New Threats
Automatically posted alerts for newly registered domains found to be suspicious or dangerous.
org-gixhj.bond has been flagged as suspicious by an automated scan.
- Confidence: 74/100
- Domain age: 0 days
This website is highly suspicious because it was just registered, uses a high-risk domain extension, and immediately tries to download a file to your device.
Key findings:
- Domain registered 0 days ago
- Uses a high-risk domain extension (.bond)
- Website immediately tries to download a file
org-gixhj.bond has been flagged as suspicious by an automated scan.
- Confidence: 65/100
- Domain age: 0 days
This website is suspicious because it was recently registered, has a gibberish name, and immediately tries to download a file.
Key findings:
- The domain name appears to be randomly generated and was registered today.
- The website uses a high-risk domain extension (.bond).
- The page immediately attempts to download a file.
smartphone-promo.com has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 93 days
This website redirected to a different domain that is hosting what appears to be a fake product review page, which is often used in scams.
Key findings:
- The original URL redirected to a completely different domain.
- The landing page is a product review for a phone, which is not related to the original URL's implied purpose.
- The landing page contains forms that collect personal information.
nowplaytoc.com has been flagged as suspicious by an automated scan.
- Confidence: 76/100
- Domain age: 161 days
This page claims a link has expired but contains technical signals often associated with malicious sites, such as blocking browser developer tools.
Key findings:
- The domain is classified as potentially malicious
- The website actively attempts to block browser inspection tools
- The page displays a generic 'link expired' message with an encoded tracking string
host25v.cfd has been flagged as suspicious by an automated scan.
- Confidence: 73/100
- Domain age: 12 days
This website is flagged as suspicious due to its very recent registration and the use of a high-risk domain extension often associated with malicious activity.
Key findings:
- The domain was registered only 12 days ago
- Uses a high-risk domain extension (.cfd) frequently used for scams
- The page failed to load any content, which can be a sign of a temporary or hidden malicious site
shrinkme.click has been flagged as suspicious by an automated scan.
- Confidence: 76/100
- Domain age: 164 days
This page is a monetized link shortener that uses deceptive 'Download' and 'Play' buttons to trick you into clicking advertisements.
Key findings:
- Deceptive 'Download Now' and 'Play Now' buttons are actually advertisements
- Forces users through multiple ads and captchas to reach a destination
- High risk of encountering malvertising or unwanted software
- Uses a high-risk .click domain associated with aggressive monetization
shrinkme.click has been flagged as suspicious by an automated scan.
- Confidence: 76/100
- Domain age: 164 days
This page is a monetized link shortener that uses aggressive advertising and deceptive buttons to generate revenue before sending you to your destination.
Key findings:
- Uses deceptive 'Download Now' and 'Play Now' buttons that are actually advertisements
- Forces users to solve a captcha and view ads to proceed
- Domain is known for aggressive redirection and potential malvertising
- High-risk .click domain extension often used for spam
retora.io has been flagged as suspicious by an automated scan.
- Confidence: 69/100
- Domain age: 10 days
This website, which claims to be a cryptocurrency exchange, is hosted on a very new domain and asks for user information through a form, which is a common tactic used by scam sites.
Key findings:
- The domain was registered only 10 days ago.
- The page claims to be a cryptocurrency exchange, a common theme for financial scams.
- The page contains a form that could be used to collect user data.
retora.io has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 10 days
This website, which claims to be a cryptocurrency exchange, was registered very recently and asks for personal information through a form. This combination of newness and financial interaction is often seen in scams.
Key findings:
- The website was registered only 10 days ago.
- The page claims to be a cryptocurrency exchange offering trading and earning opportunities.
- The page contains a form that could be used to collect user information.
pesolutions.co.in has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 2 days
This website, which is very new, claims to offer work-from-home writing jobs and asks for your email address, but it does not provide clear details about the company or how the jobs work.
Key findings:
- The website is only 2 days old.
- It claims to offer 'easy money' for 'simple writing work' from home.
- The site asks for an email address without clearly explaining the job or company.
- It mentions connecting on WhatsApp for registration details, which is unusual for legitimate job applications.
shrinkme.click has been flagged as suspicious by an automated scan.
- Confidence: 76/100
- Domain age: 164 days
This website is a monetized URL shortener that forces users to view multiple advertisements before reaching their intended destination, which can lead to deceptive content and a poor user experience.
