ScanMalware.com

Security Scan Report: esfahanemrooz.ir

Submitted: Oct 17, 2025, 8:29:22 AMCompleted: Oct 17, 2025, 8:32:16 AMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 3 countries across 8 domains to perform 40 HTTP transactions. The main domain is esfahanemrooz.ir.

Submitted URL: https://esfahanemrooz.ir/%D8%A8%D8%AE%D8%B4-%D9%81%D8%B1%D9%87%D9%86%DA%AF-%D9%87%D9%86%D8%B1-152/932744-naser-taghvaei-filmmaker-obituary

AI Security Verdict

AI analysis unavailable for this scan

Details

Page Title

درگذشت ناصر تقوایی: زندگی و آثار فیلمساز «دایی جان ناپلئون» و «ناخدا خورشید»

Scan Type

public

Language

🇮🇷

FA

(80% confidence)

Category

malicious

(59%)

Domain Information

Domain 'esfahanemrooz.ir' uses the Iranian country-code top-level domain (.ir) and has no subdomain. The registrable portion 'esfahanemrooz' spans 13 characters split between 6 vowels and seven consonants. Breaking it apart gives four words: esfahan, em, roo, z. Average segment length settles at 2.5 characters. The linguistic tilt is Polish for 'em'. Secondary signals appear in Portuguese (Brazil) and Slovenian.

Screenshot

Security scan screenshot of https://esfahanemrooz.ir/%D8%A8%D8%AE%D8%B4-%D9%81%D8%B1%D9%87%D9%86%DA%AF-%D9%87%D9%86%D8%B1-152/932744-naser-taghvaei-filmmaker-obituary

Page Load Overview

7.07s
Total Load Time
40
HTTP Requests
8
Domains
384 KB
Total Size

Language Analysis

Primary Language

🇮🇷Persian
Code: fa
Confidence:80%
Script:Unknown
Direction:ltr

Detection Details

Language Code:fa
Detection Confidence:80%
Script Type:Unknown
HTML Lang Attribute:fa
Text Length:7,283 chars
Detector Agreement:100%

Website Classification

Primary Category

malicious59% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

malicious
59%
news/blog
50%
other
41%
corporate
35%
legitimate website
33%

Detected Features

Search
Articles
Comments
OG: article
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1245.94.255.75Iran
AS48551Sindad Network Technology PJSC
8185.161.121.128Iran
AS48551Sindad Network Technology PJSC
8142.250.185.195United States
AS15169GOOGLE
431.193.186.247Iran
AS48551Sindad Network Technology PJSC
3185.161.121.52Iran
AS48551Sindad Network Technology PJSC
32a00:1450:4001:813::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
32a00:1450:4001:81d::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
2185.161.121.57Iran
AS48551Sindad Network Technology PJSC
2185.161.121.61Iran
AS48551Sindad Network Technology PJSC
2142.250.181.234United States
AS15169GOOGLE
4011--

Detected Technologies2

Open-Graph-Protocolvarticle
100%
AngularJS
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10FD3D7E153F485B44963C79BB6B03630EE9B9E1BD1A88640B5AC26201FA6DD3C70F1DD

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:P1Ln0C6Fadv4IqKlsdiR/hclUSfPBrp6AK2TltnUbn0C6Fad1hKgBq:mi4IqKlsdiR66AK2TltnU4chKv

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:131386:BiIIoiDAYV2yz2Aga6AJCURLkNjSMC80C+BNAogqhFgIElEEdjmINsQgGQCskwACMQKACsBpBA1BQkRBgEOC4B7BANJEEQGZ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00fffffff7e3e3e1
Perceptual Hash:e6996b664b366618
Difference Hash:4b03373b27070707
Wavelet Hash:00ffdfc1c1e1c3c1
Color Hash:#1f2d93

Other Hashes

Crop Resistant:4b03373b27070707,2141c9c9c9c94121,74709812363d5a32

Scan History

Scan history not available

Unable to load historical scan data