New Threats
Automatically posted alerts for newly registered domains found to be suspicious or dangerous.
spotisaver.net has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 174 days
This website claims to download music from Spotify but asks for your email address, which is unusual for a simple download service and could be used for unwanted marketing or phishing.
Key findings:
- The website is only 174 days old, which is relatively new.
- It claims to be a "Spotify to MP3 Downloader" but is not affiliated with Spotify.
- The site asks for your email address in a form, which is not necessary for a music download service.
maddixi.me has been flagged as dangerous by an automated scan.
- Confidence: 90/100
- Domain age: 108 days
This domain is confirmed to be used for malicious redirection and phishing, often cloaking dangerous links in social media scams.
Key findings:
- Domain classified as potentially malicious for phishing and redirection.
- Admin note confirms active involvement in deceptive social media campaigns.
- Functions as a malicious bridge to cloak final destinations of links.
- Exhibits characteristics of a 'throwaway' domain used for short-term scam operations.
cartaooocontinenteie.cyou has been flagged as dangerous by an automated scan.
- Confidence: 85/100
- Domain age: 66 days
This website is impersonating the Portuguese 'Cartão Continente' loyalty program to steal personal information.
Key findings:
- The domain name 'cartaooocontinenteie.cyou' is a clear imitation of the official brand
- The page uses the official 'Cartão Continente' logo and branding without authorization
- The site asks for your phone number to 'check points' on a non-official, recently registered domain
bookingil.com has been flagged as dangerous by an automated scan.
- Confidence: 90/100
- Domain age: 120 days
This website is impersonating 'booking.com' by using a similar-looking web address to trick visitors.
Key findings:
- Impersonates 'booking.com'
- Uses a deceptive web address (combosquatting)
googglemeetts.live has been flagged as dangerous by an automated scan.
- Confidence: 90/100
- Domain age: 34 days
This website is impersonating Google Meet by using a very similar web address. It was also registered very recently, which is a common tactic for scam sites.
Key findings:
- Impersonates Google Meet
- Domain registered only 34 days ago
- Uses a high-risk domain extension (.live)
stradaitalia.ink has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 1 days
This website was registered very recently and failed to load any content, which is often a sign of a temporary or malicious setup.
Key findings:
- The domain was registered only 1 day ago
- The website returned a 404 error and failed to display any content
- The server attempted to trigger a file download instead of showing a webpage
org-rgt.life has been flagged as suspicious by an automated scan.
- Confidence: 74/100
- Domain age: 0 days
This website was just registered and its address looks like a random jumble of letters combined with a legitimate abbreviation. The page returned an error, which is unusual for a legitimate site.
Key findings:
- Domain registered 0 days ago
- Domain name contains a random jumble of letters
- Domain name contains a legitimate abbreviation
- The page returned an error (404 Not Found)
myaadepay.vip has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 0 days
This website is very new and immediately tries to download a file when visited, which is unusual for a legitimate site.
Key findings:
- The website is only 0 days old.
- Visiting the site automatically triggers a download.
- The downloaded file is a plain text file, which is unexpected.
roblox.com.ly has been flagged as dangerous by an automated scan.
- Confidence: 95/100
- Domain age: 126 days
This domain is impersonating a well-known brand by using a similar name with a different country code, which is a common tactic for malicious websites.
Key findings:
- Confirmed impersonation of 'roblox'
- Uses a different top-level domain (.ly) to mimic the original brand
- Domain classified as potentially malicious
etcadminxiny.co has been flagged as suspicious by an automated scan.
- Confidence: 69/100
- Domain age: 0 days
- Submitted domain: did.li
Redirect chain:
- did.li
- etcadminxiny.co
This link uses a URL shortener to redirect to a newly registered domain that is currently displaying a server error page.
Key findings:
- Uses a URL shortener to hide the final destination
- Redirects to a domain registered less than 24 hours ago
- The final page is currently inaccessible, showing a timeout error
subjoin-kx.icu has been flagged as dangerous by an automated scan.
- Confidence: 90/100
- Domain age: 0 days
This website is impersonating Cash App, likely to trick you into giving up your personal information. It was just registered and uses a suspicious web address.
