ScanMalware.com

Security Scan Report: fermilon.ru

Redirected to: https://dmp.mpsuadv.ru/matching?pid=9&id=60cc135d-d3f3-4d5e-4068-0c71dbe54570

Site favicon
Submitted: Dec 26, 2025, 7:00:39 PMCompleted: Dec 26, 2025, 7:04:50 PMpubliccompleted
Loading additional data...

Summary

This website contacted 31 IPs in 4 countries across 39 domains to perform 129 HTTP transactions. The main domain is dmp.mpsuadv.ru.

Submitted URL: https://fermilon.ru

Effective URL: https://dmp.mpsuadv.ru/matching?pid=9&id=60cc135d-d3f3-4d5e-4068-0c71dbe54570Redirected

AI Security Verdict

High Risk

Confidence: 85%

9
Risk Score

Site shows multiple malicious Indicators of Compromise and is newly created; treat as high‑risk and do not use.

Risk Factors
Presence of a known malicious external domain (a11ybar.com)
Newly registered, unaged domain
Unranked domain with no reputation
Redirect chain to another suspicious domain
Lack of legitimate content (HTTP 204) suggests hidden malicious activity
Domain age information unavailable

Details

Page Title

Фермилон: дача, сад, огород, фермерство, земледелие

Scan Type

public

Domain Information

Domain 'fermilon.ru' uses the Russian country-code top-level domain (.ru). The core label 'fermilon' covers 8 characters holding 3 vowels versus 5 consonants. Tokenizing the label suggests 2 words: fermi, lon. Expect four characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://fermilon.ru

Page Load Overview

249.42s
Total Load Time
129
HTTP Requests
0
Domains
N/A
Total Size

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3145.130.41.69St Petersburg, St.-Petersburg, Russia
AS198610Beget LLC
1837.9.64.225Russia
AS13238YANDEX LLC
590.156.170.209Russia
AS198610Beget LLC
5193.3.184.76Russia
AS50214QWARTA LLC
4193.3.184.133Russia
AS50214QWARTA LLC
4172.67.136.238United States
AS13335CLOUDFLARENET
431.129.109.116St Petersburg, St.-Petersburg, Russia
AS198610Beget LLC
493.158.134.118Russia
AS13238YANDEX LLC
487.250.250.119Russia
AS13238YANDEX LLC
4195.209.109.11Russia
AS52007LLC AdRiver
031--

Detected Technologies2

Open-Graph-Protocolvwebsite
100%
WordPress
75%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T133B45DB2A84120DF631BC5A9D6C07B7C717DE217DA220DDEF29A762D8FC5FD62061608

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:wKd+qAx89JaIZAU7sQNk6hNO6S/g8jBuUbJ6IIVrrm0UeagUNNXr:jXg89yuCDgUNNb

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:512454:Ic0QIKAQBM9goC6EASoQIyoTA4oCBiBAIiA4FRFKAEEAMYzEVxIEBOmAkAHKYSpmomCJukIVJQCQIVhEYciQiUELAABVJQ5U

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data