Potentially Malicious Activity
d-f.pw
"It attempts to impersonate YouTube by including "youtube.com" in the path while being hosted on a completely unrelated and suspicious domain (a34140-7a77.k.d-f.pw). This pattern is consistent with phishing attempts. Additionally, the domain utilizes a high-risk TLD (.pw) commonly associated with spam or malware."
Note: This finding is based on scans of specific URLs on the domain, not necessarily the root domain itself.
URLert analyzed recent scan activity for d-f.pw and found 2 results.
| Status | Target URL | Time |
|---|---|---|
| Malicious | http://a34140-7a77.k.d-f.pw/youtube.com/shorts/MRzXWqnzg | 2w ago |
| Suspicious | https://a34140-7a77.k.d-f.pw/vm.tiktok.com/ZkBbI8aD6 | 2mo ago |
Historical and current IP address mappings for this domain.
| IP Address / Infrastructure | Status | Subdomains | Last Seen |
|---|---|---|---|
RU-JSCIOT JSC IOT (AS29182) | Active | a34140-7a77.k.d-f.pw | 1 day ago |
SELECTEL JSC Selectel (AS49505) | Degraded | a34140-7a77.k.d-f.pw d-f.pw | 1 day ago |
Run a real-time investigation to understand the specific threats on any URL from this domain.
This assessment is based on automated analysis and may not be definitive.
Always verify independently before taking action.
Real experiences from people who visited this domain