DomainMediumSignal 0/100
dns.nextdns.io
First Seen
Jan 29, 2026
Last Seen
Jan 29, 2026
Found in 2 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags
Feed Intelligence Summary
2 reports0% confidence
2
Source reports
0%
Confidence score
Category tags
indicatornetworkresearched
Activity Timeline
Jan 29Jan 29
Threat Activity Heatmap
· Peak: 2026-01-29LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated
The domain **dns.nextdns.io** has emerged as a notable indicator of compromise (IOC) in recent threat intelligence reports, specifically observed on January
Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
2
Reports
First seenJan 29, 2026
Last seenJan 29, 2026
VirusTotal
Not checked
WHOIS
- registrar
- Cloudflare, Inc
- creation date
- 2019-03-06T14:22:38
- expiration date
- 2027-03-06T14:22:38
- updated date
- 2026-02-09T04:04:01
- name servers
- dawn.ns.cloudflare.com, lee.ns.cloudflare.com
- status
- clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 4 months ago · Last seen 4 months ago
Appeared in 2 threat reports