ScanMalware.com

Security Scan Report: adfdf99.cc

Site favicon
Submitted: Oct 16, 2025, 5:38:10 PMCompleted: Oct 16, 2025, 5:38:49 PMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 4 countries across 4 domains to perform 27 HTTP transactions. The main domain is adfdf99.cc and was registered NaN years ago.

Submitted URL: http://adfdf99.cc/Login/register/Lang/en-us

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

New, unranked domain with credential‑harvesting form and circular redirects – confirmed phishing scam.

Risk Factors
Extremely new domain (<7 days) with credential collection
Circular redirect indicating URL manipulation
Multiple password fields, including disguised and hidden ones
Unicode characters used to evade detection
Domain age information unavailable

Details

Page Title

BEX

Scan Type

public

Language

🇺🇸

English

(36% confidence)

Category

finance banking

(65%)

Domain Information

The domain name 'adfdf99.cc' uses the .cc country-code top-level domain. The second-level label 'adfdf99' is 7 characters long containing one vowel alongside 4 consonants, plus two digits. Tokenizing the label suggests 3 words: ad, fdf, 99. Expect two characters per word on average. Most frequently, 'ad' shows up in Italian. You will also see it in Danish and Icelandic contexts. Net impression: Italian phrase with character flair.

Screenshot

Security scan screenshot of http://adfdf99.cc/Login/register/Lang/en-us

Page Load Overview

18.12s
Total Load Time
27
HTTP Requests
4
Domains
141 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:36%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:36%
Script Type:Latin
Text Length:316 chars
Detector Agreement:50%

All Detected Languages

🇺🇸en(100%)🇨🇳zh(0%)

Website Classification

Primary Category

finance banking65% confidence
Type: webapp
Method: ml+structural

All Detected Categories

finance banking
65%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7104.16.174.226United States
AS13335CLOUDFLARENET
2142.250.185.234United States
AS15169GOOGLE
2104.16.175.226United States
AS13335CLOUDFLARENET
2134.122.189.6Singapore
AS152194CTG Server Limited
2192.229.87.233Singapore, Singapore
AS138995Antbox Networks Limited
22606:4700::6810:afe2United States
AS13335CLOUDFLARENET
2118.107.44.62Singapore
AS152194CTG Server Limited
2134.122.173.178Singapore
AS152194CTG Server Limited
22606:4700::6810:aee2United States
AS13335CLOUDFLARENET
22a00:1450:4001:813::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
2711--

Detected Technologies2

PasswordField
100%
JQueryv1.9.1
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19EF29824D3D2483A642392D4ABB17B16B9B6560BCA0AC5007BFD1770BFC6F9968375CC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:9fbXLq3oKfYQpwQkUJNpkBKYSdvYnrYrJA+IFS5IF4UAyEvm01k/uo+QUs15hha2:h8wgLOUVgjUGhUpexDAC7

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:35787:hSDNgLDNHAQQCUw5kKGAKRzkgIARYpcFQjcARAIKC4TKEabhxqhiCABcETQACAKENzwiGSjGTApFkgHwm6kIqhCQEABGA3Mw

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffefffffffe7ff
Perceptual Hash:a3496f664d634d23
Difference Hash:4b000c18100c4d00
Wavelet Hash:00dfc4c40707070f
Color Hash:#53ac8d

Other Hashes

Crop Resistant:000c0c10100c4d00,01a0034b2b130000

Scan History

Scan history not available

Unable to load historical scan data