ScanMalware.com

Security Scan Report: cr820031-wordpress-wwe17.tw1.ru

Redirected to: https://vh454.timeweb.ru/blocked/?ref=cr820031-wordpress-wwe17.tw1.ru

Submitted: Oct 21, 2025, 9:04:34 PMCompleted: Oct 21, 2025, 9:05:59 PMpubliccompleted
Loading additional data...

Summary

This website contacted 14 IPs in 3 countries across 7 domains to perform 25 HTTP transactions. The main domain is vh454.timeweb.ru.

Submitted URL: https://cr820031-wordpress-wwe17.tw1.ru/wp-content/plugins/DSSDS/pages/region.php

Effective URL: https://vh454.timeweb.ru/blocked/?ref=cr820031-wordpress-wwe17.tw1.ruRedirected

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

High‑risk phishing site using a compromised WordPress installation; do not trust.

Risk Factors
Social engineering detection by Google Safe Browsing
Compromised WordPress site paths indicating possible phishing page
New, unranked domain with no established reputation
Domain age information unavailable

Details

Page Title

Домен припаркован в Timeweb

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

You're looking at domain 'cr820031-wordpress-wwe17.tw1.ru' on the Russian country-code top-level domain (.ru), featuring subdomain 'cr820031-wordpress-wwe17'. Count 3 characters in 'tw1' split between zero vowels and two consonants, notching 1 digit. Splitting it apart reveals 2 words: tw, 1. Median word length comes out to 1.5 characters. Most frequently, 'tw' shows up in Albanian. Net impression: Albanian phrase with character flair.

Screenshot

Security scan screenshot of https://cr820031-wordpress-wwe17.tw1.ru/wp-content/plugins/DSSDS/pages/region.php

Page Load Overview

71.28s
Total Load Time
25
HTTP Requests
7
Domains
252 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:1,802 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: dynamic
Method: structural

All Detected Categories

No categories detected

Detected Features

Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
12142.250.181.227United States
AS15169GOOGLE
15.255.255.77Russia
AS13238YANDEX LLC
1142.250.186.67United States
AS15169GOOGLE
1142.250.185.170United States
AS15169GOOGLE
192.53.96.105Russia
AS9123Jsc timeweb
1142.250.185.100United States
AS15169GOOGLE
12a00:1450:4001:800::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
177.88.55.88Russia
AS13238YANDEX LLC
12a02:6b8:a::aRussia
AS13238YANDEX LLC
12a03:6f00:1::5c35:6069St Petersburg, St.-Petersburg, Russia
AS9123Jsc timeweb
2514--

Detected Technologies1

JQueryv2.1.3
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T14B73B6E741F4D0E14A4FC3B19D36569B9D7224BFDE85528479DC0A107F82EF9C883AA8

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:+FVtrVpHBLoHj0PxiHm/ouVHzMd/ENRzGXLIN0:+3pHBLoHj0Au1MMMLIG

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:76964:pAaDPHn0DiAZciQ4JnRR5QM6FkAKAiEHwgBSSiAQQAAjiAKUAAVjR6AoRYq5WKJFJeBPCUsAhmQFBinA7F0BsyRBY0Ko4kwD

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00007e7e1e7e7e3e
Perceptual Hash:957c693a2ec3c293
Difference Hash:0332c0e0b8eccaea
Wavelet Hash:00007e7e1e7e3a7e
Color Hash:#1f9355

Other Hashes

Crop Resistant:0332c0e0b8eccaea

Scan History

Scan history not available

Unable to load historical scan data