Key findings:
- Impersonates 'Cash App'
- Domain registered today
- Uses a high-risk web address ending in '.icu'
hplil.com has been flagged as suspicious by an automated scan.
- Confidence: 66/100
- Domain age: 162 days
This website is selling popular brand-name products at full price, but it is hosted on a very new domain that is not associated with any of those brands. This is a common tactic used by scam websites.
Key findings:
- The website is selling products from well-known brands like GoPro, CamelBak, and Trek.
- The domain "hplil.com" is only 162 days old.
- The domain "hplil.com" is not associated with any of the brands being sold.
hplil.com has been flagged as suspicious by an automated scan.
- Confidence: 66/100
- Domain age: 162 days
This website appears to be impersonating a legitimate outdoor sports gear retailer by using brand names like CamelBak, GoPro, and Trek, but it is hosted on a newly registered domain that is not associated with these brands.
Key findings:
- The website is hosted on a newly registered domain (162 days old) that is not associated with the brands it sells.
- The page title "Mountain Biking – Global Goods" suggests a generic e-commerce site, while the content lists specific branded products.
- The site lists high-value items like "Trek Session Carbon Mountain Bike" and "Santa Cruz V10 Mountain Bike" at full price, which is unusual for a potentially unauthorized reseller.
biniousdc.com has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 3 days
This website is very new and uses a page title that impersonates a well-known shopping brand, which is a common tactic used in scams.
Key findings:
- The website was registered only 3 days ago.
- The page title "AliaExpress" attempts to impersonate "AliExpress".
nova-gri.cc has been flagged as dangerous by an automated scan.
- Confidence: 80/100
- Domain age: 0 days
- Submitted domain: ln.run
Redirect chain:
- ln.run
- nova-gri.cc
This website is impersonating the Greek telecommunications provider Nova on a suspicious, newly registered domain to likely steal account credentials.
Key findings:
- The website uses the official Nova logo and branding but is hosted on an unrelated domain
- The destination domain was registered very recently
- The site uses a URL shortener to hide its true destination
collegeclubb.com has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 78 days
This website, which is very new, asks you to confirm your age to access adult content, which is a common tactic used by scam sites to bypass content filters or collect personal information.
Key findings:
- The website is only 78 days old.
- The page asks for age confirmation to access adult content.
- The page title is generic: "- Welcome".
collegebesties.com has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 87 days
This website appears to be promoting adult content and asks for age confirmation, which is suspicious given the domain's recent registration.
Key findings:
- The domain was registered only 87 days ago.
- The page content promotes 'hottest besties' and 'adult creator profiles'.
- It asks for age confirmation ('Yes, I'm 18+').
mydailysurgeonline.com has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 149 days
This page advertises a giveaway and asks for personal information like your email and zip code, but the domain is relatively new and not clearly associated with a legitimate brand offering such prizes.
Key findings:
- The page advertises an "iPhone 17 Pro Max Giveaway" and a "$1,000 Monthly Giveaway."
- The page asks for your email and zip code to enter the giveaway.
- The domain is only 149 days old, which is very new for a site running large giveaways.
- The page claims to be "My Daily Surge, an ad-supported web property of content, prizes and promotions" but this is not a well-known brand for giveaways.
evansphilpp.org has been flagged as dangerous by an automated scan.
- Confidence: 80/100
- Domain age: 13 days
- Submitted domain: beehiiv.com
Redirect chain:
- beehiiv.com
- emlnk.com
- activehosted.com
- shantherimahamaye.in
- evansphilpp.org
This website uses a fake verification screen to hide a phishing page designed to steal your personal information.
Key findings:
- The page uses a fake Cloudflare verification box to appear legitimate
- The final destination domain was registered only 13 days ago
- The link contains your email address, which is a common tactic used in targeted phishing attacks
shabakaty.cc has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 6 days
This website is very new and is attempting to automatically download an application file (.apk) without providing any information or context.
Key findings:
- The website was registered only 6 days ago
- The page attempts to download a file immediately upon visiting
- No visible content or information is provided to explain the download