# modelsdate.info — SUSPICIOUS > modelsdate.info is a dating-themed phishing domain flagged by 1/95 security vendors. This site lures users with fake romance profiles to steal credentials or. ## Summary PhishDestroy identifies modelsdate.info as an active dating-themed phishing domain designed to deceive users into sharing sensitive information or downloading malicious software. The site mimics legitimate dating platforms to exploit trust and harvest login credentials or financial details through fraudulent sign-up forms or malicious attachments. No specific brand or drainer kit has been directly linked to this domain in public threat intelligence feeds, suggesting it may operate as a standalone lure rather than a reused kit. This domain poses an elevated risk with confirmed malicious activity. It resolves to IP 5.129.222.6 and was registered on March 19, 2026, through NICENIC INTERNATIONAL GROUP CO., LIMITED. VirusTotal reports a detection ratio of 1/95 security vendors, indicating low but present suspicion. The domain uses a Let’s Encrypt SSL certificate to appear legitimate, and its recent registration suggests opportunistic deployment. It has not been observed in Google Safe Browsing (GSB) blocklists or major threat intelligence feeds, but its low detection rate highlights potential evasion tactics. The lack of widespread blacklisting increases the risk of exposure to unsuspecting users. As of today, modelsdate.info remains active and unblocked by most defenses. Users are advised to avoid interaction and report the domain through local threat intelligence platforms. Security teams should monitor for related infrastructure, particularly additional domains registered through the same registrar or resolving to the same IP. The current risk remains elevated due to the domain’s active status and low VT detection rate. Immediate blocking at DNS, firewall, and endpoint levels is recommended to prevent user exposure and potential credential theft. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-19 10:48:52 - Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED - IP: 5.129.222.6 ## Detection Status - VirusTotal: 1 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/38c009fa-f3cd-4ff9-a8fd-e0dba45e65ba - PhishDestroy: https://phishdestroy.io/domain/modelsdate.info/ - LLM endpoint: https://phishdestroy.io/domain/modelsdate.info/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/modelsdate.info/ Last updated: 2026-03-23