ScanMalware.com

Security Scan Report: ydx2mrp.idolladysfever.com

Submitted: Mar 26, 2026, 8:26:25 PMCompleted: Mar 26, 2026, 8:27:38 PMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 3 domains to perform 24 HTTP transactions. The main domain is ydx2mrp.idolladysfever.com and was registered NaN years ago.

Submitted URL: https://ydx2mrp.idolladysfever.com/r2vptl6?fbclid=PAb21jcAQydQtleHRuA2FlbQIxMQBzcnRjBmFwcF9pZA81NjcwNjczNDMzNTI0MjcAAadC1PHXzHr3ViFgrR_0NVg_HnrCbnYKIZZ1ufigLu3MjikUD1omEj7XDDY9QA_aem_ikbLhOZo4qRBKMNvA1sQcg

AI Security Verdict

Confirmed Scam

Confidence: 92%

9
Risk Score

Site is malicious with confirmed scam indicators; do not engage or provide any data.

Risk Factors
Malicious Indicators of Compromise match on primary domain
Circular redirect (URL manipulation)
Unranked domain with recent registration
Suspicious page title implying deceptive content
Domain age information unavailable

Details

Page Title

Are you looking for hot dates in Falkenstein?

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

adult content

(45%)

Domain Information

The domain name 'ydx2mrp.idolladysfever.com' uses the commercial generic top-level domain (.com) with subdomain 'ydx2mrp'. The second-level label 'idolladysfever' is 14 characters long with five vowels and nine consonants. Breaking it apart gives 4 words: idol, lady, s, fever. Expect four characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://ydx2mrp.idolladysfever.com/r2vptl6?fbclid=PAb21jcAQydQtleHRuA2FlbQIxMQBzcnRjBmFwcF9pZA81NjcwNjczNDMzNTI0MjcAAadC1PHXzHr3ViFgrR_0NVg_HnrCbnYKIZZ1ufigLu3MjikUD1omEj7XDDY9QA_aem_ikbLhOZo4qRBKMNvA1sQcg

Page Load Overview

1.00s
Total Load Time
24
HTTP Requests
3
Domains
789 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:722 chars
Detector Agreement:67%

Website Classification

Primary Category

adult content45% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

adult content
45%
social media network
26%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6172.67.215.107United States
AS13335Cloudflare, Inc.
6104.21.61.218United States
AS13335Cloudflare, Inc.
6172.217.16.202United States
AS15169Google LLC
6136.243.216.252Falkenstein, Saxony, Germany
AS24940Hetzner Online GmbH
244--

Detected Technologies4

HTTP/3
40%
Cloudflare Bot Management
40%
Cloudflare
40%
jQuery
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T181025305CA0E894E423312DAA1BFE74CD4BF9DA4D212889CB6FE06A647D6F4D0227DD1

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:6aQ7wt7KgYcQKP0rBC+ZRxe49w5Cj0iGRom3p6MVCLkxpNAiNATNAsNAlNAxxUvJ:LuFKYbECAV3p6MVCLUNTNiNlNsN1

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:8753:VC1jBkaQBAdFiR+YhkQKMEggSFIUjmYaMAAIARAiLKAC9FpHhhbfKAK8lJkkRCCQCmCIQAAiyqjox0SOHBMOihh3MCWAlHCY

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data