ldli-eu.shop presents itself as a potentially malicious site, focusing on phishing landing page. The domain ldli-eu.shop appears to be a phishing site targeting Lidl customers, utilizing a typosquatted domain name. The landing page consists solely of a password entry field with no legitimate branding, likely used to gate access to further malicious content or credential harvesting.
Historical and current IP address mappings for this domain.
| IP Address / Infrastructure | Status | Subdomains | Last Seen |
|---|---|---|---|
CLOUDFLARENET - Cloudflare, Inc. (AS13335) | Historical | ldli-eu.shop | Today |
Real experiences from people who visited this domain
URLert analyzed recent scan activity for ldli-eu.shop
No public scans recorded recently
Be the first to run a threat analysis on this domain.
Access this classification data programmatically via our API.
{
"domain": "ldli-eu.shop",
"confidence": "high",
"category": {
"purpose": "potentially_malicious",
"specialization": "Phishing Landing Page"
},
"identity": {
"headline": "Suspicious password-protected landing page using a Lidl-like domain",
"summary": "The domain ldli-eu.shop appears to be a phishing site targeting Lidl customers, utilizing a typosquatted domain name. The landing page consists solely of a password entry field with no legitimate branding, likely used to gate access to further malicious content or credential harvesting.",
"operator": null,
"parent_entity": null,
"topics": [
"phishing",
"cybersecurity",
"suspicious domain",
"credential harvesting"
]
},
"functions": {
"is_ugc_platform": false,
"is_file_host": false,
"is_url_shortener": false,
"is_public_idp": false,
"is_crypto_platform": false,
"allows_user_subdomains": false,
"is_form_builder": false,
"is_document_host": false
},
"facts": {
"registered_date": "2026-01-21T10:20:22Z",
"rank": null,
"hosting_provider": "CLOUDFLARENET"
}
}