Key findings:
- The domain is a monetized URL shortener.
- It uses a high-risk domain extension (.click).
- The service is known for aggressive advertising and potential malvertising.
ceopyy.org has been flagged as dangerous by an automated scan.
- Confidence: 80/100
- Domain age: 0 days
This website is impersonating Google Maps on an unrelated and very new domain, which is a common tactic for phishing or spreading malware.
Key findings:
- The website uses Google Maps branding and layout on an unrelated domain (ceopyy.org)
- The domain was registered today, which is a high-risk signal
- The page title and visual content are designed to deceive users into thinking they are on an official Google site
mpayments.vc has been flagged as suspicious by an automated scan.
- Confidence: 70/100
- Domain age: 66 days
This website is very new and asks for your login details. It claims to be a payment service, but its recent creation date makes it risky to trust with sensitive information.
Key findings:
- The website is only 66 days old.
- The page asks for your username and password.
- The domain name 'mpayments.vc' is not widely recognized for payment processing.
shrinkme.click has been flagged as suspicious by an automated scan.
- Confidence: 76/100
- Domain age: 164 days
This page is a monetized link shortener that uses deceptive 'Download' and 'Play' buttons to trick users into clicking advertisements.
Key findings:
- Uses deceptive advertising buttons designed to look like system functions
- Forces users through multiple ad-heavy pages before reaching a destination
- Domain is associated with high-risk advertising networks and potential malvertising
- The link path suggests adult content which is often used as clickbait for scams
shrinkme.click has been flagged as suspicious by an automated scan.
- Confidence: 76/100
- Domain age: 164 days
This page is a monetized link shortener that uses deceptive 'Download' and 'Play' buttons to trick users into clicking advertisements before reaching their destination.
Key findings:
- Uses deceptive 'Download Now' and 'Play Now' buttons that are actually advertisements
- Forces users to interact with multiple ads and a captcha to proceed
- Domain is flagged for aggressive advertising and potential malvertising risks
- Content includes generic filler text about data recovery to appear legitimate
lensvade.com has been flagged as dangerous by an automated scan.
- Confidence: 90/100
- Domain age: 24 days
This website is designed to trick people into thinking it can view Snapchat profiles, but it is actually a scam that tries to get you to complete tasks, which could lead to malware or information theft.
Key findings:
- Website pretends to be a Snapchat profile viewer or hacking tool.
- Uses fake Snapchat branding and claims to be from 'NSO Team'.
- Admin note confirms it's a deceptive tool and likely a scam.
- The domain is very new, registered only 24 days ago.
vidara.to has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 42 days
This page, hosted on a relatively new video streaming domain, displays a prominent 'Download file' button and mentions 'Pulsz Live', which could be an attempt to impersonate a known brand or service.
Key findings:
- The page title and visible text mention 'Pulsz Live', which may be an impersonation attempt.
- The page prominently features a 'Download file' button, which could lead to unwanted software.
- The domain is only 42 days old, which is a common characteristic of suspicious sites.
coinbct.com has been flagged as suspicious by an automated scan.
- Confidence: 60/100
- Domain age: 129 days
The main domain exists, but this specific address does not. This can happen when a malicious page has been taken down — but the link is still being shared.
Key findings:
- This specific address does not exist
- Domain registered 129 day(s) ago
- Registered via Amazon Registrar, Inc.
trippi.st has been flagged as dangerous by an automated scan.
- Confidence: 75/100
- Domain age: 99 days
This website appears to be selling illegal drugs online and asks for personal information. Engaging with this site could lead to legal trouble or financial harm.
Key findings:
- The page title is "Trippi - Buy Psychedelic Medicine Online In Canada".
- The website openly advertises the sale of substances like MDMA, Cocaine, and Psilocybin.
- The site includes forms that collect personal identifying information (PII).
shrinkme.click has been flagged as suspicious by an automated scan.
- Confidence: 76/100
- Domain age: 164 days
This page is a monetized link shortener that uses deceptive 'Download' and 'Play' buttons to trick you into clicking advertisements.
Key findings:
- Deceptive 'Download Now' and 'Play Now' buttons are actually advertisements
- Forces users through multiple ads and captchas to reach a destination
- Uses a high-risk .click domain associated with aggressive advertising
- Content includes generic filler text about data recovery to appear legitimate