersonation of 'roblox'
• Uses a different top-level domain (.ly) to mimic the original brand
• Domain classified as potentially malicious

etcadminxiny.co has been flagged as suspicious by an automated scan.

• Confidence: 69/100
• Domain age: 0 days
• Submitted domain: did.li

Redirect chain:

1. did.li
2. etcadminxiny.co

This link uses a URL shortener to redirect to a newly registered domain that is currently displaying a server error page.

Key findings:

• Uses a URL shortener to hide the final destination
• Redirects to a domain registered less than 24 hours ago
• The final page is currently inaccessible, showing a timeout error

subjoin-kx.icu has been flagged as dangerous by an automated scan.

• Confidence: 90/100
• Domain age: 0 days

This website is impersonating Cash App, likely to trick you into giving up your personal information. It was just registered and uses a suspicious web address.

Key findings:

• Impersonates 'Cash App'
• Domain registered today
• Uses a high-risk web address ending in '.icu'

hplil.com has been flagged as suspicious by an automated scan.

• Confidence: 66/100
• Domain age: 162 days

This website is selling popular brand-name products at full price, but it is hosted on a very new domain that is not associated with any of those brands. This is a common tactic used by scam websites.

Key findings:

• The website is selling products from well-known brands like GoPro, CamelBak, and Trek.
• The domain "hplil.com" is only 162 days old.
• The domain "hplil.com" is not associated with any of the brands being sold.

hplil.com has been flagged as suspicious by an automated scan.

• Confidence: 66/100
• Domain age: 162 days

This website appears to be impersonating a legitimate outdoor sports gear retailer by using brand names like CamelBak, GoPro, and Trek, but it is hosted on a newly registered domain that is not associated with these brands.

Key findings:

• The website is hosted on a newly registered domain (162 days old) that is not associated with the brands it sells.
• The page title "Mountain Biking – Global Goods" suggests a generic e-commerce site, while the content lists specific branded products.
• The site lists high-value items like "Trek Session Carbon Mountain Bike" and "Santa Cruz V10 Mountain Bike" at full price, which is unusual for a potentially unauthorized reseller.